Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-08-2021
Exécuté par birem (administrateur) sur LAPTOP-QT2P927C (ASUSTeK COMPUTER INC. VivoBook S14 X430UA) (17-08-2021 13:45:16)
Exécuté depuis C:\Users\birem\Downloads
Profils chargés: birem & defaultuser1 & sacha & sacha_0qgmrem
Platform: Windows 10 Home Version 21H1 19043.985 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSOptimization\ASUSOptimization.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSoftwareManager\AsusSoftwareManager.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\ATKOSD2.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(Guangzhou Ugee Computers Technology Co.,Ltd -> Ugee Technology Company Ltd) C:\Program Files\Pentablet\PentabletService.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_a5d3270da26fb113\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(Intel(R) pGFX -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_12bdb8127c4c0458\OneApp.IGCC.WinService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2f517840860c8f91\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2f517840860c8f91\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_a9a8972288e9f3b5\RstMwService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <25>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.6282.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.6282.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_14f9bf115eb140b7\AsusPTPService.exe
(Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [PentabletService] => C:\Program Files\Pentablet\PentabletService.exe [2243736 2021-01-11] (Guangzhou Ugee Computers Technology Co.,Ltd -> Ugee Technology Company Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2966461989-8150465-2318621157-1001\...\Run: [MicrosoftEdgeAutoLaunch_17AFF1D779F8FD2CE682F54C9FD461B0] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-2966461989-8150465-2318621157-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\birem\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2966461989-8150465-2318621157-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\birem\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2966461989-8150465-2318621157-1001\...\RunOnce: [Uninstall 21.129.0627.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\birem\AppData\Local\Microsoft\OneDrive\21.129.0627.0002"
HKU\S-1-5-21-2966461989-8150465-2318621157-1003\...\Run: [GoogleDriveSync] => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-2966461989-8150465-2318621157-1004\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Startup: C:\Users\sacha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-03-13]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Pas de fichier <==== ATTENTION
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Pas de fichier <==== ATTENTION
Task: {777B8EF7-DECD-463F-9598-4454A6B84F7E} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {9F939F6C-ECDC-4169-BE3C-0BEBE749464D} - \OneDrive Standalone Update Task v2 -> Pas de fichier <==== ATTENTION
Task: {B4D5C3CB-00AF-4229-8087-C43F61AB4374} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [956704 2019-12-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> Pas de fichier <==== ATTENTION
Task: {BCAC8CD0-10D3-4611-B973-581257C74CB8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCE95EC8-C061-488D-A07E-6BAA9D119770} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2560128 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {BD32B48D-D150-4675-BF26-7AE2D8AE47DF} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [65432 2021-08-05] (Microsoft Corporation -> Microsoft)
Task: {C1EF45A1-44D2-48F3-862D-DCB5FA3AA96A} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> Pas de fichier <==== ATTENTION
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> Pas de fichier <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION
Task: {D267B468-72D8-4245-89D4-51DDFAD53761} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D877433E-B5E1-468B-8A15-3E61450C4EA6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {E4B1AEB5-45E2-4382-B64C-C152A68F65D5} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSoftwareManager\AsusUpdateChecker.exe [769168 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {E644DF83-BA60-4C0A-A003-28C659218914} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {E9BFE107-252F-41E2-B16A-B435C283BCA6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {FDA498C6-B707-45C4-BC22-220D74280F9C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FF9C06A2-CB39-4917-B7EA-360ABCE703B3} - System32\Tasks\MyASUS Update Messenger => C:\Users\sacha\AppData\Local\MyASUS Update Messenger\UpdateMessenger.exe [13859888 2021-02-27] (SweetLabs Inc. -> SweetLabs, Inc)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4fa89cf6-ae2d-4f4f-894f-c53ced89ff69}: [DhcpNameServer] 40.53.1.11
Tcpip\..\Interfaces\{ca8c7e83-01cd-4d69-ac65-c8c615d3d993}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\birem\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-17]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-08-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-08-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSoftwareManager\AsusSoftwareManager.exe [944784 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSOptimization\ASUSOptimization.exe [202168 2021-06-28] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 AsusPTPService; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_14f9bf115eb140b7\AsusPTPService.exe [174488 2019-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2560128 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [518040 2021-06-28] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9142128 2021-08-05] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109008 2017-10-17] (Alcor Micro, Corp. -> )
S3 AsusNumpadKbd; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilterkbd.inf_amd64_1ac89a737b9ad18b\AsusDigiFilter.sys [136448 2019-06-16] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusNumpadPTP; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_14f9bf115eb140b7\AsusDigiFilter.sys [136448 2019-06-16] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
S1 ASUSSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemAnalysis\ASUSSAIO.sys [39040 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-08-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69016 2021-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49152 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-12-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-17 13:45 - 2021-08-17 13:49 - 000019105 _____ C:\Users\birem\Downloads\FRST.txt
2021-08-17 13:42 - 2021-08-17 13:47 - 000000000 ____D C:\FRST
2021-08-17 13:41 - 2021-08-17 13:41 - 002300416 _____ (Farbar) C:\Users\birem\Downloads\FRST64.exe
2021-08-17 12:31 - 2021-08-17 13:35 - 000000000 ____D C:\Program Files (x86)\CPU Stress MT
2021-08-17 12:31 - 2021-08-17 12:31 - 000000000 ____D C:\Users\birem\AppData\LocalLow\IGDump
2021-08-17 12:31 - 2021-08-17 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPU Stress MT
2021-08-17 12:30 - 2021-08-17 12:30 - 004933174 _____ (Foudge ) C:\Users\birem\Downloads\CPUStressMT_1.0.4.exe
2021-08-17 12:23 - 2021-08-17 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-08-17 12:22 - 2021-08-17 12:23 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-08-17 12:21 - 2021-08-17 12:21 - 004707136 _____ (Crystal Dew World ) C:\Users\birem\Downloads\CrystalDiskInfo8_11_2.exe
2021-08-16 16:08 - 2021-08-16 16:08 - 000000000 ____D C:\Users\birem\AppData\Local\CrashDumps
2021-08-16 15:48 - 2021-08-16 15:48 - 000069016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-08-16 15:46 - 2021-08-16 15:46 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-08-16 15:46 - 2021-08-16 15:46 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-08-16 15:29 - 2021-08-16 15:29 - 000000000 ____D C:\Users\birem\AppData\Local\mbam
2021-08-16 15:28 - 2021-08-16 15:28 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-08-16 15:28 - 2021-08-16 15:28 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-08-16 15:28 - 2021-08-16 15:28 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-08-16 15:28 - 2021-08-16 15:25 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-08-16 15:27 - 2021-08-16 15:25 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-08-16 15:26 - 2021-08-16 15:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-08-16 15:24 - 2021-08-16 15:24 - 000000000 ____D C:\Program Files\Malwarebytes
2021-08-16 15:23 - 2021-08-16 15:23 - 002120496 _____ (Malwarebytes) C:\Users\birem\Downloads\MBSetup.exe
2021-08-16 13:37 - 2021-08-16 13:37 - 000001017 _____ C:\Users\birem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2021-08-16 13:20 - 2021-08-16 16:10 - 000000000 ____D C:\Users\birem\AppData\Local\osu!
2021-08-16 13:19 - 2021-08-16 13:19 - 000000000 ____D C:\Users\birem\Downloads\Localisation
2021-08-16 13:19 - 2021-08-16 13:19 - 000000000 ____D C:\Users\birem\AppData\Local\ASUS
2021-08-16 13:13 - 2021-08-16 13:13 - 000004120 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2021-08-16 13:05 - 2021-08-16 13:06 - 000000000 ____D C:\Users\birem\AppData\Roaming\Pentablet
2021-08-16 13:05 - 2021-08-16 13:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pentablet
2021-08-16 13:05 - 2019-07-11 13:50 - 000145408 _____ (TODO: <公司名>) C:\WINDOWS\system32\WinTab32.dll
2021-08-16 13:05 - 2019-07-11 13:50 - 000124928 _____ (TODO: <公司名>) C:\WINDOWS\SysWOW64\WinTab32.dll
2021-08-16 13:05 - 2018-12-11 10:03 - 000010752 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vmulti.sys
2021-08-16 13:05 - 2014-09-17 10:47 - 000007680 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\hidkmdf.sys
2021-08-16 13:03 - 2021-08-16 13:05 - 000000000 ____D C:\Program Files\Pentablet
2021-08-16 13:02 - 2021-08-16 13:02 - 017589364 _____ C:\Users\birem\Downloads\XP-PENWin_1.6.4.210812.zip
2021-08-16 12:53 - 2021-08-16 12:53 - 004407552 _____ (ppy) C:\Users\birem\Downloads\osu!install (1).exe
2021-08-06 17:28 - 2021-08-06 19:39 - 000000000 ____D C:\tmp
2021-08-06 13:17 - 2021-08-06 13:17 - 001922640 _____ C:\Users\birem\OneDrive\Documents\qdsfqdfd.obj
2021-08-06 13:17 - 2021-08-06 13:17 - 000004536 _____ C:\Users\birem\OneDrive\Documents\qdsfqdfd.mtl
2021-08-05 22:06 - 2021-08-05 22:06 - 008202476 _____ C:\Users\birem\OneDrive\Documents\Montagne.obj
2021-08-05 22:06 - 2021-08-05 22:06 - 000006821 _____ C:\Users\birem\OneDrive\Documents\Montagne.mtl
2021-08-05 21:59 - 2021-08-05 21:59 - 000000000 ____D C:\Users\birem\Downloads\minewaysV900
2021-08-05 21:55 - 2021-08-05 21:56 - 173049689 _____ C:\Users\birem\Downloads\minewaysV900.zip
2021-08-05 21:51 - 2021-08-05 21:51 - 000000000 ____D C:\Users\birem\AppData\Roaming\Sun
2021-08-05 21:51 - 2021-08-05 21:51 - 000000000 ____D C:\Users\birem\AppData\LocalLow\Sun
2021-08-05 21:50 - 2021-08-05 21:50 - 000164696 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2021-08-05 21:50 - 2021-08-05 21:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-08-05 21:49 - 2021-08-05 21:49 - 000000000 ____D C:\ProgramData\Oracle
2021-08-05 21:48 - 2021-08-05 21:48 - 000000000 ____D C:\Program Files (x86)\Java
2021-08-05 21:45 - 2021-08-05 21:45 - 002102080 _____ (Oracle Corporation) C:\Users\birem\Downloads\JavaSetup8u301.exe
2021-08-05 21:40 - 2021-08-05 21:40 - 000810024 _____ C:\Users\birem\Downloads\jMc2Obj-112.jar
2021-08-05 21:23 - 2021-08-05 21:23 - 000000000 ____D C:\Users\birem\source
2021-08-05 21:20 - 2021-08-05 21:20 - 000000000 ____D C:\Users\birem\AppData\Local\IdentityNexusIntegration
2021-08-05 21:19 - 2021-08-05 21:21 - 024798059 _____ C:\Users\birem\Downloads\MCprep_addon_v3.2.5.1.zip
2021-08-05 21:19 - 2021-08-05 21:19 - 000000000 ____D C:\Users\birem\AppData\Local\ServiceHub
2021-08-05 21:13 - 2021-08-05 21:23 - 000000000 ____D C:\Users\birem\OneDrive\Documents\Visual Studio 2019
2021-08-05 21:13 - 2021-08-05 21:20 - 000000000 ____D C:\Users\birem\AppData\Local\.IdentityService
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\3082
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\2052
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1055
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1049
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1046
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1045
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1042
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1041
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1040
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1036
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1033
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1031
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1029
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1028
2021-08-05 21:06 - 2021-08-05 21:07 - 000000000 ____D C:\Program Files\dotnet
2021-08-05 21:06 - 2021-08-05 21:06 - 000000000 ____D C:\Program Files (x86)\dotnet
2021-08-05 21:05 - 2021-08-05 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2021-08-05 21:02 - 2021-08-05 21:02 - 000001793 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2021-08-05 20:52 - 2021-08-05 20:52 - 000001427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2021-08-05 20:52 - 2021-08-05 20:52 - 000000000 ____D C:\Users\birem\AppData\Roaming\Visual Studio Setup
2021-08-05 20:51 - 2021-08-05 20:57 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2021-08-05 20:50 - 2021-08-05 20:50 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2021-08-05 20:38 - 2021-08-05 20:38 - 000000000 ____D C:\Users\birem\AppData\Local\NVIDIA Corporation
2021-08-05 20:36 - 2021-08-05 20:36 - 000000000 ____D C:\ProgramData\Package Cache
2021-08-05 20:22 - 2021-08-05 20:22 - 000000000 ____D C:\Users\birem\AppData\Local\UnrealEngine
2021-08-05 20:20 - 2021-08-06 18:39 - 000000000 ____D C:\Program Files (x86)\Epic Games
2021-08-05 20:20 - 2021-08-06 18:37 - 000000000 ____D C:\ProgramData\Epic
2021-08-05 20:20 - 2021-08-05 20:20 - 000000000 ____D C:\Users\birem\OneDrive\Documents\New Folder
2021-08-05 20:18 - 2021-08-05 20:18 - 056791040 _____ C:\Users\birem\Downloads\EpicInstaller-12.1.7-unrealEngine.msi
2021-08-05 16:39 - 2021-08-05 16:39 - 000000000 ____D C:\Users\birem\.thumbnails
2021-08-05 16:29 - 2021-08-05 16:29 - 000000000 ____D C:\Users\birem\AppData\Roaming\Cybelsoft
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-17 13:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-17 13:40 - 2021-05-27 19:12 - 000000000 ____D C:\Users\birem\AppData\Local\Packages
2021-08-17 13:40 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-17 13:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-17 13:38 - 2021-06-01 09:25 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2966461989-8150465-2318621157-1001
2021-08-17 13:38 - 2021-02-07 00:58 - 000002415 _____ C:\Users\birem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-17 13:38 - 2019-09-17 13:39 - 000000000 ___RD C:\Users\birem\OneDrive
2021-08-17 13:03 - 2021-02-07 00:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-17 12:54 - 2021-06-01 08:09 - 000000000 ____D C:\Program Files\CCleaner
2021-08-17 12:18 - 2021-02-07 02:56 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2021-08-17 12:12 - 2019-12-04 17:25 - 000000000 __SHD C:\Users\birem\IntelGraphicsProfiles
2021-08-16 15:28 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-08-16 15:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-16 15:20 - 2021-02-07 12:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-16 14:52 - 2021-02-07 12:37 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-16 14:51 - 2021-02-21 18:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-08-16 14:37 - 2021-02-07 14:15 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-16 13:50 - 2021-02-07 12:47 - 000000000 ____D C:\Program Files\Microsoft Office
2021-08-16 13:29 - 2021-02-07 00:36 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-16 13:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-16 13:05 - 2021-05-27 19:12 - 000000000 ____D C:\Users\birem\AppData\Roaming\Adobe
2021-08-16 12:59 - 2021-02-07 00:34 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-16 12:59 - 2021-02-07 00:34 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-06 19:38 - 2021-06-01 11:41 - 000000000 ____D C:\Users\birem\AppData\Local\PlaceholderTileLogoFolder
2021-08-06 19:14 - 2021-06-02 13:42 - 000000000 ____D C:\Users\birem\AppData\Local\D3DSCache
2021-08-06 17:37 - 2021-06-19 13:54 - 000000000 ____D C:\Users\birem\AppData\Local\ElevatedDiagnostics
2021-08-06 12:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-08-05 21:23 - 2021-02-07 00:58 - 000000000 ____D C:\Users\birem
2021-08-05 21:12 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-08-05 21:05 - 2021-02-06 22:54 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-08-05 20:41 - 2021-06-01 11:45 - 000000000 ____D C:\Program Files\TeamViewer
2021-08-05 20:34 - 2021-06-07 20:05 - 000000000 ____D C:\Users\birem\AppData\Roaming\.minecraft
2021-08-05 16:38 - 2021-02-07 02:56 - 000000000 ____D C:\ProgramData\Packages
2021-08-05 16:13 - 2021-02-07 00:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-08-05 16:08 - 2021-02-07 01:10 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-08-05 16:08 - 2019-12-07 16:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2021-08-05 16:08 - 2019-12-07 16:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2021-08-05 15:59 - 2021-02-07 00:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-05 15:59 - 2020-05-29 12:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-05 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-08-05 15:58 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par birem (administrateur) sur LAPTOP-QT2P927C (ASUSTeK COMPUTER INC. VivoBook S14 X430UA) (17-08-2021 13:45:16)
Exécuté depuis C:\Users\birem\Downloads
Profils chargés: birem & defaultuser1 & sacha & sacha_0qgmrem
Platform: Windows 10 Home Version 21H1 19043.985 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSOptimization\ASUSOptimization.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSoftwareManager\AsusSoftwareManager.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\ATKOSD2.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(Guangzhou Ugee Computers Technology Co.,Ltd -> Ugee Technology Company Ltd) C:\Program Files\Pentablet\PentabletService.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_a5d3270da26fb113\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(Intel(R) pGFX -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_12bdb8127c4c0458\OneApp.IGCC.WinService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2f517840860c8f91\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2f517840860c8f91\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_a9a8972288e9f3b5\RstMwService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <25>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.6282.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.6282.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_14f9bf115eb140b7\AsusPTPService.exe
(Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [PentabletService] => C:\Program Files\Pentablet\PentabletService.exe [2243736 2021-01-11] (Guangzhou Ugee Computers Technology Co.,Ltd -> Ugee Technology Company Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2966461989-8150465-2318621157-1001\...\Run: [MicrosoftEdgeAutoLaunch_17AFF1D779F8FD2CE682F54C9FD461B0] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-2966461989-8150465-2318621157-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\birem\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2966461989-8150465-2318621157-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\birem\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2966461989-8150465-2318621157-1001\...\RunOnce: [Uninstall 21.129.0627.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\birem\AppData\Local\Microsoft\OneDrive\21.129.0627.0002"
HKU\S-1-5-21-2966461989-8150465-2318621157-1003\...\Run: [GoogleDriveSync] => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-2966461989-8150465-2318621157-1004\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Startup: C:\Users\sacha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-03-13]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Pas de fichier <==== ATTENTION
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Pas de fichier <==== ATTENTION
Task: {777B8EF7-DECD-463F-9598-4454A6B84F7E} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {9F939F6C-ECDC-4169-BE3C-0BEBE749464D} - \OneDrive Standalone Update Task v2 -> Pas de fichier <==== ATTENTION
Task: {B4D5C3CB-00AF-4229-8087-C43F61AB4374} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [956704 2019-12-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> Pas de fichier <==== ATTENTION
Task: {BCAC8CD0-10D3-4611-B973-581257C74CB8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCE95EC8-C061-488D-A07E-6BAA9D119770} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2560128 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {BD32B48D-D150-4675-BF26-7AE2D8AE47DF} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [65432 2021-08-05] (Microsoft Corporation -> Microsoft)
Task: {C1EF45A1-44D2-48F3-862D-DCB5FA3AA96A} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> Pas de fichier <==== ATTENTION
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> Pas de fichier <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION
Task: {D267B468-72D8-4245-89D4-51DDFAD53761} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D877433E-B5E1-468B-8A15-3E61450C4EA6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {E4B1AEB5-45E2-4382-B64C-C152A68F65D5} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSoftwareManager\AsusUpdateChecker.exe [769168 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {E644DF83-BA60-4C0A-A003-28C659218914} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {E9BFE107-252F-41E2-B16A-B435C283BCA6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {FDA498C6-B707-45C4-BC22-220D74280F9C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FF9C06A2-CB39-4917-B7EA-360ABCE703B3} - System32\Tasks\MyASUS Update Messenger => C:\Users\sacha\AppData\Local\MyASUS Update Messenger\UpdateMessenger.exe [13859888 2021-02-27] (SweetLabs Inc. -> SweetLabs, Inc)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4fa89cf6-ae2d-4f4f-894f-c53ced89ff69}: [DhcpNameServer] 40.53.1.11
Tcpip\..\Interfaces\{ca8c7e83-01cd-4d69-ac65-c8c615d3d993}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\birem\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-17]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-08-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-08-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSoftwareManager\AsusSoftwareManager.exe [944784 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSOptimization\ASUSOptimization.exe [202168 2021-06-28] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 AsusPTPService; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_14f9bf115eb140b7\AsusPTPService.exe [174488 2019-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2560128 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [518040 2021-06-28] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9142128 2021-08-05] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109008 2017-10-17] (Alcor Micro, Corp. -> )
S3 AsusNumpadKbd; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilterkbd.inf_amd64_1ac89a737b9ad18b\AsusDigiFilter.sys [136448 2019-06-16] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusNumpadPTP; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_14f9bf115eb140b7\AsusDigiFilter.sys [136448 2019-06-16] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
S1 ASUSSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_9b37667afa500885\ASUSSystemAnalysis\ASUSSAIO.sys [39040 2021-06-28] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-08-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69016 2021-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-08-16] (Malwarebytes Inc -> Malwarebytes)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49152 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-12-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-17 13:45 - 2021-08-17 13:49 - 000019105 _____ C:\Users\birem\Downloads\FRST.txt
2021-08-17 13:42 - 2021-08-17 13:47 - 000000000 ____D C:\FRST
2021-08-17 13:41 - 2021-08-17 13:41 - 002300416 _____ (Farbar) C:\Users\birem\Downloads\FRST64.exe
2021-08-17 12:31 - 2021-08-17 13:35 - 000000000 ____D C:\Program Files (x86)\CPU Stress MT
2021-08-17 12:31 - 2021-08-17 12:31 - 000000000 ____D C:\Users\birem\AppData\LocalLow\IGDump
2021-08-17 12:31 - 2021-08-17 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPU Stress MT
2021-08-17 12:30 - 2021-08-17 12:30 - 004933174 _____ (Foudge ) C:\Users\birem\Downloads\CPUStressMT_1.0.4.exe
2021-08-17 12:23 - 2021-08-17 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-08-17 12:22 - 2021-08-17 12:23 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-08-17 12:21 - 2021-08-17 12:21 - 004707136 _____ (Crystal Dew World ) C:\Users\birem\Downloads\CrystalDiskInfo8_11_2.exe
2021-08-16 16:08 - 2021-08-16 16:08 - 000000000 ____D C:\Users\birem\AppData\Local\CrashDumps
2021-08-16 15:48 - 2021-08-16 15:48 - 000069016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-08-16 15:46 - 2021-08-16 15:46 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-08-16 15:46 - 2021-08-16 15:46 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-08-16 15:29 - 2021-08-16 15:29 - 000000000 ____D C:\Users\birem\AppData\Local\mbam
2021-08-16 15:28 - 2021-08-16 15:28 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-08-16 15:28 - 2021-08-16 15:28 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-08-16 15:28 - 2021-08-16 15:28 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-08-16 15:28 - 2021-08-16 15:25 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-08-16 15:27 - 2021-08-16 15:25 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-08-16 15:26 - 2021-08-16 15:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-08-16 15:24 - 2021-08-16 15:24 - 000000000 ____D C:\Program Files\Malwarebytes
2021-08-16 15:23 - 2021-08-16 15:23 - 002120496 _____ (Malwarebytes) C:\Users\birem\Downloads\MBSetup.exe
2021-08-16 13:37 - 2021-08-16 13:37 - 000001017 _____ C:\Users\birem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2021-08-16 13:20 - 2021-08-16 16:10 - 000000000 ____D C:\Users\birem\AppData\Local\osu!
2021-08-16 13:19 - 2021-08-16 13:19 - 000000000 ____D C:\Users\birem\Downloads\Localisation
2021-08-16 13:19 - 2021-08-16 13:19 - 000000000 ____D C:\Users\birem\AppData\Local\ASUS
2021-08-16 13:13 - 2021-08-16 13:13 - 000004120 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2021-08-16 13:05 - 2021-08-16 13:06 - 000000000 ____D C:\Users\birem\AppData\Roaming\Pentablet
2021-08-16 13:05 - 2021-08-16 13:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pentablet
2021-08-16 13:05 - 2019-07-11 13:50 - 000145408 _____ (TODO: <公司名>) C:\WINDOWS\system32\WinTab32.dll
2021-08-16 13:05 - 2019-07-11 13:50 - 000124928 _____ (TODO: <公司名>) C:\WINDOWS\SysWOW64\WinTab32.dll
2021-08-16 13:05 - 2018-12-11 10:03 - 000010752 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vmulti.sys
2021-08-16 13:05 - 2014-09-17 10:47 - 000007680 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\hidkmdf.sys
2021-08-16 13:03 - 2021-08-16 13:05 - 000000000 ____D C:\Program Files\Pentablet
2021-08-16 13:02 - 2021-08-16 13:02 - 017589364 _____ C:\Users\birem\Downloads\XP-PENWin_1.6.4.210812.zip
2021-08-16 12:53 - 2021-08-16 12:53 - 004407552 _____ (ppy) C:\Users\birem\Downloads\osu!install (1).exe
2021-08-06 17:28 - 2021-08-06 19:39 - 000000000 ____D C:\tmp
2021-08-06 13:17 - 2021-08-06 13:17 - 001922640 _____ C:\Users\birem\OneDrive\Documents\qdsfqdfd.obj
2021-08-06 13:17 - 2021-08-06 13:17 - 000004536 _____ C:\Users\birem\OneDrive\Documents\qdsfqdfd.mtl
2021-08-05 22:06 - 2021-08-05 22:06 - 008202476 _____ C:\Users\birem\OneDrive\Documents\Montagne.obj
2021-08-05 22:06 - 2021-08-05 22:06 - 000006821 _____ C:\Users\birem\OneDrive\Documents\Montagne.mtl
2021-08-05 21:59 - 2021-08-05 21:59 - 000000000 ____D C:\Users\birem\Downloads\minewaysV900
2021-08-05 21:55 - 2021-08-05 21:56 - 173049689 _____ C:\Users\birem\Downloads\minewaysV900.zip
2021-08-05 21:51 - 2021-08-05 21:51 - 000000000 ____D C:\Users\birem\AppData\Roaming\Sun
2021-08-05 21:51 - 2021-08-05 21:51 - 000000000 ____D C:\Users\birem\AppData\LocalLow\Sun
2021-08-05 21:50 - 2021-08-05 21:50 - 000164696 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2021-08-05 21:50 - 2021-08-05 21:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-08-05 21:49 - 2021-08-05 21:49 - 000000000 ____D C:\ProgramData\Oracle
2021-08-05 21:48 - 2021-08-05 21:48 - 000000000 ____D C:\Program Files (x86)\Java
2021-08-05 21:45 - 2021-08-05 21:45 - 002102080 _____ (Oracle Corporation) C:\Users\birem\Downloads\JavaSetup8u301.exe
2021-08-05 21:40 - 2021-08-05 21:40 - 000810024 _____ C:\Users\birem\Downloads\jMc2Obj-112.jar
2021-08-05 21:23 - 2021-08-05 21:23 - 000000000 ____D C:\Users\birem\source
2021-08-05 21:20 - 2021-08-05 21:20 - 000000000 ____D C:\Users\birem\AppData\Local\IdentityNexusIntegration
2021-08-05 21:19 - 2021-08-05 21:21 - 024798059 _____ C:\Users\birem\Downloads\MCprep_addon_v3.2.5.1.zip
2021-08-05 21:19 - 2021-08-05 21:19 - 000000000 ____D C:\Users\birem\AppData\Local\ServiceHub
2021-08-05 21:13 - 2021-08-05 21:23 - 000000000 ____D C:\Users\birem\OneDrive\Documents\Visual Studio 2019
2021-08-05 21:13 - 2021-08-05 21:20 - 000000000 ____D C:\Users\birem\AppData\Local\.IdentityService
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\3082
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\2052
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1055
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1049
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1046
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1045
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1042
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1041
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1040
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1036
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1033
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1031
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1029
2021-08-05 21:12 - 2021-08-05 21:12 - 000000000 ____D C:\WINDOWS\system32\1028
2021-08-05 21:06 - 2021-08-05 21:07 - 000000000 ____D C:\Program Files\dotnet
2021-08-05 21:06 - 2021-08-05 21:06 - 000000000 ____D C:\Program Files (x86)\dotnet
2021-08-05 21:05 - 2021-08-05 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2021-08-05 21:02 - 2021-08-05 21:02 - 000001793 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2021-08-05 20:52 - 2021-08-05 20:52 - 000001427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2021-08-05 20:52 - 2021-08-05 20:52 - 000000000 ____D C:\Users\birem\AppData\Roaming\Visual Studio Setup
2021-08-05 20:51 - 2021-08-05 20:57 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2021-08-05 20:50 - 2021-08-05 20:50 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2021-08-05 20:38 - 2021-08-05 20:38 - 000000000 ____D C:\Users\birem\AppData\Local\NVIDIA Corporation
2021-08-05 20:36 - 2021-08-05 20:36 - 000000000 ____D C:\ProgramData\Package Cache
2021-08-05 20:22 - 2021-08-05 20:22 - 000000000 ____D C:\Users\birem\AppData\Local\UnrealEngine
2021-08-05 20:20 - 2021-08-06 18:39 - 000000000 ____D C:\Program Files (x86)\Epic Games
2021-08-05 20:20 - 2021-08-06 18:37 - 000000000 ____D C:\ProgramData\Epic
2021-08-05 20:20 - 2021-08-05 20:20 - 000000000 ____D C:\Users\birem\OneDrive\Documents\New Folder
2021-08-05 20:18 - 2021-08-05 20:18 - 056791040 _____ C:\Users\birem\Downloads\EpicInstaller-12.1.7-unrealEngine.msi
2021-08-05 16:39 - 2021-08-05 16:39 - 000000000 ____D C:\Users\birem\.thumbnails
2021-08-05 16:29 - 2021-08-05 16:29 - 000000000 ____D C:\Users\birem\AppData\Roaming\Cybelsoft
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-17 13:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-17 13:40 - 2021-05-27 19:12 - 000000000 ____D C:\Users\birem\AppData\Local\Packages
2021-08-17 13:40 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-17 13:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-17 13:38 - 2021-06-01 09:25 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2966461989-8150465-2318621157-1001
2021-08-17 13:38 - 2021-02-07 00:58 - 000002415 _____ C:\Users\birem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-17 13:38 - 2019-09-17 13:39 - 000000000 ___RD C:\Users\birem\OneDrive
2021-08-17 13:03 - 2021-02-07 00:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-17 12:54 - 2021-06-01 08:09 - 000000000 ____D C:\Program Files\CCleaner
2021-08-17 12:18 - 2021-02-07 02:56 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2021-08-17 12:12 - 2019-12-04 17:25 - 000000000 __SHD C:\Users\birem\IntelGraphicsProfiles
2021-08-16 15:28 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-08-16 15:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-16 15:20 - 2021-02-07 12:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-16 14:52 - 2021-02-07 12:37 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-16 14:51 - 2021-02-21 18:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-08-16 14:37 - 2021-02-07 14:15 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-16 13:50 - 2021-02-07 12:47 - 000000000 ____D C:\Program Files\Microsoft Office
2021-08-16 13:29 - 2021-02-07 00:36 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-16 13:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-16 13:05 - 2021-05-27 19:12 - 000000000 ____D C:\Users\birem\AppData\Roaming\Adobe
2021-08-16 12:59 - 2021-02-07 00:34 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-16 12:59 - 2021-02-07 00:34 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-06 19:38 - 2021-06-01 11:41 - 000000000 ____D C:\Users\birem\AppData\Local\PlaceholderTileLogoFolder
2021-08-06 19:14 - 2021-06-02 13:42 - 000000000 ____D C:\Users\birem\AppData\Local\D3DSCache
2021-08-06 17:37 - 2021-06-19 13:54 - 000000000 ____D C:\Users\birem\AppData\Local\ElevatedDiagnostics
2021-08-06 12:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-08-05 21:23 - 2021-02-07 00:58 - 000000000 ____D C:\Users\birem
2021-08-05 21:12 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-08-05 21:05 - 2021-02-06 22:54 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-08-05 20:41 - 2021-06-01 11:45 - 000000000 ____D C:\Program Files\TeamViewer
2021-08-05 20:34 - 2021-06-07 20:05 - 000000000 ____D C:\Users\birem\AppData\Roaming\.minecraft
2021-08-05 16:38 - 2021-02-07 02:56 - 000000000 ____D C:\ProgramData\Packages
2021-08-05 16:13 - 2021-02-07 00:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-08-05 16:08 - 2021-02-07 01:10 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-08-05 16:08 - 2019-12-07 16:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2021-08-05 16:08 - 2019-12-07 16:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2021-08-05 15:59 - 2021-02-07 00:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-05 15:59 - 2020-05-29 12:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-05 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-08-05 15:58 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================