Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par marin (administrateur) sur LAPTOP-3GGMGU51 (HUAWEI HVY-WXX9) (13-09-2022 08:09:28)
Exécuté depuis C:\Users\marin\Desktop
Profils chargés: marin
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avpui.exe
(C:\Program Files\Huawei\HMS Core\HMSCoreService.exe ->) (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\Program Files\Huawei\HMS Core\HMSCoreContainer.exe
(C:\Program Files\Huawei\PCManager\MateBookService.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\HwMdcCenter.exe
(C:\Program Files\Huawei\PCManager\MateBookService.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe
(C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\DFSSearchService.exe
(C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MessageCenterUI.exe
(D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(DriverStore\FileRepository\u0360749.inf_amd64_0a6824eb708f1c4e\B360602\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360749.inf_amd64_0a6824eb708f1c4e\B360602\atieclxx.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(RPC\OSD\osdservice.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\Huawei OSD\OSD_Daemon.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360749.inf_amd64_0a6824eb708f1c4e\B360602\atiesrxx.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) D:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\BasicService\BasicService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\Hiview\HiviewService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MateBookService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Windows\System32\RPC\OSD\osdservice.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\Program Files\Huawei\HMS Core\HMSCoreService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\Program Files\Huawei\wucs\WUCSProxyService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_8dcb9e12bf961616\Intel_PIE_Service.exe
(services.exe ->) (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Goodix) C:\Windows\System32\drivers\SessionService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d496569dc57f6c24\RtkAudUService64.exe <3>
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(svchost.exe ->) (A-Volute) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.9.10.0_x64__w2gh52qy24etm\Nahimic3.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marin\AppData\Local\Microsoft\OneDrive\22.166.0807.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marin\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d496569dc57f6c24\RtkAudUService64.exe [1182448 2020-10-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4149167960-3854231584-910161377-1001\...\Run: [Steam] => "D:\Program Files (x86)\steam.exe" -silent (Pas de fichier)
HKU\S-1-5-21-4149167960-3854231584-910161377-1001\...\Run: [EADM] => D:\Program Files (x86)\Origin\Origin.exe [3149616 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-4149167960-3854231584-910161377-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32681424 2022-09-12] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-4149167960-3854231584-910161377-1001\...\Run: [Discord] => C:\Users\marin\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-09] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {193C6459-7316-4AFD-BD75-A8241E7267CC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64408 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {347484CB-1F36-4E2A-B603-4F948CC9649A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154520 2021-07-17] (Google LLC -> Google LLC)
Task: {4B03EB2B-3A26-4ED2-8A88-41BD7F6D1F7F} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1088616 2021-07-02] (A-Volute SAS -> Nahimic)
Task: {4E2E6F5F-2EDB-4FD5-AF1D-25646DEC3126} - System32\Tasks\AMD RELAUNCHER => C:\AMD\Radeon-Software-Adrenalin-2020-22.1.2-Win10-Win11-64Bit-Jan25\\Bin64\InstallManagerApp.exe [1709048 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {64B28D4F-C7A0-4C9C-AEE0-160EFD07049B} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [829544 2021-07-02] (A-Volute SAS -> Nahimic)
Task: {ABD2F20D-8AB8-46AE-8102-C9AFEB607911} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154520 2021-07-17] (Google LLC -> Google LLC)
Task: {C1971B9B-23FB-4707-8B6C-618F090BA2E6} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1088616 2021-07-02] (A-Volute SAS -> Nahimic)
Task: {C45F90C7-73A8-4EFC-8123-EDA4E09AEC9B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD3674D7-BC8F-4724-A378-92DDF7BDD848} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [829544 2021-07-02] (A-Volute SAS -> Nahimic)
Task: {DE88E867-09F7-4309-AF13-4C36429B9116} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFC20894-BB40-40BD-A051-BF19AEBB07A8} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142232 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {F27DA7EF-32BE-4FB9-8233-DF7BE6DC6A65} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142232 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.32.229
Tcpip\..\Interfaces\{21fed8c5-bc97-4c92-b0a5-20d7bcd55c64}: [DhcpNameServer] 172.16.50.12 172.16.50.14
Tcpip\..\Interfaces\{6d0d4667-4b30-409f-8407-f83abdfd9393}: [DhcpNameServer] 192.168.32.229
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-09]
Edge Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-10-13]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKU\S-1-5-21-4149167960-3854231584-910161377-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-08-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-08-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default [2022-09-13]
CHR DownloadDir: D:\Téléchargements
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-31]
CHR Extension: (Google Docs hors connexion) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-26]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2022-09-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-17]
CHR Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-07-17]
CHR Extension: (Appel Skype) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\poghlonenmjdkfghdpfomojhhfggildk [2021-07-17]
CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-13]
CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-09-13]
CHR Notifications: Profile 1 -> hxxps://drive.google.com; hxxps://mail.google.com
CHR NewTab: Profile 1 -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR Extension: (Ecosia) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2022-09-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-02]
CHR Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-09-02]
CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-13]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM\...\Chrome\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd] - hxxps://chrome.google.com/webstore/detail/pkfabndaepgjlmdjjokdnknhkpgccdfd
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd] - hxxps://chrome.google.com/webstore/detail/pkfabndaepgjlmdjjokdnknhkpgccdfd
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AVP20.0; C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12126112 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
R2 FMAPOService; C:\Windows\System32\FMService64.exe [381312 2020-08-25] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HiviewService; C:\Program Files\Huawei\Hiview\HiviewService.exe [3915976 2022-02-08] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 HMSCoreService; C:\Program Files\Huawei\HMS Core\HMSCoreService.exe [176712 2022-06-29] (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.)
R2 HwPCCoreService; C:\Program Files\Huawei\BasicService\BasicService.exe [610504 2022-02-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 HW_OSDServer; C:\Windows\system32\RPC\OSD\osdservice.exe [252168 2020-11-16] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LCD_Service; C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe [38600 2022-02-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 MBAMainService; C:\Program Files\Huawei\PCManager\MateBookService.exe [572616 2022-02-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-09-12] (Malwarebytes Inc. -> Malwarebytes)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1675384 2021-07-02] (A-Volute SAS -> Nahimic)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WUCSProxy; C:\Program Files\HuaWei\wucs\WUCSProxyService.exe [7016008 2022-06-29] (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [79768 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [145504 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [37816 2020-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [251800 2021-07-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [703056 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1586112 2022-08-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [189032 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [998808 2021-07-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [79760 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [382312 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [360008 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [190048 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [270688 2022-09-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [211048 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [233368 2021-07-17] (Kaspersky Lab -> AO Kaspersky Lab)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-09-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-09-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 SpbNfcDriver; C:\Windows\System32\drivers\SpbNfcDriver.sys [45016 2020-10-20] (Huaqin Telecom Technology Co.,LTD -> Huaqin Telecom Technology Co.,LTD)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 virtbus; C:\Windows\System32\drivers\virtbus.sys [35480 2022-02-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WDTDrv; C:\Windows\System32\Drivers\WDTDrv.sys [49640 2020-06-01] (Huaqin Telecom Technology Co.,LTD -> )
R2 WUCS; C:\Windows\system32\drivers\WUCSDriver.sys [993728 2022-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Device Co., Ltd.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-13 08:09 - 2022-09-13 08:09 - 000023278 _____ C:\Users\marin\Desktop\FRST.txt
2022-09-13 08:08 - 2022-09-13 08:05 - 002371072 _____ (Farbar) C:\Users\marin\Desktop\FRST64.exe
2022-09-13 08:07 - 2022-09-13 08:09 - 000000000 ____D C:\FRST
2022-09-12 20:29 - 2022-09-12 20:29 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-09-12 20:29 - 2022-09-12 20:29 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-09-12 20:29 - 2022-09-12 20:29 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-09-12 20:29 - 2022-09-12 20:29 - 000000000 ____D C:\Users\marin\AppData\Local\mbam
2022-09-12 20:29 - 2022-09-12 20:28 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2022-09-12 20:29 - 2022-09-12 20:27 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2022-09-12 20:26 - 2022-09-12 20:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-09-12 20:25 - 2022-09-12 20:26 - 000000000 ____D C:\Program Files\Malwarebytes
2022-09-09 15:15 - 2022-09-09 15:15 - 000000000 ____D C:\Users\marin\AppData\Roaming\com.huawei.cloud.hwid
2022-09-09 15:12 - 2022-09-09 15:12 - 000000000 ____D C:\Users\marin\AppData\Local\Epic Games
2022-09-09 15:12 - 2022-09-09 15:12 - 000000000 ____D C:\Program Files (x86)\Epic Games
2022-09-08 11:00 - 2022-09-08 11:00 - 000360008 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys
2022-09-08 10:59 - 2022-09-12 20:55 - 000270688 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys
2022-09-08 10:59 - 2022-09-08 10:59 - 000382312 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys
2022-09-08 10:59 - 2022-09-08 10:59 - 000190048 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys
2022-09-03 17:50 - 2022-09-03 17:50 - 000001094 _____ C:\Users\Public\Desktop\Les Sims 4.lnk
2022-09-03 17:32 - 2022-09-03 17:41 - 000000000 ____D C:\Users\marin\AppData\Roaming\molotov
2022-09-03 17:32 - 2022-09-03 17:32 - 000002332 _____ C:\Users\marin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov.lnk
2022-09-03 17:32 - 2022-09-03 17:32 - 000002324 _____ C:\Users\marin\Desktop\Molotov.lnk
2022-09-03 17:32 - 2022-09-03 17:32 - 000000000 ____D C:\Users\marin\AppData\Local\molotov-updater
2022-08-27 14:35 - 2022-08-27 14:35 - 000000000 ____D C:\Users\marin\AppData\Roaming\Huawei
2022-08-25 12:13 - 2022-08-25 12:13 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-25 12:13 - 2022-08-25 12:13 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-25 12:13 - 2022-08-25 12:13 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-08-25 12:13 - 2022-08-25 12:13 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-25 12:13 - 2022-08-25 12:13 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-25 12:13 - 2022-08-25 12:13 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-25 12:13 - 2022-08-25 12:13 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-08-25 12:13 - 2022-08-25 12:13 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-08-25 12:09 - 2022-08-25 12:09 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-13 08:07 - 2021-07-17 12:49 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-09-13 08:02 - 2021-07-26 15:54 - 000000000 ____D C:\Users\marin\AppData\Roaming\discord
2022-09-13 08:02 - 2021-07-17 16:46 - 000000000 ____D C:\Users\marin\AppData\Roaming\Origin
2022-09-13 08:02 - 2021-07-17 16:46 - 000000000 ____D C:\ProgramData\Origin
2022-09-13 08:02 - 2021-07-17 12:07 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-13 08:01 - 2021-07-17 12:34 - 000000000 ____D C:\Users\marin\AppData\Roaming\PCManager
2022-09-13 08:01 - 2021-03-24 01:18 - 000000000 ___RD C:\Users\marin\OneDrive
2022-09-13 08:01 - 2021-03-24 00:27 - 000000000 ____D C:\ProgramData\Goodix
2022-09-13 08:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-12 21:50 - 2021-03-24 00:25 - 001770910 _____ C:\Windows\system32\PerfStringBackup.INI
2022-09-12 21:50 - 2021-01-22 05:23 - 000793016 _____ C:\Windows\system32\perfh00C.dat
2022-09-12 21:50 - 2021-01-22 05:23 - 000150146 _____ C:\Windows\system32\perfc00C.dat
2022-09-12 21:50 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-09-12 21:44 - 2021-07-26 15:54 - 000000000 ____D C:\Users\marin\AppData\Local\Discord
2022-09-12 21:44 - 2021-07-17 16:46 - 000000000 ____D C:\Users\marin\AppData\Local\Origin
2022-09-12 21:43 - 2021-03-24 01:17 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32
2022-09-12 21:43 - 2021-03-24 01:17 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64
2022-09-12 21:43 - 2021-03-24 00:19 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-12 21:43 - 2020-11-19 09:30 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-09-12 21:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2022-09-12 21:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2022-09-12 21:43 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-09-12 20:29 - 2021-03-24 01:16 - 000000000 ____D C:\Users\marin\AppData\Local\D3DSCache
2022-09-12 20:29 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-09-12 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-09-12 19:44 - 2021-03-24 01:16 - 000000000 ____D C:\Users\marin\AppData\Local\Packages
2022-09-12 18:39 - 2020-11-19 09:30 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-09-11 17:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-11 11:15 - 2021-07-18 13:08 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-09-11 11:09 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2022-09-10 18:48 - 2021-03-24 00:37 - 000000000 ____D C:\Program Files\Microsoft Office
2022-09-10 18:42 - 2020-11-19 09:32 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-10 18:42 - 2020-11-19 09:32 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-09 17:32 - 2021-07-17 17:41 - 000000000 ____D C:\Users\marin\OneDrive\Documents\Ecole BTS - papier
2022-09-09 15:12 - 2021-07-17 17:02 - 000000000 ____D C:\ProgramData\Epic
2022-09-09 00:54 - 2021-07-17 12:34 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-09 00:54 - 2021-07-17 12:34 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-08-31 21:48 - 2021-07-17 12:07 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-31 21:48 - 2021-07-17 12:07 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-31 21:45 - 2021-12-11 19:56 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4149167960-3854231584-910161377-1001
2022-08-31 21:45 - 2021-03-24 01:18 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4149167960-3854231584-910161377-1001
2022-08-31 21:45 - 2021-03-24 01:12 - 000002424 _____ C:\Users\marin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-26 02:00 - 2021-03-24 00:29 - 000000000 ____D C:\ProgramData\A-Volute
2022-08-26 02:00 - 2020-11-19 09:30 - 000679000 _____ C:\Windows\system32\FNTCACHE.DAT
2022-08-26 02:00 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-08-25 12:15 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-08-25 12:13 - 2020-11-19 09:32 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-08-25 12:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2022-08-25 12:05 - 2021-07-19 14:14 - 000000000 ____D C:\Windows\system32\MRT
2022-08-25 12:04 - 2021-07-19 14:14 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-08-24 20:18 - 2020-11-19 09:32 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-24 20:18 - 2020-11-19 09:32 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par marin (administrateur) sur LAPTOP-3GGMGU51 (HUAWEI HVY-WXX9) (13-09-2022 08:09:28)
Exécuté depuis C:\Users\marin\Desktop
Profils chargés: marin
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avpui.exe
(C:\Program Files\Huawei\HMS Core\HMSCoreService.exe ->) (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\Program Files\Huawei\HMS Core\HMSCoreContainer.exe
(C:\Program Files\Huawei\PCManager\MateBookService.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\HwMdcCenter.exe
(C:\Program Files\Huawei\PCManager\MateBookService.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe
(C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\DFSSearchService.exe
(C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MessageCenterUI.exe
(D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(DriverStore\FileRepository\u0360749.inf_amd64_0a6824eb708f1c4e\B360602\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360749.inf_amd64_0a6824eb708f1c4e\B360602\atieclxx.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(RPC\OSD\osdservice.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\Huawei OSD\OSD_Daemon.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360749.inf_amd64_0a6824eb708f1c4e\B360602\atiesrxx.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) D:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\BasicService\BasicService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\Hiview\HiviewService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MateBookService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Windows\System32\RPC\OSD\osdservice.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\Program Files\Huawei\HMS Core\HMSCoreService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\Program Files\Huawei\wucs\WUCSProxyService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_8dcb9e12bf961616\Intel_PIE_Service.exe
(services.exe ->) (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Goodix) C:\Windows\System32\drivers\SessionService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d496569dc57f6c24\RtkAudUService64.exe <3>
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(svchost.exe ->) (A-Volute) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.9.10.0_x64__w2gh52qy24etm\Nahimic3.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marin\AppData\Local\Microsoft\OneDrive\22.166.0807.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marin\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d496569dc57f6c24\RtkAudUService64.exe [1182448 2020-10-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4149167960-3854231584-910161377-1001\...\Run: [Steam] => "D:\Program Files (x86)\steam.exe" -silent (Pas de fichier)
HKU\S-1-5-21-4149167960-3854231584-910161377-1001\...\Run: [EADM] => D:\Program Files (x86)\Origin\Origin.exe [3149616 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-4149167960-3854231584-910161377-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32681424 2022-09-12] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-4149167960-3854231584-910161377-1001\...\Run: [Discord] => C:\Users\marin\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-09] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {193C6459-7316-4AFD-BD75-A8241E7267CC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64408 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {347484CB-1F36-4E2A-B603-4F948CC9649A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154520 2021-07-17] (Google LLC -> Google LLC)
Task: {4B03EB2B-3A26-4ED2-8A88-41BD7F6D1F7F} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1088616 2021-07-02] (A-Volute SAS -> Nahimic)
Task: {4E2E6F5F-2EDB-4FD5-AF1D-25646DEC3126} - System32\Tasks\AMD RELAUNCHER => C:\AMD\Radeon-Software-Adrenalin-2020-22.1.2-Win10-Win11-64Bit-Jan25\\Bin64\InstallManagerApp.exe [1709048 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {64B28D4F-C7A0-4C9C-AEE0-160EFD07049B} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [829544 2021-07-02] (A-Volute SAS -> Nahimic)
Task: {ABD2F20D-8AB8-46AE-8102-C9AFEB607911} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154520 2021-07-17] (Google LLC -> Google LLC)
Task: {C1971B9B-23FB-4707-8B6C-618F090BA2E6} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1088616 2021-07-02] (A-Volute SAS -> Nahimic)
Task: {C45F90C7-73A8-4EFC-8123-EDA4E09AEC9B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD3674D7-BC8F-4724-A378-92DDF7BDD848} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [829544 2021-07-02] (A-Volute SAS -> Nahimic)
Task: {DE88E867-09F7-4309-AF13-4C36429B9116} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFC20894-BB40-40BD-A051-BF19AEBB07A8} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142232 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {F27DA7EF-32BE-4FB9-8233-DF7BE6DC6A65} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142232 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.32.229
Tcpip\..\Interfaces\{21fed8c5-bc97-4c92-b0a5-20d7bcd55c64}: [DhcpNameServer] 172.16.50.12 172.16.50.14
Tcpip\..\Interfaces\{6d0d4667-4b30-409f-8407-f83abdfd9393}: [DhcpNameServer] 192.168.32.229
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-09]
Edge Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-10-13]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKU\S-1-5-21-4149167960-3854231584-910161377-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-08-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-08-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default [2022-09-13]
CHR DownloadDir: D:\Téléchargements
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-31]
CHR Extension: (Google Docs hors connexion) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-26]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2022-09-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-17]
CHR Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-07-17]
CHR Extension: (Appel Skype) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\poghlonenmjdkfghdpfomojhhfggildk [2021-07-17]
CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-13]
CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-09-13]
CHR Notifications: Profile 1 -> hxxps://drive.google.com; hxxps://mail.google.com
CHR NewTab: Profile 1 -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR Extension: (Ecosia) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2022-09-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-02]
CHR Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-09-02]
CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-13]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM\...\Chrome\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd] - hxxps://chrome.google.com/webstore/detail/pkfabndaepgjlmdjjokdnknhkpgccdfd
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd] - hxxps://chrome.google.com/webstore/detail/pkfabndaepgjlmdjjokdnknhkpgccdfd
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AVP20.0; C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12126112 2022-09-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
R2 FMAPOService; C:\Windows\System32\FMService64.exe [381312 2020-08-25] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HiviewService; C:\Program Files\Huawei\Hiview\HiviewService.exe [3915976 2022-02-08] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 HMSCoreService; C:\Program Files\Huawei\HMS Core\HMSCoreService.exe [176712 2022-06-29] (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.)
R2 HwPCCoreService; C:\Program Files\Huawei\BasicService\BasicService.exe [610504 2022-02-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 HW_OSDServer; C:\Windows\system32\RPC\OSD\osdservice.exe [252168 2020-11-16] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LCD_Service; C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe [38600 2022-02-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 MBAMainService; C:\Program Files\Huawei\PCManager\MateBookService.exe [572616 2022-02-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-09-12] (Malwarebytes Inc. -> Malwarebytes)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1675384 2021-07-02] (A-Volute SAS -> Nahimic)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WUCSProxy; C:\Program Files\HuaWei\wucs\WUCSProxyService.exe [7016008 2022-06-29] (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [79768 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [145504 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [37816 2020-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [251800 2021-07-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [703056 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1586112 2022-08-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [189032 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [998808 2021-07-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [79760 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [382312 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [360008 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [190048 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [270688 2022-09-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [211048 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [233368 2021-07-17] (Kaspersky Lab -> AO Kaspersky Lab)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-09-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-09-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 SpbNfcDriver; C:\Windows\System32\drivers\SpbNfcDriver.sys [45016 2020-10-20] (Huaqin Telecom Technology Co.,LTD -> Huaqin Telecom Technology Co.,LTD)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 virtbus; C:\Windows\System32\drivers\virtbus.sys [35480 2022-02-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WDTDrv; C:\Windows\System32\Drivers\WDTDrv.sys [49640 2020-06-01] (Huaqin Telecom Technology Co.,LTD -> )
R2 WUCS; C:\Windows\system32\drivers\WUCSDriver.sys [993728 2022-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Device Co., Ltd.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-13 08:09 - 2022-09-13 08:09 - 000023278 _____ C:\Users\marin\Desktop\FRST.txt
2022-09-13 08:08 - 2022-09-13 08:05 - 002371072 _____ (Farbar) C:\Users\marin\Desktop\FRST64.exe
2022-09-13 08:07 - 2022-09-13 08:09 - 000000000 ____D C:\FRST
2022-09-12 20:29 - 2022-09-12 20:29 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-09-12 20:29 - 2022-09-12 20:29 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-09-12 20:29 - 2022-09-12 20:29 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-09-12 20:29 - 2022-09-12 20:29 - 000000000 ____D C:\Users\marin\AppData\Local\mbam
2022-09-12 20:29 - 2022-09-12 20:28 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2022-09-12 20:29 - 2022-09-12 20:27 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2022-09-12 20:26 - 2022-09-12 20:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-09-12 20:25 - 2022-09-12 20:26 - 000000000 ____D C:\Program Files\Malwarebytes
2022-09-09 15:15 - 2022-09-09 15:15 - 000000000 ____D C:\Users\marin\AppData\Roaming\com.huawei.cloud.hwid
2022-09-09 15:12 - 2022-09-09 15:12 - 000000000 ____D C:\Users\marin\AppData\Local\Epic Games
2022-09-09 15:12 - 2022-09-09 15:12 - 000000000 ____D C:\Program Files (x86)\Epic Games
2022-09-08 11:00 - 2022-09-08 11:00 - 000360008 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys
2022-09-08 10:59 - 2022-09-12 20:55 - 000270688 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys
2022-09-08 10:59 - 2022-09-08 10:59 - 000382312 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys
2022-09-08 10:59 - 2022-09-08 10:59 - 000190048 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys
2022-09-03 17:50 - 2022-09-03 17:50 - 000001094 _____ C:\Users\Public\Desktop\Les Sims 4.lnk
2022-09-03 17:32 - 2022-09-03 17:41 - 000000000 ____D C:\Users\marin\AppData\Roaming\molotov
2022-09-03 17:32 - 2022-09-03 17:32 - 000002332 _____ C:\Users\marin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov.lnk
2022-09-03 17:32 - 2022-09-03 17:32 - 000002324 _____ C:\Users\marin\Desktop\Molotov.lnk
2022-09-03 17:32 - 2022-09-03 17:32 - 000000000 ____D C:\Users\marin\AppData\Local\molotov-updater
2022-08-27 14:35 - 2022-08-27 14:35 - 000000000 ____D C:\Users\marin\AppData\Roaming\Huawei
2022-08-25 12:13 - 2022-08-25 12:13 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-25 12:13 - 2022-08-25 12:13 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-25 12:13 - 2022-08-25 12:13 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-08-25 12:13 - 2022-08-25 12:13 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-25 12:13 - 2022-08-25 12:13 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-25 12:13 - 2022-08-25 12:13 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-25 12:13 - 2022-08-25 12:13 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-08-25 12:13 - 2022-08-25 12:13 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-08-25 12:09 - 2022-08-25 12:09 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-13 08:07 - 2021-07-17 12:49 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-09-13 08:02 - 2021-07-26 15:54 - 000000000 ____D C:\Users\marin\AppData\Roaming\discord
2022-09-13 08:02 - 2021-07-17 16:46 - 000000000 ____D C:\Users\marin\AppData\Roaming\Origin
2022-09-13 08:02 - 2021-07-17 16:46 - 000000000 ____D C:\ProgramData\Origin
2022-09-13 08:02 - 2021-07-17 12:07 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-13 08:01 - 2021-07-17 12:34 - 000000000 ____D C:\Users\marin\AppData\Roaming\PCManager
2022-09-13 08:01 - 2021-03-24 01:18 - 000000000 ___RD C:\Users\marin\OneDrive
2022-09-13 08:01 - 2021-03-24 00:27 - 000000000 ____D C:\ProgramData\Goodix
2022-09-13 08:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-12 21:50 - 2021-03-24 00:25 - 001770910 _____ C:\Windows\system32\PerfStringBackup.INI
2022-09-12 21:50 - 2021-01-22 05:23 - 000793016 _____ C:\Windows\system32\perfh00C.dat
2022-09-12 21:50 - 2021-01-22 05:23 - 000150146 _____ C:\Windows\system32\perfc00C.dat
2022-09-12 21:50 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-09-12 21:44 - 2021-07-26 15:54 - 000000000 ____D C:\Users\marin\AppData\Local\Discord
2022-09-12 21:44 - 2021-07-17 16:46 - 000000000 ____D C:\Users\marin\AppData\Local\Origin
2022-09-12 21:43 - 2021-03-24 01:17 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32
2022-09-12 21:43 - 2021-03-24 01:17 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64
2022-09-12 21:43 - 2021-03-24 00:19 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-12 21:43 - 2020-11-19 09:30 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-09-12 21:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2022-09-12 21:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2022-09-12 21:43 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-09-12 20:29 - 2021-03-24 01:16 - 000000000 ____D C:\Users\marin\AppData\Local\D3DSCache
2022-09-12 20:29 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-09-12 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-09-12 19:44 - 2021-03-24 01:16 - 000000000 ____D C:\Users\marin\AppData\Local\Packages
2022-09-12 18:39 - 2020-11-19 09:30 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-09-11 17:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-11 11:15 - 2021-07-18 13:08 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-09-11 11:09 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2022-09-10 18:48 - 2021-03-24 00:37 - 000000000 ____D C:\Program Files\Microsoft Office
2022-09-10 18:42 - 2020-11-19 09:32 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-10 18:42 - 2020-11-19 09:32 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-09 17:32 - 2021-07-17 17:41 - 000000000 ____D C:\Users\marin\OneDrive\Documents\Ecole BTS - papier
2022-09-09 15:12 - 2021-07-17 17:02 - 000000000 ____D C:\ProgramData\Epic
2022-09-09 00:54 - 2021-07-17 12:34 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-09 00:54 - 2021-07-17 12:34 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-08-31 21:48 - 2021-07-17 12:07 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-31 21:48 - 2021-07-17 12:07 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-31 21:45 - 2021-12-11 19:56 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4149167960-3854231584-910161377-1001
2022-08-31 21:45 - 2021-03-24 01:18 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4149167960-3854231584-910161377-1001
2022-08-31 21:45 - 2021-03-24 01:12 - 000002424 _____ C:\Users\marin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-26 02:00 - 2021-03-24 00:29 - 000000000 ____D C:\ProgramData\A-Volute
2022-08-26 02:00 - 2020-11-19 09:30 - 000679000 _____ C:\Windows\system32\FNTCACHE.DAT
2022-08-26 02:00 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-08-26 02:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-08-25 12:15 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-08-25 12:13 - 2020-11-19 09:32 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-08-25 12:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2022-08-25 12:05 - 2021-07-19 14:14 - 000000000 ____D C:\Windows\system32\MRT
2022-08-25 12:04 - 2021-07-19 14:14 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-08-24 20:18 - 2020-11-19 09:32 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-24 20:18 - 2020-11-19 09:32 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================