cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-12-2022
Exécuté par lecai (administrateur) sur DESKTOP-LTFK1EE (Gigabyte Technology Co., Ltd. B450M DS3H) (13-12-2022 23:58:19)
Exécuté depuis C:\Users\lecai\Downloads
Profils chargés: lecai
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.2251 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <3>
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.212.1.5\OverwolfHelper.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.212.1.5\OverwolfHelper64.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.212.1.5\OverwolfBrowser.exe <3>
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Users\lecai\AppData\Local\Overwolf\ProcessCache\0.212.1.5\cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj\curseforge.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(C:\Users\lecai\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\lecai\AppData\Local\Programs\Opera GX\93.0.4585.52\opera_crashreporter.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(D:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe ->) (Skutta, Kristjan -> ) D:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe
(Discord Inc. -> Discord Inc.) C:\Users\lecai\AppData\Local\Discord\app-1.0.9008\Discord.exe <6>
(DriverStore\FileRepository\u0384804.inf_amd64_41ca4ca6939f5e56\B384763\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0384804.inf_amd64_41ca4ca6939f5e56\B384763\atieclxx.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(explorer.exe ->) (The NW.js Community) [Fichier non signé] C:\Users\lecai\AppData\Roaming\streamlink-twitch-gui\streamlink-twitch-gui.exe <7>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Opera Norway AS -> Opera Software) C:\Users\lecai\AppData\Local\Programs\Opera GX\opera.exe <31>
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0384804.inf_amd64_41ca4ca6939f5e56\B384763\atiesrxx.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Skutta, Kristjan -> ) D:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_22210.1401.10.0_x64__8wekyb3d8bbwe\WinStore.DesktopExtension\StoreDesktopExtension.exe
(svchost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.549981c3f5f10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.18.2691.0_x64__8wekyb3d8bbwe\WindowsPackageManagerServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2212.1001.36.0_x64__8wekyb3d8bbwe\XboxAppServices.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2212.1001.36.0_x64__8wekyb3d8bbwe\XboxPcApp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_22210.1401.10.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.214.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fodhelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2180_none_7e328fe47c714aab\TiWorker.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626448 2022-12-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [Discord] => C:\Users\lecai\AppData\Local\Discord\Update.exe [1522176 2022-06-08] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [Opera GX Stable] => C:\Users\lecai\AppData\Local\Programs\Opera GX\launcher.exe [2566600 2022-12-06] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4245352 2022-12-01] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [AMDNoiseSuppression] => "C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe" (Pas de fichier)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\lecai\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802584 2022-12-01] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32754128 2022-12-12] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [streamlink-twitch-gui] => C:\Users\lecai\AppData\Roaming\streamlink-twitch-gui\streamlink-twitch-gui.exe [2081280 2022-07-26] (The NW.js Community) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1220070019-212098726-2094985667-1001\...\Run: [Entertainment] => C:\Users\lecai\AppData\Roaming\Entertainment\Entertainment.exe --RLrS8 (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\108.0.5359.99\Installer\chrmstp.exe [2022-12-09] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0D406A8C-C42B-4C78-B3B1-46F9543DB813} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291808 2022-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {2BFF6D0A-547E-4340-A5BC-0FB5F1FF1DAF} - System32\Tasks\Opera scheduled Autoupdate 1660005028 => C:\Users\lecai\AppData\Local\Programs\Opera\launcher.exe [2631112 2022-12-01] (Opera Norway AS -> Opera Software)
Task: {2D4B302C-375C-4951-92FF-53BAA6A83E33} - System32\Tasks\Opera GX scheduled Autoupdate 1659049514 => C:\Users\lecai\AppData\Local\Programs\Opera GX\launcher.exe [2566600 2022-12-06] (Opera Norway AS -> Opera Software)
Task: {32A3E64D-0554-47B1-95D0-E24C874C33BE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1220070019-212098726-2094985667-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189072 2022-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {47EC8A57-8CCA-4460-B423-0A5C930C51BD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5CFB29C2-9082-42F1-BC46-A089289C9D07} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954848 2022-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {6A959418-8553-4935-9640-0F553BAD1CFF} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56800 2022-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {720A2725-4382-48D8-B4D7-CC7A5BD88AF8} - System32\Tasks\chrome policy => cmd /c powershell -WindowStyle Hidden -E "CgAKACQAQQBzAGMAXwBFAG4AYwBTAHQAcgA9AFsAUwB5AHMAdABlAG0ALgBUAGUAeAB0AC4ARQBuAGMAbwBkAGkAbgBnAF0AOgA6AEEAUwBDAEkASQA7AAoAJABSAFYAXwBsAGQAIAA9ACAAIgAyADcAIgA7AAoACgAKACQAbgBqAF8AdgBhAHIAMQA9ACQAbgB1AGwAbAA7AAoAJAB2ADIAXwBQAFIATQAgAD0AIAAiAFcAeQBJADQATQBUAEkANQBOAG (l'élément de données a 5523 caractères en plus). <==== ATTENTION
Task: {79010A25-2DFC-4C16-8782-988820D65F9C} - System32\Tasks\GoogleUpdateTaskMachineCore{C06B2330-B83D-4FA6-8562-AF5E3E443007} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-28] (Google LLC -> Google LLC)
Task: {7D1E6FBD-C879-48CD-8F90-F1B0DFDF31B2} - System32\Tasks\GoogleUpdateTaskMachineUA{5DDF95C9-348A-4AE5-8B9C-15D55B2522D1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-28] (Google LLC -> Google LLC)
Task: {83E27901-4834-48D6-890B-B7C9D7A78819} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954848 2022-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8764100D-E6F3-4E08-9408-54329B65B9E0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {926F4D74-DC7C-403C-8A30-58C34A69B7AB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A30B9570-C631-4E49-9CB6-A018426E255D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56800 2022-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {B1B5BF47-1B93-4A49-AEF2-A9FE3DAD3F19} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1660915433 => C:\Users\lecai\AppData\Local\Programs\Opera GX\launcher.exe [2566600 2022-12-06] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\lecai\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {BC7975D0-5A1D-45E8-BA20-00CF496CBB0B} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [679392 2022-07-25] (Advanced Micro Devices Inc. -> AMD)
Task: {BD3AE379-6A4A-4D04-9646-69349B9C834D} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [183264 2022-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {D1749BC3-9245-47E9-9000-0E4496D4F5A2} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189072 2022-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E594778F-7D65-432C-9FD1-3AFB28338670} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2576728 2022-12-01] (Overwolf Ltd -> Overwolf LTD)
Task: {FC013456-7993-44A7-B857-A6DC98B319EF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{403bdc1f-2a3c-4c4f-a090-49e59a3dfafd}: [DhcpNameServer] 192.168.42.129

Edge:
=======
Edge Profile: C:\Users\lecai\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-09]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Default [2022-12-13]
CHR Notifications: Default -> hxxps://repack-games.com; hxxps://www.youtube.com
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-12-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-02]
CHR Extension: (Project Naptha) - C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Default\Extensions\molncoemjfmpgdkbdlbjmhlcgniigdnf [2022-07-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-28]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2022-11-04]
CHR Extension: (Mouse) - C:\Users\lecai\AppData\Local\chrome_data [2022-10-14]
CHR Profile: C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-12-03]
CHR Profile: C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-12-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\lecai\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-30]
CHR Profile: C:\Users\lecai\AppData\Local\Google\Chrome\User Data\System Profile [2022-12-03]

Opera:
=======
OPR Profile: C:\Users\lecai\AppData\Roaming\Opera Software\Opera Stable [2022-12-13]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\lecai\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-11-03]
OPR Extension: (Opera Wallet) - C:\Users\lecai\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-12-02]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\lecai\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-08-09]
StartMenuInternet: (HKU\S-1-5-21-1220070019-212098726-2094985667-1001) Opera GXStable - "C:\Users\lecai\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [509920 ] (Advanced Micro Devices Inc. -> AMD)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-09-18] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-08-19] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-08-17] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
S3 EQU8_36; C:\ProgramData\EQU8\Splitgate\bin\anticheat.x64.equ8.exe [8344720 2022-11-06] (Int3 Software AB -> Int3 Software AB)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncHelper.exe [3478928 2022-12-09] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.238.1114.0002\OneDriveUpdaterService.exe [3845008 2022-12-09] (Microsoft Corporation -> Microsoft Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2576728 2022-12-01] (Overwolf Ltd -> Overwolf LTD)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224216 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wallpaper Engine Service; D:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [131792 2022-07-29] (Skutta, Kristjan -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 Macro Expert; d:\mouse recorder\MacroService.exe [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [35360 2022-06-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [27256 2022-01-27] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [43336 2022-07-25] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_66a9fa5d80327844\amdsafd.sys [113080 2022-06-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0384804.inf_amd64_41ca4ca6939f5e56\B384763\amdkmdag.sys [94459216 2022-10-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\Windows\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-11-14] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-11-14] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSet; C:\Windows\System32\drivers\hw_quusbmdm.sys [226560 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\Windows\System32\drivers\hw_cdcacm.sys [127360 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\Windows\System32\drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 steamxbox; C:\Windows\System32\drivers\steamxbox.sys [275648 2022-11-07] (Valve Corp. -> Valve Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 equ8_helper; \??\C:\Windows\system32\DRIVERS\equ8_helper.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-12-13 23:56 - 2022-12-13 23:58 - 000050754 _____ C:\Users\lecai\Downloads\Addition.txt
2022-12-13 23:52 - 2022-12-13 23:58 - 000024941 _____ C:\Users\lecai\Downloads\FRST.txt
2022-12-13 23:52 - 2022-12-13 23:58 - 000000000 ____D C:\FRST
2022-12-13 23:52 - 2022-12-13 23:52 - 000000000 ____D C:\Users\lecai\Downloads\FRST-OlderVersion
2022-12-13 23:44 - 2022-12-13 23:52 - 002375680 _____ (Farbar) C:\Users\lecai\Downloads\FRST64-2.1.exe
2022-12-13 23:37 - 2022-12-13 23:37 - 000000000 ____D C:\Users\lecai\AppData\Local\Oregon
2022-12-13 19:53 - 2022-12-13 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2022-12-13 19:53 - 2022-12-13 19:55 - 000000000 ____D C:\Users\lecai\AppData\Local\Riot Games
2022-12-13 19:53 - 2022-12-13 19:55 - 000000000 ____D C:\ProgramData\Riot Games
2022-12-13 19:53 - 2022-12-13 19:53 - 000000000 ____D C:\Users\lecai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2022-12-12 03:18 - 2022-12-12 03:23 - 1126218113 _____ C:\Users\lecai\Downloads\LittleMan-0.25-pc.zip
2022-12-12 03:12 - 2022-12-12 03:16 - 647737709 _____ C:\Users\lecai\Downloads\JumpHarem-0.30-pc.zip
2022-12-12 03:10 - 2022-12-12 03:12 - 372368254 _____ C:\Users\lecai\Downloads\(v0.1.26) HoleHouse [WIndows].zip
2022-12-11 23:16 - 2022-12-11 23:16 - 002222368 _____ C:\Users\lecai\Downloads\Snowsgiving_Gift_Dec_11_xirgeCEl0a.zip
2022-12-08 00:22 - 2022-12-08 00:22 - 000000000 ____D C:\Users\lecai\AppData\Roaming\Warner Bros. Interactive Entertainment
2022-12-07 19:42 - 2022-12-07 19:42 - 000000000 ____D C:\Users\lecai\AppData\LocalLow\FerisLycan
2022-12-07 01:07 - 2022-12-07 01:07 - 000043326 _____ C:\Users\lecai\Downloads\HU Wed Dec 07 2022 01_07_15.noodle
2022-12-04 14:16 - 2022-12-05 16:31 - 000000000 ____D C:\Users\lecai\AppData\Roaming\EastwardGDK
2022-12-03 23:43 - 2022-12-03 23:43 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2022-12-03 14:00 - 2022-12-03 14:00 - 000000000 ____D C:\Users\lecai\AppData\LocalLow\We're Five Games
2022-12-02 14:23 - 2022-12-02 14:23 - 000000000 ____D C:\ProgramData\Propagation
2022-11-25 20:42 - 2022-11-25 20:42 - 000000000 ____D C:\Users\lecai\AppData\Local\Goat2
2022-11-25 19:45 - 2022-11-25 19:45 - 000007605 _____ C:\Users\lecai\AppData\Local\Resmon.ResmonCfg
2022-11-20 02:12 - 2022-11-20 02:32 - 000000000 ____D C:\Users\lecai\AppData\Roaming\tyranogame
2022-11-20 02:09 - 2022-11-20 02:10 - 116616775 _____ C:\Users\lecai\Downloads\lovecraft_locker_demo_windows.zip
2022-11-19 01:24 - 2022-11-19 01:24 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-11-19 01:24 - 2022-11-19 01:24 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2022-11-17 21:27 - 2022-11-17 21:27 - 000015134 _____ C:\Windows\system32\Tasks\chrome policy
2022-11-17 18:03 - 2022-11-17 18:03 - 000000000 ____D C:\Users\lecai\AppData\LocalLow\Unity
2022-11-17 17:50 - 2022-11-17 17:50 - 000000000 ____D C:\Users\lecai\AppData\Roaming\Obsidian Tools
2022-11-17 17:50 - 2022-11-17 17:50 - 000000000 ____D C:\Users\lecai\AppData\LocalLow\Obsidian Entertainment
2022-11-13 01:36 - 2022-11-13 01:36 - 000000000 ____D C:\Users\lecai\AppData\LocalLow\SpikeChunsoft
2022-11-13 01:07 - 2022-11-13 01:07 - 000000000 ____D C:\Users\lecai\AppData\LocalLow\Landfall Games

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-12-13 23:58 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-12-13 23:50 - 2022-07-29 00:13 - 000000000 ____D C:\Program Files (x86)\Steam
2022-12-13 23:42 - 2022-07-28 23:54 - 000000000 ____D C:\Users\lecai\AppData\Local\Packages
2022-12-13 23:42 - 2022-07-28 23:54 - 000000000 ____D C:\ProgramData\Packages
2022-12-13 23:42 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-12-13 23:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-12-13 23:37 - 2022-07-28 23:54 - 000000000 ____D C:\Users\lecai\AppData\Local\D3DSCache
2022-12-13 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-12-13 23:28 - 2022-07-29 00:02 - 000000000 ____D C:\Users\lecai\AppData\Roaming\discord
2022-12-13 23:26 - 2022-07-29 00:02 - 000000000 ____D C:\Users\lecai\AppData\Local\Discord
2022-12-13 23:13 - 2022-07-28 23:40 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-12-13 23:09 - 2022-07-28 23:57 - 000000000 ____D C:\Program Files (x86)\Google
2022-12-13 19:41 - 2022-08-22 22:31 - 000000000 ____D C:\Users\lecai\AppData\Local\Warframe
2022-12-13 16:25 - 2022-08-21 13:48 - 000000000 ____D C:\Users\lecai\AppData\Local\Overwolf
2022-12-13 16:25 - 2022-07-28 23:55 - 000000000 ___RD C:\Users\lecai\OneDrive
2022-12-12 23:37 - 2022-08-09 20:06 - 000000000 ____D C:\Users\lecai\AppData\Roaming\RenPy
2022-12-11 15:43 - 2022-08-09 12:38 - 000000000 ____D C:\Users\lecai\AppData\Local\AMD_Common
2022-12-11 01:31 - 2022-08-08 22:42 - 000000000 ____D C:\Users\lecai\BrawlhallaReplays
2022-12-10 14:34 - 2022-07-28 23:40 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-12-10 14:32 - 2022-08-26 19:02 - 000000000 ____D C:\Users\lecai\AppData\Local\EpicGamesLauncher
2022-12-09 17:25 - 2022-07-29 00:05 - 000004244 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1659049514
2022-12-09 17:25 - 2022-07-29 00:05 - 000001434 _____ C:\Users\lecai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2022-12-09 17:25 - 2022-07-28 23:40 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-12-09 17:24 - 2022-08-09 00:47 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-12-09 17:24 - 2022-07-29 00:22 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-12-09 17:24 - 2022-07-29 00:22 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-12-09 17:24 - 2022-07-28 23:58 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-12-09 17:24 - 2022-07-28 23:56 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1220070019-212098726-2094985667-1001
2022-12-07 23:23 - 2022-08-20 14:13 - 000000000 ___SH C:\Users\Public\Shared Files
2022-12-07 17:04 - 2022-08-21 13:49 - 000000000 ____D C:\Program Files (x86)\Overwolf
2022-12-03 23:40 - 2022-07-29 00:18 - 000000000 ____D C:\Users\lecai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-12-03 20:15 - 2022-07-28 23:47 - 001770906 _____ C:\Windows\system32\PerfStringBackup.INI
2022-12-03 20:15 - 2019-12-07 15:50 - 000791718 _____ C:\Windows\system32\perfh00C.dat
2022-12-03 20:15 - 2019-12-07 15:50 - 000149884 _____ C:\Windows\system32\perfc00C.dat
2022-12-03 20:08 - 2022-07-28 23:40 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2022-12-03 20:08 - 2022-07-28 23:40 - 000008192 ___SH C:\DumpStack.log.tmp
2022-12-03 20:08 - 2022-07-28 23:40 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-12-03 20:08 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-12-03 20:08 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-12-03 16:03 - 2022-08-21 16:08 - 000000000 ____D C:\Users\lecai\AppData\Local\CrashDumps
2022-12-03 13:56 - 2022-08-09 01:30 - 000004232 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1660005028
2022-12-03 13:56 - 2022-08-09 01:30 - 000001405 _____ C:\Users\lecai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-12-02 22:24 - 2022-08-10 01:10 - 000000000 ____D C:\Users\lecai\AppData\LocalLow\DefaultCompany
2022-12-01 21:39 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2022-11-20 17:37 - 2022-08-11 23:21 - 000000000 ____D C:\ProgramData\Grasssoft
2022-11-19 01:24 - 2022-10-21 19:02 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2022-11-19 01:24 - 2022-10-21 19:02 - 000067064 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2022-11-19 01:24 - 2022-07-29 01:44 - 002815440 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2022-11-19 01:23 - 2022-07-29 01:44 - 000460240 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2022-11-19 01:23 - 2022-07-29 01:44 - 000243192 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2022-11-19 01:23 - 2022-07-29 01:44 - 000198136 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2022-11-19 01:23 - 2022-07-29 01:44 - 000165368 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2022-11-19 01:23 - 2022-07-29 01:44 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2022-11-17 21:43 - 2022-10-14 17:56 - 000000000 ____D C:\Users\lecai\AppData\Local\AlecaFrame

==================== Fichiers à la racine de certains dossiers ========

2022-09-25 12:00 - 2022-09-25 12:00 - 000006822 _____ () C:\Users\lecai\AppData\Local\2476191251
2022-11-25 19:45 - 2022-11-25 19:45 - 000007605 _____ () C:\Users\lecai\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


Publicité


Signaler le contenu de ce document

Publicité