FRST.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Exécuté par Esteban (administrateur) sur DESKTOP-LAQJRII (Micro-Star International Co., Ltd. MS-7C87) (12-10-2023 15:53:31)
Exécuté depuis C:\Users\Esteban\Desktop\FRST64 (2).exe
Profils chargés: Esteban
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3448 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.121.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <23>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe [1618320 2022-11-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [95778080 2023-10-08] (Discord Inc. -> Discord Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2876058461-16826786-690373276-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4375912 2023-09-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2876058461-16826786-690373276-1001\...\Run: [Spotify] => C:\Users\Esteban\AppData\Roaming\Spotify\Spotify.exe [28883320 2023-09-28] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2876058461-16826786-690373276-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [45891840 2023-09-20] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2876058461-16826786-690373276-1001\...\Run: [MicrosoftEdgeAutoLaunch_09B8B4A5667CBA028E70B5161D695BB3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-10-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2876058461-16826786-690373276-1001\...\MountPoints2: {1fcad73a-9aff-11eb-89ec-988d46843bc6} - "D:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.150\Installer\chrmstp.exe [2023-10-09] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {4F5061B3-75EB-4305-96F4-8ED2C394B74E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {3BDB7FE6-3787-43BD-AE27-079D621CB679} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7A720BE3-7061-4755-BCFE-B6C921DA59F7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "59b5457b-2612-4ec5-981a-951b74f87d88" --version "6.11.10455" --silent
Task: {33CD9C21-E862-418A-845D-A933C7D3C31E} - System32\Tasks\CCleanerSkipUAC - Esteban => C:\Program Files\CCleaner\CCleaner.exe [34159416 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E9C7C045-2CEE-4F80-9092-222DF2E52B8B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2021-03-11] (Google LLC -> Google LLC)
Task: {4D0DFB19-CA7C-4E99-87CB-3B4C784056B9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2021-03-11] (Google LLC -> Google LLC)
Task: {14D4D8A9-40C7-45D6-AA87-DB99168C1874} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-07-03] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {AA4F3CFB-9F28-4C06-8F36-3FE619DA4445} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-07-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {069837C3-8BEC-49E8-A378-6196390DA733} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74528 2020-09-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {498305E5-2B07-4791-802F-32A290234E9B} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74528 2020-09-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {099CE663-E139-44D7-BAF0-A20028246F98} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1669128 2021-02-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {BCF9C7DF-0176-4A0A-B427-21F32A87D5F1} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [44720 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {F671961A-3330-47F8-82D1-3701E6254686} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-02-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9005A9CB-14B1-4DB8-AA0F-7E0592B0EBFC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-02-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83F6E9CB-28AC-49A1-B0FB-CB421DDFD14B} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2876058461-16826786-690373276-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.4.1
Tcpip\..\Interfaces\{2de4089b-74e3-4d23-96de-c739a92b10b2}: [DhcpNameServer] 192.168.110.1
Tcpip\..\Interfaces\{a631ad4a-2d96-4fbe-987f-1213a0cf4875}: [DhcpNameServer] 192.168.4.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Esteban\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-11]
Edge Extension: (Google Docs hors connexion) - C:\Users\Esteban\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-29]
Edge Extension: (Edge relevant text changes) - C:\Users\Esteban\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-18]

FireFox:
========
FF DefaultProfile: l49ay52y.default
FF ProfilePath: C:\Users\Esteban\AppData\Roaming\Mozilla\Firefox\Profiles\l49ay52y.default [2021-03-11]
FF ProfilePath: C:\Users\Esteban\AppData\Roaming\Mozilla\Firefox\Profiles\604tra5y.default-release [2023-09-01]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Esteban\AppData\Local\Google\Chrome\User Data\Default [2022-09-09]
CHR Notifications: Default -> hxxps://www.netflix.com
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Esteban\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-13]
CHR Profile: C:\Users\Esteban\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-09]
CHR Profile: C:\Users\Esteban\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-10-12]
CHR DefaultSearchURL: Profile 1 -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> mcafee
CHR DefaultSuggestURL: Profile 1 -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Google Docs hors connexion) - C:\Users\Esteban\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-23]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Esteban\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Esteban\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-09-09]
CHR Profile: C:\Users\Esteban\AppData\Local\Google\Chrome\User Data\System Profile [2022-11-16]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2876058461-16826786-690373276-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-04-03] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-02-18] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-05] (Epic Games Inc. -> Epic Games, Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-11] (Malwarebytes Inc. -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [874384 2023-10-07] (McAfee, LLC -> McAfee, LLC)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [131568 2021-01-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35848 2021-01-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 VoiceControlService; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32400 2020-07-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [315232 2022-06-26] (MyTestCertificate -> Oracle Corporation)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2023-06-20] (Logitech Inc -> Logitech)
S3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2023-06-20] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2023-06-20] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [222288 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-10-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [200104 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78400 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [188016 2023-10-12] (Malwarebytes Inc. -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [55856 2023-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [572712 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-10-12 15:53 - 2023-10-12 15:54 - 000020314 _____ C:\Users\Esteban\Desktop\FRST.txt
2023-10-12 15:52 - 2023-10-12 15:53 - 000000000 ____D C:\FRST
2023-10-12 15:51 - 2023-10-12 15:51 - 002383360 _____ (Farbar) C:\Users\Esteban\Desktop\FRST64 (2).exe
2023-10-12 15:42 - 2023-10-12 15:42 - 000188016 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2023-10-12 15:42 - 2023-10-12 15:42 - 000000000 ____D C:\Program Files\RUXIM
2023-10-11 20:23 - 2023-10-11 20:23 - 000001769 _____ C:\Users\Esteban\Downloads\T_auteurs.csv
2023-10-11 19:04 - 2023-10-11 22:53 - 081526784 _____ C:\Windows\system32\config\SOFTWARE
2023-10-11 14:42 - 2023-10-11 14:42 - 000007605 _____ C:\Users\Esteban\AppData\Local\Resmon.ResmonCfg
2023-10-11 13:44 - 2023-10-12 15:50 - 000000000 ____D C:\Users\Esteban\AppData\Local\Malwarebytes
2023-10-11 13:44 - 2023-10-11 13:44 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-10-11 13:44 - 2023-10-11 13:44 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-10-11 13:44 - 2023-10-11 13:44 - 000000000 ____D C:\Users\Esteban\AppData\Local\mbam
2023-10-11 13:42 - 2023-10-11 13:42 - 002606880 _____ (Malwarebytes) C:\Users\Esteban\Downloads\MBSetup.exe
2023-10-11 13:42 - 2023-10-11 13:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-10-11 13:42 - 2023-10-11 13:42 - 000000000 ____D C:\Program Files\Malwarebytes
2023-10-11 13:34 - 2023-10-11 13:34 - 000000000 ___HD C:\$WinREAgent
2023-10-10 22:06 - 2023-10-11 19:04 - 000000000 ____D C:\Windows\Microsoft Antimalware
2023-10-10 21:44 - 2023-10-10 21:44 - 002383360 _____ (Farbar) C:\Users\Esteban\Downloads\FRST64 (1).exe
2023-10-10 21:43 - 2023-10-10 21:44 - 002383360 _____ (Farbar) C:\Users\Esteban\Downloads\FRST64.exe
2023-10-10 17:44 - 2023-10-11 13:40 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2023-10-10 17:44 - 2023-10-11 13:40 - 000000000 ____D C:\Windows\pss
2023-10-10 17:38 - 2023-10-10 17:38 - 000000000 ___HD C:\$SysReset
2023-10-08 23:16 - 2023-10-08 23:16 - 000114876 _____ C:\Users\Esteban\Downloads\CV_Estéban_Thouvenin (6) (2).pdf
2023-10-08 23:16 - 2023-10-08 23:16 - 000039443 _____ C:\Users\Esteban\Downloads\Lettre motivation qualité (1).pdf
2023-10-08 23:15 - 2023-10-08 23:15 - 000039443 _____ C:\Users\Esteban\Downloads\Lettre motivation qualité.pdf
2023-10-08 23:14 - 2023-10-08 23:14 - 000040319 _____ C:\Users\Esteban\Downloads\Lettre motivation poste qualité (1).pdf
2023-10-08 23:13 - 2023-10-08 23:13 - 000114876 _____ C:\Users\Esteban\Downloads\CV_Estéban_Thouvenin (6) (1).pdf
2023-10-08 23:13 - 2023-10-08 23:13 - 000040319 _____ C:\Users\Esteban\Downloads\Lettre motivation poste qualité.pdf
2023-10-08 22:14 - 2023-10-08 22:14 - 000114876 _____ C:\Users\Esteban\Downloads\CV_Estéban_Thouvenin (6).pdf
2023-10-08 22:10 - 2023-10-10 19:24 - 000000000 ____D C:\Users\Esteban\AppData\Local\Discord
2023-10-08 19:28 - 2023-10-08 19:29 - 095778080 _____ (Discord Inc.) C:\Users\Esteban\Downloads\DiscordSetup.exe
2023-10-08 19:09 - 2023-10-08 19:09 - 000000000 ____D C:\ProgramData\SquirrelMachineInstalls
2023-10-08 18:46 - 2023-10-08 18:46 - 000165765 _____ C:\Users\Esteban\Downloads\AttestationDroits (4) (1).pdf
2023-10-08 18:46 - 2023-10-08 18:46 - 000027022 _____ C:\Users\Esteban\Downloads\Certificat_de_Scolarité_E00001_2022-2023_ESTEBAN_THOUVENIN (3) (2).pdf
2023-10-08 18:46 - 2023-10-08 18:46 - 000027022 _____ C:\Users\Esteban\Downloads\Certificat_de_Scolarité_E00001_2022-2023_ESTEBAN_THOUVENIN (3) (1).pdf
2023-10-08 18:40 - 2023-10-08 18:40 - 000165765 _____ C:\Users\Esteban\Downloads\AttestationDroits (4).pdf
2023-10-08 18:38 - 2023-10-08 18:38 - 000027022 _____ C:\Users\Esteban\Downloads\Certificat_de_Scolarité_E00001_2022-2023_ESTEBAN_THOUVENIN (3).pdf
2023-09-30 18:36 - 2023-09-30 18:36 - 000114776 _____ C:\Users\Esteban\Downloads\THOUVENIN_Estéban (1).pdf
2023-09-30 18:34 - 2023-09-30 18:34 - 000114776 _____ C:\Users\Esteban\Downloads\THOUVENIN_Estéban.pdf
2023-09-28 17:20 - 2023-09-28 17:20 - 000436506 _____ C:\Users\Esteban\Downloads\Chapitre 1 - Evaluation BABIN-TOUBA 2022 (1).pptx
2023-09-28 16:44 - 2023-09-28 16:44 - 000436506 _____ C:\Users\Esteban\Downloads\Chapitre 1 - Evaluation BABIN-TOUBA 2022.pptx
2023-09-27 19:26 - 2023-09-27 19:26 - 000677007 _____ C:\Users\Esteban\Downloads\062019_f4.pdf
2023-09-27 19:26 - 2023-09-27 19:26 - 000556275 _____ C:\Users\Esteban\Downloads\ndc-juin-2023-zone-euro.pdf
2023-09-27 19:26 - 2023-09-27 19:26 - 000187917 _____ C:\Users\Esteban\Downloads\122018_f4.pdf
2023-09-20 22:11 - 2023-09-20 22:11 - 000000000 ____D C:\Program Files\LGHUB
2023-09-19 22:18 - 2023-09-19 22:18 - 001260138 _____ C:\Users\Esteban\Downloads\indice PMI descriptif.pdf
2023-09-19 22:18 - 2023-09-19 22:18 - 000456731 _____ C:\Users\Esteban\Downloads\Lexique les mots de la conjoncture.pdf
2023-09-17 16:36 - 2023-09-17 17:15 - 158068736 _____ C:\Users\Esteban\Downloads\fr_access_2021_x86_x64_dvd_16820852.iso
2023-09-14 23:12 - 2023-09-14 23:12 - 000008598 _____ C:\Users\Esteban\Downloads\ADECal (15).ics
2023-09-14 23:09 - 2023-09-14 23:09 - 000007161 _____ C:\Users\Esteban\Downloads\ADECal (14).ics
2023-09-14 23:03 - 2023-09-14 23:03 - 000009236 _____ C:\Users\Esteban\Downloads\ADECal (13).ics
2023-09-14 23:01 - 2023-09-14 23:02 - 000017558 _____ C:\Users\Esteban\Downloads\ADECal (12).ics
2023-09-14 23:01 - 2023-09-14 23:01 - 000009641 _____ C:\Users\Esteban\Downloads\estebanthouvenin2004@gmail.com.ical.zip
2023-09-14 23:01 - 2023-09-14 23:01 - 000000968 _____ C:\Users\Esteban\Downloads\ADECal (11).ics
2023-09-14 22:59 - 2023-09-14 22:59 - 000027020 _____ C:\Users\Esteban\Downloads\Certificat_de_Scolarité_E00001_2022-2023_ESTEBAN_THOUVENIN (2).pdf
2023-09-14 22:59 - 2023-09-14 22:59 - 000020823 _____ C:\Users\Esteban\Downloads\Détails_des_Notes_ESTEBAN_THOUVENIN (2).pdf
2023-09-14 22:58 - 2023-09-14 22:58 - 000027021 _____ C:\Users\Esteban\Downloads\Certificat_de_Scolarité_E00021_2023-2024_ESTEBAN_THOUVENIN (2).pdf
2023-09-14 22:56 - 2023-09-14 22:56 - 000080828 _____ C:\Users\Esteban\Downloads\ADECal (9).ics
2023-09-14 22:56 - 2023-09-14 22:56 - 000076884 _____ C:\Users\Esteban\Downloads\ADECal (10).ics
2023-09-14 22:54 - 2023-09-14 22:54 - 000034165 _____ C:\Users\Esteban\Downloads\ADECal (8).ics
2023-09-14 22:54 - 2023-09-14 22:54 - 000034165 _____ C:\Users\Esteban\Downloads\ADECal (7).ics

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-10-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-10-12 15:44 - 2021-03-11 16:32 - 000000000 ____D C:\Program Files\CCleaner
2023-10-12 15:43 - 2021-12-24 21:14 - 000000000 ____D C:\Windows\SystemTemp
2023-10-12 15:43 - 2021-03-11 16:31 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-12 15:42 - 2021-04-03 22:19 - 000000000 ____D C:\Users\Esteban\AppData\Local\CrashDumps
2023-10-12 15:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-12 15:41 - 2021-03-11 10:49 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-12 15:41 - 2021-03-10 19:39 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-12 15:41 - 2020-11-19 01:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-10-11 22:53 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-10-11 18:00 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2023-10-11 17:52 - 2020-11-19 00:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-10-11 15:47 - 2021-03-10 19:46 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2023-10-11 15:47 - 2019-12-07 16:49 - 000755174 _____ C:\Windows\system32\perfh00C.dat
2023-10-11 15:47 - 2019-12-07 16:49 - 000141980 _____ C:\Windows\system32\perfc00C.dat
2023-10-11 15:47 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-10-11 15:43 - 2021-04-04 23:39 - 000000000 ____D C:\Program Files (x86)\Steam
2023-10-11 14:34 - 2021-03-13 17:49 - 000000000 ____D C:\Users\Esteban\AppData\Local\D3DSCache
2023-10-11 14:33 - 2023-01-07 12:40 - 000000000 ____D C:\Users\Esteban\AppData\Roaming\audacity
2023-10-11 14:24 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-10-11 14:18 - 2021-03-10 20:01 - 000000000 ____D C:\Windows\system32\MRT
2023-10-11 14:16 - 2021-03-10 20:01 - 181553176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-10-11 13:51 - 2021-10-02 15:16 - 000000000 ____D C:\Users\Esteban\AppData\Roaming\Spotify
2023-10-11 13:44 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2023-10-11 13:42 - 2022-01-28 21:36 - 000000000 ____D C:\Users\Esteban\AppData\Local\Spotify
2023-10-10 19:24 - 2021-03-13 16:21 - 000000000 ____D C:\Users\Esteban\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2023-10-10 19:24 - 2021-03-13 16:21 - 000000000 ____D C:\Users\Esteban\AppData\Roaming\discord
2023-10-08 22:11 - 2021-03-13 16:21 - 000000000 ____D C:\Users\Esteban\AppData\Local\SquirrelTemp
2023-10-08 19:13 - 2023-02-08 13:22 - 000000000 ____D C:\Users\Esteban\Desktop\Applications
2023-10-08 19:05 - 2021-03-10 19:43 - 000000000 ____D C:\Users\Esteban
2023-10-08 16:35 - 2020-11-19 01:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-08 16:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-08 15:42 - 2021-04-05 11:19 - 000000000 ____D C:\Users\Esteban\AppData\Local\Steam
2023-10-07 21:52 - 2020-11-19 01:29 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-09-25 22:09 - 2023-08-24 18:52 - 000000000 ____D C:\Users\Esteban\AppData\Roaming\G HUB
2023-09-25 22:01 - 2023-06-20 19:17 - 000000000 ____D C:\Users\Esteban\AppData\Roaming\lghub
2023-09-24 21:35 - 2021-03-10 19:43 - 000000000 ____D C:\Users\Esteban\AppData\Local\Packages
2023-09-21 20:43 - 2020-11-19 01:32 - 000000000 ____D C:\ProgramData\Packages
2023-09-20 19:14 - 2023-06-20 19:17 - 000000000 ____D C:\Users\Esteban\AppData\Local\LGHUB
2023-09-16 16:04 - 2021-03-11 16:31 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-09-16 16:04 - 2021-03-11 16:31 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-09-14 22:54 - 2022-04-21 00:04 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-09-14 22:53 - 2023-02-26 19:53 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-09-14 22:53 - 2022-10-13 20:46 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-09-13 22:53 - 2020-11-19 00:28 - 000476272 _____ C:\Windows\system32\FNTCACHE.DAT
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-09-13 22:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-09-13 19:55 - 2020-11-19 01:31 - 003014144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll

==================== Fichiers à la racine de certains dossiers ========

2022-06-26 17:48 - 2022-06-26 17:48 - 000000068 _____ () C:\Users\Esteban\AppData\Roaming\changzhi_leidian.data
2022-06-26 17:48 - 2022-06-26 17:48 - 000000128 _____ () C:\Users\Esteban\AppData\Roaming\changzhi_leidianmac.data
2022-01-21 23:07 - 2022-01-21 23:07 - 000003412 _____ () C:\Users\Esteban\AppData\Local\recently-used.xbel
2023-10-11 14:42 - 2023-10-11 14:42 - 000007605 _____ () C:\Users\Esteban\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Signaler le contenu de ce document