Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08.2024
Exécuté par Jeremy (administrateur) sur DESKTOP-10V1PE3 (ASUS System Product Name) (09-09-2024 07:43:18)
Exécuté depuis C:\Users\Jeremy\Desktop\FRST64.exe
Profils chargés: Jeremy
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4842 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(D:\Jeux\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe ->) (Skutta Software GmbH -> ) D:\Jeux\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe <5>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Skutta Software GmbH -> ) D:\Jeux\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <4>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2e01d57d451be19f\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4840_none_7de2e3147cada334\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [83185944 2023-02-19] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [MicrosoftEdgeAutoLaunch_EC9CBCB90504BDE1B58010AB1D3B4377] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741256 2024-09-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2750056 2024-05-24] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1832968 2024-08-05] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46247680 2024-08-16] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [WallpaperEngine] => D:\Jeux\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3580352 2024-06-15] (Skutta Software GmbH -> )
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [Steam] => D:\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\MountPoints2: {b4befd15-3ad1-11ee-9888-3c7c3fc32f22} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\HP 8911 Status Monitor: C:\Windows\system32\hpinksts8911LM.dll [332176 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\Jeremy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 1050 J410 series.lnk [2024-09-09]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 1050 J410 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN12I3G13X05HW;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\Jeremy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DS4Windows.lnk [2024-05-31]
ShortcutTarget: DS4Windows.lnk -> D:\Logiciel\DS4Windows\DS4Windows\DS4Windows.exe (Travis Nickles -> Ryochan7)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2B2EBBCB-C87B-48FE-8AC8-9E63B818B3F7} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5786440 2024-08-30] (Microsoft Windows -> Microsoft Corporation)
Task: {2F9E982E-14DA-4F4F-9456-8D14E5EB2982} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {66F1DEDE-AE1E-4308-92F8-A50733A7B953} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {706D73A7-AE52-49A8-9668-67B073F33737} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222896 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {8EB7EDC8-0F90-4192-AA3A-DA0A5B7391D4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222896 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {27A7DD71-C17A-4E70-A760-8061D993C609} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {061EF893-4709-49B4-AD72-AB152E2A62DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AF686705-696F-4F04-A214-7AD4BC97C97B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {49B8F420-59A8-40C3-A18D-10669568796A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27CE9E63-BFEA-4D2D-A28C-D4FB76E71A90} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3638445059-336407056-3767679770-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672328 2024-09-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {C5322382-8DF0-4EE5-91C2-DF591AEFA1B9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-09-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {C76C4BE5-9C5C-4C29-800F-258BBA7FF3C5} - System32\Tasks\MSIAfterburner => D:\Jeux\MSI Afterburner\MSIAfterburner.exe [804312 2023-04-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {F5901BA2-504B-402B-B578-A50D6DFC84BC} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3824168 2024-07-28] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DA9A48C5-A7C7-4DC8-8298-52631416E04E} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2370056 2024-08-05] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{92bd5c81-b996-437c-8a3a-6da4adfdb893}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{93b72ded-4398-4ad4-9e3a-b5300365f7c4}: [DhcpNameServer] 172.20.10.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-02]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (Edge relevant text changes) - C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-06-10]
Edge Profile: C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-06-10]
Edge Extension: (Google Docs hors connexion) - C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-10]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-06-10]
Edge Extension: (Edge relevant text changes) - C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-06-10]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 18s2jled.default
FF ProfilePath: C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\18s2jled.default [2022-09-08]
FF ProfilePath: C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354 [2024-09-09]
FF Extension: (AdGuard AdBlocker) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\adguardadblocker@adguard.com.xpi [2024-09-04]
FF Extension: (OneTab) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\extension@one-tab.com.xpi [2024-06-08]
FF Extension: (To Google Translate) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2023-02-12]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2024-06-18]
FF Extension: (NoScript) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2024-08-29]
FF Extension: (ModernTheme_Version_1.4) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\{ad6f037a-c189-441f-8ea1-84e41c4dd8f6}.xpi [2024-05-25]
FF Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\{dbac9680-d559-4cd4-9765-059879e8c467}.xpi [2024-07-27]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [838760 2024-09-08] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18681128 2024-06-06] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042624 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
S4 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [151080 2023-08-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S4 CorsairLLAService; C:\Program Files\Corsair\Corsair iCUE5 Software\CueLLAccessService.exe [246824 2023-08-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S4 CorsairService; C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2023-08-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S4 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [47716384 2023-08-28] (Electronic Arts, Inc. -> Electronic Arts)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12224104 2024-05-24] (Electronic Arts, Inc. -> Electronic Arts)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-10-27] (EasyAntiCheat Oy -> Epic Games, Inc)
S4 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-09-03] (EasyAntiCheat Oy -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.)
S4 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228848 2022-11-05] (HP Inc. -> HP Inc.)
S4 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [361512 2023-08-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11193088 2024-08-16] (Logitech Inc -> Logitech, Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9341488 2023-11-03] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2e01d57d451be19f\Display.NvContainer\NVDisplay.Container.exe [1275008 2024-07-31] (NVIDIA Corporation -> NVIDIA Corporation)
S4 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2370056 2024-08-05] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; D:\Jeux\GTA\RockstarService.exe [6537200 2024-08-07] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530488 2024-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S4 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S4 ucldr_Crowz_ST; C:\Program Files\Common Files\UNCHEATER\ucldr_Crowz_ST.exe [5613296 2022-04-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-08-30] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess8F050F5E415C1A5882EB9FF7CE2BC59B7BE3A953; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairLLAccess64.sys [21752 2023-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 FXVAD; C:\Windows\system32\drivers\fxvad.sys [326656 2022-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 HidHide; C:\Windows\System32\drivers\HidHide.sys [60960 2021-08-05] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 hidusbf; C:\Windows\system32\DRIVERS\hidusbf.sys [25288 2016-04-17] (Jeshua Starr Scully -> SweetLow)
S3 LGJoyHidFilter; C:\Windows\System32\drivers\LGJoyHidFilter64.sys [67768 2022-05-12] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\Windows\System32\drivers\LGJoyHidLo64.sys [54456 2022-05-12] (Logitech Inc -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2024-03-06] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2023-01-12] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2024-03-06] (Logitech Inc -> Logitech)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [1431256 2022-04-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz157; \??\C:\Windows\temp\cpuz157\cpuz157_x64.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-09 07:43 - 2024-09-09 07:43 - 000023976 _____ C:\Users\Jeremy\Desktop\FRST.txt
2024-09-01 15:09 - 2024-09-01 15:09 - 024388202 _____ C:\Users\Jeremy\Downloads\Guinchez.apk
2024-08-31 20:06 - 2024-08-31 20:07 - 000000000 ____D C:\Users\Jeremy\Desktop\Application Firestick
2024-08-30 19:39 - 2024-08-30 19:39 - 000000000 ___HD C:\$WinREAgent
2024-08-22 21:32 - 2024-08-22 21:32 - 000000000 ____D C:\Users\Jeremy\Apple
2024-08-20 10:46 - 2024-08-20 10:46 - 000139956 _____ C:\Users\Jeremy\Downloads\AttestationIndemnitesJournalieres-19.pdf
2024-08-20 08:53 - 2024-08-20 08:53 - 000139956 _____ C:\Users\Jeremy\Downloads\AttestationIndemnitesJournalieres-18.pdf
2024-08-16 20:47 - 2024-08-16 20:48 - 000000000 ____D C:\Program Files\LGHUB
2024-08-16 20:47 - 2024-08-16 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-09 07:43 - 2024-06-07 18:42 - 000000000 ____D C:\FRST
2024-09-09 07:43 - 2022-06-20 18:26 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-09-09 07:43 - 2022-02-04 20:07 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-09 07:43 - 2022-02-04 20:07 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-09 07:43 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-09 07:41 - 2024-01-22 23:00 - 000003114 _____ C:\Windows\system32\Tasks\MSIAfterburner
2024-09-08 18:24 - 2024-03-06 18:55 - 000000000 ____D C:\Users\Jeremy\AppData\Local\LGHUB
2024-09-08 18:24 - 2023-09-04 07:34 - 000000000 ____D C:\Users\Jeremy\AppData\Roaming\G HUB
2024-09-08 18:24 - 2022-02-04 21:37 - 000000000 ____D C:\Users\Jeremy\AppData\Roaming\discord
2024-09-08 18:24 - 2022-02-04 21:29 - 000000000 ____D C:\ProgramData\NVIDIA
2024-09-08 18:24 - 2022-02-04 20:25 - 000000000 ____D C:\Windows\SystemTemp
2024-09-08 18:16 - 2022-02-04 20:16 - 001761488 _____ C:\Windows\system32\PerfStringBackup.INI
2024-09-08 18:16 - 2019-12-07 16:50 - 000788012 _____ C:\Windows\system32\perfh00C.dat
2024-09-08 18:16 - 2019-12-07 16:50 - 000148948 _____ C:\Windows\system32\perfc00C.dat
2024-09-08 18:16 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-09-08 18:11 - 2022-02-04 21:37 - 000000000 ____D C:\Users\Jeremy\AppData\Local\Discord
2024-09-08 18:09 - 2022-02-04 20:07 - 000877320 _____ C:\Windows\system32\wpbbin.exe
2024-09-08 18:09 - 2022-02-04 20:07 - 000838760 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-09-08 18:09 - 2022-02-04 20:07 - 000008192 ___SH C:\DumpStack.log.tmp
2024-09-08 18:09 - 2022-02-04 20:07 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-09-08 18:09 - 2022-02-04 20:07 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-09-08 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2024-09-07 23:18 - 2022-02-04 20:10 - 000000000 ____D C:\Users\Jeremy
2024-09-07 21:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-07 21:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-09-07 18:56 - 2022-02-04 20:07 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-07 08:56 - 2022-02-04 20:37 - 000000000 ____D C:\Users\Jeremy\AppData\Local\D3DSCache
2024-09-05 19:01 - 2024-06-07 18:41 - 002397184 _____ (Farbar) C:\Users\Jeremy\Desktop\FRST64.exe
2024-09-05 19:00 - 2023-10-04 20:19 - 000000000 ____D C:\Users\Jeremy\AppData\Local\Ubisoft Game Launcher
2024-09-05 19:00 - 2022-04-06 18:01 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2024-09-05 16:54 - 2024-02-07 15:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-09-05 16:54 - 2022-06-20 18:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-09-04 18:47 - 2022-06-20 18:26 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-09-04 18:47 - 2022-06-20 18:26 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-08-30 22:21 - 2022-02-04 20:07 - 000448128 _____ C:\Windows\system32\FNTCACHE.DAT
2024-08-30 22:21 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-08-30 22:20 - 2019-12-07 16:53 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2024-08-30 22:20 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-08-30 19:45 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-08-28 17:21 - 2022-02-06 13:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-08-25 17:29 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2024-08-25 15:14 - 2023-11-21 19:24 - 000000000 ____D C:\Users\Jeremy\AppData\Local\Overwolf
2024-08-22 17:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2024-08-19 17:25 - 2023-11-21 19:25 - 000000000 ____D C:\Program Files (x86)\Overwolf
2024-08-15 14:17 - 2024-03-06 18:55 - 000000000 ____D C:\Users\Jeremy\AppData\Roaming\lghub
2024-08-14 19:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-08-14 18:49 - 2022-02-04 20:11 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-08-14 18:44 - 2022-02-06 15:30 - 000000000 ____D C:\Program Files\dotnet
2024-08-14 18:44 - 2022-02-04 21:29 - 000000000 ____D C:\ProgramData\Package Cache
2024-08-14 13:57 - 2022-02-04 20:16 - 000000000 ____D C:\Windows\system32\MRT
2024-08-14 13:56 - 2022-02-04 20:16 - 197093640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-08-10 16:19 - 2022-02-04 22:09 - 000000000 ____D C:\Users\Jeremy\AppData\Local\Steam
==================== Fichiers à la racine de certains dossiers ========
2024-01-27 14:50 - 2024-01-27 14:50 - 000000459 _____ () C:\Users\Jeremy\AppData\Local\BSODPostingInstructions.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Jeremy (administrateur) sur DESKTOP-10V1PE3 (ASUS System Product Name) (09-09-2024 07:43:18)
Exécuté depuis C:\Users\Jeremy\Desktop\FRST64.exe
Profils chargés: Jeremy
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4842 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(D:\Jeux\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe ->) (Skutta Software GmbH -> ) D:\Jeux\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe <5>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Skutta Software GmbH -> ) D:\Jeux\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <4>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2e01d57d451be19f\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4840_none_7de2e3147cada334\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [83185944 2023-02-19] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [MicrosoftEdgeAutoLaunch_EC9CBCB90504BDE1B58010AB1D3B4377] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741256 2024-09-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2750056 2024-05-24] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1832968 2024-08-05] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46247680 2024-08-16] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [WallpaperEngine] => D:\Jeux\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3580352 2024-06-15] (Skutta Software GmbH -> )
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Run: [Steam] => D:\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\MountPoints2: {b4befd15-3ad1-11ee-9888-3c7c3fc32f22} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\HP 8911 Status Monitor: C:\Windows\system32\hpinksts8911LM.dll [332176 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\Jeremy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 1050 J410 series.lnk [2024-09-09]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 1050 J410 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN12I3G13X05HW;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\Jeremy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DS4Windows.lnk [2024-05-31]
ShortcutTarget: DS4Windows.lnk -> D:\Logiciel\DS4Windows\DS4Windows\DS4Windows.exe (Travis Nickles -> Ryochan7)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2B2EBBCB-C87B-48FE-8AC8-9E63B818B3F7} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5786440 2024-08-30] (Microsoft Windows -> Microsoft Corporation)
Task: {2F9E982E-14DA-4F4F-9456-8D14E5EB2982} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {66F1DEDE-AE1E-4308-92F8-A50733A7B953} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {706D73A7-AE52-49A8-9668-67B073F33737} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222896 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {8EB7EDC8-0F90-4192-AA3A-DA0A5B7391D4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222896 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {27A7DD71-C17A-4E70-A760-8061D993C609} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {061EF893-4709-49B4-AD72-AB152E2A62DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AF686705-696F-4F04-A214-7AD4BC97C97B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {49B8F420-59A8-40C3-A18D-10669568796A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27CE9E63-BFEA-4D2D-A28C-D4FB76E71A90} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3638445059-336407056-3767679770-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672328 2024-09-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {C5322382-8DF0-4EE5-91C2-DF591AEFA1B9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-09-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {C76C4BE5-9C5C-4C29-800F-258BBA7FF3C5} - System32\Tasks\MSIAfterburner => D:\Jeux\MSI Afterburner\MSIAfterburner.exe [804312 2023-04-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {F5901BA2-504B-402B-B578-A50D6DFC84BC} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3824168 2024-07-28] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DA9A48C5-A7C7-4DC8-8298-52631416E04E} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2370056 2024-08-05] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{92bd5c81-b996-437c-8a3a-6da4adfdb893}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{93b72ded-4398-4ad4-9e3a-b5300365f7c4}: [DhcpNameServer] 172.20.10.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-02]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (Edge relevant text changes) - C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-06-10]
Edge Profile: C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-06-10]
Edge Extension: (Google Docs hors connexion) - C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-10]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-06-10]
Edge Extension: (Edge relevant text changes) - C:\Users\Jeremy\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-06-10]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 18s2jled.default
FF ProfilePath: C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\18s2jled.default [2022-09-08]
FF ProfilePath: C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354 [2024-09-09]
FF Extension: (AdGuard AdBlocker) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\adguardadblocker@adguard.com.xpi [2024-09-04]
FF Extension: (OneTab) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\extension@one-tab.com.xpi [2024-06-08]
FF Extension: (To Google Translate) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2023-02-12]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2024-06-18]
FF Extension: (NoScript) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2024-08-29]
FF Extension: (ModernTheme_Version_1.4) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\{ad6f037a-c189-441f-8ea1-84e41c4dd8f6}.xpi [2024-05-25]
FF Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\g849e140.default-release-1669494943354\Extensions\{dbac9680-d559-4cd4-9765-059879e8c467}.xpi [2024-07-27]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [838760 2024-09-08] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18681128 2024-06-06] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042624 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
S4 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [151080 2023-08-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S4 CorsairLLAService; C:\Program Files\Corsair\Corsair iCUE5 Software\CueLLAccessService.exe [246824 2023-08-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S4 CorsairService; C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2023-08-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S4 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [47716384 2023-08-28] (Electronic Arts, Inc. -> Electronic Arts)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12224104 2024-05-24] (Electronic Arts, Inc. -> Electronic Arts)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-10-27] (EasyAntiCheat Oy -> Epic Games, Inc)
S4 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-09-03] (EasyAntiCheat Oy -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.)
S4 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228848 2022-11-05] (HP Inc. -> HP Inc.)
S4 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [361512 2023-08-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11193088 2024-08-16] (Logitech Inc -> Logitech, Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9341488 2023-11-03] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2e01d57d451be19f\Display.NvContainer\NVDisplay.Container.exe [1275008 2024-07-31] (NVIDIA Corporation -> NVIDIA Corporation)
S4 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2370056 2024-08-05] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; D:\Jeux\GTA\RockstarService.exe [6537200 2024-08-07] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530488 2024-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S4 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S4 ucldr_Crowz_ST; C:\Program Files\Common Files\UNCHEATER\ucldr_Crowz_ST.exe [5613296 2022-04-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-08-30] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess8F050F5E415C1A5882EB9FF7CE2BC59B7BE3A953; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairLLAccess64.sys [21752 2023-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 FXVAD; C:\Windows\system32\drivers\fxvad.sys [326656 2022-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 HidHide; C:\Windows\System32\drivers\HidHide.sys [60960 2021-08-05] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 hidusbf; C:\Windows\system32\DRIVERS\hidusbf.sys [25288 2016-04-17] (Jeshua Starr Scully -> SweetLow)
S3 LGJoyHidFilter; C:\Windows\System32\drivers\LGJoyHidFilter64.sys [67768 2022-05-12] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\Windows\System32\drivers\LGJoyHidLo64.sys [54456 2022-05-12] (Logitech Inc -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2024-03-06] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2023-01-12] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2024-03-06] (Logitech Inc -> Logitech)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [1431256 2022-04-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz157; \??\C:\Windows\temp\cpuz157\cpuz157_x64.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-09 07:43 - 2024-09-09 07:43 - 000023976 _____ C:\Users\Jeremy\Desktop\FRST.txt
2024-09-01 15:09 - 2024-09-01 15:09 - 024388202 _____ C:\Users\Jeremy\Downloads\Guinchez.apk
2024-08-31 20:06 - 2024-08-31 20:07 - 000000000 ____D C:\Users\Jeremy\Desktop\Application Firestick
2024-08-30 19:39 - 2024-08-30 19:39 - 000000000 ___HD C:\$WinREAgent
2024-08-22 21:32 - 2024-08-22 21:32 - 000000000 ____D C:\Users\Jeremy\Apple
2024-08-20 10:46 - 2024-08-20 10:46 - 000139956 _____ C:\Users\Jeremy\Downloads\AttestationIndemnitesJournalieres-19.pdf
2024-08-20 08:53 - 2024-08-20 08:53 - 000139956 _____ C:\Users\Jeremy\Downloads\AttestationIndemnitesJournalieres-18.pdf
2024-08-16 20:47 - 2024-08-16 20:48 - 000000000 ____D C:\Program Files\LGHUB
2024-08-16 20:47 - 2024-08-16 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-09 07:43 - 2024-06-07 18:42 - 000000000 ____D C:\FRST
2024-09-09 07:43 - 2022-06-20 18:26 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-09-09 07:43 - 2022-02-04 20:07 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-09 07:43 - 2022-02-04 20:07 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-09 07:43 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-09 07:41 - 2024-01-22 23:00 - 000003114 _____ C:\Windows\system32\Tasks\MSIAfterburner
2024-09-08 18:24 - 2024-03-06 18:55 - 000000000 ____D C:\Users\Jeremy\AppData\Local\LGHUB
2024-09-08 18:24 - 2023-09-04 07:34 - 000000000 ____D C:\Users\Jeremy\AppData\Roaming\G HUB
2024-09-08 18:24 - 2022-02-04 21:37 - 000000000 ____D C:\Users\Jeremy\AppData\Roaming\discord
2024-09-08 18:24 - 2022-02-04 21:29 - 000000000 ____D C:\ProgramData\NVIDIA
2024-09-08 18:24 - 2022-02-04 20:25 - 000000000 ____D C:\Windows\SystemTemp
2024-09-08 18:16 - 2022-02-04 20:16 - 001761488 _____ C:\Windows\system32\PerfStringBackup.INI
2024-09-08 18:16 - 2019-12-07 16:50 - 000788012 _____ C:\Windows\system32\perfh00C.dat
2024-09-08 18:16 - 2019-12-07 16:50 - 000148948 _____ C:\Windows\system32\perfc00C.dat
2024-09-08 18:16 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-09-08 18:11 - 2022-02-04 21:37 - 000000000 ____D C:\Users\Jeremy\AppData\Local\Discord
2024-09-08 18:09 - 2022-02-04 20:07 - 000877320 _____ C:\Windows\system32\wpbbin.exe
2024-09-08 18:09 - 2022-02-04 20:07 - 000838760 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-09-08 18:09 - 2022-02-04 20:07 - 000008192 ___SH C:\DumpStack.log.tmp
2024-09-08 18:09 - 2022-02-04 20:07 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-09-08 18:09 - 2022-02-04 20:07 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-09-08 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2024-09-07 23:18 - 2022-02-04 20:10 - 000000000 ____D C:\Users\Jeremy
2024-09-07 21:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-07 21:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-09-07 18:56 - 2022-02-04 20:07 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-07 08:56 - 2022-02-04 20:37 - 000000000 ____D C:\Users\Jeremy\AppData\Local\D3DSCache
2024-09-05 19:01 - 2024-06-07 18:41 - 002397184 _____ (Farbar) C:\Users\Jeremy\Desktop\FRST64.exe
2024-09-05 19:00 - 2023-10-04 20:19 - 000000000 ____D C:\Users\Jeremy\AppData\Local\Ubisoft Game Launcher
2024-09-05 19:00 - 2022-04-06 18:01 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2024-09-05 16:54 - 2024-02-07 15:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-09-05 16:54 - 2022-06-20 18:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-09-04 18:47 - 2022-06-20 18:26 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-09-04 18:47 - 2022-06-20 18:26 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-08-30 22:21 - 2022-02-04 20:07 - 000448128 _____ C:\Windows\system32\FNTCACHE.DAT
2024-08-30 22:21 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-08-30 22:20 - 2019-12-07 16:53 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2024-08-30 22:20 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-08-30 22:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-08-30 19:45 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-08-28 17:21 - 2022-02-06 13:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-08-25 17:29 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2024-08-25 15:14 - 2023-11-21 19:24 - 000000000 ____D C:\Users\Jeremy\AppData\Local\Overwolf
2024-08-22 17:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2024-08-19 17:25 - 2023-11-21 19:25 - 000000000 ____D C:\Program Files (x86)\Overwolf
2024-08-15 14:17 - 2024-03-06 18:55 - 000000000 ____D C:\Users\Jeremy\AppData\Roaming\lghub
2024-08-14 19:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-08-14 18:49 - 2022-02-04 20:11 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-08-14 18:44 - 2022-02-06 15:30 - 000000000 ____D C:\Program Files\dotnet
2024-08-14 18:44 - 2022-02-04 21:29 - 000000000 ____D C:\ProgramData\Package Cache
2024-08-14 13:57 - 2022-02-04 20:16 - 000000000 ____D C:\Windows\system32\MRT
2024-08-14 13:56 - 2022-02-04 20:16 - 197093640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-08-10 16:19 - 2022-02-04 22:09 - 000000000 ____D C:\Users\Jeremy\AppData\Local\Steam
==================== Fichiers à la racine de certains dossiers ========
2024-01-27 14:50 - 2024-01-27 14:50 - 000000459 _____ () C:\Users\Jeremy\AppData\Local\BSODPostingInstructions.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================