Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Exécuté par Maugan (administrateur) sur PC-MAUGAN (Micro-Star International Co., Ltd. MS-7D98) (18-09-2024 21:53:09)
Exécuté depuis C:\Users\Maugan\Desktop\FRST64.exe
Profils chargés: Maugan
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.4169 (X64) Langue: Français (France)
Navigateur par défaut: Brave
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <9>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\Corsair iCUE5 Software\crashpad_handler.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\QmlRenderer.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe ->) () [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Plugins\Watchdog\Lively.Watchdog.exe
(C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe ->) (mpv) [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Plugins\Mpv\mpv.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe
(DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atieclxx.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <14>
(explorer.exe ->) (Lively) [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) F:\Riot Games\Riot Client\RiotClientServices.exe
(F:\Riot Games\Riot Client\RiotClientServices.exe ->) () [Fichier non signé] F:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atiesrxx.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_e585d940b03325e0\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_91a9902d227a84da\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray_service.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (6099D0EF-9374-47ED-BDFE-A82136831235 -> File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.3.0.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(sihost.exe ->) (E3B4A0F6-E459-414C-8DFB-ABEAB07C9242 -> Microsoft Corporation) C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ModernFlyoutsHost.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2409.1001.5.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25992.9000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2402.27001-0\SecurityHealthHost.exe <2>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe [1945544 2024-02-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4406632 2024-09-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Spotify] => C:\Users\Maugan\AppData\Roaming\Spotify\Spotify.exe [34615112 2024-05-26] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37495272 2024-05-13] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1090168 2023-03-22] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46525336 2024-09-18] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2730600 2024-02-25] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [RiotClient] => F:\Riot Games\Riot Client\RiotClientServices.exe [73892672 2024-09-11] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [145336 2023-08-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Lively] => C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe [200704 2024-05-31] (Lively) [Fichier non signé]
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [MicrosoftEdgeAutoLaunch_017D7B0CCB65F494F6B23C0ABBEC5490] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741224 2024-09-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\128.1.69.168\Installer\chrmstp.exe [2024-09-18] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {B981A4FA-EF3F-47A9-A20F-4DC301A3270A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {9306AA7F-AA99-4EAC-AA98-D76842CE4C72} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {9ED2DCFA-842B-44D1-BBD0-C434765EBA36} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {DB538C4E-7D97-460B-8230-C8BCA7A5116F} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {3AECC354-7B1A-4C88-9389-69418C7D8E4D} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {4B108DCB-2C06-46EC-8EC4-C2DED226E4CC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139136 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {6557A8BC-8329-46C8-B592-27DC2871FA9D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139136 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {809D2428-7206-4271-876D-3250C35D9BD4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053720 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {803D5751-AF24-4B0B-93AE-0A1F7FE5DC6C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053720 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1094ABE2-1F59-4ACA-A3B4-B034689A9D8F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4583B1E1-B4CE-4C64-ACAC-A131F3AAEA59} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FBDDE97B-569F-41B4-B85A-E1C581BF66E9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5F5D466E-B1CA-4AD3-A898-1CCC026AFEB2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {04DC86DC-F10A-48EA-805B-46DCE1DE5D5C} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {8FBA40C1-93D2-44D5-B53A-8754AA374D8A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-12] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {22BCCEF9-D4E8-4FB3-A1A7-183880BB1304} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1484716125-585635640-2440183146-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-12] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {539FCE03-9D3C-4930-8EDD-C3CB50960883} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34888 2024-07-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {76C2911B-A1B8-484F-8515-90E6B15FFE11} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-05-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {B2E660E0-C341-4E11-9DC1-E60F6029EC9B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-05-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{222ea97a-82d6-41fc-828f-8689bcd478c3}: [DhcpNameServer] 192.168.63.223
Tcpip\..\Interfaces\{4d53017a-469c-4f0f-b861-ef34a8c9d247}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6cba7094-7424-47a8-be14-266e6919399f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6cba7094-7424-47a8-be14-266e6919399f}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-18]
Edge Extension: (Google Docs hors connexion) - C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-18]
Edge Extension: (Edge relevant text changes) - C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF DefaultProfile: oqcnxxmi.default
FF ProfilePath: C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\oqcnxxmi.default [2024-09-18]
FF ProfilePath: C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\49zcdkws.default-release [2024-09-18]
FF Extension: (Widilo Cashback) - C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\49zcdkws.default-release\Extensions\{37d71f0b-917d-485a-ad55-7fd43df7cb57}.xpi [2024-03-31]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Brave:
=======
BRA Profile: C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-09-18]
BRA Extension: (uBlock Origin) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-09-18]
BRA Extension: (Gestionnaire de mots de passe Bitwarden) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-09-18]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-09-18]
BRA Extension: (Brave NTP background images) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-09-18]
BRA Extension: (Brave Ads Resources) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\bgifagoclclhhoflocdefiklgodpihog [2024-09-18]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-09-18]
BRA Extension: (Brave Ad Block Updater (AdGuard Français (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\flnkmpokemfpaajmiimmjeiandgoodgg [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-09-18]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Brave Twitch Adblock Rules (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\mhccgcegedfkhdbfbgllfkkcjhgkoinc [2024-09-18]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1421352 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18681128 2024-06-06] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\128.1.69.168\elevation_service.exe [2659864 2024-09-11] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9183624 2021-09-29] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairCpuIdService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe [240680 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [152104 2024-02-19] (Corsair Memory, Inc. -> )
R2 CorsairLLAService; C:\Program Files\Corsair\Corsair iCUE5 Software\CueLLAccessService.exe [251944 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12094568 2024-02-25] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2024-02-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-12-26] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-16] (Epic Games Inc. -> Epic Games, Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2023-06-08] (Underwriters Laboratories Inc. -> Futuremark)
R3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [366632 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11335576 2024-09-18] (Logitech Inc -> Logitech, Inc.)
R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray_service.exe [10150392 2024-09-18] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8965728 2024-09-15] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-09-15] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2022-01-02] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2022-01-02] (Even Balance, Inc. -> )
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16971576 2023-03-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25688 2024-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 amducsi; C:\WINDOWS\System32\drivers\amducsi.sys [81632 2022-10-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\amdkmdag.sys [100127016 2024-05-21] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-08-10] (Bitdefender SRL -> Bitdefender)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R2 CorsairLLAccess8F050F5E415C1A5882EB9FF7CE2BC59B7BE3A953; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairLLAccess64.sys [23728 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44576 2024-09-18] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [29200 2021-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
S3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [721536 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
S3 gdrv3; C:\Windows\gdrv3.sys [36352 2021-07-31] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-06-23] (Intel Corporation -> Intel Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_6f93b7542fd3ead9\gna.sys [88656 2023-08-28] (Intel Corporation -> Intel Corporation)
R3 logi_audio_surround; C:\WINDOWS\System32\DriverStore\FileRepository\logi_audio.inf_amd64_affafe6e263c4f51\logi_audio_surround.sys [44112 2024-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-08-02] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-08-02] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-08-02] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray.sys [89192 2024-09-18] (Logitech Inc -> Logitech, Inc.)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-30] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [231504 2024-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19000 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [26368 2020-08-21] (Daniel Terhell -> Resplendence Software Projects Sp.)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_84ec5c712a6969ea\rt25cx21x64.sys [713112 2022-10-18] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R2 SignalRgbDriver; C:\WINDOWS\System32\Drivers\SignalRgbDriver.sys [19984 2023-10-06] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2023-01-05] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-10-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [57344 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-18] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29680 2023-03-20] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 zttap300; C:\WINDOWS\System32\drivers\zttap300.sys [31744 2023-03-06] (Microsoft Windows Hardware Compatibility Publisher -> ZeroTier Networks LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-18 21:53 - 2024-09-18 21:53 - 000035252 _____ C:\Users\Maugan\Desktop\FRST.txt
2024-09-18 21:47 - 2024-09-18 21:47 - 000000000 ____D C:\Users\Maugan\AppData\Local\BraveSoftware
2024-09-18 21:42 - 2024-09-18 21:42 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-09-18 21:41 - 2024-09-18 21:41 - 001276712 _____ (BraveSoftware Inc.) C:\Users\Maugan\Downloads\BraveBrowserSetup-BRV002.exe
2024-09-18 21:41 - 2024-09-18 21:41 - 001276712 _____ (BraveSoftware Inc.) C:\Users\Maugan\Downloads\BraveBrowserSetup-BRV002 (1).exe
2024-09-18 21:41 - 2024-09-18 21:41 - 000000000 ____D C:\Program Files\BraveSoftware
2024-09-18 19:16 - 2024-09-18 19:16 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\VLC
2024-09-18 18:58 - 2024-09-18 18:58 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2024-09-18 18:58 - 2024-09-18 18:58 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2024-09-18 18:52 - 2024-09-18 18:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-09-18 18:52 - 2024-09-18 18:52 - 000000000 ____D C:\Program Files\LGHUB
2024-09-16 19:05 - 2024-09-16 19:05 - 003539144 _____ (Nicolas Coolman) C:\Users\Maugan\ZHPSuite.exe
2024-09-15 21:10 - 2024-09-18 21:51 - 000000000 ____D C:\Users\Maugan\AppData\Local\Malwarebytes
2024-09-15 21:10 - 2024-09-15 21:10 - 000002105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-09-15 21:10 - 2024-09-15 21:10 - 000002093 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-09-15 21:10 - 2024-09-15 21:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-09-15 21:10 - 2024-09-15 21:10 - 000000000 ____D C:\Program Files\Malwarebytes
2024-09-15 21:02 - 2024-09-15 21:02 - 008790880 _____ (Malwarebytes) C:\Users\Maugan\Desktop\adwcleaner_8.4.2.exe
2024-09-15 21:00 - 2024-09-15 21:00 - 000000888 _____ C:\Users\Maugan\Desktop\ZHPCleaner.lnk
2024-09-15 18:17 - 2024-09-15 18:17 - 000000000 ____D C:\Users\Maugan\AppData\Local\b1
2024-09-15 17:58 - 2024-09-18 21:53 - 000000000 ____D C:\FRST
2024-09-15 17:57 - 2024-09-16 19:05 - 002397696 _____ (Farbar) C:\Users\Maugan\Desktop\FRST64.exe
2024-09-15 17:56 - 2024-09-16 19:08 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\ZHP
2024-09-15 17:56 - 2024-09-16 19:05 - 000000737 _____ C:\Users\Maugan\Desktop\ZHPSuite.lnk
2024-09-15 17:56 - 2024-09-15 21:00 - 000000000 ____D C:\Users\Maugan\AppData\Local\ZHP
2024-09-15 15:04 - 2024-09-15 15:04 - 000096457 _____ C:\Users\Maugan\Desktop\20240909_0746_JustificatifAchat_SNCFCONNECT.pdf
2024-09-15 15:04 - 2024-09-15 15:04 - 000046224 _____ C:\Users\Maugan\Desktop\20240911_1112_JustificatifAchat_SNCFCONNECT.pdf
2024-09-01 18:59 - 2024-09-01 18:59 - 000002264 _____ C:\Users\Maugan\AppData\LocalLow\3f8a08924159e017c76c7de64b61c43fb8f4494d3336fd30e571426b7c08a2ac
2024-08-30 14:20 - 2024-07-16 19:43 - 000784048 _____ (Intel) C:\WINDOWS\system32\libvpl.dll
2024-08-30 14:20 - 2024-07-16 19:43 - 000668792 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll
2024-08-30 14:20 - 2024-07-16 19:42 - 000979160 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2024-08-30 14:20 - 2024-07-16 19:42 - 000737776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2024-08-30 14:20 - 2024-07-16 19:41 - 000621816 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2024-08-30 14:20 - 2024-07-16 19:41 - 000590448 _____ C:\WINDOWS\SysWOW64\IntelControlLib32.dll
2024-08-30 14:20 - 2024-07-16 19:41 - 000480936 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 002115392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-08-30 14:20 - 2024-07-16 19:40 - 002115392 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-08-30 14:20 - 2024-07-16 19:40 - 002039104 _____ C:\WINDOWS\system32\ze_intel_gpu_raytracing.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 001673536 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-08-30 14:20 - 2024-07-16 19:40 - 001673536 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-08-30 14:20 - 2024-07-16 19:40 - 001463000 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 001463000 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 001305296 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 001305296 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 000792280 _____ C:\WINDOWS\system32\ze_loader.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 000560856 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 000349912 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2024-08-30 14:20 - 2024-07-16 19:39 - 027984088 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2024-08-30 14:20 - 2024-07-16 19:39 - 020707944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2024-08-30 14:20 - 2024-07-16 19:39 - 000331344 _____ C:\WINDOWS\system32\ControlLib.dll
2024-08-30 14:20 - 2024-07-16 19:39 - 000277496 _____ C:\WINDOWS\SysWOW64\ControlLib32.dll
2024-08-22 19:10 - 2024-08-22 19:10 - 000026169 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-22 19:10 - 2024-08-22 19:10 - 000026169 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-02 23:39 - 2024-07-02 23:39 - 000009322 _____ C:\Users\Maugan\Documents\bali.xlsx
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-18 21:44 - 2023-07-17 12:49 - 000000000 ____D C:\Users\Maugan\AppData\Local\D3DSCache
2024-09-18 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-18 21:41 - 2021-07-31 18:29 - 000000000 ____D C:\Program Files (x86)\Steam
2024-09-18 21:37 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-18 21:37 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-18 21:37 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-18 20:32 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-09-18 20:23 - 2021-10-22 21:50 - 000000000 ____D C:\Users\Maugan\AppData\Local\CrashDumps
2024-09-18 19:29 - 2023-12-26 21:47 - 000000000 ____D C:\WINDOWS\NvOptimizerLog
2024-09-18 19:14 - 2023-07-19 01:01 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-09-18 19:14 - 2022-10-11 19:08 - 000002085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-09-18 19:13 - 2021-07-31 17:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-18 18:58 - 2023-07-19 01:00 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-18 18:52 - 2023-09-01 22:01 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\G HUB
2024-09-18 18:52 - 2023-08-02 22:38 - 000000000 ____D C:\Users\Maugan\AppData\Local\LGHUB
2024-09-18 18:51 - 2024-05-26 23:23 - 000003108 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-09-18 18:51 - 2024-02-18 17:29 - 000003100 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-09-18 18:51 - 2023-07-19 01:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-18 18:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-09-18 18:51 - 2021-07-31 18:44 - 000000000 ____D C:\Program Files\TeamViewer
2024-09-18 18:51 - 2021-07-31 17:55 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-18 18:50 - 2023-02-14 01:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-09-18 18:50 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-09-18 18:49 - 2023-09-05 16:31 - 000000000 ____D C:\Users\Maugan\AppData\LocalLow\Temp
2024-09-18 18:48 - 2023-08-12 23:40 - 000000000 ___RD C:\Users\Maugan\Desktop\Logiciel
2024-09-18 18:47 - 2021-07-31 18:46 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\discord
2024-09-18 18:43 - 2021-10-23 16:02 - 000000000 ____D C:\Program Files\VideoLAN
2024-09-18 18:43 - 2021-07-31 18:45 - 000000000 ____D C:\Users\Maugan\AppData\Local\Discord
2024-09-18 18:40 - 2023-07-19 00:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-16 19:05 - 2023-07-18 17:36 - 000000000 ____D C:\Users\Maugan
2024-09-15 21:38 - 2023-07-17 12:49 - 000000000 ____D C:\Users\Maugan\AppData\Local\AMD_Common
2024-09-15 21:10 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-09-15 20:57 - 2023-09-20 23:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2024-09-15 18:16 - 2021-07-31 18:21 - 000000000 ____D C:\ProgramData\Package Cache
2024-09-15 17:57 - 2021-10-23 03:36 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Excel
2024-09-15 17:15 - 2023-12-27 18:07 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Word
2024-09-15 12:54 - 2023-01-17 10:03 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-11 22:43 - 2023-10-11 01:19 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-09-11 22:43 - 2023-07-19 00:58 - 000512472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-11 21:39 - 2021-07-31 18:39 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-09-11 21:36 - 2022-12-22 18:24 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\EasyAntiCheat
2024-09-11 19:05 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 19:04 - 2023-07-19 00:59 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-11 19:00 - 2021-07-31 19:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-11 18:59 - 2021-07-31 19:38 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-11 18:48 - 2023-07-19 01:01 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-11 18:48 - 2023-07-19 01:01 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-08 23:51 - 2023-08-12 23:40 - 000000000 ___RD C:\Users\Maugan\Desktop\Games
2024-09-08 15:00 - 2023-03-07 01:05 - 000000000 ____D C:\Program Files\AMD
2024-09-07 16:37 - 2021-07-31 18:00 - 000000000 ____D C:\Users\Maugan\AppData\Local\Packages
2024-09-07 16:27 - 2021-07-31 18:00 - 000000000 ____D C:\ProgramData\Packages
2024-09-02 21:53 - 2022-10-20 11:16 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-09-02 21:53 - 2022-10-20 11:16 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-09-02 21:53 - 2022-08-07 21:24 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-09-02 21:53 - 2022-08-07 21:24 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-09-02 21:52 - 2024-02-18 14:11 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-09-02 21:52 - 2022-08-07 21:24 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-09-02 21:52 - 2022-08-07 21:24 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-09-02 21:52 - 2022-08-07 21:24 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-23 13:55 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-08-23 06:02 - 2023-08-02 22:38 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\lghub
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\schemas
2024-08-22 19:12 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2024-08-22 19:12 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
==================== Fichiers à la racine de certains dossiers ========
2024-09-16 19:05 - 2024-09-16 19:05 - 003539144 _____ (Nicolas Coolman) C:\Users\Maugan\ZHPSuite.exe
2021-07-31 22:19 - 2022-08-19 13:53 - 000007605 _____ () C:\Users\Maugan\AppData\Local\Resmon.ResmonCfg
==================== SigCheckExt =========================
2021-07-31 23:01 - 2015-06-02 10:50 - 000005120 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\acpimof_ocpanel.dll
2024-09-16 19:05 - 2024-09-16 19:05 - 003539144 _____ (Nicolas Coolman) C:\Users\Maugan\ZHPSuite.exe
2024-09-15 17:57 - 2024-09-16 19:05 - 002397696 _____ (Farbar) C:\Users\Maugan\Desktop\FRST64.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{0915d1be-9827-11ec-93b6-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {0915d1be-9827-11ec-93b6-806e6f6e6963}
device partition=\Device\HarddiskVolume6
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
Chargeur de démarrage Windows
-----------------------------
identificateur {4f61ee72-f21f-11eb-bd0a-f39e6784c6b0}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{4f61ee73-f21f-11eb-bd0a-f39e6784c6b0}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{4f61ee73-f21f-11eb-bd0a-f39e6784c6b0}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{4f61ee78-f21f-11eb-bd0a-f39e6784c6b0}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{4f61ee78-f21f-11eb-bd0a-f39e6784c6b0}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {4f61ee78-f21f-11eb-bd0a-f39e6784c6b0}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par Maugan (administrateur) sur PC-MAUGAN (Micro-Star International Co., Ltd. MS-7D98) (18-09-2024 21:53:09)
Exécuté depuis C:\Users\Maugan\Desktop\FRST64.exe
Profils chargés: Maugan
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.4169 (X64) Langue: Français (France)
Navigateur par défaut: Brave
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <9>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\Corsair iCUE5 Software\crashpad_handler.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\QmlRenderer.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe ->) () [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Plugins\Watchdog\Lively.Watchdog.exe
(C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe ->) (mpv) [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Plugins\Mpv\mpv.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe
(DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atieclxx.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <14>
(explorer.exe ->) (Lively) [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) F:\Riot Games\Riot Client\RiotClientServices.exe
(F:\Riot Games\Riot Client\RiotClientServices.exe ->) () [Fichier non signé] F:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atiesrxx.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_e585d940b03325e0\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_91a9902d227a84da\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray_service.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (6099D0EF-9374-47ED-BDFE-A82136831235 -> File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.3.0.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(sihost.exe ->) (E3B4A0F6-E459-414C-8DFB-ABEAB07C9242 -> Microsoft Corporation) C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ModernFlyoutsHost.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2409.1001.5.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25992.9000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2402.27001-0\SecurityHealthHost.exe <2>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe [1945544 2024-02-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4406632 2024-09-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Spotify] => C:\Users\Maugan\AppData\Roaming\Spotify\Spotify.exe [34615112 2024-05-26] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37495272 2024-05-13] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1090168 2023-03-22] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46525336 2024-09-18] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2730600 2024-02-25] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [RiotClient] => F:\Riot Games\Riot Client\RiotClientServices.exe [73892672 2024-09-11] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [145336 2023-08-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Lively] => C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe [200704 2024-05-31] (Lively) [Fichier non signé]
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [MicrosoftEdgeAutoLaunch_017D7B0CCB65F494F6B23C0ABBEC5490] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741224 2024-09-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\128.1.69.168\Installer\chrmstp.exe [2024-09-18] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKU\S-1-5-21-1484716125-585635640-2440183146-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {B981A4FA-EF3F-47A9-A20F-4DC301A3270A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {9306AA7F-AA99-4EAC-AA98-D76842CE4C72} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {9ED2DCFA-842B-44D1-BBD0-C434765EBA36} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {DB538C4E-7D97-460B-8230-C8BCA7A5116F} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {3AECC354-7B1A-4C88-9389-69418C7D8E4D} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {4B108DCB-2C06-46EC-8EC4-C2DED226E4CC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139136 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {6557A8BC-8329-46C8-B592-27DC2871FA9D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139136 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {809D2428-7206-4271-876D-3250C35D9BD4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053720 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {803D5751-AF24-4B0B-93AE-0A1F7FE5DC6C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053720 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1094ABE2-1F59-4ACA-A3B4-B034689A9D8F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4583B1E1-B4CE-4C64-ACAC-A131F3AAEA59} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FBDDE97B-569F-41B4-B85A-E1C581BF66E9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5F5D466E-B1CA-4AD3-A898-1CCC026AFEB2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {04DC86DC-F10A-48EA-805B-46DCE1DE5D5C} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {8FBA40C1-93D2-44D5-B53A-8754AA374D8A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-12] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {22BCCEF9-D4E8-4FB3-A1A7-183880BB1304} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1484716125-585635640-2440183146-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-12] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {539FCE03-9D3C-4930-8EDD-C3CB50960883} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34888 2024-07-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {76C2911B-A1B8-484F-8515-90E6B15FFE11} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-05-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {B2E660E0-C341-4E11-9DC1-E60F6029EC9B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-05-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{222ea97a-82d6-41fc-828f-8689bcd478c3}: [DhcpNameServer] 192.168.63.223
Tcpip\..\Interfaces\{4d53017a-469c-4f0f-b861-ef34a8c9d247}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6cba7094-7424-47a8-be14-266e6919399f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6cba7094-7424-47a8-be14-266e6919399f}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-18]
Edge Extension: (Google Docs hors connexion) - C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-18]
Edge Extension: (Edge relevant text changes) - C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF DefaultProfile: oqcnxxmi.default
FF ProfilePath: C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\oqcnxxmi.default [2024-09-18]
FF ProfilePath: C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\49zcdkws.default-release [2024-09-18]
FF Extension: (Widilo Cashback) - C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\49zcdkws.default-release\Extensions\{37d71f0b-917d-485a-ad55-7fd43df7cb57}.xpi [2024-03-31]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-09-24] (Microsoft Corporation -> Microsoft Corporation)
Brave:
=======
BRA Profile: C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-09-18]
BRA Extension: (uBlock Origin) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-09-18]
BRA Extension: (Gestionnaire de mots de passe Bitwarden) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-09-18]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-09-18]
BRA Extension: (Brave NTP background images) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-09-18]
BRA Extension: (Brave Ads Resources) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\bgifagoclclhhoflocdefiklgodpihog [2024-09-18]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-09-18]
BRA Extension: (Brave Ad Block Updater (AdGuard Français (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\flnkmpokemfpaajmiimmjeiandgoodgg [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-09-18]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-09-18]
BRA Extension: (Brave Ad Block Updater (Brave Twitch Adblock Rules (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\mhccgcegedfkhdbfbgllfkkcjhgkoinc [2024-09-18]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1421352 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18681128 2024-06-06] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\128.1.69.168\elevation_service.exe [2659864 2024-09-11] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9183624 2021-09-29] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairCpuIdService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe [240680 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [152104 2024-02-19] (Corsair Memory, Inc. -> )
R2 CorsairLLAService; C:\Program Files\Corsair\Corsair iCUE5 Software\CueLLAccessService.exe [251944 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12094568 2024-02-25] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2024-02-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-12-26] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-16] (Epic Games Inc. -> Epic Games, Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2023-06-08] (Underwriters Laboratories Inc. -> Futuremark)
R3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [366632 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11335576 2024-09-18] (Logitech Inc -> Logitech, Inc.)
R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray_service.exe [10150392 2024-09-18] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8965728 2024-09-15] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-09-15] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2022-01-02] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2022-01-02] (Even Balance, Inc. -> )
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16971576 2023-03-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25688 2024-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 amducsi; C:\WINDOWS\System32\drivers\amducsi.sys [81632 2022-10-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\amdkmdag.sys [100127016 2024-05-21] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-08-10] (Bitdefender SRL -> Bitdefender)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R2 CorsairLLAccess8F050F5E415C1A5882EB9FF7CE2BC59B7BE3A953; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairLLAccess64.sys [23728 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44576 2024-09-18] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [29200 2021-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
S3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [721536 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
S3 gdrv3; C:\Windows\gdrv3.sys [36352 2021-07-31] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-06-23] (Intel Corporation -> Intel Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_6f93b7542fd3ead9\gna.sys [88656 2023-08-28] (Intel Corporation -> Intel Corporation)
R3 logi_audio_surround; C:\WINDOWS\System32\DriverStore\FileRepository\logi_audio.inf_amd64_affafe6e263c4f51\logi_audio_surround.sys [44112 2024-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-08-02] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-08-02] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-08-02] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray.sys [89192 2024-09-18] (Logitech Inc -> Logitech, Inc.)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-30] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [231504 2024-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19000 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [26368 2020-08-21] (Daniel Terhell -> Resplendence Software Projects Sp.)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_84ec5c712a6969ea\rt25cx21x64.sys [713112 2022-10-18] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R2 SignalRgbDriver; C:\WINDOWS\System32\Drivers\SignalRgbDriver.sys [19984 2023-10-06] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2023-01-05] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-10-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [57344 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2022-02-28] (Acronis International GmbH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-18] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29680 2023-03-20] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 zttap300; C:\WINDOWS\System32\drivers\zttap300.sys [31744 2023-03-06] (Microsoft Windows Hardware Compatibility Publisher -> ZeroTier Networks LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-18 21:53 - 2024-09-18 21:53 - 000035252 _____ C:\Users\Maugan\Desktop\FRST.txt
2024-09-18 21:47 - 2024-09-18 21:47 - 000000000 ____D C:\Users\Maugan\AppData\Local\BraveSoftware
2024-09-18 21:42 - 2024-09-18 21:42 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-09-18 21:41 - 2024-09-18 21:41 - 001276712 _____ (BraveSoftware Inc.) C:\Users\Maugan\Downloads\BraveBrowserSetup-BRV002.exe
2024-09-18 21:41 - 2024-09-18 21:41 - 001276712 _____ (BraveSoftware Inc.) C:\Users\Maugan\Downloads\BraveBrowserSetup-BRV002 (1).exe
2024-09-18 21:41 - 2024-09-18 21:41 - 000000000 ____D C:\Program Files\BraveSoftware
2024-09-18 19:16 - 2024-09-18 19:16 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\VLC
2024-09-18 18:58 - 2024-09-18 18:58 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2024-09-18 18:58 - 2024-09-18 18:58 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2024-09-18 18:52 - 2024-09-18 18:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-09-18 18:52 - 2024-09-18 18:52 - 000000000 ____D C:\Program Files\LGHUB
2024-09-16 19:05 - 2024-09-16 19:05 - 003539144 _____ (Nicolas Coolman) C:\Users\Maugan\ZHPSuite.exe
2024-09-15 21:10 - 2024-09-18 21:51 - 000000000 ____D C:\Users\Maugan\AppData\Local\Malwarebytes
2024-09-15 21:10 - 2024-09-15 21:10 - 000002105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-09-15 21:10 - 2024-09-15 21:10 - 000002093 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-09-15 21:10 - 2024-09-15 21:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-09-15 21:10 - 2024-09-15 21:10 - 000000000 ____D C:\Program Files\Malwarebytes
2024-09-15 21:02 - 2024-09-15 21:02 - 008790880 _____ (Malwarebytes) C:\Users\Maugan\Desktop\adwcleaner_8.4.2.exe
2024-09-15 21:00 - 2024-09-15 21:00 - 000000888 _____ C:\Users\Maugan\Desktop\ZHPCleaner.lnk
2024-09-15 18:17 - 2024-09-15 18:17 - 000000000 ____D C:\Users\Maugan\AppData\Local\b1
2024-09-15 17:58 - 2024-09-18 21:53 - 000000000 ____D C:\FRST
2024-09-15 17:57 - 2024-09-16 19:05 - 002397696 _____ (Farbar) C:\Users\Maugan\Desktop\FRST64.exe
2024-09-15 17:56 - 2024-09-16 19:08 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\ZHP
2024-09-15 17:56 - 2024-09-16 19:05 - 000000737 _____ C:\Users\Maugan\Desktop\ZHPSuite.lnk
2024-09-15 17:56 - 2024-09-15 21:00 - 000000000 ____D C:\Users\Maugan\AppData\Local\ZHP
2024-09-15 15:04 - 2024-09-15 15:04 - 000096457 _____ C:\Users\Maugan\Desktop\20240909_0746_JustificatifAchat_SNCFCONNECT.pdf
2024-09-15 15:04 - 2024-09-15 15:04 - 000046224 _____ C:\Users\Maugan\Desktop\20240911_1112_JustificatifAchat_SNCFCONNECT.pdf
2024-09-01 18:59 - 2024-09-01 18:59 - 000002264 _____ C:\Users\Maugan\AppData\LocalLow\3f8a08924159e017c76c7de64b61c43fb8f4494d3336fd30e571426b7c08a2ac
2024-08-30 14:20 - 2024-07-16 19:43 - 000784048 _____ (Intel) C:\WINDOWS\system32\libvpl.dll
2024-08-30 14:20 - 2024-07-16 19:43 - 000668792 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll
2024-08-30 14:20 - 2024-07-16 19:42 - 000979160 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2024-08-30 14:20 - 2024-07-16 19:42 - 000737776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2024-08-30 14:20 - 2024-07-16 19:41 - 000621816 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2024-08-30 14:20 - 2024-07-16 19:41 - 000590448 _____ C:\WINDOWS\SysWOW64\IntelControlLib32.dll
2024-08-30 14:20 - 2024-07-16 19:41 - 000480936 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 002115392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-08-30 14:20 - 2024-07-16 19:40 - 002115392 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-08-30 14:20 - 2024-07-16 19:40 - 002039104 _____ C:\WINDOWS\system32\ze_intel_gpu_raytracing.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 001673536 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-08-30 14:20 - 2024-07-16 19:40 - 001673536 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-08-30 14:20 - 2024-07-16 19:40 - 001463000 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 001463000 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 001305296 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 001305296 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 000792280 _____ C:\WINDOWS\system32\ze_loader.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 000560856 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2024-08-30 14:20 - 2024-07-16 19:40 - 000349912 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2024-08-30 14:20 - 2024-07-16 19:39 - 027984088 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2024-08-30 14:20 - 2024-07-16 19:39 - 020707944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2024-08-30 14:20 - 2024-07-16 19:39 - 000331344 _____ C:\WINDOWS\system32\ControlLib.dll
2024-08-30 14:20 - 2024-07-16 19:39 - 000277496 _____ C:\WINDOWS\SysWOW64\ControlLib32.dll
2024-08-22 19:10 - 2024-08-22 19:10 - 000026169 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-22 19:10 - 2024-08-22 19:10 - 000026169 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-02 23:39 - 2024-07-02 23:39 - 000009322 _____ C:\Users\Maugan\Documents\bali.xlsx
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-18 21:44 - 2023-07-17 12:49 - 000000000 ____D C:\Users\Maugan\AppData\Local\D3DSCache
2024-09-18 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-18 21:41 - 2021-07-31 18:29 - 000000000 ____D C:\Program Files (x86)\Steam
2024-09-18 21:37 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-18 21:37 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-18 21:37 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-18 20:32 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-09-18 20:23 - 2021-10-22 21:50 - 000000000 ____D C:\Users\Maugan\AppData\Local\CrashDumps
2024-09-18 19:29 - 2023-12-26 21:47 - 000000000 ____D C:\WINDOWS\NvOptimizerLog
2024-09-18 19:14 - 2023-07-19 01:01 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-09-18 19:14 - 2022-10-11 19:08 - 000002085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-09-18 19:13 - 2021-07-31 17:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-18 18:58 - 2023-07-19 01:00 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-18 18:52 - 2023-09-01 22:01 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\G HUB
2024-09-18 18:52 - 2023-08-02 22:38 - 000000000 ____D C:\Users\Maugan\AppData\Local\LGHUB
2024-09-18 18:51 - 2024-05-26 23:23 - 000003108 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-09-18 18:51 - 2024-02-18 17:29 - 000003100 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-09-18 18:51 - 2023-07-19 01:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-18 18:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-09-18 18:51 - 2021-07-31 18:44 - 000000000 ____D C:\Program Files\TeamViewer
2024-09-18 18:51 - 2021-07-31 17:55 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-18 18:50 - 2023-02-14 01:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-09-18 18:50 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-09-18 18:49 - 2023-09-05 16:31 - 000000000 ____D C:\Users\Maugan\AppData\LocalLow\Temp
2024-09-18 18:48 - 2023-08-12 23:40 - 000000000 ___RD C:\Users\Maugan\Desktop\Logiciel
2024-09-18 18:47 - 2021-07-31 18:46 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\discord
2024-09-18 18:43 - 2021-10-23 16:02 - 000000000 ____D C:\Program Files\VideoLAN
2024-09-18 18:43 - 2021-07-31 18:45 - 000000000 ____D C:\Users\Maugan\AppData\Local\Discord
2024-09-18 18:40 - 2023-07-19 00:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-16 19:05 - 2023-07-18 17:36 - 000000000 ____D C:\Users\Maugan
2024-09-15 21:38 - 2023-07-17 12:49 - 000000000 ____D C:\Users\Maugan\AppData\Local\AMD_Common
2024-09-15 21:10 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-09-15 20:57 - 2023-09-20 23:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2024-09-15 18:16 - 2021-07-31 18:21 - 000000000 ____D C:\ProgramData\Package Cache
2024-09-15 17:57 - 2021-10-23 03:36 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Excel
2024-09-15 17:15 - 2023-12-27 18:07 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Word
2024-09-15 12:54 - 2023-01-17 10:03 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-11 22:43 - 2023-10-11 01:19 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-09-11 22:43 - 2023-07-19 00:58 - 000512472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-11 21:39 - 2021-07-31 18:39 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-09-11 21:36 - 2022-12-22 18:24 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\EasyAntiCheat
2024-09-11 19:05 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 19:04 - 2023-07-19 00:59 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-11 19:00 - 2021-07-31 19:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-11 18:59 - 2021-07-31 19:38 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-11 18:48 - 2023-07-19 01:01 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-11 18:48 - 2023-07-19 01:01 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-08 23:51 - 2023-08-12 23:40 - 000000000 ___RD C:\Users\Maugan\Desktop\Games
2024-09-08 15:00 - 2023-03-07 01:05 - 000000000 ____D C:\Program Files\AMD
2024-09-07 16:37 - 2021-07-31 18:00 - 000000000 ____D C:\Users\Maugan\AppData\Local\Packages
2024-09-07 16:27 - 2021-07-31 18:00 - 000000000 ____D C:\ProgramData\Packages
2024-09-02 21:53 - 2022-10-20 11:16 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-09-02 21:53 - 2022-10-20 11:16 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-09-02 21:53 - 2022-08-07 21:24 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-09-02 21:53 - 2022-08-07 21:24 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-09-02 21:52 - 2024-02-18 14:11 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-09-02 21:52 - 2022-08-07 21:24 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-09-02 21:52 - 2022-08-07 21:24 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-09-02 21:52 - 2022-08-07 21:24 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-23 13:55 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-08-23 06:02 - 2023-08-02 22:38 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\lghub
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\schemas
2024-08-22 19:12 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2024-08-22 19:12 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
==================== Fichiers à la racine de certains dossiers ========
2024-09-16 19:05 - 2024-09-16 19:05 - 003539144 _____ (Nicolas Coolman) C:\Users\Maugan\ZHPSuite.exe
2021-07-31 22:19 - 2022-08-19 13:53 - 000007605 _____ () C:\Users\Maugan\AppData\Local\Resmon.ResmonCfg
==================== SigCheckExt =========================
2021-07-31 23:01 - 2015-06-02 10:50 - 000005120 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\acpimof_ocpanel.dll
2024-09-16 19:05 - 2024-09-16 19:05 - 003539144 _____ (Nicolas Coolman) C:\Users\Maugan\ZHPSuite.exe
2024-09-15 17:57 - 2024-09-16 19:05 - 002397696 _____ (Farbar) C:\Users\Maugan\Desktop\FRST64.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{0915d1be-9827-11ec-93b6-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {0915d1be-9827-11ec-93b6-806e6f6e6963}
device partition=\Device\HarddiskVolume6
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
Chargeur de démarrage Windows
-----------------------------
identificateur {4f61ee72-f21f-11eb-bd0a-f39e6784c6b0}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{4f61ee73-f21f-11eb-bd0a-f39e6784c6b0}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{4f61ee73-f21f-11eb-bd0a-f39e6784c6b0}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{4f61ee78-f21f-11eb-bd0a-f39e6784c6b0}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{4f61ee78-f21f-11eb-bd0a-f39e6784c6b0}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {4f61ee78-f21f-11eb-bd0a-f39e6784c6b0}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================