Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01-09-2021
Exécuté par Sandrine (administrateur) sur DESKTOP-JPP25VA (LENOVO 80QH) (07-09-2021 08:22:08)
Exécuté depuis C:\Users\sgrbo\Desktop
Profils chargés: Sandrine
Platform: Windows 10 Home Version 1909 18363.1556 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(GameHouse Europe B.V. -> RealNetworks, Inc.) C:\Program Files (x86)\Online Games Manager\ogmservice.exe
(INDEX EDUCATION SASU -> Index Education) C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe
(PLARIUM GLOBAL LTD. -> ) C:\Users\sgrbo\AppData\Local\Plarium\PlariumPlay\PlariumPlayClientService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [916184 2014-07-02] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6613896 2016-06-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8091424 2021-08-31] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Tray Temperature] => C:\Program Files (x86)\AWS\MiniBug.exe 1
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3651091238-137905499-632287878-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-03-23] (Valve -> Valve Corporation)
HKU\S-1-5-21-3651091238-137905499-632287878-1001\...\Run: [PlariumPlay] => C:\Users\sgrbo\AppData\Local\Plarium\PlariumPlay\PlariumPlay --args -tray-start
HKU\S-1-5-21-3651091238-137905499-632287878-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33249248 2021-07-13] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3651091238-137905499-632287878-1001\...\Run: [ApowerREC] => C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe
HKU\S-1-5-21-3651091238-137905499-632287878-1001\...\Run: [upjers Home] => C:\Users\sgrbo\AppData\Local\Programs\upjers-playground2\upjers Home.exe [123842848 2021-07-08] (upjers GmbH -> upjers GmbH)
HKU\S-1-5-21-3651091238-137905499-632287878-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-3651091238-137905499-632287878-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3145920 2021-09-02] (Electronic Arts, Inc. -> Electronic Arts)
HKLM\...\Windows x64\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9W.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\WINDOWS\system32\CNMLM9W.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.63\Installer\chrmstp.exe [2021-09-01] (Google LLC -> Google LLC)
Startup: C:\Users\sgrbo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GigaTribe.lnk [2018-05-23]
ShortcutTarget: GigaTribe.lnk -> C:\Program Files (x86)\GigaTribe\gigatribe.exe (Gigatribe -> Gigatribe)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {08235A98-2D39-4A5C-BC2C-3BDDABADBACD} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {0A2D6C8C-A5F7-4187-9534-FF4FEBAC0416} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-26] (Google Inc -> Google Inc.)
Task: {19CD93FA-682A-4A30-B3F4-59BB9143F243} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
Task: {4CEC48CA-8748-4468-9A6C-563E99ED2FCF} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {525EBD11-2912-4062-8302-C649A4FF35B1} - System32\Tasks\CorelUpdateHelperTask-325850898BFFDA2769BAECAA1DA8A4E9 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3774160 2021-01-21] (Corel Corporation -> Corel Corporation)
Task: {5AEE4362-2486-4916-AEB1-776DA721E382} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F333A85-903C-416C-A385-1EFF498D3718} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B6505EC-39AD-4952-A221-FC9564FC1F2F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [673720 2021-08-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {8958C4B1-F89B-40E1-BC16-06F5061BA3D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-26] (Google Inc -> Google Inc.)
Task: {9438A3E1-1122-4FEB-85F1-17A87F20CA19} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3774160 2021-01-21] (Corel Corporation -> Corel Corporation)
Task: {9C2FB2D8-598F-493E-B43D-15AC002A3EB0} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {9E31C7A7-E11B-490F-8102-1051825D1A82} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BA5920D8-3CBF-4383-816B-0E6BC1F4A56C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DC42A140-995D-4CE3-922D-6DC878FA91E9} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-3651091238-137905499-632287878-1001 => C:\Users\sgrbo\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe
Task: {DD3F79B5-CF40-4DCE-8C3E-E2A219F0E848} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {DF716847-7B16-4FA9-9EC3-63B80CFE863C} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{19f3e633-e79e-4242-81a2-0caf7e61995a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{488f7696-999d-4a13-a500-4bac92af90e6}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{bc44ab9e-1af5-44ea-8a75-2f315bd90460}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d79f2b79-21f5-4ee8-a56c-a1d663d66a72}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\sgrbo\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\sgrbo\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-01]
Edge DownloadDir: Default -> C:\Users\sgrbo\Downloads

FireFox:
========
FF DefaultProfile: aov9js4v.Utilisateur par défaut-1522051753298
FF DefaultProfile: y1npv809.default
FF ProfilePath: C:\Users\sgrbo\AppData\Roaming\Mozilla\Firefox\Profiles\aov9js4v.Utilisateur par défaut-1522051753298 [2021-09-07]
FF Homepage: Mozilla\Firefox\Profiles\aov9js4v.Utilisateur par défaut-1522051753298 -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=MO150601&iDate=2020-11-10 10:26:11&bName=
FF NewTab: Mozilla\Firefox\Profiles\aov9js4v.Utilisateur par défaut-1522051753298 -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=MO150601&iDate=2020-11-10 10:26:11&bName=
FF SearchPlugin: C:\Users\sgrbo\AppData\Roaming\Mozilla\Firefox\Profiles\aov9js4v.Utilisateur par défaut-1522051753298\searchplugins\mysearchengine.xml [2020-11-22]
FF ProfilePath: C:\Users\sgrbo\AppData\Roaming\Mozilla\Firefox\Profiles\a7xa1rd2.default [2020-11-22]
FF Homepage: Mozilla\Firefox\Profiles\a7xa1rd2.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=MO150601&iDate=2020-11-10 10:26:11&bName=
FF NewTab: Mozilla\Firefox\Profiles\a7xa1rd2.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=MO150601&iDate=2020-11-10 10:26:11&bName=
FF SearchPlugin: C:\Users\sgrbo\AppData\Roaming\Mozilla\Firefox\Profiles\a7xa1rd2.default\searchplugins\mysearchengine.xml [2020-11-22]
FF ProfilePath: C:\Users\sgrbo\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\y1npv809.default [2021-09-05]
FF Notifications: Moonchild Productions\Pale Moon\Profiles\y1npv809.default -> hxxps://mail.google.com
FF Extension: (Français (FR) Language Pack) - C:\Users\sgrbo\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\y1npv809.default\Extensions\langpack-fr@palemoon.org.xpi [2021-09-05] [] [non signé]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-03-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-03-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin HKU\S-1-5-21-3651091238-137905499-632287878-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\sgrbo\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-30] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\sgrbo\AppData\Local\Google\Chrome\User Data\Default [2021-09-07]
CHR Notifications: Default -> hxxps://fr.dresslily.com; hxxps://fr.padlet.com; hxxps://mail.google.com; hxxps://mradio.fr; hxxps://padlet.com; hxxps://www.education.gouv.fr; hxxps://www.fnac.com; hxxps://www.joom.com; hxxps://www2.news-back.best
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\sgrbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\sgrbo\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-06-15]
CHR Profile: C:\Users\sgrbo\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-15]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2016-06-28] () [Fichier non signé]
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2018-03-26] (BitRaider LLC -> BitRaider, LLC)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-08-31] (Dropbox, Inc -> Dropbox, Inc.)
R2 MajIndexEducationService; C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe [3241064 2019-07-30] (INDEX EDUCATION SASU -> Index Education)
R2 ogmservice; C:\Program Files (x86)\Online Games Manager\ogmservice.exe [582544 2016-07-13] (GameHouse Europe B.V. -> RealNetworks, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557144 2021-09-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3475680 2021-09-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Plarium Play Client Service; C:\Users\sgrbo\AppData\Local\Plarium\PlariumPlay\PlariumPlayClientService.exe [89048 2020-02-01] (PLARIUM GLOBAL LTD. -> )
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2018-04-04] (BitRaider -> BitRaider)
S3 busbcrw; C:\WINDOWS\System32\Drivers\bucrw64.sys [25600 2018-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries, Ltd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 qcusbnet; C:\WINDOWS\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-08-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-08-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-04] (Microsoft Windows -> Microsoft Corporation)
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-07 08:22 - 2021-09-07 08:26 - 000021294 _____ C:\Users\sgrbo\Desktop\FRST.txt
2021-09-07 08:20 - 2021-09-07 08:25 - 000000000 ____D C:\FRST
2021-09-07 08:18 - 2021-09-07 08:18 - 002302464 _____ (Farbar) C:\Users\sgrbo\Desktop\FRST64.exe
2021-09-07 08:07 - 2021-09-07 08:12 - 000000000 ____D C:\WINDOWS\Panther
2021-09-07 08:07 - 2021-09-07 08:07 - 000000000 ___HD C:\$WINDOWS.~BT
2021-09-07 07:50 - 2021-09-07 07:50 - 000000000 ___HD C:\$WinREAgent
2021-09-05 21:19 - 2021-09-05 21:19 - 000025996 _____ C:\Users\sgrbo\Downloads\Lignes_seyes_2mm.ttf
2021-09-05 21:19 - 2021-09-05 21:19 - 000019668 _____ C:\Users\sgrbo\Downloads\Lignes.ttf
2021-09-05 21:19 - 2021-09-05 21:19 - 000018752 _____ C:\Users\sgrbo\Downloads\Lignes_seyes_3mm.ttf
2021-09-04 15:18 - 2021-09-04 15:18 - 003978049 _____ C:\Users\sgrbo\Downloads\calendrier-du-rendez-vous-de-carri-re-70411.pdf
2021-09-03 17:51 - 2021-09-03 17:51 - 000002681 _____ C:\Users\sgrbo\Desktop\Teetsh.lnk
2021-09-03 17:51 - 2021-09-03 17:51 - 000000000 ____D C:\Users\sgrbo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2021-09-03 17:06 - 2021-09-03 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-09-01 18:27 - 2021-09-01 18:27 - 000064121 _____ C:\Users\sgrbo\Downloads\infographie---synth-se-des-mesures-sanitaires-91637_0.pdf
2021-09-01 18:27 - 2021-09-01 18:27 - 000064121 _____ C:\Users\sgrbo\Downloads\infographie---synth-se-des-mesures-sanitaires-91637_0 (1).pdf
2021-09-01 17:46 - 2021-09-01 17:46 - 000898193 _____ C:\Users\sgrbo\Downloads\faq-coronavirus-71379.pdf
2021-09-01 17:43 - 2021-09-01 17:43 - 000898209 _____ C:\Users\sgrbo\Downloads\faq-coronavirus-71379-1.pdf
2021-09-01 14:39 - 2021-09-01 14:39 - 000000000 ____D C:\Users\sgrbo\.config
2021-09-01 08:22 - 2021-09-01 08:22 - 000048271 _____ C:\Users\sgrbo\Downloads\Vinted-FR-S287096171.pdf
2021-09-01 07:43 - 2021-09-01 07:43 - 000565299 _____ C:\Users\sgrbo\Downloads\dsden34-note-information-ppcr-2017.pdf
2021-09-01 07:19 - 2021-09-01 07:19 - 000025164 _____ C:\Users\sgrbo\Downloads\2021_08_BP_aout.pdf
2021-08-31 01:57 - 2021-08-31 01:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-08-31 01:57 - 2021-08-31 01:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-08-31 01:57 - 2021-08-31 01:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-08-31 01:57 - 2021-08-31 01:57 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-08-30 11:33 - 2021-08-30 11:33 - 000003330 _____ C:\Users\sgrbo\Downloads\LISTE GS CP.pdf
2021-08-30 07:44 - 2021-08-30 07:44 - 018258711 _____ C:\Users\sgrbo\Downloads\22310888_coloriages_codes_calcul_CE2.pdf
2021-08-29 17:37 - 2021-08-29 17:37 - 000123388 _____ C:\Users\sgrbo\Downloads\Description-des-modules-CMR.pdf
2021-08-28 22:32 - 2021-08-28 22:32 - 001052101 _____ C:\Users\sgrbo\Downloads\les amis lapins .fr.pdf
2021-08-28 22:25 - 2021-08-28 22:25 - 000887887 _____ C:\Users\sgrbo\Downloads\frida la brebis .fr.pdf
2021-08-27 12:55 - 2021-08-27 12:55 - 000092425 _____ C:\Users\sgrbo\Downloads\Bordereau-Vinted-2215795198.pdf
2021-08-25 17:31 - 2021-08-25 17:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-08-25 16:43 - 2021-08-25 17:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-08-24 10:24 - 2021-08-24 10:24 - 000000000 ____D C:\Users\sgrbo\AppData\Local\ATI
2021-08-23 18:16 - 2021-08-23 18:16 - 000235835 _____ C:\Users\sgrbo\Downloads\emploi du temps 2021 2022.pdf
2021-08-23 13:37 - 2021-08-23 13:37 - 000793137 _____ C:\Users\sgrbo\Downloads\exercices le matériel les consignes cp.pdf
2021-08-22 13:33 - 2021-08-22 13:33 - 000704519 _____ C:\Users\sgrbo\Downloads\EMPLOI-DU-TEMPS.odp
2021-08-22 13:08 - 2021-08-22 13:08 - 000626421 _____ C:\Users\sgrbo\Downloads\flyer ap 202122PDF.pdf
2021-08-21 18:54 - 2021-08-21 18:54 - 000108446 _____ C:\Users\sgrbo\Downloads\activités afr 202012022 fiche individ.pdf
2021-08-21 16:34 - 2021-08-21 16:34 - 000060164 _____ C:\Users\sgrbo\Downloads\lion-neutre.pdf
2021-08-20 16:17 - 2021-08-20 16:17 - 000106184 _____ C:\Users\sgrbo\Downloads\Rituel individuel date P1 2021.pdf
2021-08-20 16:14 - 2021-08-20 16:14 - 000693713 _____ C:\Users\sgrbo\Downloads\écriture prénoms trame terre ciel modifiable.odg
2021-08-20 13:41 - 2021-08-20 13:41 - 000477113 _____ C:\Users\sgrbo\Downloads\lecture-mots-outils.pdf
2021-08-19 21:20 - 2021-08-19 21:20 - 005560082 _____ C:\Users\sgrbo\Downloads\exercices.pdf
2021-08-19 21:20 - 2021-08-19 21:20 - 005560082 _____ C:\Users\sgrbo\Downloads\exercices (1).pdf
2021-08-19 17:19 - 2021-08-19 17:19 - 005920788 _____ C:\Users\sgrbo\Desktop\connectelit@gmail.com_20201113_114330 (1).pdf
2021-08-19 09:58 - 2021-08-19 17:58 - 000000000 ____D C:\Program Files\ruxim
2021-08-18 13:35 - 2021-08-18 13:35 - 000211115 _____ C:\Users\sgrbo\Downloads\articulations coller les gommettes.pdf
2021-08-18 11:12 - 2021-08-18 11:13 - 004347410 _____ C:\Users\sgrbo\Downloads\Bacandy - Les nombres jusqu'à 6.pdf
2021-08-17 16:48 - 2021-08-25 08:40 - 000001443 _____ C:\Users\Public\Desktop\Les Sims 4.lnk
2021-08-17 16:48 - 2021-08-17 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les Sims 4
2021-08-17 16:10 - 2021-08-17 16:10 - 000001062 _____ C:\Users\Public\Desktop\Origin.lnk
2021-08-17 16:09 - 2021-08-17 16:09 - 000000000 ____D C:\Users\sgrbo\.QtWebEngineProcess
2021-08-17 16:09 - 2021-08-17 16:09 - 000000000 ____D C:\Users\sgrbo\.Origin
2021-08-17 16:07 - 2021-08-17 16:08 - 239034736 _____ (Electronic Arts) C:\Users\sgrbo\Downloads\OriginSetup.exe
2021-08-17 13:57 - 2021-08-17 13:58 - 000000000 ____D C:\Sims4
2021-08-17 09:27 - 2021-08-17 09:27 - 002374408 _____ C:\Users\sgrbo\Downloads\CP - Période 1 - Travail à la maison en cas fermeture classe 1 semaine.pdf
2021-08-16 15:39 - 2021-08-16 15:39 - 000093697 _____ C:\Users\sgrbo\Downloads\syngenta_france_-_christophe_cambriel_viticulteur_a_ornaisons_dans_laude_-_2016-11-17.pdf
2021-08-11 19:32 - 2021-08-11 19:32 - 000184981 _____ C:\Users\sgrbo\Downloads\jeu_pop_it.pdf
2021-08-11 12:07 - 2021-08-11 12:08 - 015406231 _____ C:\Users\sgrbo\Downloads\scanst.zip
2021-08-11 12:07 - 2021-08-11 12:07 - 000280332 _____ C:\Users\sgrbo\Downloads\connectelit@gmail.com_20210803_183409.pdf
2021-08-10 18:48 - 2021-09-05 20:21 - 000000000 ____D C:\Users\sgrbo\Desktop\été 2021
2021-08-10 18:48 - 2021-08-29 17:51 - 000000000 ____D C:\Users\sgrbo\Desktop\vêt aout 21
2021-08-10 18:47 - 2021-08-10 18:47 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-08-09 11:10 - 2021-08-09 11:11 - 009676341 _____ C:\Users\sgrbo\Downloads\Mémo CP 2021-2022.pdf
2021-08-09 11:02 - 2021-08-09 11:02 - 000146785 _____ C:\Users\sgrbo\Downloads\projet par séances.pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-07 08:21 - 2018-02-05 18:44 - 000000000 ____D C:\Users\sgrbo\AppData\LocalLow\Mozilla
2021-09-07 08:07 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-07 07:54 - 2018-08-26 08:40 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-06 19:41 - 2019-09-17 20:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-06 18:11 - 2021-05-19 18:29 - 000003342 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-325850898BFFDA2769BAECAA1DA8A4E9
2021-09-06 11:55 - 2018-07-15 18:06 - 000000000 ____D C:\Users\sgrbo\AppData\Local\D3DSCache
2021-09-05 21:01 - 2018-05-01 14:55 - 000000000 ____D C:\Program Files (x86)\Steam
2021-09-05 20:54 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-05 20:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-05 20:54 - 2018-02-05 18:34 - 000000000 ____D C:\Users\sgrbo\AppData\Local\Packages
2021-09-05 20:50 - 2019-12-21 19:57 - 000213882 _____ C:\Users\sgrbo\Documents\Duplicate Cleaner log.txt
2021-09-05 20:48 - 2020-02-01 21:16 - 000000000 ____D C:\WINDOWS\Minidump
2021-09-05 20:21 - 2021-05-31 18:07 - 000000000 ____D C:\Users\sgrbo\Desktop\Nouveau dossier
2021-09-05 20:21 - 2019-12-10 20:25 - 000000000 ____D C:\Users\sgrbo\Desktop\Guillaume
2021-09-05 20:21 - 2019-08-05 09:59 - 000000000 ____D C:\Users\sgrbo\Desktop\Récup écran
2021-09-05 20:21 - 2018-02-04 23:08 - 000000000 ___RD C:\Users\sgrbo\Documents\LC
2021-09-05 20:21 - 2018-02-04 22:38 - 000000000 ___RD C:\Users\sgrbo\Documents\ECOLE
2021-09-05 19:53 - 2018-03-26 11:18 - 000000000 ____D C:\Program Files\Pale Moon
2021-09-05 14:16 - 2018-05-02 15:04 - 000000000 ____D C:\ProgramData\Origin
2021-09-05 14:01 - 2020-03-26 20:31 - 000000000 ____D C:\Users\sgrbo\AppData\Local\Origin
2021-09-04 17:52 - 2020-06-17 07:38 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-04 13:32 - 2020-03-28 18:45 - 000000000 ____D C:\Users\sgrbo\AppData\Local\CrashDumps
2021-09-03 17:11 - 2018-02-07 09:14 - 000000000 ____D C:\Users\sgrbo\AppData\Local\Dropbox
2021-09-03 17:10 - 2018-02-07 09:14 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-09-02 17:21 - 2018-05-02 15:05 - 000000000 ____D C:\Users\sgrbo\AppData\Roaming\Origin
2021-09-02 17:20 - 2018-05-02 15:03 - 000000000 ____D C:\Program Files (x86)\Origin
2021-09-01 17:51 - 2018-02-07 09:21 - 000000000 ___RD C:\Users\sgrbo\Dropbox
2021-09-01 14:39 - 2019-09-17 20:36 - 000000000 ____D C:\Users\sgrbo
2021-09-01 07:19 - 2018-02-05 20:42 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-09-01 07:15 - 2020-04-02 19:02 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-08-25 17:31 - 2018-03-17 16:40 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-08-25 17:31 - 2018-03-17 16:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-08-20 19:39 - 2020-01-09 21:02 - 000011919 _____ C:\Users\sgrbo\Documents\Vinted - réductions.ods
2021-08-19 18:55 - 2019-09-17 21:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-19 17:59 - 2019-03-19 06:37 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2021-08-19 09:58 - 2018-11-16 19:08 - 000000000 ____D C:\Program Files\rempl
2021-08-17 18:52 - 2018-02-04 22:49 - 000000000 ____D C:\Users\sgrbo\Documents\Electronic Arts
2021-08-17 18:36 - 2018-02-05 18:34 - 000000000 ____D C:\ProgramData\Package Cache
2021-08-17 16:48 - 2018-04-27 18:59 - 000000000 ____D C:\ProgramData\Electronic Arts
2021-08-17 16:10 - 2018-05-02 15:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2021-08-17 15:22 - 2018-02-06 19:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-17 15:12 - 2018-02-06 19:14 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-15 21:44 - 2020-06-17 07:38 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-15 21:44 - 2020-06-17 07:38 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-14 23:28 - 2019-02-05 18:37 - 000000000 ____D C:\Users\sgrbo\AppData\Roaming\vlc
2021-08-14 20:58 - 2019-02-05 18:37 - 000000000 ____D C:\Users\sgrbo\AppData\Roaming\dvdcss
2021-08-14 20:53 - 2018-02-07 09:14 - 000001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-08-14 20:53 - 2018-02-07 09:14 - 000001218 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-08-13 09:24 - 2019-09-17 21:02 - 000004282 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-08-13 09:24 - 2019-09-17 21:02 - 000004050 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-08-12 16:18 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF

==================== Fichiers à la racine de certains dossiers ========

2018-09-06 19:03 - 2020-11-10 12:25 - 000006144 _____ () C:\Users\sgrbo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-02-01 10:56 - 2020-02-08 16:43 - 000004377 _____ () C:\Users\sgrbo\AppData\Local\PlariumPlay.log

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================