Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2021 01
Exécuté par Romio (administrateur) sur DESKTOP-FBQVH2D (Micro-Star International Co., Ltd. MS-7B51) (31-05-2021 17:43:22)
Exécuté depuis C:\Users\romio\Downloads
Profils chargés: Romio
Platform: Windows 10 Pro Version 20H2 19042.985 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\Sennheiser\SA3\Sennheiser\CxUtilSvc.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\Sennheiser\SA3\Sennheiser\SmartAudio3.exe
(Conexant Systems, Inc.) [Fichier non signé] C:\Windows\SysWOW64\UIUMPSrv.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(EPOS Group A/S -> ) C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuite.exe
(EPOS Group A/S -> ) C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuiteService
(Flexera Software LLC -> InstallShield Software Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\iKernel.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28>
(Guillemot Corporation -> Guillemot Corporation) C:\Windows\SysWOW64\HerculesWiFiService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(ND_Apps -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d71d3f5ea7618cbb\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe <2>
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\AMSPTelemetryService.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\module\10011\8.2.1138\8.2.1138\TmsaInstance64.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\DiamondRing\DrSDKCaller.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe <4>
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe [1253232 2021-03-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SmartAudio] => C:\Program Files\Sennheiser\SA3\Sennheiser\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ctfmon] => C:\Windows\System32\ctfmon.exe [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [321184 2021-04-09] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [213696 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1233328 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-09-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKU\S-1-5-21-2887478810-2401684599-1784179501-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2887478810-2401684599-1784179501-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2887478810-2401684599-1784179501-1001\...\Run: [Wargaming.net Game Center] => K:\Wargaming.net\GameCenter\wgc.exe [2143168 2021-05-27] (Wargaming.net Limited -> Wargaming.net)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\EPOS Gaming Suite.lnk [2021-05-30]
ShortcutTarget: EPOS Gaming Suite.lnk -> C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuite.exe (EPOS Group A/S -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {848D24BF-E817-475F-8ABA-5A4CF748CF7B} - System32\Tasks\InstallShield® Setup Engine Kernel => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\iKernel.exe [72880 2020-10-16] (Flexera Software LLC -> InstallShield Software Corporation) [Fichier non signé]
Task: {85012CE4-CA7C-49AC-BCCD-042795CE441E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {96FAF7F9-C1E9-4EC0-A918-64AC9C687B30} - System32\Tasks\Optimize Thumbnail Cache => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\isupdate.exe [61104 2020-09-26] (Flexera Software LLC -> InstallShield®) [Fichier non signé]
Task: {A20E696E-6DC1-4052-91CF-A0A04CF87932} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {B2B80700-633B-4356-82DD-7A4FEB4FD749} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [930664 2019-09-25] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {EFE1F83B-EC8C-4948-B5D7-D95D150C59F0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-04] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
AutoConfigURL: [HKLM] => hxxp://127.0.0.1:86/
AutoConfigURL: [HKLM-x32] => hxxp://127.0.0.1:86/
AutoConfigURL: [{2305FC54-F92F-4C30-B1AB-E7F8F3244EC4}] => hxxp://127.0.0.1:86/
AutoConfigURL: [{449DDA03-D508-4E35-8264-380F5D70756C}] => hxxp://127.0.0.1:86/
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d9372309-4a02-4db4-931e-ef59d74c97ad}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ecba96f9-da74-44cb-9da3-8a3ee187a53b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{ecba96f9-da74-44cb-9da3-8a3ee187a53b}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ee813e0d-7452-42ee-909c-c3fd597d33c2}: [DhcpNameServer] 192.168.43.1
ManualProxies: 0hxxp://127.0.0.1:86/
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\romio\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-30]
FireFox:
========
FF DefaultProfile: ph2bvm6s.default
FF ProfilePath: C:\Users\romio\AppData\Roaming\Mozilla\Firefox\Profiles\ph2bvm6s.default [2021-05-25]
FF ProfilePath: C:\Users\romio\AppData\Roaming\Mozilla\Firefox\Profiles\ix9eubo6.default-release [2021-05-30]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-04-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-04-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default [2021-05-31]
CHR StartupUrls: Default -> "hxxp://ecosia.org/"
CHR NewTab: Default -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=chrome&addonversion=3.4.0&method=topbar
CHR DefaultSearchKeyword: Default -> ecosia
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=fr
CHR Extension: (Slides) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-30]
CHR Extension: (Docs) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-30]
CHR Extension: (Google Drive) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-30]
CHR Extension: (YouTube) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-20]
CHR Extension: (Unknown Space) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpjdbdbhiomamecfnjahemfimgjamhjd [2021-04-20]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-05-20]
CHR Extension: (Ecosia Search) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2021-05-20]
CHR Extension: (Sheets) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-30]
CHR Extension: (Grammarly for Chrome) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-05-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-19]
CHR Extension: (Gmail) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-20]
CHR Extension: (Chrome Media Router) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-19]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
R2 Amsp; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [391032 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 AMSPTLM; C:\Program Files\Trend Micro\AMSP\AMSPTelemetryService.exe [250136 2020-12-30] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2776664 2015-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616360 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [456352 2021-04-09] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairMsiPluginService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe [451744 2021-04-09] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [80544 2021-04-09] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CxUtilSvc; C:\Program Files\Sennheiser\SA3\Sennheiser\CxUtilSvc.exe [109184 2021-04-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-01-07] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HerculesWiFi; C:\Windows\SysWOW64\\HerculesWiFiService.exe [78232 2012-09-26] (Guillemot Corporation -> Guillemot Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2547288 2021-05-10] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3487320 2021-05-10] (Electronic Arts, Inc. -> Electronic Arts)
R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1141680 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13688656 2021-03-24] (Adlice -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 TmWscSvc; C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe [401448 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 UIUMPService; C:\Windows\SysWOW64\UIUMPSrv.exe [104960 2021-04-20] (Conexant Systems, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2104.5-0\NisSrv.exe [2599296 2021-04-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2104.5-0\MsMpEng.exe [128360 2021-04-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 EPOSGamingSuiteService; "C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuiteService" /start EPOSGamingSuiteService [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d71d3f5ea7618cbb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d71d3f5ea7618cbb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 CmUpx; C:\Windows\system32\drivers\CmUpx.sys [30184 2021-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60328 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [45984 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [21920 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:\Windows\temp\cpuz150\cpuz150_x64.sys [44832 2021-05-30] (CPUID S.A.R.L.U. -> CPUID)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-04-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-04-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [44080 2018-01-25] (Shaul Eizikovich -> Nefarius Software Solutions)
R0 secnvme; C:\Windows\System32\drivers\secnvme.sys [133944 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [74760 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R3 tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [147672 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S0 tmel; C:\Windows\System32\DRIVERS\tmel.sys [39872 2021-04-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Trend Micro Inc.)
R1 tmeyes; C:\Windows\system32\DRIVERS\tmeyes.sys [673832 2021-04-21] (Microsoft Windows Hardware Compatibility Publisher -> Trend Micro Inc.)
R3 tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [562296 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R1 tmumh; C:\Windows\system32\DRIVERS\TMUMH.sys [161280 2021-03-15] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 tmusa; C:\Windows\system32\DRIVERS\tmusa.sys [137112 2020-07-29] (Trend Micro, Inc. -> Trend Micro, Inc.)
R3 usbaud; C:\Windows\system32\DRIVERS\usbaud64.sys [1911288 2021-04-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
R3 VirtualHID; C:\Windows\System32\drivers\VirtualHID.sys [26768 2020-10-26] (Voyetra Turtle Beach, Inc. -> TurtleBeach)
S3 vmulti; C:\Windows\System32\drivers\vmulti.sys [19304 2018-01-25] (ROCCAT GmbH -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49544 2021-04-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [421112 2021-04-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [73952 2021-04-20] (Microsoft Windows -> Microsoft Corporation)
S3 RTL8192cu; \SystemRoot\System32\drivers\rtwlanu.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-31 17:43 - 2021-05-31 17:43 - 000022400 _____ C:\Users\romio\Downloads\FRST.txt
2021-05-31 17:42 - 2021-05-31 17:43 - 000000000 ____D C:\FRST
2021-05-31 17:42 - 2021-05-31 17:42 - 002299904 _____ (Farbar) C:\Users\romio\Downloads\FRST64-2.1.exe
2021-05-31 17:42 - 2021-05-31 17:42 - 000000000 ____D C:\Users\romio\Downloads\FRST-OlderVersion
2021-05-30 21:38 - 2021-05-30 21:38 - 003279088 _____ (SosVirus) C:\Users\romio\Downloads\Clean_Dns.exe
2021-05-30 21:18 - 2021-05-30 21:28 - 000011720 _____ C:\Users\romio\Desktop\ZHPCleaner (R).html
2021-05-30 21:18 - 2021-05-30 21:28 - 000004304 _____ C:\Users\romio\Desktop\ZHPCleaner (R).txt
2021-05-30 21:14 - 2021-05-30 21:35 - 000009054 _____ C:\Users\romio\Desktop\ZHPCleaner (S).html
2021-05-30 21:14 - 2021-05-30 21:35 - 000002429 _____ C:\Users\romio\Desktop\ZHPCleaner (S).txt
2021-05-30 21:06 - 2021-05-30 21:35 - 000000000 ____D C:\Users\romio\AppData\Roaming\ZHP
2021-05-30 21:06 - 2021-05-30 21:22 - 000000882 _____ C:\Users\romio\Desktop\ZHPCleaner.lnk
2021-05-30 21:06 - 2021-05-30 21:06 - 000000000 ____D C:\Users\romio\AppData\Local\ZHP
2021-05-30 18:20 - 2021-05-30 18:20 - 000030184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\CmUpx.sys
2021-05-30 18:20 - 2021-05-30 18:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPOS
2021-05-30 15:59 - 2021-05-30 15:59 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-05-30 15:59 - 2021-05-30 15:59 - 000002888 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-05-30 15:56 - 2021-05-30 15:56 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-30 15:56 - 2021-05-30 15:56 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-30 15:55 - 2021-05-30 15:55 - 000003794 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-05-30 12:09 - 2021-05-30 12:09 - 000003442 _____ C:\Windows\system32\Tasks\InstallShield® Setup Engine Kernel
2021-05-29 11:44 - 2021-05-30 12:56 - 000000000 ____D C:\Users\romio\AppData\Roaming\slobs-client
2021-05-29 11:44 - 2021-05-29 11:44 - 000000841 _____ C:\Users\Public\Desktop\Streamlabs OBS.lnk
2021-05-29 11:44 - 2021-05-29 11:44 - 000000841 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2021-05-29 11:44 - 2021-05-29 11:44 - 000000000 ____D C:\Users\romio\AppData\Roaming\Streamlabs OBS
2021-05-29 11:44 - 2021-05-29 11:44 - 000000000 ____D C:\Users\romio\AppData\Roaming\slobs-plugins
2021-05-29 11:44 - 2021-05-29 11:44 - 000000000 ____D C:\Users\romio\AppData\Roaming\obs-studio-node-server
2021-05-29 11:44 - 2021-05-29 11:44 - 000000000 ____D C:\Users\romio\AppData\Local\slobs-client-updater
2021-05-29 11:06 - 2021-05-29 11:06 - 000000000 ____D C:\ProgramData\obs-studio-hook
2021-05-29 11:06 - 2021-05-29 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2021-05-26 20:29 - 2021-04-21 09:16 - 000039872 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmel.sys
2021-05-25 18:56 - 2021-05-25 23:09 - 000000000 ____D C:\Users\romio\AppData\LocalLow\Mozilla
2021-05-25 18:56 - 2021-05-25 23:09 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-25 18:56 - 2021-05-25 18:56 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Users\romio\AppData\Roaming\Mozilla
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Users\romio\AppData\Local\Mozilla
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-05-22 16:15 - 2021-05-22 16:15 - 000000000 ____D C:\Users\romio\AppData\Local\Rocket League
2021-05-21 17:06 - 2021-05-21 17:06 - 000000000 ____D C:\ProgramData\Wargaming.net
2021-05-19 21:40 - 2021-05-19 21:40 - 000000000 ____D C:\Windows\LastGood
2021-05-19 21:39 - 2021-05-13 12:38 - 000037656 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 001855184 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-05-19 21:38 - 2021-05-13 20:22 - 001855184 _____ C:\Windows\system32\vulkaninfo.exe
2021-05-19 21:38 - 2021-05-13 20:22 - 001453360 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 001435880 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-05-19 21:38 - 2021-05-13 20:22 - 001435880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-05-19 21:38 - 2021-05-13 20:22 - 001192752 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 001094864 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 001094864 _____ C:\Windows\system32\vulkan-1.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 000948968 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 000948968 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 001514800 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 001166112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000715544 _____ C:\Windows\system32\nvofapi64.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000675104 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000626968 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000575768 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000564000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-05-19 21:38 - 2021-05-13 20:18 - 002106144 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-05-19 21:38 - 2021-05-13 20:18 - 001590576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-05-19 21:38 - 2021-05-13 20:18 - 000811824 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-05-19 21:38 - 2021-05-13 20:18 - 000689952 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-05-19 21:38 - 2021-05-13 20:18 - 000445744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-05-19 21:38 - 2021-05-13 20:17 - 008317232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-05-19 21:38 - 2021-05-13 20:17 - 007434032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-05-19 21:38 - 2021-05-13 20:17 - 004795184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-05-19 21:38 - 2021-05-13 20:17 - 002823472 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-05-19 21:38 - 2021-05-13 20:16 - 000848688 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-05-19 21:38 - 2021-05-13 20:15 - 006159152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-05-19 21:38 - 2021-05-13 12:38 - 000087164 _____ C:\Windows\system32\nvinfo.pb
2021-05-18 20:53 - 2021-05-30 18:19 - 000000032 _____ C:\Users\romio\AppData\Roaming\.machineId
2021-05-17 18:36 - 2021-05-17 18:36 - 000000000 ____D C:\ProgramData\Ubisoft
2021-05-17 18:30 - 2021-05-26 21:46 - 000000000 ____D C:\ProgramData\Trackmania
2021-05-16 16:15 - 2021-05-16 16:15 - 000000000 ____D C:\Users\Public\Documents\ROCCAT
2021-05-16 16:15 - 2021-05-16 16:15 - 000000000 ____D C:\ProgramData\Documents\ROCCAT
2021-05-16 16:15 - 2020-10-26 12:13 - 000026768 _____ (TurtleBeach) C:\Windows\system32\Drivers\VirtualHID.sys
2021-05-16 16:14 - 2021-05-16 16:14 - 000000000 ____D C:\Windows\LastGood.Tmp
2021-05-16 16:13 - 2021-05-16 16:13 - 000000000 ____D C:\Users\romio\AppData\Local\web_engine
2021-05-16 16:13 - 2021-05-16 16:13 - 000000000 ____D C:\Users\romio\.web_engine
2021-05-16 10:16 - 2021-05-16 10:16 - 000115596 _____ C:\Users\romio\Downloads\sfr-facture-0.pdf
2021-05-15 14:59 - 2021-05-15 14:59 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-05-15 14:59 - 2021-05-15 14:59 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-05-15 14:59 - 2021-05-15 14:59 - 001823816 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-05-15 14:59 - 2021-05-15 14:59 - 001687040 _____ C:\Windows\system32\libcrypto.dll
2021-05-15 14:59 - 2021-05-15 14:59 - 001393504 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-05-15 14:59 - 2021-05-15 14:59 - 001314120 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-05-15 14:59 - 2021-05-15 14:59 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-05-15 14:59 - 2021-05-15 14:59 - 000700928 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2021-05-15 14:59 - 2021-05-15 14:59 - 000165888 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-05-15 14:59 - 2021-05-15 14:59 - 000157184 _____ C:\Windows\system32\uwfcsp.dll
2021-05-15 14:59 - 2021-05-15 14:59 - 000153600 _____ C:\Windows\system32\uwfcfgmgmt.dll
2021-05-15 14:59 - 2021-05-15 14:59 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-05-15 14:59 - 2021-05-15 14:59 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2021-05-15 14:59 - 2021-05-15 14:59 - 000011351 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-05-05 21:19 - 2020-11-11 03:54 - 000167280 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudmdm.sys
2021-05-05 21:18 - 2021-05-05 21:18 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-05-05 21:18 - 2020-11-11 03:54 - 000159600 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudbus2.sys
2021-05-01 16:47 - 2021-05-01 16:47 - 000275929 _____ C:\Users\romio\Downloads\2021_Bulletin_Inscription_BBAR_Edition_6 (1).xlsx
2021-05-01 16:27 - 2021-05-01 16:27 - 000275929 _____ C:\Users\romio\Downloads\2021_Bulletin_Inscription_BBAR_Edition_6.xlsx
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-31 17:39 - 2020-09-27 07:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-05-31 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-31 17:21 - 2021-04-20 19:27 - 000000000 ____D C:\Program Files\CCleaner
2021-05-31 17:18 - 2021-04-19 23:14 - 000000000 ____D C:\ProgramData\NVIDIA
2021-05-30 23:07 - 2021-04-20 07:17 - 000000000 ____D C:\ProgramData\Origin
2021-05-30 23:07 - 2021-04-19 23:18 - 000000000 ____D C:\Users\romio\AppData\Roaming\Origin
2021-05-30 23:05 - 2021-04-19 23:17 - 000000000 ____D C:\Users\romio\AppData\Roaming\discord
2021-05-30 22:22 - 2021-04-19 23:07 - 000000000 ____D C:\Users\romio\AppData\Local\Discord
2021-05-30 21:28 - 2021-04-19 23:02 - 001774848 _____ C:\Windows\system32\PerfStringBackup.INI
2021-05-30 21:28 - 2019-12-07 16:50 - 000792920 _____ C:\Windows\system32\perfh00C.dat
2021-05-30 21:28 - 2019-12-07 16:50 - 000150584 _____ C:\Windows\system32\perfc00C.dat
2021-05-30 21:28 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-05-30 21:24 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-05-30 21:22 - 2021-04-19 23:12 - 000000000 ____D C:\Users\romio\AppData\Local\Origin
2021-05-30 21:22 - 2020-09-27 07:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-30 21:21 - 2020-09-27 09:34 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-05-30 21:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2021-05-30 21:21 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-05-30 21:14 - 2021-04-20 07:08 - 000000000 ____D C:\ProgramData\Riot Games
2021-05-30 18:27 - 2021-04-19 23:16 - 000000000 ____D C:\Users\romio\AppData\Roaming\Blitz
2021-05-30 18:19 - 2021-04-19 23:15 - 000000000 ____D C:\Users\romio\AppData\Local\Ubisoft Game Launcher
2021-05-30 18:19 - 2021-04-19 23:07 - 000000000 ____D C:\Users\romio\AppData\Local\CrashDumps
2021-05-30 16:11 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2021-05-30 15:54 - 2021-04-20 20:34 - 000000000 ____D C:\Windows\SysWOW64\TmAMSI
2021-05-30 15:54 - 2021-04-20 20:34 - 000000000 ____D C:\Windows\system32\TmAMSI
2021-05-30 12:09 - 2021-04-19 23:04 - 000003802 _____ C:\Windows\system32\Tasks\Optimize Thumbnail Cache
2021-05-30 09:32 - 2020-09-27 09:36 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-30 09:32 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-30 09:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-05-30 09:31 - 2021-04-20 18:57 - 000000000 ____D C:\ProgramData\Trend Micro
2021-05-29 11:43 - 2021-04-19 23:18 - 000000000 ____D C:\Users\romio\AppData\Roaming\obs-studio
2021-05-29 09:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-05-27 22:22 - 2021-04-19 23:07 - 000000000 ____D C:\Users\romio\AppData\Local\Battle.net
2021-05-27 18:11 - 2021-04-19 23:18 - 000000000 ____D C:\Users\romio\AppData\Roaming\vlc
2021-05-26 22:03 - 2021-04-19 23:07 - 000000000 ____D C:\Users\romio\AppData\Local\D3DSCache
2021-05-26 21:46 - 2021-04-19 23:20 - 000000000 ____D C:\Users\romio\Documents\Trackmania
2021-05-24 21:04 - 2021-04-19 23:18 - 000002256 _____ C:\Users\romio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk
2021-05-22 15:07 - 2021-04-19 22:58 - 000000000 ____D C:\Users\romio
2021-05-22 15:04 - 2021-04-19 23:19 - 000000000 ____D C:\Users\romio\Documents\Fichiers Outlook
2021-05-21 17:09 - 2021-04-19 23:18 - 000000000 ____D C:\Users\romio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-05-20 18:45 - 2021-04-20 07:18 - 000000000 ____D C:\Program Files (x86)\Origin
2021-05-20 17:56 - 2021-04-19 23:12 - 000000000 ____D C:\Users\romio\AppData\Local\NVIDIA
2021-05-16 16:15 - 2021-04-19 23:20 - 000000000 ____D C:\Users\romio\Documents\ROCCAT
2021-05-16 15:55 - 2021-04-20 17:29 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-15 18:22 - 2021-04-19 23:11 - 000000000 ____D C:\Users\romio\AppData\Local\log
2021-05-15 18:14 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-05-15 18:13 - 2020-09-27 07:33 - 000435368 _____ C:\Windows\system32\FNTCACHE.DAT
2021-05-15 18:12 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-15 18:12 - 2019-12-07 16:51 - 000000000 ____D C:\Windows\system32\OpenSSH
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\DiagTrack
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-05-15 15:01 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2021-05-15 15:01 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-05-15 14:55 - 2020-11-04 20:05 - 000000000 ___HD C:\$WinREAgent
2021-05-15 14:32 - 2021-04-19 23:41 - 000000000 ____D C:\Windows\system32\MRT
2021-05-15 14:30 - 2021-04-19 23:41 - 132732536 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-05-13 23:44 - 2021-04-30 21:15 - 000028879 _____ C:\Users\romio\Documents\electr.xlsx
2021-05-13 22:08 - 2021-04-22 17:58 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-13 20:18 - 2021-04-19 23:26 - 000656176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-05-13 20:15 - 2021-04-19 23:27 - 007212224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-05-13 12:38 - 2021-04-19 23:27 - 000136472 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2021-05-05 21:51 - 2021-04-19 23:00 - 000000000 ____D C:\Users\romio\AppData\Local\Packages
2021-05-05 18:12 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-05-01 19:12 - 2021-04-28 21:23 - 000000000 ____D C:\ProgramData\Battle.net
2021-05-01 10:16 - 2021-04-19 23:19 - 000029088 _____ C:\Users\romio\Documents\Compte courses.xlsx
==================== Fichiers à la racine de certains dossiers ========
2021-05-18 20:53 - 2021-05-30 18:19 - 000000032 _____ () C:\Users\romio\AppData\Roaming\.machineId
2021-04-19 23:15 - 2021-04-12 20:32 - 000000034 _____ () C:\Users\romio\AppData\Roaming\AdobeWLCMCache.dat
2021-04-19 23:07 - 2018-12-08 15:57 - 000000036 _____ () C:\Users\romio\AppData\Local\housecall.guid.cache
2021-04-19 23:07 - 2020-03-25 14:59 - 000000000 _____ () C:\Users\romio\AppData\Local\oobelibMkey.log
2021-04-19 23:07 - 2021-04-18 18:15 - 000007650 _____ () C:\Users\romio\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Romio (administrateur) sur DESKTOP-FBQVH2D (Micro-Star International Co., Ltd. MS-7B51) (31-05-2021 17:43:22)
Exécuté depuis C:\Users\romio\Downloads
Profils chargés: Romio
Platform: Windows 10 Pro Version 20H2 19042.985 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\Sennheiser\SA3\Sennheiser\CxUtilSvc.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\Sennheiser\SA3\Sennheiser\SmartAudio3.exe
(Conexant Systems, Inc.) [Fichier non signé] C:\Windows\SysWOW64\UIUMPSrv.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(EPOS Group A/S -> ) C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuite.exe
(EPOS Group A/S -> ) C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuiteService
(Flexera Software LLC -> InstallShield Software Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\iKernel.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28>
(Guillemot Corporation -> Guillemot Corporation) C:\Windows\SysWOW64\HerculesWiFiService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(ND_Apps -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d71d3f5ea7618cbb\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe <2>
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\AMSPTelemetryService.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\module\10011\8.2.1138\8.2.1138\TmsaInstance64.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\DiamondRing\DrSDKCaller.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe <4>
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe [1253232 2021-03-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SmartAudio] => C:\Program Files\Sennheiser\SA3\Sennheiser\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ctfmon] => C:\Windows\System32\ctfmon.exe [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [321184 2021-04-09] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [213696 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1233328 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-09-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKU\S-1-5-21-2887478810-2401684599-1784179501-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2887478810-2401684599-1784179501-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2887478810-2401684599-1784179501-1001\...\Run: [Wargaming.net Game Center] => K:\Wargaming.net\GameCenter\wgc.exe [2143168 2021-05-27] (Wargaming.net Limited -> Wargaming.net)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\EPOS Gaming Suite.lnk [2021-05-30]
ShortcutTarget: EPOS Gaming Suite.lnk -> C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuite.exe (EPOS Group A/S -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {848D24BF-E817-475F-8ABA-5A4CF748CF7B} - System32\Tasks\InstallShield® Setup Engine Kernel => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\iKernel.exe [72880 2020-10-16] (Flexera Software LLC -> InstallShield Software Corporation) [Fichier non signé]
Task: {85012CE4-CA7C-49AC-BCCD-042795CE441E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {96FAF7F9-C1E9-4EC0-A918-64AC9C687B30} - System32\Tasks\Optimize Thumbnail Cache => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\isupdate.exe [61104 2020-09-26] (Flexera Software LLC -> InstallShield®) [Fichier non signé]
Task: {A20E696E-6DC1-4052-91CF-A0A04CF87932} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {B2B80700-633B-4356-82DD-7A4FEB4FD749} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [930664 2019-09-25] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {EFE1F83B-EC8C-4948-B5D7-D95D150C59F0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-04] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
AutoConfigURL: [HKLM] => hxxp://127.0.0.1:86/
AutoConfigURL: [HKLM-x32] => hxxp://127.0.0.1:86/
AutoConfigURL: [{2305FC54-F92F-4C30-B1AB-E7F8F3244EC4}] => hxxp://127.0.0.1:86/
AutoConfigURL: [{449DDA03-D508-4E35-8264-380F5D70756C}] => hxxp://127.0.0.1:86/
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d9372309-4a02-4db4-931e-ef59d74c97ad}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ecba96f9-da74-44cb-9da3-8a3ee187a53b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{ecba96f9-da74-44cb-9da3-8a3ee187a53b}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ee813e0d-7452-42ee-909c-c3fd597d33c2}: [DhcpNameServer] 192.168.43.1
ManualProxies: 0hxxp://127.0.0.1:86/
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\romio\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-30]
FireFox:
========
FF DefaultProfile: ph2bvm6s.default
FF ProfilePath: C:\Users\romio\AppData\Roaming\Mozilla\Firefox\Profiles\ph2bvm6s.default [2021-05-25]
FF ProfilePath: C:\Users\romio\AppData\Roaming\Mozilla\Firefox\Profiles\ix9eubo6.default-release [2021-05-30]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-04-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-04-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default [2021-05-31]
CHR StartupUrls: Default -> "hxxp://ecosia.org/"
CHR NewTab: Default -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=chrome&addonversion=3.4.0&method=topbar
CHR DefaultSearchKeyword: Default -> ecosia
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=fr
CHR Extension: (Slides) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-30]
CHR Extension: (Docs) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-30]
CHR Extension: (Google Drive) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-30]
CHR Extension: (YouTube) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-20]
CHR Extension: (Unknown Space) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpjdbdbhiomamecfnjahemfimgjamhjd [2021-04-20]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-05-20]
CHR Extension: (Ecosia Search) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2021-05-20]
CHR Extension: (Sheets) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-30]
CHR Extension: (Grammarly for Chrome) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-05-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-19]
CHR Extension: (Gmail) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-20]
CHR Extension: (Chrome Media Router) - C:\Users\romio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-19]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
R2 Amsp; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [391032 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 AMSPTLM; C:\Program Files\Trend Micro\AMSP\AMSPTelemetryService.exe [250136 2020-12-30] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2776664 2015-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616360 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [456352 2021-04-09] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairMsiPluginService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe [451744 2021-04-09] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [80544 2021-04-09] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CxUtilSvc; C:\Program Files\Sennheiser\SA3\Sennheiser\CxUtilSvc.exe [109184 2021-04-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-01-07] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HerculesWiFi; C:\Windows\SysWOW64\\HerculesWiFiService.exe [78232 2012-09-26] (Guillemot Corporation -> Guillemot Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2547288 2021-05-10] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3487320 2021-05-10] (Electronic Arts, Inc. -> Electronic Arts)
R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1141680 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13688656 2021-03-24] (Adlice -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 TmWscSvc; C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe [401448 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 UIUMPService; C:\Windows\SysWOW64\UIUMPSrv.exe [104960 2021-04-20] (Conexant Systems, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2104.5-0\NisSrv.exe [2599296 2021-04-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2104.5-0\MsMpEng.exe [128360 2021-04-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 EPOSGamingSuiteService; "C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuiteService" /start EPOSGamingSuiteService [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d71d3f5ea7618cbb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d71d3f5ea7618cbb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 CmUpx; C:\Windows\system32\drivers\CmUpx.sys [30184 2021-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60328 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [45984 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [21920 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:\Windows\temp\cpuz150\cpuz150_x64.sys [44832 2021-05-30] (CPUID S.A.R.L.U. -> CPUID)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-04-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-04-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [44080 2018-01-25] (Shaul Eizikovich -> Nefarius Software Solutions)
R0 secnvme; C:\Windows\System32\drivers\secnvme.sys [133944 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [74760 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R3 tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [147672 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S0 tmel; C:\Windows\System32\DRIVERS\tmel.sys [39872 2021-04-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Trend Micro Inc.)
R1 tmeyes; C:\Windows\system32\DRIVERS\tmeyes.sys [673832 2021-04-21] (Microsoft Windows Hardware Compatibility Publisher -> Trend Micro Inc.)
R3 tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [562296 2020-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R1 tmumh; C:\Windows\system32\DRIVERS\TMUMH.sys [161280 2021-03-15] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 tmusa; C:\Windows\system32\DRIVERS\tmusa.sys [137112 2020-07-29] (Trend Micro, Inc. -> Trend Micro, Inc.)
R3 usbaud; C:\Windows\system32\DRIVERS\usbaud64.sys [1911288 2021-04-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
R3 VirtualHID; C:\Windows\System32\drivers\VirtualHID.sys [26768 2020-10-26] (Voyetra Turtle Beach, Inc. -> TurtleBeach)
S3 vmulti; C:\Windows\System32\drivers\vmulti.sys [19304 2018-01-25] (ROCCAT GmbH -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49544 2021-04-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [421112 2021-04-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [73952 2021-04-20] (Microsoft Windows -> Microsoft Corporation)
S3 RTL8192cu; \SystemRoot\System32\drivers\rtwlanu.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-31 17:43 - 2021-05-31 17:43 - 000022400 _____ C:\Users\romio\Downloads\FRST.txt
2021-05-31 17:42 - 2021-05-31 17:43 - 000000000 ____D C:\FRST
2021-05-31 17:42 - 2021-05-31 17:42 - 002299904 _____ (Farbar) C:\Users\romio\Downloads\FRST64-2.1.exe
2021-05-31 17:42 - 2021-05-31 17:42 - 000000000 ____D C:\Users\romio\Downloads\FRST-OlderVersion
2021-05-30 21:38 - 2021-05-30 21:38 - 003279088 _____ (SosVirus) C:\Users\romio\Downloads\Clean_Dns.exe
2021-05-30 21:18 - 2021-05-30 21:28 - 000011720 _____ C:\Users\romio\Desktop\ZHPCleaner (R).html
2021-05-30 21:18 - 2021-05-30 21:28 - 000004304 _____ C:\Users\romio\Desktop\ZHPCleaner (R).txt
2021-05-30 21:14 - 2021-05-30 21:35 - 000009054 _____ C:\Users\romio\Desktop\ZHPCleaner (S).html
2021-05-30 21:14 - 2021-05-30 21:35 - 000002429 _____ C:\Users\romio\Desktop\ZHPCleaner (S).txt
2021-05-30 21:06 - 2021-05-30 21:35 - 000000000 ____D C:\Users\romio\AppData\Roaming\ZHP
2021-05-30 21:06 - 2021-05-30 21:22 - 000000882 _____ C:\Users\romio\Desktop\ZHPCleaner.lnk
2021-05-30 21:06 - 2021-05-30 21:06 - 000000000 ____D C:\Users\romio\AppData\Local\ZHP
2021-05-30 18:20 - 2021-05-30 18:20 - 000030184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\CmUpx.sys
2021-05-30 18:20 - 2021-05-30 18:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPOS
2021-05-30 15:59 - 2021-05-30 15:59 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-05-30 15:59 - 2021-05-30 15:59 - 000002888 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-05-30 15:56 - 2021-05-30 15:56 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-30 15:56 - 2021-05-30 15:56 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-30 15:55 - 2021-05-30 15:55 - 000003794 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-05-30 12:09 - 2021-05-30 12:09 - 000003442 _____ C:\Windows\system32\Tasks\InstallShield® Setup Engine Kernel
2021-05-29 11:44 - 2021-05-30 12:56 - 000000000 ____D C:\Users\romio\AppData\Roaming\slobs-client
2021-05-29 11:44 - 2021-05-29 11:44 - 000000841 _____ C:\Users\Public\Desktop\Streamlabs OBS.lnk
2021-05-29 11:44 - 2021-05-29 11:44 - 000000841 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2021-05-29 11:44 - 2021-05-29 11:44 - 000000000 ____D C:\Users\romio\AppData\Roaming\Streamlabs OBS
2021-05-29 11:44 - 2021-05-29 11:44 - 000000000 ____D C:\Users\romio\AppData\Roaming\slobs-plugins
2021-05-29 11:44 - 2021-05-29 11:44 - 000000000 ____D C:\Users\romio\AppData\Roaming\obs-studio-node-server
2021-05-29 11:44 - 2021-05-29 11:44 - 000000000 ____D C:\Users\romio\AppData\Local\slobs-client-updater
2021-05-29 11:06 - 2021-05-29 11:06 - 000000000 ____D C:\ProgramData\obs-studio-hook
2021-05-29 11:06 - 2021-05-29 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2021-05-26 20:29 - 2021-04-21 09:16 - 000039872 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmel.sys
2021-05-25 18:56 - 2021-05-25 23:09 - 000000000 ____D C:\Users\romio\AppData\LocalLow\Mozilla
2021-05-25 18:56 - 2021-05-25 23:09 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-25 18:56 - 2021-05-25 18:56 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Users\romio\AppData\Roaming\Mozilla
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Users\romio\AppData\Local\Mozilla
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-05-25 18:56 - 2021-05-25 18:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-05-22 16:15 - 2021-05-22 16:15 - 000000000 ____D C:\Users\romio\AppData\Local\Rocket League
2021-05-21 17:06 - 2021-05-21 17:06 - 000000000 ____D C:\ProgramData\Wargaming.net
2021-05-19 21:40 - 2021-05-19 21:40 - 000000000 ____D C:\Windows\LastGood
2021-05-19 21:39 - 2021-05-13 12:38 - 000037656 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 001855184 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-05-19 21:38 - 2021-05-13 20:22 - 001855184 _____ C:\Windows\system32\vulkaninfo.exe
2021-05-19 21:38 - 2021-05-13 20:22 - 001453360 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 001435880 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-05-19 21:38 - 2021-05-13 20:22 - 001435880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-05-19 21:38 - 2021-05-13 20:22 - 001192752 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 001094864 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 001094864 _____ C:\Windows\system32\vulkan-1.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 000948968 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-05-19 21:38 - 2021-05-13 20:22 - 000948968 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 001514800 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 001166112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000715544 _____ C:\Windows\system32\nvofapi64.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000675104 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000626968 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000575768 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-05-19 21:38 - 2021-05-13 20:19 - 000564000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-05-19 21:38 - 2021-05-13 20:18 - 002106144 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-05-19 21:38 - 2021-05-13 20:18 - 001590576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-05-19 21:38 - 2021-05-13 20:18 - 000811824 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-05-19 21:38 - 2021-05-13 20:18 - 000689952 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-05-19 21:38 - 2021-05-13 20:18 - 000445744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-05-19 21:38 - 2021-05-13 20:17 - 008317232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-05-19 21:38 - 2021-05-13 20:17 - 007434032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-05-19 21:38 - 2021-05-13 20:17 - 004795184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-05-19 21:38 - 2021-05-13 20:17 - 002823472 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-05-19 21:38 - 2021-05-13 20:16 - 000848688 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-05-19 21:38 - 2021-05-13 20:15 - 006159152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-05-19 21:38 - 2021-05-13 12:38 - 000087164 _____ C:\Windows\system32\nvinfo.pb
2021-05-18 20:53 - 2021-05-30 18:19 - 000000032 _____ C:\Users\romio\AppData\Roaming\.machineId
2021-05-17 18:36 - 2021-05-17 18:36 - 000000000 ____D C:\ProgramData\Ubisoft
2021-05-17 18:30 - 2021-05-26 21:46 - 000000000 ____D C:\ProgramData\Trackmania
2021-05-16 16:15 - 2021-05-16 16:15 - 000000000 ____D C:\Users\Public\Documents\ROCCAT
2021-05-16 16:15 - 2021-05-16 16:15 - 000000000 ____D C:\ProgramData\Documents\ROCCAT
2021-05-16 16:15 - 2020-10-26 12:13 - 000026768 _____ (TurtleBeach) C:\Windows\system32\Drivers\VirtualHID.sys
2021-05-16 16:14 - 2021-05-16 16:14 - 000000000 ____D C:\Windows\LastGood.Tmp
2021-05-16 16:13 - 2021-05-16 16:13 - 000000000 ____D C:\Users\romio\AppData\Local\web_engine
2021-05-16 16:13 - 2021-05-16 16:13 - 000000000 ____D C:\Users\romio\.web_engine
2021-05-16 10:16 - 2021-05-16 10:16 - 000115596 _____ C:\Users\romio\Downloads\sfr-facture-0.pdf
2021-05-15 14:59 - 2021-05-15 14:59 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-05-15 14:59 - 2021-05-15 14:59 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-05-15 14:59 - 2021-05-15 14:59 - 001823816 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-05-15 14:59 - 2021-05-15 14:59 - 001687040 _____ C:\Windows\system32\libcrypto.dll
2021-05-15 14:59 - 2021-05-15 14:59 - 001393504 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-05-15 14:59 - 2021-05-15 14:59 - 001314120 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-05-15 14:59 - 2021-05-15 14:59 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-05-15 14:59 - 2021-05-15 14:59 - 000700928 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2021-05-15 14:59 - 2021-05-15 14:59 - 000165888 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-05-15 14:59 - 2021-05-15 14:59 - 000157184 _____ C:\Windows\system32\uwfcsp.dll
2021-05-15 14:59 - 2021-05-15 14:59 - 000153600 _____ C:\Windows\system32\uwfcfgmgmt.dll
2021-05-15 14:59 - 2021-05-15 14:59 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-05-15 14:59 - 2021-05-15 14:59 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2021-05-15 14:59 - 2021-05-15 14:59 - 000011351 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-05-05 21:19 - 2020-11-11 03:54 - 000167280 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudmdm.sys
2021-05-05 21:18 - 2021-05-05 21:18 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-05-05 21:18 - 2020-11-11 03:54 - 000159600 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudbus2.sys
2021-05-01 16:47 - 2021-05-01 16:47 - 000275929 _____ C:\Users\romio\Downloads\2021_Bulletin_Inscription_BBAR_Edition_6 (1).xlsx
2021-05-01 16:27 - 2021-05-01 16:27 - 000275929 _____ C:\Users\romio\Downloads\2021_Bulletin_Inscription_BBAR_Edition_6.xlsx
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-31 17:39 - 2020-09-27 07:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-05-31 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-31 17:21 - 2021-04-20 19:27 - 000000000 ____D C:\Program Files\CCleaner
2021-05-31 17:18 - 2021-04-19 23:14 - 000000000 ____D C:\ProgramData\NVIDIA
2021-05-30 23:07 - 2021-04-20 07:17 - 000000000 ____D C:\ProgramData\Origin
2021-05-30 23:07 - 2021-04-19 23:18 - 000000000 ____D C:\Users\romio\AppData\Roaming\Origin
2021-05-30 23:05 - 2021-04-19 23:17 - 000000000 ____D C:\Users\romio\AppData\Roaming\discord
2021-05-30 22:22 - 2021-04-19 23:07 - 000000000 ____D C:\Users\romio\AppData\Local\Discord
2021-05-30 21:28 - 2021-04-19 23:02 - 001774848 _____ C:\Windows\system32\PerfStringBackup.INI
2021-05-30 21:28 - 2019-12-07 16:50 - 000792920 _____ C:\Windows\system32\perfh00C.dat
2021-05-30 21:28 - 2019-12-07 16:50 - 000150584 _____ C:\Windows\system32\perfc00C.dat
2021-05-30 21:28 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-05-30 21:24 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-05-30 21:22 - 2021-04-19 23:12 - 000000000 ____D C:\Users\romio\AppData\Local\Origin
2021-05-30 21:22 - 2020-09-27 07:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-30 21:21 - 2020-09-27 09:34 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-05-30 21:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2021-05-30 21:21 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-05-30 21:14 - 2021-04-20 07:08 - 000000000 ____D C:\ProgramData\Riot Games
2021-05-30 18:27 - 2021-04-19 23:16 - 000000000 ____D C:\Users\romio\AppData\Roaming\Blitz
2021-05-30 18:19 - 2021-04-19 23:15 - 000000000 ____D C:\Users\romio\AppData\Local\Ubisoft Game Launcher
2021-05-30 18:19 - 2021-04-19 23:07 - 000000000 ____D C:\Users\romio\AppData\Local\CrashDumps
2021-05-30 16:11 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2021-05-30 15:54 - 2021-04-20 20:34 - 000000000 ____D C:\Windows\SysWOW64\TmAMSI
2021-05-30 15:54 - 2021-04-20 20:34 - 000000000 ____D C:\Windows\system32\TmAMSI
2021-05-30 12:09 - 2021-04-19 23:04 - 000003802 _____ C:\Windows\system32\Tasks\Optimize Thumbnail Cache
2021-05-30 09:32 - 2020-09-27 09:36 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-30 09:32 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-30 09:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-05-30 09:31 - 2021-04-20 18:57 - 000000000 ____D C:\ProgramData\Trend Micro
2021-05-29 11:43 - 2021-04-19 23:18 - 000000000 ____D C:\Users\romio\AppData\Roaming\obs-studio
2021-05-29 09:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-05-27 22:22 - 2021-04-19 23:07 - 000000000 ____D C:\Users\romio\AppData\Local\Battle.net
2021-05-27 18:11 - 2021-04-19 23:18 - 000000000 ____D C:\Users\romio\AppData\Roaming\vlc
2021-05-26 22:03 - 2021-04-19 23:07 - 000000000 ____D C:\Users\romio\AppData\Local\D3DSCache
2021-05-26 21:46 - 2021-04-19 23:20 - 000000000 ____D C:\Users\romio\Documents\Trackmania
2021-05-24 21:04 - 2021-04-19 23:18 - 000002256 _____ C:\Users\romio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk
2021-05-22 15:07 - 2021-04-19 22:58 - 000000000 ____D C:\Users\romio
2021-05-22 15:04 - 2021-04-19 23:19 - 000000000 ____D C:\Users\romio\Documents\Fichiers Outlook
2021-05-21 17:09 - 2021-04-19 23:18 - 000000000 ____D C:\Users\romio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-05-20 18:45 - 2021-04-20 07:18 - 000000000 ____D C:\Program Files (x86)\Origin
2021-05-20 17:56 - 2021-04-19 23:12 - 000000000 ____D C:\Users\romio\AppData\Local\NVIDIA
2021-05-16 16:15 - 2021-04-19 23:20 - 000000000 ____D C:\Users\romio\Documents\ROCCAT
2021-05-16 15:55 - 2021-04-20 17:29 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-15 18:22 - 2021-04-19 23:11 - 000000000 ____D C:\Users\romio\AppData\Local\log
2021-05-15 18:14 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-05-15 18:13 - 2020-09-27 07:33 - 000435368 _____ C:\Windows\system32\FNTCACHE.DAT
2021-05-15 18:12 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-15 18:12 - 2019-12-07 16:51 - 000000000 ____D C:\Windows\system32\OpenSSH
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\DiagTrack
2021-05-15 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-05-15 15:01 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2021-05-15 15:01 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-05-15 14:55 - 2020-11-04 20:05 - 000000000 ___HD C:\$WinREAgent
2021-05-15 14:32 - 2021-04-19 23:41 - 000000000 ____D C:\Windows\system32\MRT
2021-05-15 14:30 - 2021-04-19 23:41 - 132732536 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-05-13 23:44 - 2021-04-30 21:15 - 000028879 _____ C:\Users\romio\Documents\electr.xlsx
2021-05-13 22:08 - 2021-04-22 17:58 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-13 20:18 - 2021-04-19 23:26 - 000656176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-05-13 20:15 - 2021-04-19 23:27 - 007212224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-05-13 12:38 - 2021-04-19 23:27 - 000136472 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2021-05-05 21:51 - 2021-04-19 23:00 - 000000000 ____D C:\Users\romio\AppData\Local\Packages
2021-05-05 18:12 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-05-01 19:12 - 2021-04-28 21:23 - 000000000 ____D C:\ProgramData\Battle.net
2021-05-01 10:16 - 2021-04-19 23:19 - 000029088 _____ C:\Users\romio\Documents\Compte courses.xlsx
==================== Fichiers à la racine de certains dossiers ========
2021-05-18 20:53 - 2021-05-30 18:19 - 000000032 _____ () C:\Users\romio\AppData\Roaming\.machineId
2021-04-19 23:15 - 2021-04-12 20:32 - 000000034 _____ () C:\Users\romio\AppData\Roaming\AdobeWLCMCache.dat
2021-04-19 23:07 - 2018-12-08 15:57 - 000000036 _____ () C:\Users\romio\AppData\Local\housecall.guid.cache
2021-04-19 23:07 - 2020-03-25 14:59 - 000000000 _____ () C:\Users\romio\AppData\Local\oobelibMkey.log
2021-04-19 23:07 - 2021-04-18 18:15 - 000007650 _____ () C:\Users\romio\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================