Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2022
Exécuté par Cynthia (administrateur) sur PC-SALON (MSI MS-7816) (20-06-2022 19:01:33)
Exécuté depuis C:\Users\Cynthia\Desktop
Profils chargés: Cynthia & UpdatusUser
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1766 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Cynthia\AppData\Roaming\uTorrent Web\utweb.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (NetSupport Ltd -> NetSupport Ltd) C:\Users\Cynthia\AppData\Roaming\XShUTx0J\ctfmon.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <28>
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.5.1.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-09-05] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-09-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [utweb] => C:\Users\Cynthia\AppData\Roaming\uTorrent Web\utweb.exe [6282784 2022-03-26] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [Discord] => C:\Users\Cynthia\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [ctfmon_] => C:\Users\Cynthia\AppData\Roaming\XShUTx0J\ctfmon.exe [112176 2020-05-06] (NetSupport Ltd -> NetSupport Ltd) <==== ATTENTION
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [MicrosoftEdgeAutoLaunch_DD74FE1EA207459293C6E4DD0B8F071B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3595168 2022-06-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\MountPoints2: {09a7ae77-9658-11ec-824b-806e6f6e6963} - "E:\DVDSetup.exe"
HKLM\...\Windows x64\Print Processors\sdb1MPC: C:\Windows\System32\spool\prtprocs\x64\sdb1mpc.dll [46104 2022-03-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Print\Monitors\sdb1M Langmon: C:\WINDOWS\system32\sdb1mlm.dll [43032 2022-03-11] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\102.0.5005.115\Installer\chrmstp.exe [2022-06-14] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {06497B9E-B381-46FC-AF2C-EC1B89AB91A3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-25] (Google LLC -> Google LLC)
Task: {0CD75EAA-DF22-4D10-94EF-02866E99824F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1CC32251-B25F-4A07-ACC3-521E7EAAAC8D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Work
Task: {2E02363C-2C9D-471B-B4B0-897F81667400} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier)
Task: {382DB598-B6A3-46E1-AD6C-F38C6F488883} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4F2030CE-BA8E-4122-B9A8-29AA5858973E} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8FF5DE67-C947-4488-997B-4184221E7D50} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start
Task: {93F8311D-2D79-4651-8C92-DB313318E558} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9899146D-8EA6-4BCC-AD82-59700C18708A} - System32\Tasks\Opera scheduled assistant Autoupdate 1655054465 => C:\Users\Cynthia\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Cynthia\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {A36CC4FF-87FD-492E-9857-CB184C763BB2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {A866C178-318C-4C1F-B219-1EA7463635E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-25] (Google LLC -> Google LLC)
Task: {BCF72C8E-4FE0-417E-A306-4E3D2F09D5B7} - System32\Tasks\Opera GX scheduled Autoupdate 1648569266 => C:\Users\Cynthia\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {BD7FDD92-97C2-4F6A-B3A4-4E3D3A5E1031} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {C4A1D259-50A8-4E86-AFF0-73AA7811F600} - System32\Tasks\Service\Diagnostic => C:\Users\Cynthia\AppData\Roaming\ServiceGet\Kydder.exe -> "C:\Users\Cynthia\AppData\Roaming\ServiceGet\Kydder.dat" <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D74C4A56-F521-4EE4-B673-1F73A3E8D47F} - System32\Tasks\Opera scheduled Autoupdate 1655054446 => C:\Users\Cynthia\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{2148C561-00F0-41EA-A5B3-50DBFE9DB3C4}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Cynthia\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-20]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE12&ocid=UE12DHP
FireFox:
========
FF DefaultProfile: xjy7vn45.default
FF ProfilePath: C:\Users\Cynthia\AppData\Roaming\Mozilla\Firefox\Profiles\xjy7vn45.default [2022-02-25]
FF ProfilePath: C:\Users\Cynthia\AppData\Roaming\Mozilla\Firefox\Profiles\y3eydlij.default-release-1655731026831 [2022-06-20]
FF DownloadDir: D:
Chrome:
=======
CHR Profile: C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default [2022-06-05]
CHR Notifications: Default -> hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Ad Block Ultra) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpiejmibihoklikohojpofdfgnjhjdfj [2022-06-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-26]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161776 2013-09-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [337112 2022-06-14] (Twitch Interactive, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 MSICDSetup; E:\CDriver64.sys [28984 2009-08-12] (Micro-Star Int'l Co. Ltd. -> Your Corporation)
S3 NTIOLib_1_0_C; E:\NTIOLib_X64.sys [11888 2011-06-29] (Micro-Star Int'l Co. Ltd. -> MSI) [Fichier non signé]
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [232792 2021-09-05] (Valve Corp. -> Valve Corporation)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2022-02-23] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-06-20 19:01 - 2022-06-20 19:02 - 000016355 _____ C:\Users\Cynthia\Desktop\FRST.txt
2022-06-20 19:00 - 2022-06-20 19:01 - 000000000 ____D C:\FRST
2022-06-20 18:59 - 2022-06-20 18:59 - 002369024 _____ (Farbar) C:\Users\Cynthia\Desktop\FRST64.exe
2022-06-20 18:56 - 2022-06-20 18:56 - 004707136 _____ (Crystal Dew World ) C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2.exe
2022-06-20 18:44 - 2022-06-20 18:44 - 000000000 _____ C:\Users\Cynthia\Downloads\DkBF00Pn.exe.part
2022-06-20 18:29 - 2022-06-20 18:29 - 000000000 ____D C:\Users\Cynthia\Downloads\SteamLibrary
2022-06-20 18:29 - 2022-06-20 18:29 - 000000000 ____D C:\SteamLibrary
2022-06-20 17:57 - 2022-06-20 17:57 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(2).pyAn9Xwa.exe.part
2022-06-20 17:57 - 2022-06-20 17:57 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(2).exe
2022-06-20 17:56 - 2022-06-20 17:56 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(1).FrAbxQqw.exe.part
2022-06-20 17:56 - 2022-06-20 17:56 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(1).exe
2022-06-20 17:55 - 2022-06-20 17:55 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2.PcpMLR4L.exe.part
2022-06-20 15:47 - 2022-06-20 15:54 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore
2022-06-20 15:17 - 2022-06-20 15:17 - 000000000 ____D C:\Users\Cynthia\Desktop\Anciennes données de Firefox
2022-06-19 20:35 - 2022-06-19 20:40 - 000000000 ____D C:\Users\Cynthia\Downloads\Life Is Strange
2022-06-19 12:57 - 2022-06-19 12:57 - 000000000 ____D C:\WINDOWS\Panther
2022-06-19 00:44 - 2022-06-19 00:44 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\SysInfoTool
2022-06-18 21:05 - 2022-06-18 21:05 - 000000000 ____D C:\Users\Cynthia\ansel
2022-06-18 21:04 - 2022-06-18 21:04 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Dontnod
2022-06-18 09:10 - 2022-06-18 09:10 - 000000000 ____D C:\Users\Cynthia\Documents\my games
2022-06-18 09:10 - 2022-06-18 09:10 - 000000000 ____D C:\Program Files (x86)\AGEIA Technologies
2022-06-18 08:35 - 2022-06-20 12:37 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\ServiceGet
2022-06-18 08:35 - 2022-06-18 08:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Service
2022-06-18 08:35 - 2022-06-18 08:35 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Westedika
2022-06-17 19:02 - 2022-06-17 19:02 - 000000000 ____D C:\Users\Cynthia\AppData\Local\com.wsa.a7-updater
2022-06-17 18:37 - 2022-06-17 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Catalyst
2022-06-17 10:29 - 2022-06-17 10:29 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-06-17 10:29 - 2022-06-17 10:29 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-17 10:29 - 2022-06-17 10:29 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-17 10:29 - 2022-06-17 10:29 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-17 10:29 - 2022-06-17 10:29 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-06-17 10:21 - 2022-06-17 10:21 - 000000000 ___HD C:\$WinREAgent
2022-06-16 23:12 - 2022-06-16 23:12 - 000000000 ____D C:\Users\Cynthia\AppData\LocalLow\Kyle Seeley
2022-06-16 22:49 - 2022-06-16 22:49 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Steam
2022-06-16 22:49 - 2021-09-05 13:16 - 000232792 _____ (Valve Corporation) C:\WINDOWS\system32\Drivers\steamxbox.sys
2022-06-16 22:48 - 2022-06-20 19:01 - 000000000 ____D C:\Program Files (x86)\Steam
2022-06-16 22:48 - 2022-06-16 22:48 - 000001032 _____ C:\Users\Public\Desktop\Steam.lnk
2022-06-16 22:48 - 2022-06-16 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-06-16 22:47 - 2022-06-16 22:47 - 002296488 _____ C:\Users\Cynthia\Downloads\SteamSetup.exe
2022-06-14 18:28 - 2022-06-14 18:28 - 000000771 _____ C:\Users\Cynthia\Desktop\Twitch Studio.lnk
2022-06-14 18:28 - 2022-06-14 18:28 - 000000771 _____ C:\Users\Cynthia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch Studio.lnk
2022-06-14 18:27 - 2022-06-14 18:27 - 001251728 _____ (Twitch Interactive, Inc.) C:\Users\Cynthia\Downloads\TwitchStudioSetup-network_[usher-510196312][referrer-dashboard_tools](1).exe
2022-06-14 17:56 - 2022-06-14 17:56 - 003342336 _____ C:\Users\Cynthia\Downloads\TStan5leyPa7rableU1ltraD-elamigos.fOgVAthI.part2.rar.part
2022-06-14 17:55 - 2022-06-14 17:55 - 001638400 _____ C:\Users\Cynthia\Downloads\TStan5leyPa7rableU1ltraD-elamigos.Gy8fRVyw.part1.rar.part
2022-06-14 17:43 - 2022-03-29 19:20 - 000000000 ____D C:\Program Files\Microvirt
2022-06-14 16:53 - 2022-06-14 16:53 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Steam
2022-06-14 16:49 - 2022-06-14 16:49 - 000000000 ____D C:\Program Files (x86)\R.G. Mechanics
2022-06-12 19:27 - 2022-06-12 19:27 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Gh
2022-06-12 19:25 - 2022-06-12 19:25 - 000000000 ___HD C:\$AV_ASW
2022-06-12 19:21 - 2022-06-12 19:26 - 000000000 ____D C:\Program Files (x86)\PremierOpinion
2022-06-12 19:21 - 2022-06-12 19:23 - 000004210 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1655054446
2022-06-12 19:21 - 2022-06-12 19:21 - 000004442 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1655054465
2022-06-12 19:21 - 2022-06-12 19:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremierOpinion
2022-06-12 19:21 - 2020-10-02 00:58 - 001098080 _____ (VoiceFive, Inc.) C:\WINDOWS\system32\pmls64.dll
2022-06-12 19:21 - 2020-10-02 00:58 - 000740704 _____ (VoiceFive, Inc.) C:\WINDOWS\SysWOW64\pmls.dll
2022-06-12 19:17 - 2022-06-19 12:54 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BrightTRAMP
2022-06-12 19:17 - 2022-06-12 19:17 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BrightTRAMPtniUtil
2022-06-11 16:36 - 2022-06-11 16:36 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e08-french-web-x264-extreme-mkv_2022-06-10_0636
2022-06-11 16:32 - 2022-06-11 16:34 - 719750971 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e08-french-web-x264-extreme-mkv_2022-06-10_0636.zip
2022-06-10 07:27 - 2022-06-12 17:45 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-06-04 13:03 - 2022-06-04 13:03 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088-2.pdf
2022-06-01 17:53 - 2022-06-01 17:53 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e05-french-web-x264-extreme-mkv_2022-06-01_1107
2022-06-01 17:50 - 2022-06-01 17:53 - 861234587 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e05-french-web-x264-extreme-mkv_2022-06-01_1107.zip
2022-05-28 12:29 - 2022-05-28 12:29 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088-1.pdf
2022-05-28 12:29 - 2022-05-28 12:29 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088.pdf
2022-05-27 10:45 - 2022-05-27 10:46 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-net-le-flambeau-les-aventuriers-de-chupacabra-s01e03-french-web-x264-extreme-mkv_2022-05-26_1750
2022-05-26 21:26 - 2022-05-26 21:29 - 788075387 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-net-le-flambeau-les-aventuriers-de-chupacabra-s01e03-french-web-x264-extreme-mkv_2022-05-26_1750.zip
2022-05-25 21:31 - 2022-05-25 21:31 - 000000206 _____ C:\Users\Cynthia\Downloads\nimporte nawak.vcf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-06-20 18:59 - 2022-03-06 10:26 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\uTorrent Web
2022-06-20 18:54 - 2022-02-28 19:01 - 000000000 ____D C:\ProgramData\Origin
2022-06-20 18:54 - 2022-02-25 21:39 - 000000000 ____D C:\Users\Cynthia\AppData\Local\CrashDumps
2022-06-20 18:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-20 18:20 - 2022-02-25 18:52 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-20 18:06 - 2022-02-25 20:06 - 000000000 ____D C:\Users\Cynthia\AppData\LocalLow\Mozilla
2022-06-20 17:56 - 2022-03-06 10:26 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BitTorrentHelper
2022-06-20 15:23 - 2022-02-25 20:06 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-06-20 12:11 - 2022-03-25 23:19 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\discord
2022-06-20 12:11 - 2022-02-25 23:12 - 000000000 ___RD C:\Users\Cynthia\OneDrive
2022-06-20 03:02 - 2022-02-25 18:41 - 000000000 ____D C:\ProgramData\NVIDIA
2022-06-19 23:02 - 2022-03-15 17:02 - 000000000 ____D C:\ProgramData\Voicemod
2022-06-19 22:59 - 2022-03-15 17:01 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Voicemod
2022-06-19 22:57 - 2022-02-26 17:30 - 000000000 ____D C:\Users\Cynthia\AppData\Local\D3DSCache
2022-06-19 21:36 - 2022-03-25 23:19 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Discord
2022-06-19 20:42 - 2022-02-26 15:58 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-06-19 20:42 - 2019-12-07 16:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2022-06-19 20:42 - 2019-12-07 16:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2022-06-19 20:42 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-06-19 20:35 - 2022-02-26 15:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-06-19 20:35 - 2022-02-26 15:49 - 000008192 ___SH C:\DumpStack.log.tmp
2022-06-19 20:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-06-19 20:35 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-06-19 12:57 - 2022-04-17 21:47 - 000000000 ____D C:\Program Files\7-Zip
2022-06-18 21:05 - 2022-02-26 15:51 - 000000000 ____D C:\Users\Cynthia
2022-06-18 09:10 - 2022-02-25 18:40 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-06-18 09:09 - 2022-02-27 00:47 - 000000000 ____D C:\ProgramData\Package Cache
2022-06-17 20:52 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-17 20:41 - 2022-02-26 15:50 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-17 20:41 - 2022-02-26 15:50 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-06-17 19:50 - 2022-02-26 15:49 - 000257912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-06-17 19:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-06-17 18:23 - 2022-02-26 15:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-17 10:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-06-17 10:29 - 2022-02-26 15:54 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-06-16 23:24 - 2022-02-26 01:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-16 23:22 - 2022-02-26 01:07 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-16 10:35 - 2022-02-26 16:15 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-16 10:35 - 2022-02-26 16:15 - 000003596 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d82b1882b59216
2022-06-15 19:43 - 2022-03-29 17:53 - 000000000 ____D C:\ProgramData\Avast Software
2022-06-15 14:10 - 2022-04-06 13:12 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\slobs-client
2022-06-15 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-06-14 18:28 - 2022-05-01 20:13 - 000000000 ____D C:\Program Files\Common Files\Twitch
2022-06-14 14:28 - 2022-02-26 15:56 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3666949785-665001886-4052463169-1001
2022-06-14 14:28 - 2022-02-26 15:56 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3666949785-665001886-4052463169-1001
2022-06-14 14:28 - 2022-02-26 15:51 - 000002461 _____ C:\Users\Cynthia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-12 20:22 - 2022-05-03 10:38 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-06-12 19:27 - 2022-03-29 17:55 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Opera Software
2022-06-12 19:22 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-06-12 19:20 - 2022-03-29 17:53 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Opera Software
2022-06-12 17:45 - 2022-02-25 20:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-06-10 13:30 - 2022-02-26 15:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-06-10 13:30 - 2022-02-25 20:06 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-06-08 21:30 - 2022-03-25 23:19 - 000002275 _____ C:\Users\Cynthia\Desktop\Discord.lnk
2022-06-02 15:09 - 2022-03-15 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2022-06-02 15:09 - 2022-03-15 17:01 - 000000000 ____D C:\Program Files\Voicemod Desktop
2022-06-02 14:57 - 2022-04-06 13:12 - 000000000 ____D C:\Program Files\Streamlabs OBS
2022-06-01 19:12 - 2022-03-02 09:15 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Firestorm_x64
==================== Fichiers à la racine de certains dossiers ========
2022-03-10 20:19 - 2022-03-10 20:19 - 000000015 _____ () C:\Users\Cynthia\AppData\Roaming\obs-virtualcam.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Cynthia (administrateur) sur PC-SALON (MSI MS-7816) (20-06-2022 19:01:33)
Exécuté depuis C:\Users\Cynthia\Desktop
Profils chargés: Cynthia & UpdatusUser
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1766 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Cynthia\AppData\Roaming\uTorrent Web\utweb.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (NetSupport Ltd -> NetSupport Ltd) C:\Users\Cynthia\AppData\Roaming\XShUTx0J\ctfmon.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <28>
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.5.1.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-09-05] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-09-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [utweb] => C:\Users\Cynthia\AppData\Roaming\uTorrent Web\utweb.exe [6282784 2022-03-26] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [Discord] => C:\Users\Cynthia\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [ctfmon_] => C:\Users\Cynthia\AppData\Roaming\XShUTx0J\ctfmon.exe [112176 2020-05-06] (NetSupport Ltd -> NetSupport Ltd) <==== ATTENTION
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [MicrosoftEdgeAutoLaunch_DD74FE1EA207459293C6E4DD0B8F071B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3595168 2022-06-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\MountPoints2: {09a7ae77-9658-11ec-824b-806e6f6e6963} - "E:\DVDSetup.exe"
HKLM\...\Windows x64\Print Processors\sdb1MPC: C:\Windows\System32\spool\prtprocs\x64\sdb1mpc.dll [46104 2022-03-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Print\Monitors\sdb1M Langmon: C:\WINDOWS\system32\sdb1mlm.dll [43032 2022-03-11] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\102.0.5005.115\Installer\chrmstp.exe [2022-06-14] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {06497B9E-B381-46FC-AF2C-EC1B89AB91A3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-25] (Google LLC -> Google LLC)
Task: {0CD75EAA-DF22-4D10-94EF-02866E99824F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1CC32251-B25F-4A07-ACC3-521E7EAAAC8D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Work
Task: {2E02363C-2C9D-471B-B4B0-897F81667400} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier)
Task: {382DB598-B6A3-46E1-AD6C-F38C6F488883} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4F2030CE-BA8E-4122-B9A8-29AA5858973E} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8FF5DE67-C947-4488-997B-4184221E7D50} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start
Task: {93F8311D-2D79-4651-8C92-DB313318E558} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9899146D-8EA6-4BCC-AD82-59700C18708A} - System32\Tasks\Opera scheduled assistant Autoupdate 1655054465 => C:\Users\Cynthia\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Cynthia\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {A36CC4FF-87FD-492E-9857-CB184C763BB2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {A866C178-318C-4C1F-B219-1EA7463635E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-25] (Google LLC -> Google LLC)
Task: {BCF72C8E-4FE0-417E-A306-4E3D2F09D5B7} - System32\Tasks\Opera GX scheduled Autoupdate 1648569266 => C:\Users\Cynthia\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {BD7FDD92-97C2-4F6A-B3A4-4E3D3A5E1031} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {C4A1D259-50A8-4E86-AFF0-73AA7811F600} - System32\Tasks\Service\Diagnostic => C:\Users\Cynthia\AppData\Roaming\ServiceGet\Kydder.exe -> "C:\Users\Cynthia\AppData\Roaming\ServiceGet\Kydder.dat" <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D74C4A56-F521-4EE4-B673-1F73A3E8D47F} - System32\Tasks\Opera scheduled Autoupdate 1655054446 => C:\Users\Cynthia\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{2148C561-00F0-41EA-A5B3-50DBFE9DB3C4}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Cynthia\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-20]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE12&ocid=UE12DHP
FireFox:
========
FF DefaultProfile: xjy7vn45.default
FF ProfilePath: C:\Users\Cynthia\AppData\Roaming\Mozilla\Firefox\Profiles\xjy7vn45.default [2022-02-25]
FF ProfilePath: C:\Users\Cynthia\AppData\Roaming\Mozilla\Firefox\Profiles\y3eydlij.default-release-1655731026831 [2022-06-20]
FF DownloadDir: D:
Chrome:
=======
CHR Profile: C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default [2022-06-05]
CHR Notifications: Default -> hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Ad Block Ultra) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpiejmibihoklikohojpofdfgnjhjdfj [2022-06-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-26]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161776 2013-09-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [337112 2022-06-14] (Twitch Interactive, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 MSICDSetup; E:\CDriver64.sys [28984 2009-08-12] (Micro-Star Int'l Co. Ltd. -> Your Corporation)
S3 NTIOLib_1_0_C; E:\NTIOLib_X64.sys [11888 2011-06-29] (Micro-Star Int'l Co. Ltd. -> MSI) [Fichier non signé]
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [232792 2021-09-05] (Valve Corp. -> Valve Corporation)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2022-02-23] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-06-20 19:01 - 2022-06-20 19:02 - 000016355 _____ C:\Users\Cynthia\Desktop\FRST.txt
2022-06-20 19:00 - 2022-06-20 19:01 - 000000000 ____D C:\FRST
2022-06-20 18:59 - 2022-06-20 18:59 - 002369024 _____ (Farbar) C:\Users\Cynthia\Desktop\FRST64.exe
2022-06-20 18:56 - 2022-06-20 18:56 - 004707136 _____ (Crystal Dew World ) C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2.exe
2022-06-20 18:44 - 2022-06-20 18:44 - 000000000 _____ C:\Users\Cynthia\Downloads\DkBF00Pn.exe.part
2022-06-20 18:29 - 2022-06-20 18:29 - 000000000 ____D C:\Users\Cynthia\Downloads\SteamLibrary
2022-06-20 18:29 - 2022-06-20 18:29 - 000000000 ____D C:\SteamLibrary
2022-06-20 17:57 - 2022-06-20 17:57 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(2).pyAn9Xwa.exe.part
2022-06-20 17:57 - 2022-06-20 17:57 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(2).exe
2022-06-20 17:56 - 2022-06-20 17:56 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(1).FrAbxQqw.exe.part
2022-06-20 17:56 - 2022-06-20 17:56 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(1).exe
2022-06-20 17:55 - 2022-06-20 17:55 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2.PcpMLR4L.exe.part
2022-06-20 15:47 - 2022-06-20 15:54 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore
2022-06-20 15:17 - 2022-06-20 15:17 - 000000000 ____D C:\Users\Cynthia\Desktop\Anciennes données de Firefox
2022-06-19 20:35 - 2022-06-19 20:40 - 000000000 ____D C:\Users\Cynthia\Downloads\Life Is Strange
2022-06-19 12:57 - 2022-06-19 12:57 - 000000000 ____D C:\WINDOWS\Panther
2022-06-19 00:44 - 2022-06-19 00:44 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\SysInfoTool
2022-06-18 21:05 - 2022-06-18 21:05 - 000000000 ____D C:\Users\Cynthia\ansel
2022-06-18 21:04 - 2022-06-18 21:04 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Dontnod
2022-06-18 09:10 - 2022-06-18 09:10 - 000000000 ____D C:\Users\Cynthia\Documents\my games
2022-06-18 09:10 - 2022-06-18 09:10 - 000000000 ____D C:\Program Files (x86)\AGEIA Technologies
2022-06-18 08:35 - 2022-06-20 12:37 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\ServiceGet
2022-06-18 08:35 - 2022-06-18 08:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Service
2022-06-18 08:35 - 2022-06-18 08:35 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Westedika
2022-06-17 19:02 - 2022-06-17 19:02 - 000000000 ____D C:\Users\Cynthia\AppData\Local\com.wsa.a7-updater
2022-06-17 18:37 - 2022-06-17 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Catalyst
2022-06-17 10:29 - 2022-06-17 10:29 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-06-17 10:29 - 2022-06-17 10:29 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-17 10:29 - 2022-06-17 10:29 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-17 10:29 - 2022-06-17 10:29 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-17 10:29 - 2022-06-17 10:29 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-06-17 10:21 - 2022-06-17 10:21 - 000000000 ___HD C:\$WinREAgent
2022-06-16 23:12 - 2022-06-16 23:12 - 000000000 ____D C:\Users\Cynthia\AppData\LocalLow\Kyle Seeley
2022-06-16 22:49 - 2022-06-16 22:49 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Steam
2022-06-16 22:49 - 2021-09-05 13:16 - 000232792 _____ (Valve Corporation) C:\WINDOWS\system32\Drivers\steamxbox.sys
2022-06-16 22:48 - 2022-06-20 19:01 - 000000000 ____D C:\Program Files (x86)\Steam
2022-06-16 22:48 - 2022-06-16 22:48 - 000001032 _____ C:\Users\Public\Desktop\Steam.lnk
2022-06-16 22:48 - 2022-06-16 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-06-16 22:47 - 2022-06-16 22:47 - 002296488 _____ C:\Users\Cynthia\Downloads\SteamSetup.exe
2022-06-14 18:28 - 2022-06-14 18:28 - 000000771 _____ C:\Users\Cynthia\Desktop\Twitch Studio.lnk
2022-06-14 18:28 - 2022-06-14 18:28 - 000000771 _____ C:\Users\Cynthia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch Studio.lnk
2022-06-14 18:27 - 2022-06-14 18:27 - 001251728 _____ (Twitch Interactive, Inc.) C:\Users\Cynthia\Downloads\TwitchStudioSetup-network_[usher-510196312][referrer-dashboard_tools](1).exe
2022-06-14 17:56 - 2022-06-14 17:56 - 003342336 _____ C:\Users\Cynthia\Downloads\TStan5leyPa7rableU1ltraD-elamigos.fOgVAthI.part2.rar.part
2022-06-14 17:55 - 2022-06-14 17:55 - 001638400 _____ C:\Users\Cynthia\Downloads\TStan5leyPa7rableU1ltraD-elamigos.Gy8fRVyw.part1.rar.part
2022-06-14 17:43 - 2022-03-29 19:20 - 000000000 ____D C:\Program Files\Microvirt
2022-06-14 16:53 - 2022-06-14 16:53 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Steam
2022-06-14 16:49 - 2022-06-14 16:49 - 000000000 ____D C:\Program Files (x86)\R.G. Mechanics
2022-06-12 19:27 - 2022-06-12 19:27 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Gh
2022-06-12 19:25 - 2022-06-12 19:25 - 000000000 ___HD C:\$AV_ASW
2022-06-12 19:21 - 2022-06-12 19:26 - 000000000 ____D C:\Program Files (x86)\PremierOpinion
2022-06-12 19:21 - 2022-06-12 19:23 - 000004210 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1655054446
2022-06-12 19:21 - 2022-06-12 19:21 - 000004442 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1655054465
2022-06-12 19:21 - 2022-06-12 19:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremierOpinion
2022-06-12 19:21 - 2020-10-02 00:58 - 001098080 _____ (VoiceFive, Inc.) C:\WINDOWS\system32\pmls64.dll
2022-06-12 19:21 - 2020-10-02 00:58 - 000740704 _____ (VoiceFive, Inc.) C:\WINDOWS\SysWOW64\pmls.dll
2022-06-12 19:17 - 2022-06-19 12:54 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BrightTRAMP
2022-06-12 19:17 - 2022-06-12 19:17 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BrightTRAMPtniUtil
2022-06-11 16:36 - 2022-06-11 16:36 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e08-french-web-x264-extreme-mkv_2022-06-10_0636
2022-06-11 16:32 - 2022-06-11 16:34 - 719750971 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e08-french-web-x264-extreme-mkv_2022-06-10_0636.zip
2022-06-10 07:27 - 2022-06-12 17:45 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-06-04 13:03 - 2022-06-04 13:03 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088-2.pdf
2022-06-01 17:53 - 2022-06-01 17:53 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e05-french-web-x264-extreme-mkv_2022-06-01_1107
2022-06-01 17:50 - 2022-06-01 17:53 - 861234587 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e05-french-web-x264-extreme-mkv_2022-06-01_1107.zip
2022-05-28 12:29 - 2022-05-28 12:29 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088-1.pdf
2022-05-28 12:29 - 2022-05-28 12:29 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088.pdf
2022-05-27 10:45 - 2022-05-27 10:46 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-net-le-flambeau-les-aventuriers-de-chupacabra-s01e03-french-web-x264-extreme-mkv_2022-05-26_1750
2022-05-26 21:26 - 2022-05-26 21:29 - 788075387 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-net-le-flambeau-les-aventuriers-de-chupacabra-s01e03-french-web-x264-extreme-mkv_2022-05-26_1750.zip
2022-05-25 21:31 - 2022-05-25 21:31 - 000000206 _____ C:\Users\Cynthia\Downloads\nimporte nawak.vcf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-06-20 18:59 - 2022-03-06 10:26 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\uTorrent Web
2022-06-20 18:54 - 2022-02-28 19:01 - 000000000 ____D C:\ProgramData\Origin
2022-06-20 18:54 - 2022-02-25 21:39 - 000000000 ____D C:\Users\Cynthia\AppData\Local\CrashDumps
2022-06-20 18:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-20 18:20 - 2022-02-25 18:52 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-20 18:06 - 2022-02-25 20:06 - 000000000 ____D C:\Users\Cynthia\AppData\LocalLow\Mozilla
2022-06-20 17:56 - 2022-03-06 10:26 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BitTorrentHelper
2022-06-20 15:23 - 2022-02-25 20:06 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-06-20 12:11 - 2022-03-25 23:19 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\discord
2022-06-20 12:11 - 2022-02-25 23:12 - 000000000 ___RD C:\Users\Cynthia\OneDrive
2022-06-20 03:02 - 2022-02-25 18:41 - 000000000 ____D C:\ProgramData\NVIDIA
2022-06-19 23:02 - 2022-03-15 17:02 - 000000000 ____D C:\ProgramData\Voicemod
2022-06-19 22:59 - 2022-03-15 17:01 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Voicemod
2022-06-19 22:57 - 2022-02-26 17:30 - 000000000 ____D C:\Users\Cynthia\AppData\Local\D3DSCache
2022-06-19 21:36 - 2022-03-25 23:19 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Discord
2022-06-19 20:42 - 2022-02-26 15:58 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-06-19 20:42 - 2019-12-07 16:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2022-06-19 20:42 - 2019-12-07 16:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2022-06-19 20:42 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-06-19 20:35 - 2022-02-26 15:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-06-19 20:35 - 2022-02-26 15:49 - 000008192 ___SH C:\DumpStack.log.tmp
2022-06-19 20:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-06-19 20:35 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-06-19 12:57 - 2022-04-17 21:47 - 000000000 ____D C:\Program Files\7-Zip
2022-06-18 21:05 - 2022-02-26 15:51 - 000000000 ____D C:\Users\Cynthia
2022-06-18 09:10 - 2022-02-25 18:40 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-06-18 09:09 - 2022-02-27 00:47 - 000000000 ____D C:\ProgramData\Package Cache
2022-06-17 20:52 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-17 20:41 - 2022-02-26 15:50 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-17 20:41 - 2022-02-26 15:50 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-06-17 19:50 - 2022-02-26 15:49 - 000257912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-06-17 19:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-06-17 18:23 - 2022-02-26 15:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-17 10:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-06-17 10:29 - 2022-02-26 15:54 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-06-16 23:24 - 2022-02-26 01:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-16 23:22 - 2022-02-26 01:07 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-16 10:35 - 2022-02-26 16:15 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-16 10:35 - 2022-02-26 16:15 - 000003596 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d82b1882b59216
2022-06-15 19:43 - 2022-03-29 17:53 - 000000000 ____D C:\ProgramData\Avast Software
2022-06-15 14:10 - 2022-04-06 13:12 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\slobs-client
2022-06-15 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-06-14 18:28 - 2022-05-01 20:13 - 000000000 ____D C:\Program Files\Common Files\Twitch
2022-06-14 14:28 - 2022-02-26 15:56 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3666949785-665001886-4052463169-1001
2022-06-14 14:28 - 2022-02-26 15:56 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3666949785-665001886-4052463169-1001
2022-06-14 14:28 - 2022-02-26 15:51 - 000002461 _____ C:\Users\Cynthia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-12 20:22 - 2022-05-03 10:38 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-06-12 19:27 - 2022-03-29 17:55 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Opera Software
2022-06-12 19:22 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-06-12 19:20 - 2022-03-29 17:53 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Opera Software
2022-06-12 17:45 - 2022-02-25 20:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-06-10 13:30 - 2022-02-26 15:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-06-10 13:30 - 2022-02-25 20:06 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-06-08 21:30 - 2022-03-25 23:19 - 000002275 _____ C:\Users\Cynthia\Desktop\Discord.lnk
2022-06-02 15:09 - 2022-03-15 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2022-06-02 15:09 - 2022-03-15 17:01 - 000000000 ____D C:\Program Files\Voicemod Desktop
2022-06-02 14:57 - 2022-04-06 13:12 - 000000000 ____D C:\Program Files\Streamlabs OBS
2022-06-01 19:12 - 2022-03-02 09:15 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Firestorm_x64
==================== Fichiers à la racine de certains dossiers ========
2022-03-10 20:19 - 2022-03-10 20:19 - 000000015 _____ () C:\Users\Cynthia\AppData\Roaming\obs-virtualcam.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================