Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2022 Exécuté par Cynthia (administrateur) sur PC-SALON (MSI MS-7816) (20-06-2022 19:01:33) Exécuté depuis C:\Users\Cynthia\Desktop Profils chargés: Cynthia & UpdatusUser Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1766 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe (explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Cynthia\AppData\Roaming\uTorrent Web\utweb.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (NetSupport Ltd -> NetSupport Ltd) C:\Users\Cynthia\AppData\Roaming\XShUTx0J\ctfmon.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <28> (services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.5.1.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-09-05] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> ) HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-09-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [utweb] => C:\Users\Cynthia\AppData\Roaming\uTorrent Web\utweb.exe [6282784 2022-03-26] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [Discord] => C:\Users\Cynthia\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub) HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [ctfmon_] => C:\Users\Cynthia\AppData\Roaming\XShUTx0J\ctfmon.exe [112176 2020-05-06] (NetSupport Ltd -> NetSupport Ltd) <==== ATTENTION HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [MicrosoftEdgeAutoLaunch_DD74FE1EA207459293C6E4DD0B8F071B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3595168 2022-06-16] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3666949785-665001886-4052463169-1001\...\MountPoints2: {09a7ae77-9658-11ec-824b-806e6f6e6963} - "E:\DVDSetup.exe" HKLM\...\Windows x64\Print Processors\sdb1MPC: C:\Windows\System32\spool\prtprocs\x64\sdb1mpc.dll [46104 2022-03-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider) HKLM\...\Print\Monitors\sdb1M Langmon: C:\WINDOWS\system32\sdb1mlm.dll [43032 2022-03-11] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\102.0.5005.115\Installer\chrmstp.exe [2022-06-14] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {06497B9E-B381-46FC-AF2C-EC1B89AB91A3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-25] (Google LLC -> Google LLC) Task: {0CD75EAA-DF22-4D10-94EF-02866E99824F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1CC32251-B25F-4A07-ACC3-521E7EAAAC8D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Work Task: {2E02363C-2C9D-471B-B4B0-897F81667400} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier) Task: {382DB598-B6A3-46E1-AD6C-F38C6F488883} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4F2030CE-BA8E-4122-B9A8-29AA5858973E} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8FF5DE67-C947-4488-997B-4184221E7D50} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start Task: {93F8311D-2D79-4651-8C92-DB313318E558} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9899146D-8EA6-4BCC-AD82-59700C18708A} - System32\Tasks\Opera scheduled assistant Autoupdate 1655054465 => C:\Users\Cynthia\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Cynthia\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {A36CC4FF-87FD-492E-9857-CB184C763BB2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {A866C178-318C-4C1F-B219-1EA7463635E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-25] (Google LLC -> Google LLC) Task: {BCF72C8E-4FE0-417E-A306-4E3D2F09D5B7} - System32\Tasks\Opera GX scheduled Autoupdate 1648569266 => C:\Users\Cynthia\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) Task: {BD7FDD92-97C2-4F6A-B3A4-4E3D3A5E1031} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {C4A1D259-50A8-4E86-AFF0-73AA7811F600} - System32\Tasks\Service\Diagnostic => C:\Users\Cynthia\AppData\Roaming\ServiceGet\Kydder.exe -> "C:\Users\Cynthia\AppData\Roaming\ServiceGet\Kydder.dat" <==== ATTENTION Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D74C4A56-F521-4EE4-B673-1F73A3E8D47F} - System32\Tasks\Opera scheduled Autoupdate 1655054446 => C:\Users\Cynthia\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{2148C561-00F0-41EA-A5B3-50DBFE9DB3C4}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\Cynthia\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-20] Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE12&ocid=UE12DHP FireFox: ======== FF DefaultProfile: xjy7vn45.default FF ProfilePath: C:\Users\Cynthia\AppData\Roaming\Mozilla\Firefox\Profiles\xjy7vn45.default [2022-02-25] FF ProfilePath: C:\Users\Cynthia\AppData\Roaming\Mozilla\Firefox\Profiles\y3eydlij.default-release-1655731026831 [2022-06-20] FF DownloadDir: D: Chrome: ======= CHR Profile: C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default [2022-06-05] CHR Notifications: Default -> hxxps://www.youtube.com CHR HomePage: Default -> hxxp://www.google.com CHR Extension: (Ad Block Ultra) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpiejmibihoklikohojpofdfgnjhjdfj [2022-06-05] CHR Extension: (Google Docs hors connexion) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-08] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Cynthia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-26] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161776 2013-09-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.) S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [337112 2022-06-14] (Twitch Interactive, Inc. -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 MSICDSetup; E:\CDriver64.sys [28984 2009-08-12] (Micro-Star Int'l Co. Ltd. -> Your Corporation) S3 NTIOLib_1_0_C; E:\NTIOLib_X64.sys [11888 2011-06-29] (Micro-Star Int'l Co. Ltd. -> MSI) [Fichier non signé] S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [232792 2021-09-05] (Valve Corp. -> Valve Corporation) R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2022-02-23] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-06-20 19:01 - 2022-06-20 19:02 - 000016355 _____ C:\Users\Cynthia\Desktop\FRST.txt 2022-06-20 19:00 - 2022-06-20 19:01 - 000000000 ____D C:\FRST 2022-06-20 18:59 - 2022-06-20 18:59 - 002369024 _____ (Farbar) C:\Users\Cynthia\Desktop\FRST64.exe 2022-06-20 18:56 - 2022-06-20 18:56 - 004707136 _____ (Crystal Dew World ) C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2.exe 2022-06-20 18:44 - 2022-06-20 18:44 - 000000000 _____ C:\Users\Cynthia\Downloads\DkBF00Pn.exe.part 2022-06-20 18:29 - 2022-06-20 18:29 - 000000000 ____D C:\Users\Cynthia\Downloads\SteamLibrary 2022-06-20 18:29 - 2022-06-20 18:29 - 000000000 ____D C:\SteamLibrary 2022-06-20 17:57 - 2022-06-20 17:57 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(2).pyAn9Xwa.exe.part 2022-06-20 17:57 - 2022-06-20 17:57 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(2).exe 2022-06-20 17:56 - 2022-06-20 17:56 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(1).FrAbxQqw.exe.part 2022-06-20 17:56 - 2022-06-20 17:56 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2(1).exe 2022-06-20 17:55 - 2022-06-20 17:55 - 000000000 _____ C:\Users\Cynthia\Downloads\CrystalDiskInfo8_11_2.PcpMLR4L.exe.part 2022-06-20 15:47 - 2022-06-20 15:54 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore 2022-06-20 15:17 - 2022-06-20 15:17 - 000000000 ____D C:\Users\Cynthia\Desktop\Anciennes données de Firefox 2022-06-19 20:35 - 2022-06-19 20:40 - 000000000 ____D C:\Users\Cynthia\Downloads\Life Is Strange 2022-06-19 12:57 - 2022-06-19 12:57 - 000000000 ____D C:\WINDOWS\Panther 2022-06-19 00:44 - 2022-06-19 00:44 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\SysInfoTool 2022-06-18 21:05 - 2022-06-18 21:05 - 000000000 ____D C:\Users\Cynthia\ansel 2022-06-18 21:04 - 2022-06-18 21:04 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Dontnod 2022-06-18 09:10 - 2022-06-18 09:10 - 000000000 ____D C:\Users\Cynthia\Documents\my games 2022-06-18 09:10 - 2022-06-18 09:10 - 000000000 ____D C:\Program Files (x86)\AGEIA Technologies 2022-06-18 08:35 - 2022-06-20 12:37 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\ServiceGet 2022-06-18 08:35 - 2022-06-18 08:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Service 2022-06-18 08:35 - 2022-06-18 08:35 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Westedika 2022-06-17 19:02 - 2022-06-17 19:02 - 000000000 ____D C:\Users\Cynthia\AppData\Local\com.wsa.a7-updater 2022-06-17 18:37 - 2022-06-17 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Catalyst 2022-06-17 10:29 - 2022-06-17 10:29 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-06-17 10:29 - 2022-06-17 10:29 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2022-06-17 10:29 - 2022-06-17 10:29 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2022-06-17 10:29 - 2022-06-17 10:29 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll 2022-06-17 10:29 - 2022-06-17 10:29 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-06-17 10:21 - 2022-06-17 10:21 - 000000000 ___HD C:\$WinREAgent 2022-06-16 23:12 - 2022-06-16 23:12 - 000000000 ____D C:\Users\Cynthia\AppData\LocalLow\Kyle Seeley 2022-06-16 22:49 - 2022-06-16 22:49 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Steam 2022-06-16 22:49 - 2021-09-05 13:16 - 000232792 _____ (Valve Corporation) C:\WINDOWS\system32\Drivers\steamxbox.sys 2022-06-16 22:48 - 2022-06-20 19:01 - 000000000 ____D C:\Program Files (x86)\Steam 2022-06-16 22:48 - 2022-06-16 22:48 - 000001032 _____ C:\Users\Public\Desktop\Steam.lnk 2022-06-16 22:48 - 2022-06-16 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2022-06-16 22:47 - 2022-06-16 22:47 - 002296488 _____ C:\Users\Cynthia\Downloads\SteamSetup.exe 2022-06-14 18:28 - 2022-06-14 18:28 - 000000771 _____ C:\Users\Cynthia\Desktop\Twitch Studio.lnk 2022-06-14 18:28 - 2022-06-14 18:28 - 000000771 _____ C:\Users\Cynthia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch Studio.lnk 2022-06-14 18:27 - 2022-06-14 18:27 - 001251728 _____ (Twitch Interactive, Inc.) C:\Users\Cynthia\Downloads\TwitchStudioSetup-network_[usher-510196312][referrer-dashboard_tools](1).exe 2022-06-14 17:56 - 2022-06-14 17:56 - 003342336 _____ C:\Users\Cynthia\Downloads\TStan5leyPa7rableU1ltraD-elamigos.fOgVAthI.part2.rar.part 2022-06-14 17:55 - 2022-06-14 17:55 - 001638400 _____ C:\Users\Cynthia\Downloads\TStan5leyPa7rableU1ltraD-elamigos.Gy8fRVyw.part1.rar.part 2022-06-14 17:43 - 2022-03-29 19:20 - 000000000 ____D C:\Program Files\Microvirt 2022-06-14 16:53 - 2022-06-14 16:53 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Steam 2022-06-14 16:49 - 2022-06-14 16:49 - 000000000 ____D C:\Program Files (x86)\R.G. Mechanics 2022-06-12 19:27 - 2022-06-12 19:27 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Gh 2022-06-12 19:25 - 2022-06-12 19:25 - 000000000 ___HD C:\$AV_ASW 2022-06-12 19:21 - 2022-06-12 19:26 - 000000000 ____D C:\Program Files (x86)\PremierOpinion 2022-06-12 19:21 - 2022-06-12 19:23 - 000004210 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1655054446 2022-06-12 19:21 - 2022-06-12 19:21 - 000004442 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1655054465 2022-06-12 19:21 - 2022-06-12 19:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremierOpinion 2022-06-12 19:21 - 2020-10-02 00:58 - 001098080 _____ (VoiceFive, Inc.) C:\WINDOWS\system32\pmls64.dll 2022-06-12 19:21 - 2020-10-02 00:58 - 000740704 _____ (VoiceFive, Inc.) C:\WINDOWS\SysWOW64\pmls.dll 2022-06-12 19:17 - 2022-06-19 12:54 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BrightTRAMP 2022-06-12 19:17 - 2022-06-12 19:17 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BrightTRAMPtniUtil 2022-06-11 16:36 - 2022-06-11 16:36 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e08-french-web-x264-extreme-mkv_2022-06-10_0636 2022-06-11 16:32 - 2022-06-11 16:34 - 719750971 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e08-french-web-x264-extreme-mkv_2022-06-10_0636.zip 2022-06-10 07:27 - 2022-06-12 17:45 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-06-04 13:03 - 2022-06-04 13:03 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088-2.pdf 2022-06-01 17:53 - 2022-06-01 17:53 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e05-french-web-x264-extreme-mkv_2022-06-01_1107 2022-06-01 17:50 - 2022-06-01 17:53 - 861234587 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-org-le-flambeau-les-aventuriers-de-chupacabra-s01e05-french-web-x264-extreme-mkv_2022-06-01_1107.zip 2022-05-28 12:29 - 2022-05-28 12:29 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088-1.pdf 2022-05-28 12:29 - 2022-05-28 12:29 - 000401836 _____ C:\Users\Cynthia\Downloads\facture_610350487088.pdf 2022-05-27 10:45 - 2022-05-27 10:46 - 000000000 ____D C:\Users\Cynthia\Downloads\wetransfer_torrent911-net-le-flambeau-les-aventuriers-de-chupacabra-s01e03-french-web-x264-extreme-mkv_2022-05-26_1750 2022-05-26 21:26 - 2022-05-26 21:29 - 788075387 _____ C:\Users\Cynthia\Downloads\wetransfer_torrent911-net-le-flambeau-les-aventuriers-de-chupacabra-s01e03-french-web-x264-extreme-mkv_2022-05-26_1750.zip 2022-05-25 21:31 - 2022-05-25 21:31 - 000000206 _____ C:\Users\Cynthia\Downloads\nimporte nawak.vcf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-06-20 18:59 - 2022-03-06 10:26 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\uTorrent Web 2022-06-20 18:54 - 2022-02-28 19:01 - 000000000 ____D C:\ProgramData\Origin 2022-06-20 18:54 - 2022-02-25 21:39 - 000000000 ____D C:\Users\Cynthia\AppData\Local\CrashDumps 2022-06-20 18:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-06-20 18:20 - 2022-02-25 18:52 - 000000000 ____D C:\Program Files (x86)\Google 2022-06-20 18:06 - 2022-02-25 20:06 - 000000000 ____D C:\Users\Cynthia\AppData\LocalLow\Mozilla 2022-06-20 17:56 - 2022-03-06 10:26 - 000000000 ____D C:\Users\Cynthia\AppData\Local\BitTorrentHelper 2022-06-20 15:23 - 2022-02-25 20:06 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-06-20 12:11 - 2022-03-25 23:19 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\discord 2022-06-20 12:11 - 2022-02-25 23:12 - 000000000 ___RD C:\Users\Cynthia\OneDrive 2022-06-20 03:02 - 2022-02-25 18:41 - 000000000 ____D C:\ProgramData\NVIDIA 2022-06-19 23:02 - 2022-03-15 17:02 - 000000000 ____D C:\ProgramData\Voicemod 2022-06-19 22:59 - 2022-03-15 17:01 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Voicemod 2022-06-19 22:57 - 2022-02-26 17:30 - 000000000 ____D C:\Users\Cynthia\AppData\Local\D3DSCache 2022-06-19 21:36 - 2022-03-25 23:19 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Discord 2022-06-19 20:42 - 2022-02-26 15:58 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-06-19 20:42 - 2019-12-07 16:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat 2022-06-19 20:42 - 2019-12-07 16:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat 2022-06-19 20:42 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-06-19 20:35 - 2022-02-26 15:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-06-19 20:35 - 2022-02-26 15:49 - 000008192 ___SH C:\DumpStack.log.tmp 2022-06-19 20:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-06-19 20:35 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-06-19 12:57 - 2022-04-17 21:47 - 000000000 ____D C:\Program Files\7-Zip 2022-06-18 21:05 - 2022-02-26 15:51 - 000000000 ____D C:\Users\Cynthia 2022-06-18 09:10 - 2022-02-25 18:40 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2022-06-18 09:09 - 2022-02-27 00:47 - 000000000 ____D C:\ProgramData\Package Cache 2022-06-17 20:52 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-06-17 20:41 - 2022-02-26 15:50 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-06-17 20:41 - 2022-02-26 15:50 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-06-17 19:50 - 2022-02-26 15:49 - 000257912 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-06-17 19:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-06-17 19:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2022-06-17 18:23 - 2022-02-26 15:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-06-17 10:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-06-17 10:29 - 2022-02-26 15:54 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-06-16 23:24 - 2022-02-26 01:07 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-06-16 23:22 - 2022-02-26 01:07 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-06-16 10:35 - 2022-02-26 16:15 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-06-16 10:35 - 2022-02-26 16:15 - 000003596 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d82b1882b59216 2022-06-15 19:43 - 2022-03-29 17:53 - 000000000 ____D C:\ProgramData\Avast Software 2022-06-15 14:10 - 2022-04-06 13:12 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\slobs-client 2022-06-15 14:00 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-06-14 18:28 - 2022-05-01 20:13 - 000000000 ____D C:\Program Files\Common Files\Twitch 2022-06-14 14:28 - 2022-02-26 15:56 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3666949785-665001886-4052463169-1001 2022-06-14 14:28 - 2022-02-26 15:56 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3666949785-665001886-4052463169-1001 2022-06-14 14:28 - 2022-02-26 15:51 - 000002461 _____ C:\Users\Cynthia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-06-12 20:22 - 2022-05-03 10:38 - 000000000 ____D C:\Program Files (x86)\Origin Games 2022-06-12 19:27 - 2022-03-29 17:55 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Opera Software 2022-06-12 19:22 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-06-12 19:20 - 2022-03-29 17:53 - 000000000 ____D C:\Users\Cynthia\AppData\Roaming\Opera Software 2022-06-12 17:45 - 2022-02-25 20:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-06-10 13:30 - 2022-02-26 15:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-06-10 13:30 - 2022-02-25 20:06 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-06-08 21:30 - 2022-03-25 23:19 - 000002275 _____ C:\Users\Cynthia\Desktop\Discord.lnk 2022-06-02 15:09 - 2022-03-15 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod 2022-06-02 15:09 - 2022-03-15 17:01 - 000000000 ____D C:\Program Files\Voicemod Desktop 2022-06-02 14:57 - 2022-04-06 13:12 - 000000000 ____D C:\Program Files\Streamlabs OBS 2022-06-01 19:12 - 2022-03-02 09:15 - 000000000 ____D C:\Users\Cynthia\AppData\Local\Firestorm_x64 ==================== Fichiers à la racine de certains dossiers ======== 2022-03-10 20:19 - 2022-03-10 20:19 - 000000015 _____ () C:\Users\Cynthia\AppData\Roaming\obs-virtualcam.txt ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================