Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01-09-2021
Exécuté par ecolo (administrateur) sur LUNA (Micro-Star International Co., Ltd. GL75 Leopard 10SER) (07-09-2021 09:19:38)
Exécuté depuis C:\Users\ecolo\Desktop
Profils chargés: ecolo
Platform: Windows 10 Home Version 21H1 19043.1165 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\vMix\drivers\vMixService.exe
() [Fichier non signé] C:\Users\ecolo\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.speedtest.sdPlugin\com.barraider.speedtest.exe
() [Fichier non signé] C:\Users\ecolo\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.spotify.sdPlugin\com.barraider.spotify.exe
() [Fichier non signé] C:\Users\ecolo\AppData\Roaming\Elgato\StreamDeck\Plugins\com.elgato.cpu.sdPlugin\cpu.exe
() [Fichier non signé] C:\Users\ecolo\AppData\Roaming\Elgato\StreamDeck\Plugins\com.lostdomain.zoom.sdPlugin\sdzoomplugin.exe
() [Fichier non signé] C:\Users\ecolo\AppData\Roaming\Elgato\StreamDeck\Plugins\com.vmix.shortcuts.sdPlugin\vMixStreamDeck.exe
() [Fichier non signé] C:\Users\ecolo\AppData\Roaming\Elgato\StreamDeck\Plugins\tv.twitch.studio.sdPlugin\twitchstudiostreamdeck.exe
(A-Volute SAS -> A-Volute) C:\Users\ecolo\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe
(Focusrite Audio Engineering Ltd.) [Fichier non signé] C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe
(Focusrite Audio Engineering, Ltd.) [Fichier non signé] C:\Program Files\Focusriteusb\Focusrite Notifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe <2>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ba5b1813656e5c27\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ba5b1813656e5c27\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3e62be9c39fb0007\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3e62be9c39fb0007\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_48973fc6c96c696a\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.56.11001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.56.11001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\omadmclient.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\omadmprc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WaaSMedicAgent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1161_none_7e3076a27c733477\TiWorker.exe
(Micro-Star International CO., LTD. -> ) C:\Program Files (x86)\MSI\MSI NBFoundation Service\Sendevsvc.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\MSI NBFoundation Service\OmApSvcBroker.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_12434f9db2b78206\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12da6ad5ef67a6ed\RtkAudUService64.exe <2>
(The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Elgato\StreamDeck\QtWebEngineProcess.exe <6>

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-12-10] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12da6ad5ef67a6ed\RtkAudUService64.exe [1262168 2021-05-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\Focusriteusb\Focusrite Notifier.exe [5029376 2020-06-02] (Focusrite Audio Engineering, Ltd.) [Fichier non signé]
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [10215960 2021-06-11] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [114379544 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3949044608-894451978-3727507964-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ecolo\AppData\Local\Microsoft\Teams\Update.exe [2454184 2021-05-29] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3949044608-894451978-3727507964-1001\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-25] (Google LLC -> Google LLC)
Startup: C:\Users\ecolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-07-06]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\ecolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StarLeaf.lnk [2021-01-26]
ShortcutTarget: StarLeaf.lnk -> C:\Users\ecolo\AppData\Local\StarLeaf\StarLeaf\StarLeaf.exe (StarLeaf Ltd -> StarLeaf Ltd.)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0077976F-9E4C-4013-AFBE-BA6CE97C1508} - System32\Tasks\NahimicTask64 => C:\WINDOWS\system32\.\NahimicSvc64.exe [1088640 2021-05-27] (A-Volute SAS -> Nahimic)
Task: {13522926-4735-4D3B-9F84-B99566D3BD02} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3949044608-894451978-3727507964-500 => C:\Users\ecolo\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {141946C0-4D9F-41C6-B442-EBAF76F1A30A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1C3FE3A7-AFCB-46CB-BC27-B4A893D6607E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1E9E9716-38EC-4BC8-9FE4-94791AE76DC7} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {2459EB4D-FDC6-4D39-8B72-708C9FBFB631} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [435712 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {24C4CE1F-5D18-4634-B4E9-AC6FB4408739} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {316E6152-DE0C-424D-A024-9B2B22090ACF} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {366BBD23-5444-448B-8403-95BDFF4A67A0} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {3F1FF35C-7E24-4926-A043-C36E92801919} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {45EBA29A-13BF-4B29-9D07-52B2CAE2DCC8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4E443708-8633-4564-8B71-80B556FE8295} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {4EB6DC7B-BA98-4AF4-9C0A-9F6F0444C1B8} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1088640 2021-05-27] (A-Volute SAS -> Nahimic)
Task: {529a954a-3611-4423-8cce-a4201e429100} - pas de chemin du fichier
Task: {53637751-184D-40A7-A21D-800F79298A50} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74736 2021-01-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {540450AA-AC69-471A-B461-D96BBFDBA08A} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {544AC9F0-E76F-4490-A7C7-609A23DC64B3} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {5948E19C-F4B5-4A5D-BF03-F933B7058023} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139128 2021-09-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {62198CBF-D84A-4C01-BE9E-2C06C3F1F84B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053744 2021-09-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {76EBC86D-1FC3-48AA-8860-154E1CBCCEE4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858176 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {7811BD66-8B9A-4112-BCC4-53DB6F40E070} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {789CB6FD-802E-47A3-85A8-940F95A63948} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858176 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {789CCAE8-CBFB-47B4-AB48-9A7F1CF97737} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8289693D-6A38-4C83-A275-188365E089A3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053744 2021-09-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {8AC93A87-BE4C-4EBE-8DB5-D94201DD3E1C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8D6E21E2-EFE0-4AF4-8958-53F995E3F43A} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1669128 2021-02-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {8F3BB6AF-A084-450F-9A7D-54E7F6D2EE84} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [435712 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {904D880F-49D2-47D2-9F8B-FD52E4792987} - System32\Tasks\NahimicTask32 => C:\WINDOWS\system32\..\SysWOW64\NahimicSvc32.exe [829568 2021-05-27] (A-Volute SAS -> Nahimic)
Task: {97962019-83EE-43F1-A4B8-D5E6CF488430} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {98366C45-7295-4DD4-AFDD-273702245167} - System32\Tasks\OmApSvcBroker => C:\Program Files (x86)\MSI\MSI NBFoundation Service\OmApSvcBroker.exe [524160 2021-02-22] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
Task: {998DEE78-EF76-4D31-AD35-818BD994C711} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {9E1ADB97-86FE-455A-AE0F-AE9A82A8F978} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74736 2021-01-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {9FE975DF-3640-4968-B7C1-153E8E3205F0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {a6f3413a-ede4-43a0-80c4-3f5b6193bd7b} - pas de chemin du fichier
Task: {AA26278A-DDB0-4E5B-8E02-320E8EB63A0C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {AA7EAE07-A00E-47C7-9DAA-236E803C3701} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AB20A819-929F-43C7-A808-D660DE84C8CF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139128 2021-09-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {C59D1085-B6C1-44D2-A458-7345228CBF92} - System32\Tasks\OneDC_Updater => C:\Users\ecolo\Documents\temp\OneDC_Updater\OneDC_Updater.exe [5312120 2020-08-26] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) <==== ATTENTION
Task: {CD24BB79-5BD1-47DC-A36D-AD8D35F2083B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CF1C9431-BEE2-45D4-A48B-BA19879C2653} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D13DCC6D-1B70-4FC6-BA0D-580900A78017} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [829568 2021-05-27] (A-Volute SAS -> Nahimic)
Task: {D9769577-4428-4333-8B05-4F324CBCB976} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DE7D4C45-2B84-42F1-AD28-ECC8E649CD83} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {EF219A8E-EBF9-41DA-A7D5-45D85C1CF959} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-04] (Google LLC -> Google LLC)
Task: {F645A6F7-F2E5-42F4-BA59-580854113FA3} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F677AD23-EFE2-48FF-AD77-60AC2119B2CD} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\53014473-6CFB-4336-986F-51A4FFCA49E4\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [470016 2021-09-06] (Microsoft Windows -> Microsoft Corporation)
Task: {FB954918-029C-4748-865D-8D16B13B6509} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-04] (Google LLC -> Google LLC)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
Tcpip\Parameters: [DhcpNameServer] 192.168.16.253 8.8.8.8
Tcpip\..\Interfaces\{94ba196e-daf7-4a7b-adf6-9ef5ba2209e9}: [DhcpNameServer] 192.168.16.253 8.8.8.8
Tcpip\..\Interfaces\{e044de88-af49-47d2-a43c-e829eb9205b5}: [DhcpNameServer] 192.168.16.253 8.8.8.8

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ecolo\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-07]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-30] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-30] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-30] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default [2021-09-07]
CHR Notifications: Default -> hxxps://us02web.zoom.us
CHR Extension: (Slides) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-04]
CHR Extension: (Docs) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-04]
CHR Extension: (Google Drive) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-04]
CHR Extension: (YouTube) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-04]
CHR Extension: (Sheets) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-29]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-08-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Gmail) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-04]
CHR Extension: (Chrome Media Router) - C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-28]
CHR Profile: C:\Users\ecolo\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-19]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9166736 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
R2 Focusrite Control Server; C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1554432 2020-06-02] (Focusrite Audio Engineering Ltd.) [Fichier non signé]
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Micro Star SCM; C:\WINDOWS\SysWOW64\MSIService.exe [168056 2019-05-07] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
R2 MSI Foundation Service; C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe [76672 2021-02-01] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
R2 MSI Sendevsvc; C:\Program Files (x86)\MSI\MSI NBFoundation Service\Sendevsvc.exe [308344 2020-06-23] (Micro-Star International CO., LTD. -> )
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35848 2021-01-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1675392 2021-05-27] (A-Volute SAS -> Nahimic)
R2 vMixService; C:\Program Files (x86)\vMix\drivers\vMixService.exe [20992 2020-10-05] () [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_12434f9db2b78206\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_12434f9db2b78206\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R2 BlueStacksDrv_msi2; C:\Program Files\BlueStacks_msi2\BstkDrv_msi2.sys [315768 2019-12-12] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 Focusriteusb; C:\WINDOWS\System32\drivers\Focusriteusb.sys [123456 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteusbSwRoot; C:\WINDOWS\System32\drivers\FocusriteusbSwRoot.sys [92568 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
S3 Focusriteusb_AUDIO; C:\WINDOWS\system32\drivers\FocusriteusbAudio.sys [87912 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
S3 Focusriteusb_MIDI; C:\WINDOWS\system32\drivers\FocusriteusbMidi.sys [49808 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85592 2020-01-27] (A-Volute -> Windows (R) Win 7 DDK provider)
R3 NewTek_AudioPortClass; C:\WINDOWS\System32\drivers\NewTek_AudioPortClass.sys [33336 2020-10-18] (Microsoft Windows Hardware Compatibility Publisher -> NewTek)
R3 NewTek_WDM_KS; C:\WINDOWS\System32\drivers\NewTek_WDM_KS.sys [27832 2020-10-18] (Microsoft Windows Hardware Compatibility Publisher -> NewTek)
S3 Spyder5; C:\WINDOWS\System32\drivers\dccmtr.sys [15360 2015-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor)
S3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [57440 2020-10-09] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Switchers; C:\WINDOWS\System32\drivers\Switchers.sys [27376 2021-02-22] (WDKTestCert build,131958900460134002 -> Blackmagic Design)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-07-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425192 2021-07-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-12] (Microsoft Windows -> Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\MSI NBFoundation Service\KernCoreLib64.sys [25656 2018-11-15] (Micro-Star International CO., LTD. -> )

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-07 09:19 - 2021-09-07 09:19 - 000031461 _____ C:\Users\ecolo\Desktop\FRST.txt
2021-09-07 09:19 - 2021-09-07 09:19 - 000000000 ____D C:\FRST
2021-09-07 09:17 - 2021-09-07 09:17 - 002302464 _____ (Farbar) C:\Users\ecolo\Desktop\FRST64.exe
2021-09-06 17:12 - 2021-09-06 17:12 - 002120496 _____ (Malwarebytes) C:\Users\ecolo\Downloads\MBSetup.exe
2021-09-06 16:46 - 2021-09-06 16:46 - 000000000 ____D C:\Users\ecolo\Downloads\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy
2021-09-06 16:45 - 2021-09-06 16:45 - 005307392 _____ C:\Users\ecolo\Downloads\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy.zip
2021-09-06 16:40 - 2021-09-06 16:40 - 000000390 _____ C:\Users\ecolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2021 Madiness 02-07.lnk
2021-09-06 16:17 - 2021-09-06 16:17 - 000000000 ____D C:\Users\ecolo\AppData\Local\mbam
2021-09-06 15:02 - 2021-09-06 15:02 - 000000000 ___HD C:\$WinREAgent
2021-09-06 14:51 - 2021-09-06 14:51 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-09-06 14:51 - 2021-09-06 14:51 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-09-06 14:51 - 2021-09-06 14:51 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-06 14:51 - 2021-09-06 14:51 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-06 14:51 - 2021-09-06 14:51 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-06 14:51 - 2021-09-06 14:51 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-06 14:51 - 2021-09-06 14:51 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-09-06 14:51 - 2021-09-06 14:51 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-09-06 14:51 - 2021-09-06 14:51 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-09-06 14:51 - 2021-09-06 14:51 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-09-06 14:50 - 2021-09-06 14:50 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-09-06 11:58 - 2021-09-06 11:58 - 000000944 _____ C:\Users\Public\Desktop\Shutter Encoder.lnk
2021-09-06 11:58 - 2021-09-06 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shutter Encoder
2021-09-06 11:57 - 2021-09-06 11:57 - 066772359 _____ (Paul Pacifico ) C:\Users\ecolo\Desktop\Shutter Encoder 15.3 Windows 64bits.exe
2021-09-06 11:53 - 2021-09-06 11:54 - 425556864 _____ (StudioCoast ) C:\Users\ecolo\Documents\vmix24.0.0.63.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-07 09:19 - 2020-12-04 15:46 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-07 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-07 09:18 - 2021-03-31 17:29 - 001772722 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-07 09:18 - 2019-12-07 16:49 - 000792858 _____ C:\WINDOWS\system32\perfh00C.dat
2021-09-07 09:18 - 2019-12-07 16:49 - 000149988 _____ C:\WINDOWS\system32\perfc00C.dat
2021-09-07 09:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-07 09:13 - 2020-03-21 03:30 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-07 09:12 - 2020-12-09 08:36 - 000000000 ____D C:\Users\ecolo\AppData\Local\CrashDumps
2021-09-07 09:11 - 2021-04-02 09:04 - 000003112 _____ C:\WINDOWS\system32\Tasks\NahimicTask32
2021-09-07 09:11 - 2021-03-31 17:29 - 000003092 _____ C:\WINDOWS\system32\Tasks\NahimicTask64
2021-09-07 09:11 - 2021-03-31 17:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-07 09:11 - 2021-03-31 17:25 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-07 09:11 - 2020-12-04 15:18 - 000000000 __SHD C:\Users\ecolo\IntelGraphicsProfiles
2021-09-06 18:16 - 2021-03-31 07:45 - 000000000 ____D C:\Users\ecolo
2021-09-06 18:16 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-06 18:07 - 2020-12-04 15:47 - 000000000 ____D C:\ProgramData\Common
2021-09-06 18:02 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-09-06 17:32 - 2021-03-08 08:59 - 000000000 ____D C:\Users\ecolo\AppData\Local\D3DSCache
2021-09-06 16:54 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-06 16:43 - 2021-04-02 17:03 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-09-06 16:42 - 2021-04-02 17:03 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-09-06 16:42 - 2021-04-02 17:03 - 000000000 ____D C:\Program Files\Adobe
2021-09-06 16:42 - 2020-12-04 15:18 - 000000000 ____D C:\Users\ecolo\AppData\Roaming\Adobe
2021-09-06 16:41 - 2021-04-02 17:02 - 000000000 ____D C:\ProgramData\Adobe
2021-09-06 16:40 - 2021-03-19 12:45 - 000000000 ____D C:\Users\ecolo\AppData\Roaming\vlc
2021-09-06 16:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-06 15:59 - 2020-12-04 15:18 - 000000000 ____D C:\Users\ecolo\AppData\Local\Packages
2021-09-06 15:06 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-06 15:05 - 2020-12-04 15:47 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-09-06 15:05 - 2020-12-04 15:47 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-09-06 15:05 - 2020-12-04 15:14 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-06 15:05 - 2020-12-04 15:14 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-09-06 15:00 - 2020-12-04 15:19 - 000000000 ____D C:\Users\ecolo\AppData\Local\PlaceholderTileLogoFolder
2021-09-06 15:00 - 2019-11-13 22:30 - 000000000 ____D C:\ProgramData\Packages
2021-09-06 14:53 - 2021-03-31 17:25 - 000481176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-06 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-09-06 14:53 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-06 14:46 - 2020-12-17 13:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-06 14:44 - 2020-12-17 13:39 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-06 14:44 - 2020-12-17 09:12 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-06 14:44 - 2020-12-04 16:37 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-09-06 14:44 - 2020-12-04 15:46 - 002163152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-09-06 14:44 - 2020-12-04 15:46 - 000307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-09-06 14:44 - 2020-12-04 15:46 - 000213456 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-09-06 14:44 - 2020-12-04 15:46 - 000188856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-09-06 14:44 - 2020-12-04 15:46 - 000061904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-09-06 14:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-09-06 14:31 - 2021-03-31 17:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-06 14:07 - 2021-07-15 11:52 - 000000060 _____ C:\WINDOWS\system32\perfdish001.dat
2021-09-06 11:58 - 2020-12-17 09:31 - 000000000 ____D C:\Program Files\Shutter Encoder
2021-09-06 11:56 - 2020-12-04 16:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vMixSocial
2021-09-06 11:56 - 2020-12-04 16:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vMix
2021-09-06 11:56 - 2020-12-04 16:00 - 000000000 ____D C:\Program Files (x86)\vMixSocial
2021-09-06 11:56 - 2020-12-04 16:00 - 000000000 ____D C:\Program Files (x86)\vMix Video Codec
2021-09-06 11:56 - 2020-12-04 15:59 - 000000000 ____D C:\Program Files (x86)\vMix
2021-09-06 11:53 - 2019-11-13 23:01 - 000000000 ____D C:\Program Files\Microsoft Office
2021-08-26 16:56 - 2020-12-04 16:43 - 000116882 _____ C:\Users\ecolo\AppData\Roaming\last.vmix
2021-08-25 21:56 - 2021-03-31 17:29 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-25 21:56 - 2021-03-31 17:29 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-17 01:22 - 2020-12-17 09:12 - 000740168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-08-17 01:22 - 2020-12-17 09:12 - 000486728 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll

==================== Fichiers à la racine de certains dossiers ========

2020-12-04 16:43 - 2021-08-26 16:56 - 000116882 _____ () C:\Users\ecolo\AppData\Roaming\last.vmix
2021-06-18 09:41 - 2021-09-06 16:42 - 000000615 _____ () C:\Users\ecolo\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================