Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par coren (administrateur) sur JLRETRO-PC (Gigabyte Technology Co., Ltd. B450 GAMING X) (28-09-2022 11:51:49)
Exécuté depuis C:\Users\coren\Desktop
Profils chargés: coren
Plate-forme: Microsoft Windows 11 Professionnel Version 22H2 22621.521 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\Genshin Impact\Genshin Impact game\GenshinImpact.exe ->) (miHoYo Co.,Ltd. -> ) C:\Program Files\Genshin Impact\Genshin Impact game\GenshinImpact_Data\Plugins\ZFGameBrowser.exe <6>
(C:\Program Files\Genshin Impact\launcher.exe ->) (COGNOSPHERE PTE. LTD. -> ) C:\Program Files\Genshin Impact\Genshin Impact game\GenshinImpact.exe
(C:\Program Files\Genshin Impact\launcher.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Genshin Impact\QtWebEngineProcess.exe
(C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NvVirtualCamera\NVIDIA Broadcast.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\ProgramData\SteelSeries\GG\engineApps\system-stats\runStatsElevated.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesPrismSync.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.665.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.50\msedgewebview2.exe <6>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCopyAccelerator.exe
(C:\ProgramData\SteelSeries\GG\engineApps\system-stats\runStatsElevated.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\ProgramData\SteelSeries\GG\engineApps\system-stats\SteelSeriesSystemMonitor.exe
(Discord Inc. -> Discord Inc.) C:\Users\coren\AppData\Local\Discord\app-1.0.9006\Discord.exe <6>
(explorer.exe ->) (COGNOSPHERE PTE. LTD. -> HoYoverse) C:\Program Files\Genshin Impact\launcher.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <22>
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_6.69.19001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_6.69.19001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.6271.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.6271.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.665.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe
Impossible d'accéder au processus -> vmmemCmZygote
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12837240 2022-09-15] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [10387048 2022-03-08] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3071192 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1067528 2022-07-29] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630040 2022-09-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [FACEIT] => C:\Users\coren\AppData\Local\FACEIT\update.exe [2277688 2021-05-31] (FACE IT LIMITED -> )
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13799776 2022-03-05] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32627168 2022-04-19] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [280440 2021-06-06] (nordvpn s.a. -> TEFINCOM S.A.)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3149616 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\coren\AppData\Local\Microsoft\Teams\Update.exe [2455256 2021-10-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [Discord] => C:\Users\coren\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2707104 2022-03-27] (Skutta, Kristjan -> )
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [Voicemod] => C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe [7291800 2022-03-18] (Voicemod Sociedad Limitada -> Voicemod)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [146944768 2022-07-27] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2896488408-2048486017-1690383260-1001\...\MountPoints2: {6d7300e8-1766-11ed-8104-18c04dae29b4} - "D:\autorun\autorun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\Software\...\Authentication\Credential Providers: [{f64945df-4fa9-4068-a2fb-61af319edd33}] -> C:\WINDOWS\system32\rdpcredentialprovider.dll [2022-08-06] (Microsoft Windows -> Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~1\VIRTUA~2\VIRTUA~4.DLL => C:\Program Files\Virtual Desktop Streamer\VirtualDesktop.Injector64.dll [132376 2022-03-08] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
BootExecute: autocheck autochk * Partizan
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {08BD09F4-BBD5-4759-9418-2A6680D41823} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [49152 2022-05-07] (Microsoft Windows -> )
Task: {124284D0-D8A5-4C7D-8ADA-26A6A3D10583} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26166200 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {225AB3A3-750E-4E33-96E5-EBDC08108518} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\105.0.1343.42\Installer\setup.exe --handle-crash="$(ProcessPath)" (Pas de fichier)
Task: {23112DA5-1799-4093-A17A-07417B82DBB9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
"C:\Windows\System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask" n'a pas pu être déverrouillé. <==== ATTENTION
Task: {27CE9D59-9D48-4D29-99BC-64657AEBA494} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask
Task: {2A615DA6-F705-4DA4-A19A-571140B3E5B8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8502776 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {3724C016-01AA-4BBA-B0A9-A1BD3945BD97} - System32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe [22424616 2022-09-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {41DED17F-5333-4EB3-905C-CD1D70244BF1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {41E6225D-D92F-4D1B-9917-62065A0FC2BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4AEE8567-E48C-422F-A9F8-949828BBB1BA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {59D2B93E-1C22-4457-99EF-FB9B61A42139} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [65448 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {5DC5097F-8EF4-45F3-9A6D-BE8214C815CB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {79EFD2AA-14E3-4363-8889-0763D84ABB99} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7A96E24F-C5E2-4F28-AB62-BF24368B8709} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26166200 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B8A547B-0E04-4F8C-AEAA-1A29CBA8D155} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4165016 2022-09-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {8733F109-BB17-4F2F-BFC7-052AC1B6ED40} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD)
Task: {88DDF1C6-2C54-4456-99BE-9A1DD1BDDA26} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9536F03D-1669-412C-9E85-4E87F46FA5E3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143248 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {95CDA496-7694-4E46-92AB-CE1BA7700D59} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9ED926D8-C72C-4782-A056-564C9BC0C0E3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A623521A-24D2-46DE-B325-7809A0EFFC41} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {AA06AD2C-D760-4AC9-B0D5-326AB45CC627} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B1B15078-9CCB-4E39-8A29-BA3404581A5A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B7E37A7D-28E2-471E-9EDE-97F62868B0B0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {BEE9753A-4C03-4613-929C-03B89D50D792} - System32\Tasks\Microsoft\Windows\CloudRestore\Restore => {B4BCFA6F-948D-46B8-BF27-E8B1117E23B3} C:\WINDOWS\system32\CloudRestoreLauncher.dll [245760 2022-09-23] (Microsoft Windows -> Microsoft Corporation)
Task: {C34F0487-F1DD-4808-AB83-4FC2518DAEC6} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C375B8E7-1D4F-4E57-90E7-3BEFD0DFCE06} - System32\Tasks\Microsoft\Windows\WlanSvc\MoProfileManagement => {085EDA12-CF4A-4944-8222-8ADCADE137CB} C:\Windows\System32\WlanMediaManager.dll [897024 2022-08-06] (Microsoft Windows -> Microsoft Corporation)
Task: {C578F399-C3B4-41F2-B87B-CDD97F125C05} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8502776 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {D0E96E49-A95E-499C-AE6D-86A0ECC96DDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-31] (Google LLC -> Google LLC)
Task: {D59CEB3B-4D43-453C-AF11-A5A856575AD0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {D8536ACF-39F4-4E14-A82F-58471DE5A531} - \Microsoft\Windows\Plug and Play\Device Install Group Policy0z7Ro4z -> Pas de fichier <==== ATTENTION
Task: {D872FA95-E299-4742-88A3-D47E52A876E6} - System32\Tasks\PlitchSkipUAC => C:\Program Files\PLITCH\PLITCH.exe [146423576 2022-02-24] (MegaDev GmbH -> MegaDev GmbH)
Task: {DB28931B-257E-4A22-8AF9-A413CE667BD9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-31] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {EE052A96-AF51-4C29-84E2-86AB9AD1D9E6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143248 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {F87BAE91-2470-40AB-9F94-A437578A5E4D} - System32\Tasks\Microsoft\Windows\Application Experience\SdbinstMergeDbTask => C:\WINDOWS\system32\sdbinst.exe [217088 2022-09-23] (Microsoft Windows -> Microsoft Corporation)
Task: {F94EF368-5207-4DBC-9B7A-ACECB158C556} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FD801249-58B3-4870-A06F-43FE319D74D7} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2896488408-2048486017-1690383260-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4165016 2022-09-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {FF68191E-75DC-4561-80E2-D94B72AF6C5F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Script HTML détecté dans hosts. Voir la section Hosts de Addition.txt <==== ATTENTION
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0c03483d-ca5c-477c-bc38-38f0a7d8f22f}: [DhcpNameServer] 192.168.92.36
Tcpip\..\Interfaces\{3fdff2b0-3a30-426e-8989-ee4820a3fb63}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{846e95bb-cf52-4da5-b7d0-57973cbd5a6c}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Profile: C:\Users\coren\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-21]
FireFox:
========
FF DefaultProfile: 5x91rjtw.default
FF ProfilePath: C:\Users\coren\AppData\Roaming\Mozilla\Firefox\Profiles\5x91rjtw.default [2021-09-04]
FF ProfilePath: C:\Users\coren\AppData\Roaming\Mozilla\Firefox\Profiles\u6f117iu.default-release [2022-09-26]
FF Extension: (Tampermonkey) - C:\Users\coren\AppData\Roaming\Mozilla\Firefox\Profiles\u6f117iu.default-release\Extensions\firefox@tampermonkey.net.xpi [2022-06-03]
FF Extension: (MetaMask) - C:\Users\coren\AppData\Roaming\Mozilla\Firefox\Profiles\u6f117iu.default-release\Extensions\webextension@metamask.io.xpi [2022-09-22]
FF Plugin: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-04-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-04-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-07-29] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-07-29] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default [2022-09-28]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-31]
CHR Extension: (uBlock Origin) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-09-20]
CHR Extension: (Tampermonkey) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-05-09]
CHR Extension: (Dark Reader) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2022-09-26]
CHR Extension: (NordVPN - VPN Proxy for Privacy and Security) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2022-09-14]
CHR Extension: (Save image as Type) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\gabfmnliflodkdafenbcpjdlppllnemd [2022-09-21]
CHR Extension: (Return YouTube Dislike) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2022-09-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-26]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2022-08-18]
CHR Extension: (Twitch Previews) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpmbiinljekjjcjgijnlbmgcmoonclah [2022-09-15]
CHR Extension: (Youtube TV On PC) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\jldjbkccldgbegjpggphaeikombjmnkh [2022-01-17]
CHR Extension: (OnlyFans Downloader) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\kannclgbcpfmmmkhahdbhjlcaidhldhj [2022-07-12]
CHR Extension: (Video Ad-Block, for Twitch) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgeglempfkhalebjlogemlmeakondflc [2022-03-30]
CHR Extension: (Twitch Adblock) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljhnljhabgjcihjoihakgdiicdjncpkd [2022-08-31]
CHR Extension: (Blackbox - Select. Copy. Paste & Search) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcgbeeipkmelnpldkobichboakdfaeon [2022-09-21]
CHR Extension: (SponsorBlock pour YouTube - Supprime les publicités intégrées) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjggcdmjocbbbhaepdhchncahnbgone [2022-09-25]
CHR Extension: (MetaMask) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2022-09-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-31]
CHR Extension: (Downloader for OnlyFans.com) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdbbabjcnanbkimdgcdfbnghhmchomnh [2022-07-20]
CHR Extension: (Enhancer for YouTube™) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2022-08-04]
CHR Profile: C:\Users\coren\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-02-24]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [923656 2022-07-29] (Adobe Inc. -> Adobe Inc.)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8926168 2022-01-09] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477392 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)
S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [802816 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-27] (EasyAntiCheat Oy -> Epic Games, Inc)
S4 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-07-27] (EasyAntiCheat Oy -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-12] (Epic Games Inc. -> Epic Games, Inc.)
S4 EpocCamService; C:\Program Files (x86)\Elgato\EpocCam\EpocCamService.exe [10583304 2021-08-28] (Corsair Memory, Inc. -> )
S4 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [24729488 2021-05-13] (FACE IT LIMITED -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.186.0904.0001\FileSyncHelper.exe [3383704 2022-09-27] (Microsoft Corporation -> Microsoft Corporation)
S4 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1959776 2022-03-05] (GOG Sp. z o.o. -> GOG.com)
S4 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-08-28] (GOG Sp. z o.o. -> GOG.com)
S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304496 2022-08-06] (Microsoft Windows -> Microsoft Corporation)
S4 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10876672 2022-07-27] (Logitech Inc -> Logitech, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-09-28] (Malwarebytes Inc. -> Malwarebytes)
S4 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [280440 2021-06-06] (nordvpn s.a. -> TEFINCOM S.A.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.186.0904.0001\OneDriveUpdaterService.exe [3803544 2022-09-27] (Microsoft Corporation -> Microsoft Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S4 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD)
S4 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [148032 2022-08-27] (Oculus VR, LLC -> Facebook Technologies, LLC)
S4 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [514624 2022-08-27] (Oculus VR, LLC -> Facebook Technologies, LLC)
S4 Parsec; C:\Program Files\Parsec\pservice.exe [396488 2021-10-04] (Parsec Cloud, Inc. -> Parsec)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2718048 2022-09-27] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [249344 2022-09-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2022-09-15] (SteelSeries ApS -> )
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-08-06] (Microsoft Windows -> Microsoft Corporation)
S4 Updater; C:\Program Files\Virtual Desktop Streamer\Updater.exe [1127192 2022-03-18] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
S4 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746728 2022-03-23] (Oracle Corporation -> Oracle Corporation)
S4 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10420944 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.)
S4 VirtualDesktop.Service.exe; C:\Program Files\Virtual Desktop\VirtualDesktop.Service.exe [1972504 2022-03-10] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 webthreatdefsvc; C:\WINDOWS\System32\webthreatdefsvc.dll [163840 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S2 webthreatdefusersvc; C:\WINDOWS\System32\webthreatdefusersvc.dll [135168 2022-08-06] (Microsoft Windows -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137568 2022-08-06] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91488 2022-08-06] (Microsoft Windows -> Microsoft Corporation)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [11195376 2021-05-31] (FACE IT LIMITED -> )
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218456 2022-09-25] (Microsoft Windows -> Microsoft Corporation)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 imgdrive; C:\WINDOWS\System32\drivers\imgdrive.sys [139712 2022-08-10] (Beijing Yubei Information Technology Co., Ltd -> Yubsoft)
R3 iVCam; C:\WINDOWS\system32\DRIVERS\iVCam.sys [1090536 2020-11-02] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
R3 kinonivd; C:\WINDOWS\System32\drivers\kinonivd.sys [283672 2021-08-02] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 KINONI_Wave; C:\WINDOWS\system32\drivers\kinonivad.sys [31256 2021-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 ksophon_x64; C:\WINDOWS\system32\drivers\ksophon_x64.sys [9986168 2022-09-16] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2014-04-27] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [54792 2022-07-27] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [33528 2022-07-25] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [62904 2022-07-25] (WDKTestCert builder,132743893872553407 -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-09-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-09-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
U4 mhyprot2; C:\Users\coren\AppData\Local\Temp\mhyprot3.sys [2132520 2022-09-19] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo) <==== ATTENTION
R3 MpKslfea443d9; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1417324C-C404-4EF1-92FB-DF2D1574B5DB}\MpKslDrv.sys [228600 2022-09-28] (Microsoft Windows -> Microsoft Corporation)
S3 NDivert; C:\WINDOWS\System32\drivers\NDivert.sys [105184 2021-06-10] (TEFINCOM S.A. -> )
S3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2021-06-30] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [75280 2021-11-22] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2021-11-22] (Oculus VR, LLC -> Facebook Inc.)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [47784 2022-01-31] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [43960 2022-08-18] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_ab95c13003d9c50f\SteelSeries-Sonar-VAD.sys [92912 2022-07-18] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [250608 2022-03-22] (Oracle Corporation -> Oracle Corporation)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1046392 2022-03-22] (Oracle Corporation -> Oracle Corporation)
R3 vdvad_WaveExtensible; C:\WINDOWS\System32\drivers\vdvad.sys [44936 2022-02-14] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R3 vdvge; C:\WINDOWS\System32\drivers\vdvge.sys [77864 2021-05-18] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8736232 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2022-09-25] (Microsoft Windows -> )
S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2021-12-28] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2022-09-25] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-08-06] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; pas de ImagePath
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-28 11:51 - 2022-09-28 11:52 - 000041285 _____ C:\Users\coren\Desktop\FRST.txt
2022-09-28 11:42 - 2022-09-28 11:42 - 002371072 _____ (Farbar) C:\Users\coren\Desktop\FRST64.exe
2022-09-28 11:34 - 2022-09-28 11:34 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-09-28 11:34 - 2022-09-28 11:34 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-09-28 11:34 - 2022-09-28 11:34 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-09-28 11:34 - 2022-09-28 11:34 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-09-28 11:34 - 2022-09-28 11:34 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-09-28 11:34 - 2022-09-28 11:34 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-09-28 10:33 - 2022-09-28 10:33 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2022-09-28 10:33 - 2022-09-28 10:33 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2022-09-26 18:24 - 2022-09-26 20:44 - 000000000 ____D C:\Program Files (x86)\McAfee
2022-09-26 18:23 - 2022-09-27 09:44 - 000000000 ____D C:\Program Files\Common Files\McAfee
2022-09-26 18:23 - 2022-09-26 20:46 - 000000000 ____D C:\Program Files\McAfee
2022-09-26 18:23 - 2022-09-26 18:23 - 000000000 ____D C:\Users\coren\AppData\Roaming\McAfee
2022-09-26 18:22 - 2022-09-27 09:44 - 000000000 ____D C:\ProgramData\McAfee
2022-09-26 18:22 - 2022-09-26 18:22 - 000000000 ____D C:\Users\coren\AppData\LocalLow\BitTorrent.WebView2
2022-09-26 16:33 - 2022-09-26 16:33 - 2338947421 _____ C:\WINDOWS\MEMORY.DMP
2022-09-26 16:33 - 2022-09-26 16:33 - 002206364 _____ C:\WINDOWS\Minidump\092622-17031-01.dmp
2022-09-26 16:33 - 2022-09-26 16:33 - 000000000 ____D C:\WINDOWS\Minidump
2022-09-26 11:51 - 2022-09-28 10:26 - 000000252 _____ C:\WINDOWS\SysWOW64\PARTIZAN.TXT
2022-09-26 11:50 - 2022-09-26 11:50 - 000000000 ___SD C:\WINDOWS\system32\containers
2022-09-26 11:50 - 2022-09-26 11:50 - 000000000 ____D C:\WINDOWS\system32\HvsiSettingsProviders
2022-09-26 11:41 - 2022-09-28 11:30 - 000000000 ____D C:\Users\Public\Documents\RegRunInfo
2022-09-26 11:39 - 2022-09-28 11:28 - 000000000 ____D C:\Users\coren\AppData\Local\UnHackMe
2022-09-26 11:39 - 2022-09-26 11:40 - 000001230 _____ C:\Users\coren\Desktop\Reanimator.lnk
2022-09-26 11:39 - 2022-09-26 11:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reanimator
2022-09-26 11:39 - 2022-09-26 11:39 - 000000000 ____D C:\Program Files (x86)\Greatis
2022-09-26 11:39 - 2015-12-28 11:32 - 000049968 _____ (Greatis Software) C:\WINDOWS\system32\partizan.exe
2022-09-25 12:27 - 2022-09-26 11:51 - 000000000 ____D C:\Program Files\TeamViewer
2022-09-25 12:16 - 2022-09-26 11:53 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-09-25 12:02 - 2022-09-25 12:02 - 000029680 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wintun.sys
2022-09-25 09:53 - 2022-09-25 09:53 - 000000000 ____D C:\Users\coren\Documents\RED DEAD MODS
2022-09-24 10:01 - 2022-09-26 11:51 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-09-23 15:00 - 2022-09-23 15:00 - 000143360 _____ C:\WINDOWS\system32\hvsiproxyapp.exe
2022-09-23 15:00 - 2022-09-23 15:00 - 000107872 _____ C:\WINDOWS\system32\HvsiMachinePolicies.dll
2022-09-23 14:59 - 2022-09-23 14:59 - 000062800 _____ C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe
2022-09-23 14:59 - 2022-09-23 14:59 - 000016204 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-23 14:41 - 2022-09-23 15:04 - 000000000 ____D C:\Users\coren\AppData\Local\Avast Software
2022-09-23 14:40 - 2022-09-23 14:40 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-09-23 14:39 - 2022-09-23 15:04 - 000000000 ____D C:\ProgramData\Avast Software
2022-09-23 14:37 - 2022-09-23 14:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\etc\BACKUP
2022-09-23 14:37 - 2022-09-23 14:37 - 000000000 ____D C:\Users\coren\AppData\Local\mbamtray
2022-09-23 14:37 - 2022-09-23 14:37 - 000000000 ____D C:\Program Files (x86)\Malwarebytes
2022-09-23 14:36 - 2022-09-26 18:22 - 000000000 ____D C:\Users\coren\AppData\LocalLow\BitTorrent
2022-09-23 14:06 - 2022-09-28 11:52 - 000000000 ____D C:\FRST
2022-09-22 23:41 - 2022-09-22 23:41 - 000000000 ____D C:\Users\coren\Documents\Call of Duty
2022-09-22 23:41 - 2022-09-22 23:41 - 000000000 ____D C:\Users\coren\AppData\Local\Activision
2022-09-22 04:23 - 2022-09-25 12:19 - 000000000 ____D C:\KVRT2020_Data
2022-09-22 04:14 - 2022-09-22 04:14 - 000535544 _____ C:\Users\coren\Desktop\ZHPDiag.txt
2022-09-22 04:08 - 2022-09-22 04:14 - 000000000 ____D C:\Users\coren\AppData\Roaming\ZHP
2022-09-22 04:08 - 2022-09-22 04:08 - 000000865 _____ C:\Users\coren\Desktop\ZHPDiag.lnk
2022-09-22 04:08 - 2022-09-22 04:08 - 000000000 ____D C:\Users\coren\AppData\Local\ZHP
2022-09-21 16:16 - 2022-09-21 15:25 - 000000000 ____D C:\Windows.old
2022-09-21 16:14 - 2022-09-21 16:16 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-09-21 16:14 - 2022-09-21 16:14 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-09-21 16:14 - 2022-09-21 15:18 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-09-21 16:12 - 2022-09-21 16:12 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2022-09-21 16:12 - 2022-09-21 16:12 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-09-21 16:12 - 2022-09-21 16:12 - 000000000 ____D C:\Program Files\MSBuild
2022-09-21 16:12 - 2022-09-21 16:12 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-09-21 16:12 - 2022-09-21 16:12 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-09-21 15:28 - 2022-09-28 11:26 - 000000000 ____D C:\Users\coren\AppData\Local\D3DSCache
2022-09-21 15:27 - 2022-09-21 15:27 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-09-21 15:25 - 2022-09-21 15:25 - 000000020 ___SH C:\Users\coren\ntuser.ini
2022-09-21 15:24 - 2022-09-28 10:35 - 000004168 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{14E79645-D3DA-41CD-8D72-F746E385D352}
2022-09-21 15:24 - 2022-09-28 10:33 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-21 15:24 - 2022-09-28 10:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-21 15:24 - 2022-09-27 09:53 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2896488408-2048486017-1690383260-1001
2022-09-21 15:24 - 2022-09-27 09:53 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-09-21 15:24 - 2022-09-24 14:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-09-21 15:24 - 2022-09-23 15:10 - 000003668 _____ C:\WINDOWS\system32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000003866 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask
2022-09-21 15:24 - 2022-09-21 15:24 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-21 15:24 - 2022-09-21 15:24 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-09-21 15:24 - 2022-09-21 15:24 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-09-21 15:24 - 2022-09-21 15:24 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-09-21 15:24 - 2022-09-21 15:24 - 000003270 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2022-09-21 15:24 - 2022-09-21 15:24 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-09-21 15:24 - 2022-09-21 15:24 - 000002486 _____ C:\WINDOWS\system32\Tasks\PlitchSkipUAC
2022-09-21 15:24 - 2022-09-21 15:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\MEGA
2022-09-21 15:24 - 2022-09-21 15:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2022-09-21 15:21 - 2022-09-21 15:24 - 000017148 _____ C:\WINDOWS\diagwrn.xml
2022-09-21 15:21 - 2022-09-21 15:24 - 000017148 _____ C:\WINDOWS\diagerr.xml
2022-09-21 15:18 - 2022-09-27 01:20 - 000000000 ____D C:\Users\coren
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\Voisinage réseau
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\Voisinage d'impression
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\Modèles
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\Mes documents
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\Menu Démarrer
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\Documents\Mes vidéos
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\Documents\Mes images
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\Documents\Ma musique
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-09-21 15:18 - 2022-09-21 15:18 - 000000000 _SHDL C:\Users\coren\AppData\Local\Historique
2022-09-21 15:18 - 2022-05-07 07:19 - 000001281 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2022-09-21 15:18 - 2022-05-07 07:19 - 000000407 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2022-09-21 15:17 - 2022-09-28 10:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-21 15:17 - 2022-09-26 11:59 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2022-09-21 15:17 - 2022-09-23 15:05 - 000692368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-21 15:17 - 2022-09-21 15:17 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2022-09-21 14:53 - 2022-09-21 15:25 - 000000000 ___DC C:\WINDOWS\Panther
2022-09-21 14:42 - 2022-09-21 15:25 - 000000000 ___HD C:\$GetCurrent
2022-09-21 14:42 - 2022-09-21 14:52 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant
2022-09-21 14:22 - 2022-09-21 14:22 - 000000000 ___HD C:\$WinREAgent
2022-09-21 09:31 - 2022-09-21 09:31 - 000000000 ____D C:\Users\coren\AppData\Roaming\Pokemon Eon Guardians
2022-09-21 09:31 - 2022-09-21 09:31 - 000000000 ____D C:\Users\coren\AppData\Roaming\mkxpz
2022-09-21 04:32 - 2022-09-21 04:32 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2022.lnk
2022-09-20 09:52 - 2022-09-20 09:53 - 000000000 ____D C:\Users\coren\Documents\vocaloid
2022-09-19 14:33 - 2022-09-19 14:34 - 000000000 ____D C:\Users\coren\AppData\Local\VOCALOID5
2022-09-19 14:30 - 2022-09-19 14:30 - 000000000 ____D C:\Program Files (x86)\VoiceDB
2022-09-19 14:27 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VOCALOID5
2022-09-19 14:27 - 2022-09-19 14:29 - 000000000 ____D C:\Program Files\VOCALOID5
2022-09-19 14:27 - 2022-09-19 14:27 - 000000000 ____D C:\Program Files\Common Files\VOCALOID5
2022-09-19 14:25 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vocaloid4FE
2022-09-19 14:25 - 2022-09-19 14:25 - 000001066 _____ C:\Users\coren\Desktop\Vocaloid4FE.lnk
2022-09-19 14:25 - 2022-09-19 14:25 - 000000000 ____D C:\Program Files (x86)\Vocaloid4FE
2022-09-19 09:48 - 2022-09-19 09:48 - 000000000 ____D C:\ProgramData\ReShade
2022-09-19 08:39 - 2022-07-22 06:25 - 000130216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2022-09-19 08:39 - 2022-07-22 06:25 - 000043184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-09-19 08:38 - 2022-07-28 09:28 - 001905920 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-09-19 08:38 - 2022-07-28 09:28 - 001905920 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-09-19 08:38 - 2022-07-28 09:28 - 001478408 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-09-19 08:38 - 2022-07-28 09:28 - 001478408 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-09-19 08:38 - 2022-07-28 09:27 - 001471992 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-09-19 08:38 - 2022-07-28 09:27 - 001432320 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-09-19 08:38 - 2022-07-28 09:27 - 001432320 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-09-19 08:38 - 2022-07-28 09:27 - 001213432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-09-19 08:38 - 2022-07-28 09:27 - 001145600 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-09-19 08:38 - 2022-07-28 09:27 - 001145600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-09-19 08:38 - 2022-07-28 09:24 - 000865776 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-09-19 08:38 - 2022-07-28 09:24 - 000771576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-09-19 08:38 - 2022-07-28 09:24 - 000687608 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-09-19 08:38 - 2022-07-28 09:23 - 002127872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-09-19 08:38 - 2022-07-28 09:23 - 001607680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-09-19 08:38 - 2022-07-28 09:23 - 001536504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-09-19 08:38 - 2022-07-28 09:23 - 001182712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-09-19 08:38 - 2022-07-28 09:23 - 000714752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-09-19 08:38 - 2022-07-28 09:22 - 010269688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-09-19 08:38 - 2022-07-28 09:22 - 008803832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-09-19 08:38 - 2022-07-28 09:22 - 005362672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-09-19 08:38 - 2022-07-28 09:22 - 003066872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-09-19 08:38 - 2022-07-28 09:22 - 001059328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-09-19 08:38 - 2022-07-28 09:22 - 000845296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-09-19 08:38 - 2022-07-28 09:22 - 000456176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-09-19 08:38 - 2022-07-28 09:21 - 005735920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-09-19 08:38 - 2022-07-28 09:21 - 000852976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-09-19 08:38 - 2022-07-28 09:20 - 007483424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-09-19 08:38 - 2022-07-28 09:20 - 006367440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-09-19 08:38 - 2022-07-22 06:25 - 000093241 _____ C:\WINDOWS\system32\nvinfo.pb
2022-09-18 02:38 - 2022-09-28 11:34 - 000000000 ____D C:\Program Files\Malwarebytes
2022-09-18 01:25 - 2022-09-18 01:25 - 000000000 ____D C:\Users\coren\AppData\Local\SolidDocuments
2022-09-18 01:11 - 2022-09-18 01:11 - 000000193 _____ C:\WINDOWS\system32\E6BE5445-1157-4942-80E8-3612A4E179BB.ps1
2022-09-18 01:11 - 2022-09-18 01:11 - 000000000 ____D C:\ProgramData\MacOS_monkee3y3fdjsuUhuda78qhiIOJd4dD
2022-09-18 01:10 - 2022-09-18 01:10 - 000000000 ____D C:\Users\coren\AppData\Local\Yandex
2022-09-17 00:55 - 2022-09-17 00:56 - 000000000 ____D C:\Users\coren\Documents\PROJET VIDEO
2022-09-11 06:11 - 2022-09-19 14:33 - 000000000 ____D C:\Users\coren\AppData\Roaming\VOCALOID5
2022-09-11 06:11 - 2022-09-11 06:11 - 000000000 ____D C:\Users\coren\AppData\Local\Yamaha
2022-09-11 05:52 - 2022-09-11 05:52 - 000000000 ____D C:\Users\coren\Documents\ADO
2022-09-08 22:09 - 2022-09-08 22:09 - 000002073 _____ C:\Users\Public\Desktop\PhoneTrans.lnk
2022-09-08 22:09 - 2022-09-08 22:09 - 000000000 ____D C:\Users\coren\AppData\Roaming\PhoneTrans
2022-09-08 22:09 - 2022-09-08 22:09 - 000000000 ____D C:\Users\coren\AppData\Roaming\Apple Computer
2022-09-08 22:09 - 2022-09-08 22:09 - 000000000 ____D C:\Users\coren\AppData\Local\PhoneTrans
2022-09-08 22:09 - 2022-09-08 22:09 - 000000000 ____D C:\ProgramData\iMobieDNA
2022-09-07 22:59 - 2022-09-07 22:59 - 000000000 ____D C:\Users\coren\AppData\Roaming\Shadows of the Innocent
2022-09-07 22:41 - 2022-09-07 22:41 - 000000000 ____D C:\Users\coren\AppData\Roaming\Pokémon Taiseiyo
2022-09-03 02:05 - 2022-09-03 02:05 - 000000000 ____D C:\Users\coren\AppData\Roaming\Pokémon Kamizawa
2022-09-03 01:22 - 2022-09-03 15:15 - 000000000 ____D C:\Users\coren\AppData\Roaming\discordptb
2022-09-03 01:22 - 2022-09-03 15:15 - 000000000 ____D C:\Users\coren\AppData\Local\DiscordPTB
2022-09-03 01:22 - 2022-09-03 01:22 - 000002278 _____ C:\Users\coren\Desktop\Discord PTB.lnk
2022-09-01 17:55 - 2022-09-01 18:23 - 000018842 _____ C:\Users\coren\Documents\Nouveau Document texte.txt
2022-08-30 17:11 - 2022-08-30 17:12 - 000000000 ____D C:\Users\coren\Documents\Pokemon Uranium 1.2.5
2022-08-30 14:59 - 2022-08-30 14:59 - 000001265 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RPGXP.lnk
2022-08-30 09:53 - 2022-08-30 10:52 - 000000000 ____D C:\Users\coren\AppData\Local\JKAnderson
2022-08-30 09:52 - 2022-08-30 10:09 - 000000000 ____D C:\Users\coren\AppData\Local\WeMod
2022-08-29 21:28 - 2022-08-29 21:28 - 000000000 ____D C:\ProgramData\TEMP
2022-08-25 04:16 - 2022-08-25 04:16 - 000000000 ____D C:\Program Files\PowerShell
2022-08-21 09:02 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2022-08-21 09:02 - 2022-08-21 09:28 - 000000000 ____D C:\Users\coren\AppData\Roaming\XnView
2022-08-21 09:02 - 2022-08-21 09:02 - 000000952 _____ C:\Users\coren\Desktop\XnView.lnk
2022-08-21 09:02 - 2022-08-21 09:02 - 000000000 ____D C:\Program Files (x86)\XnView
2022-08-21 08:51 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnViewMP
2022-08-21 08:51 - 2022-08-21 09:01 - 000000000 ____D C:\Users\coren\AppData\Roaming\XnViewMP
2022-08-21 08:51 - 2022-08-21 08:51 - 000001719 _____ C:\Users\coren\Desktop\XnViewMP.lnk
2022-08-21 08:51 - 2022-08-21 08:51 - 000000000 ____D C:\Program Files\XnViewMP
2022-08-21 07:34 - 2022-09-27 21:10 - 000000000 ____D C:\Users\coren\AppData\Roaming\Notepad++
2022-08-21 07:34 - 2022-08-21 07:34 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2022-08-21 07:34 - 2022-08-21 07:34 - 000000000 ____D C:\Program Files\Notepad++
2022-08-20 09:32 - 2022-08-20 09:32 - 000002329 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov.lnk
2022-08-20 09:32 - 2022-08-20 09:32 - 000000000 ____D C:\Users\coren\AppData\Local\molotov-updater
2022-08-16 16:18 - 2022-08-16 16:39 - 000000000 ____D C:\Users\coren\AppData\Roaming\foobar2000
2022-08-16 16:14 - 2022-09-21 16:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2022-08-16 16:14 - 2022-08-16 16:14 - 000001367 _____ C:\Users\Public\Desktop\WinX DVD Ripper Platinum.lnk
2022-08-16 16:14 - 2022-08-16 16:14 - 000000000 ____D C:\Users\coren\AppData\Roaming\Digiarty
2022-08-16 16:14 - 2022-08-16 16:14 - 000000000 ____D C:\Program Files\VideoLAN
2022-08-16 16:14 - 2022-08-16 16:14 - 000000000 ____D C:\Program Files (x86)\Digiarty
2022-08-16 16:09 - 2022-08-16 16:12 - 000000000 ____D C:\Program Files (x86)\foobar2000
2022-08-16 16:09 - 2022-08-16 16:09 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2022-08-16 16:09 - 2022-08-16 16:09 - 000001064 _____ C:\Users\Public\Desktop\foobar2000.lnk
2022-08-16 15:57 - 2022-08-16 16:04 - 000000000 ____D C:\Users\coren\AppData\Roaming\dvdcss
2022-08-13 01:46 - 2022-08-13 01:46 - 000000000 ____D C:\ProgramData\INTL
2022-08-10 00:51 - 2022-08-10 00:51 - 000000000 ____D C:\Users\coren\AppData\Local\Abandonware-France
2022-08-10 00:49 - 2022-09-21 16:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abandonware-France
2022-08-10 00:49 - 2022-08-10 00:49 - 000139712 _____ (Yubsoft) C:\WINDOWS\system32\Drivers\imgdrive.sys
2022-08-10 00:49 - 2022-08-10 00:49 - 000001892 _____ C:\Users\Public\Desktop\Adibou 2 Collection.lnk
2022-08-10 00:47 - 2022-08-10 00:47 - 000000000 ____D C:\Jeux
2022-08-09 21:29 - 2022-08-09 21:29 - 000000000 ____D C:\Users\coren\AppData\Roaming\GMEGLOBAL
2022-08-09 21:28 - 2022-09-16 00:51 - 009986168 _____ (PROXIMA BETE) C:\WINDOWS\system32\Drivers\ksophon_x64.sys
2022-08-09 21:28 - 2022-08-09 21:28 - 000000000 ____D C:\Users\coren\AppData\Roaming\DSS
2022-08-09 21:13 - 2022-09-27 16:46 - 000000000 ____D C:\Users\coren\AppData\Roaming\tof_launcher
2022-08-09 21:13 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tower of Fantasy
2022-08-09 21:13 - 2022-08-13 01:46 - 000000000 ____D C:\Users\coren\AppData\Local\Hotta
2022-08-09 21:13 - 2022-08-09 21:22 - 000002171 _____ C:\Users\Public\Desktop\Tower of Fantasy.lnk
2022-08-09 21:13 - 2022-08-09 21:13 - 000001088 _____ C:\Users\coren\AppData\Roaming\tof_launcher.reg
2022-08-09 21:13 - 2022-08-09 21:13 - 000000000 ____D C:\Users\coren\AppData\Local\RailCrashReport
2022-08-09 18:46 - 2022-08-13 01:50 - 000000000 ____D C:\Program Files (x86)\Tower Of Fantasy
2022-08-09 18:45 - 2022-08-09 18:45 - 000000000 ____D C:\Users\coren\AppData\Roaming\Tencent
2022-08-09 18:45 - 2022-08-09 18:45 - 000000000 ____D C:\Users\coren\AppData\Local\tofMiniLoader
2022-08-09 18:45 - 2022-08-09 18:45 - 000000000 ____D C:\ProgramData\intl_ua
2022-08-09 14:50 - 2022-08-09 14:50 - 000000000 ____D C:\ProgramData\Kyty
2022-08-09 14:49 - 2022-08-09 14:51 - 000000000 ____D C:\Users\coren\Documents\emulateur ps5
2022-08-06 11:14 - 2022-08-06 11:14 - 000251232 _____ C:\WINDOWS\system32\cmdiag.exe
2022-08-06 11:14 - 2022-08-06 11:14 - 000226648 _____ C:\WINDOWS\system32\IsolatedWindowsEnvironmentUtils.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 002575640 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 002088752 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-08-06 11:13 - 2022-08-06 11:13 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-08-06 11:13 - 2022-08-06 11:13 - 000296448 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 000192512 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 000180224 _____ C:\WINDOWS\system32\stordiag.exe
2022-08-06 11:13 - 2022-08-06 11:13 - 000157032 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 000133120 _____ C:\WINDOWS\SysWOW64\stordiag.exe
2022-08-06 11:13 - 2022-08-06 11:13 - 000105296 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 000098304 _____ C:\WINDOWS\system32\dplcsp.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 000055128 _____ C:\WINDOWS\system32\SFAPE.dll
2022-08-06 11:13 - 2022-08-06 11:13 - 000046880 _____ C:\WINDOWS\system32\wow64base.dll
2022-08-05 10:41 - 2022-08-05 10:41 - 000000747 _____ C:\Users\coren\Documents\Images - Raccourci.lnk
2022-08-04 15:10 - 2022-08-04 15:10 - 000000000 ____D C:\Users\coren\Documents\Nouveau dossier
2022-07-29 10:33 - 2022-07-29 10:33 - 000001456 _____ C:\Users\coren\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2022-07-29 04:37 - 2022-07-29 04:37 - 000001386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2022-07-29 04:37 - 2022-07-29 04:37 - 000001356 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2022-07-29 04:37 - 2022-07-29 04:37 - 000000000 ____D C:\Users\coren\AppData\Roaming\com.adobe.dunamis
2022-07-29 00:41 - 2022-07-29 00:41 - 000002038 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firmware updater for DualSense™ wireless controller.lnk
2022-07-29 00:41 - 2022-07-29 00:41 - 000002026 _____ C:\Users\Public\Desktop\Firmware updater for DualSense™ wireless controller.lnk
2022-07-29 00:41 - 2022-07-29 00:41 - 000000000 ____D C:\Program Files\Sony
2022-07-28 02:00 - 2022-07-28 02:00 - 000000000 ____D C:\Users\coren\AppData\Local\MultiVersus
2022-07-28 02:00 - 2022-07-28 02:00 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2022-07-27 20:38 - 2022-07-27 20:38 - 000000223 _____ C:\Users\coren\Desktop\MultiVersus.url
2022-07-27 19:37 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-07-27 19:37 - 2022-07-27 19:37 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2022-07-27 19:37 - 2022-07-27 19:37 - 000000000 ____D C:\Program Files\LGHUB
2022-07-27 09:08 - 2022-07-27 09:08 - 002374248 _____ (Logitech) C:\WINDOWS\system32\logi_audio_speaker_render_apo.dll
2022-07-27 09:08 - 2022-07-27 09:08 - 000054792 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_audio_surround.sys
2022-07-27 01:08 - 2022-08-04 13:31 - 000000000 ____D C:\Users\coren\AppData\Roaming\electron-wrapper
2022-07-27 00:32 - 2022-07-27 00:32 - 000000000 ____D C:\Users\coren\AppData\LocalLow\Kitka Games
2022-07-25 23:11 - 2022-08-03 14:37 - 000000000 ____D C:\Users\coren\AppData\Local\LGHUB
2022-07-25 23:10 - 2022-08-03 14:37 - 000000000 ____D C:\Users\coren\AppData\Roaming\LGHUB
2022-07-25 23:10 - 2022-07-25 23:10 - 000062904 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2022-07-25 23:10 - 2022-07-25 23:10 - 000033528 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2022-07-25 23:10 - 2022-07-25 23:10 - 000000000 ____D C:\ProgramData\LGHUB
2022-07-25 20:40 - 2022-07-25 20:40 - 000000000 ____D C:\Users\coren\Documents\RMMZ
2022-07-25 20:40 - 2022-07-25 20:40 - 000000000 ____D C:\Users\coren\AppData\Local\KADOKAWA
2022-07-25 05:36 - 2022-09-21 15:18 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokémon SDK
2022-07-25 05:36 - 2022-09-04 03:22 - 000001851 _____ C:\Users\coren\Desktop\Launch Pokémon SDK.lnk
2022-07-25 05:36 - 2022-07-25 05:36 - 000000933 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Fix RMXP script box.lnk
2022-07-25 04:20 - 2022-09-23 00:07 - 000000000 ____D C:\Users\coren\AppData\Roaming\Pokémon Essentials v20.1
2022-07-25 04:20 - 2022-07-25 04:20 - 000000000 ____D C:\Users\coren\AppData\Roaming\mkxp-z
2022-07-25 03:26 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2022-07-25 03:26 - 2022-07-25 03:26 - 000000000 ____D C:\Program Files\Git
2022-07-25 00:40 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Insurgence
2022-07-25 00:30 - 2022-07-25 00:30 - 000000000 ____D C:\Users\coren\AppData\LocalLow\UpSoft
2022-07-25 00:30 - 2022-07-25 00:30 - 000000000 ____D C:\Users\coren\AppData\Local\PatchKit
2022-07-25 00:26 - 2022-07-25 00:26 - 000000000 ____D C:\Users\Public\Pokemon Steam 2
2022-07-24 21:35 - 2022-07-25 00:48 - 000002579 _____ C:\Users\coren\Desktop\Pokémon Studio.lnk
2022-07-24 21:35 - 2022-07-24 21:35 - 000002587 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokémon Studio.lnk
2022-07-24 21:05 - 2022-07-24 21:05 - 000000000 ____D C:\Users\coren\Documents\RPGXP
2022-07-24 21:04 - 2022-07-24 21:04 - 000000000 ____D C:\Users\coren\Documents\RPGVXAce
2022-07-24 21:01 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RPG Maker VX.Ace
2022-07-24 21:01 - 2022-08-29 21:29 - 000000000 ____D C:\Program Files (x86)\Enterbrain
2022-07-24 20:51 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RPG Maker XP
2022-07-24 20:51 - 2022-07-24 20:51 - 000000000 ____D C:\Program Files (x86)\RPG Maker XP
2022-07-24 20:51 - 2009-10-23 00:00 - 000761856 _____ C:\WINDOWS\SysWOW64\RGSS104J.dll
2022-07-24 20:51 - 2009-10-23 00:00 - 000758272 _____ C:\WINDOWS\SysWOW64\RGSS104E.dll
2022-07-24 20:51 - 2009-10-23 00:00 - 000758272 _____ C:\WINDOWS\SysWOW64\RGSS100J.dll
2022-07-24 20:51 - 2007-05-11 00:00 - 000685056 _____ C:\WINDOWS\SysWOW64\RGSS103J.dll
2022-07-24 20:51 - 2005-08-30 00:00 - 000781312 _____ C:\WINDOWS\SysWOW64\RGSS102J.dll
2022-07-24 20:51 - 2005-08-30 00:00 - 000778752 _____ C:\WINDOWS\SysWOW64\RGSS102E.dll
2022-07-24 02:47 - 2022-09-21 15:18 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokémon Steam 2
2022-07-24 02:47 - 2022-07-24 02:47 - 000000000 ____D C:\Users\coren\.dotnet
2022-07-24 00:35 - 2022-09-03 02:50 - 000000000 ____D C:\Users\coren\Documents\Projects
2022-07-24 00:12 - 2022-09-04 03:22 - 000000000 ____D C:\Users\coren\AppData\Roaming\pokemon-studio
2022-07-24 00:12 - 2022-09-04 03:22 - 000000000 ____D C:\Users\coren\AppData\Local\pokemon-studio-updater
2022-07-20 02:19 - 2022-07-20 02:19 - 000000000 ____D C:\Users\coren\AppData\Local\Hk_project
2022-07-11 21:41 - 2022-07-11 21:44 - 000000000 ____D C:\Users\coren\Documents\50 50 technique
2022-07-11 21:01 - 2022-07-11 21:01 - 000000000 ___RD C:\Users\coren\Recorded Calls
2022-07-11 20:57 - 2022-09-21 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BCUninstaller
2022-07-11 20:57 - 2022-07-11 20:58 - 000000000 ____D C:\Program Files\BCUninstaller
2022-07-11 20:57 - 2022-07-11 20:57 - 000000913 _____ C:\Users\Public\Desktop\BCUninstaller.lnk
2022-07-10 17:55 - 2022-09-19 05:32 - 000000000 ____D C:\Users\coren\Documents\Electronic Arts
2022-07-09 21:31 - 2022-07-11 20:54 - 000000697 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2022-07-08 15:05 - 2022-07-08 15:05 - 000001830 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL (2).lnk
2022-07-07 14:01 - 2022-09-23 14:43 - 000002488 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL.lnk
2022-07-07 14:01 - 2022-09-23 14:43 - 000002458 _____ C:\Users\coren\Desktop\DeepL.lnk
2022-07-07 14:01 - 2022-07-07 14:01 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL SE
2022-07-07 14:01 - 2022-07-07 14:01 - 000000000 ____D C:\Users\coren\AppData\Roaming\0install.net
2022-07-07 14:01 - 2022-07-07 14:01 - 000000000 ____D C:\Users\coren\AppData\Local\0install.net
2022-07-07 14:01 - 2022-07-07 14:01 - 000000000 ____D C:\ProgramData\0install.net
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-28 11:50 - 2021-05-31 13:23 - 000000000 ____D C:\Users\coren\Téléchargements
2022-09-28 11:44 - 2021-05-31 13:45 - 000000000 ____D C:\Users\coren\AppData\Roaming\discord
2022-09-28 11:40 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-28 11:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-09-28 11:35 - 2021-05-31 13:28 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-28 11:34 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-28 11:27 - 2021-12-06 23:28 - 000000000 ____D C:\Users\coren\AppData\Local\Discord
2022-09-28 11:02 - 2021-05-31 18:54 - 000000000 ____D C:\Program Files\Genshin Impact
2022-09-28 10:36 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-28 10:36 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-28 10:36 - 2021-05-31 19:21 - 000002712 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-28 10:36 - 2021-05-31 19:21 - 000002548 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-28 10:35 - 2021-09-04 19:54 - 000000000 ____D C:\Users\coren\AppData\LocalLow\Mozilla
2022-09-28 10:33 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2022-09-28 10:33 - 2021-10-05 18:17 - 000000000 ____D C:\Program Files\Microsoft Office
2022-09-28 10:29 - 2021-06-04 13:17 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-09-28 10:27 - 2021-05-31 13:24 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-28 10:26 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-28 10:26 - 2021-10-20 20:24 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-09-28 10:26 - 2021-05-31 19:21 - 000012288 ___SH C:\DumpStack.log.tmp
2022-09-27 21:11 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-09-27 11:31 - 2021-10-27 14:54 - 000000000 ___RD C:\Users\coren\Creative Cloud Files
2022-09-27 09:53 - 2021-10-05 18:22 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-26 21:58 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-26 20:44 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-09-26 20:44 - 2021-05-31 14:05 - 000000000 ____D C:\ProgramData\Package Cache
2022-09-26 20:42 - 2021-05-31 13:24 - 000000000 ____D C:\Users\coren\AppData\Local\Packages
2022-09-26 20:42 - 2021-05-31 13:24 - 000000000 ____D C:\ProgramData\Packages
2022-09-26 18:36 - 2022-01-20 12:10 - 000000000 ____D C:\Program Files\Cheat Engine 7.4
2022-09-26 18:26 - 2022-03-05 08:39 - 000000000 ____D C:\Users\coren\AppData\Roaming\qBittorrent
2022-09-26 18:22 - 2022-03-05 08:36 - 000000000 ____D C:\Users\coren\AppData\Roaming\BitTorrent
2022-09-26 17:33 - 2021-05-31 13:28 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-26 17:33 - 2021-05-31 13:28 - 000002470 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-26 16:13 - 2022-02-09 10:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-09-26 11:53 - 2022-01-26 06:50 - 000000000 ____D C:\Program Files\Common Files\AV
2022-09-26 11:52 - 2021-11-22 23:31 - 000000000 ____D C:\Users\coren\AppData\Local\Oculus
2022-09-26 11:51 - 2021-09-04 19:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-26 09:52 - 2022-06-01 03:48 - 000000000 ____D C:\Users\coren\AppData\Local\HoYoverse
2022-09-25 12:29 - 2022-05-01 01:23 - 000000000 ____D C:\Users\coren\AppData\Local\TeamViewer
2022-09-25 12:21 - 2022-05-07 07:20 - 006436208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmfirmware.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 001086808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsSandbox.exe
2022-09-25 12:21 - 2022-05-07 07:20 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gns.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000628064 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmserial.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000554344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmpmem.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000509288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmsynthstor.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000439656 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmprox.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000406888 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmdynmem.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000398696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmSynthNic.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000378224 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmflexio.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000365928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmiccore.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000365928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hcsdiag.exe
2022-09-25 12:21 - 2022-05-07 07:20 - 000361832 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpupvdev.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000337256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsSandboxClient.exe
2022-09-25 12:21 - 2022-05-07 07:20 - 000312672 _____ (Microsoft Corporation) C:\WINDOWS\system32\HvsiSettingsProvider.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000275816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CExecSvc.exe
2022-09-25 12:21 - 2022-05-07 07:20 - 000255336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbusvdev.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000234856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmsvcext.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000222560 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmickrnl.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000193888 _____ C:\WINDOWS\system32\HvsiSettingsWorker.exe
2022-09-25 12:21 - 2022-05-07 07:20 - 000144736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdp4vs.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000140640 _____ (Microsoft Corporation) C:\WINDOWS\system32\madrid.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CCG.exe
2022-09-25 12:21 - 2022-05-07 07:20 - 000132456 _____ C:\WINDOWS\system32\secfw_AuthenticAMD.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmhbmgmt.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000124264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CmAgent.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000124240 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwpevents.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000120160 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwpctrl.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000116072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcsetupagent.exe
2022-09-25 12:21 - 2022-05-07 07:20 - 000095584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pvhdparser.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000094208 _____ C:\WINDOWS\system32\Drivers\vmbusproxy.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000087376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\l2bridge.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000083304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdparser.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000083296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditSettingsProvider.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CCGLaunchPad.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vkrnlintvsp.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vkrnlintvsc.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000075104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\passthruparser.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000073728 _____ C:\WINDOWS\system32\cmimageworker.exe
2022-09-25 12:21 - 2022-05-07 07:20 - 000066912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NvAgent.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000058704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hnswfpdriver.sys
2022-09-25 12:21 - 2022-05-07 07:20 - 000054608 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtilityVmSysprep.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\system32\VrdUmed.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000046888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbresources.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000042344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmcomputeeventlog.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000036864 _____ C:\WINDOWS\system32\hnsproxy.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmComputeProxy.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000025960 _____ (Microsoft Corporation) C:\WINDOWS\system32\f989b52d-f928-44a3-9bf1-bf0c1da6a0d6_HyperV-DeviceVirtualization.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000025960 _____ (Microsoft Corporation) C:\WINDOWS\system32\07409496-a423-4a3e-b620-2cfb01a9318d_HyperV-ComputeNetwork.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000025952 _____ (Microsoft Corporation) C:\WINDOWS\system32\f1db7d81-95be-4911-935a-8ab71629112a_HyperV-IsolatedVM.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000025952 _____ (Microsoft Corporation) C:\WINDOWS\system32\d4d78066-e6db-44b7-b5cd-2eb82dce620c_HyperV-ComputeLegacy.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000025952 _____ (Microsoft Corporation) C:\WINDOWS\system32\c4d66f00-b6f0-4439-ac9b-c5ea13fe54d7_HyperV-ComputeCore.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000025952 _____ (Microsoft Corporation) C:\WINDOWS\system32\c28c7a4e-a619-4463-82b7-0fc9cc7187f5_HyperV-ComputeStorage.dll
2022-09-25 12:21 - 2022-05-07 07:20 - 000006658 _____ C:\WINDOWS\system32\VmFirmwareHcl Third-Party Notices.txt
2022-09-25 12:21 - 2022-05-07 07:20 - 000006658 _____ C:\WINDOWS\system32\VmFirmware Third-Party Notices.txt
2022-09-25 12:16 - 2021-10-28 15:33 - 000000000 ____D C:\Program Files\Cheat Engine 7.3
2022-09-25 12:02 - 2021-06-30 23:46 - 000001798 _____ C:\Users\coren\Desktop\NordVPN.lnk
2022-09-25 12:02 - 2021-06-30 23:46 - 000000000 ____D C:\Users\coren\AppData\Local\NordVPN
2022-09-25 12:02 - 2021-06-30 23:46 - 000000000 ____D C:\ProgramData\NordVPN
2022-09-25 12:02 - 2021-06-30 23:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2022-09-25 12:02 - 2021-06-30 23:46 - 000000000 ____D C:\Program Files\NordVPN
2022-09-25 11:45 - 2021-06-14 22:31 - 000000430 __RSH C:\ProgramData\ntuser.pol
2022-09-24 14:35 - 2021-09-04 19:54 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-09-24 10:18 - 2021-05-31 17:37 - 000000000 ____D C:\Users\coren\AppData\Local\CrashDumps
2022-09-23 16:28 - 2021-06-02 15:51 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-23 15:52 - 2022-03-24 06:00 - 000000000 ____D C:\Users\coren\AppData\Roaming\steelseries-gg-client
2022-09-23 15:18 - 2022-01-26 06:45 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-09-23 15:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-23 15:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Globalization
2022-09-23 15:16 - 2021-06-05 20:22 - 000000000 ____D C:\WINDOWS\addins
2022-09-23 15:10 - 2021-05-31 19:36 - 000002296 _____ C:\Users\Public\Desktop\NVIDIA Broadcast.lnk
2022-09-23 15:07 - 2021-12-25 17:57 - 000000000 ____D C:\Program Files\Oculus Remote Desktop
2022-09-23 15:06 - 2021-12-25 17:58 - 000000000 ____D C:\Users\coren\AppData\Roaming\Oculus Remote Desktop
2022-09-23 15:04 - 2022-05-07 12:35 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-09-23 15:04 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-23 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2022-09-23 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-23 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-09-23 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-09-23 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-09-23 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-23 15:02 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-09-23 15:02 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-09-23 14:36 - 2021-05-31 19:29 - 000000000 ____D C:\Users\coren\AppData\Local\BitTorrentHelper
2022-09-23 06:07 - 2021-05-31 14:07 - 000000000 ____D C:\Users\coren\Documents\Rockstar Games
2022-09-23 00:02 - 2021-05-31 14:24 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-09-23 00:02 - 2021-05-31 14:07 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-22 10:09 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\appcompat
2022-09-22 05:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2022-09-22 05:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-09-22 05:12 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Windows Defender
2022-09-22 05:12 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-09-22 05:12 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2022-09-22 03:18 - 2021-11-18 02:05 - 000153064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-09-22 03:18 - 2021-06-10 16:32 - 002835944 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-09-22 03:18 - 2021-06-10 16:32 - 000447976 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-09-22 03:18 - 2021-06-10 16:32 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-09-22 03:18 - 2021-06-10 16:32 - 000198096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-09-22 03:18 - 2021-06-10 16:32 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-09-22 03:18 - 2021-06-10 16:32 - 000067048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-09-21 16:16 - 2022-06-08 06:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2022-09-21 16:16 - 2022-05-31 06:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2
2022-09-21 16:16 - 2022-05-20 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2022-09-21 16:16 - 2022-05-07 12:25 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-09-21 16:16 - 2022-05-07 12:25 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-09-21 16:16 - 2022-05-07 07:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 __RHD C:\Users\Public\Libraries
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\lxss
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\spool
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2022-09-21 16:16 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-09-21 16:16 - 2022-04-16 08:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerShell
2022-09-21 16:16 - 2022-04-13 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-09-21 16:16 - 2022-04-08 19:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-09-21 16:16 - 2022-04-06 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TI Connect CE
2022-09-21 16:16 - 2022-03-31 07:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Desktop Streamer
2022-09-21 16:16 - 2022-02-27 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MegaDev GmbH
2022-09-21 16:16 - 2022-02-26 01:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2022-09-21 16:16 - 2022-02-01 04:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2022-09-21 16:16 - 2022-01-20 12:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.4
2022-09-21 16:16 - 2022-01-19 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2022-09-21 16:16 - 2022-01-15 07:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\House Flipper [GOG.com]
2022-09-21 16:16 - 2022-01-09 05:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeeGee
2022-09-21 16:16 - 2021-12-09 03:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParanormalHK
2022-09-21 16:16 - 2021-12-04 05:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2022-09-21 16:16 - 2021-11-22 23:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Oculus
2022-09-21 16:16 - 2021-10-29 07:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Parsec
2022-09-21 16:16 - 2021-10-28 15:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.3
2022-09-21 16:16 - 2021-10-15 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UsbK Development Kit
2022-09-21 16:16 - 2021-10-11 03:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TegraRcmGUI
2022-09-21 16:16 - 2021-10-09 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FabFilter
2022-09-21 16:16 - 2021-10-05 18:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2022-09-21 16:16 - 2021-09-22 05:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kena Bridge of Spirits
2022-09-21 16:16 - 2021-09-19 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NBTExplorer
2022-09-21 16:16 - 2021-09-16 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e2eSoft iVCam
2022-09-21 16:16 - 2021-09-15 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2022-09-21 16:16 - 2021-08-10 11:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoulseekQt
2022-09-21 16:16 - 2021-06-25 16:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project64 2.3
2022-09-21 16:16 - 2021-06-21 11:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-09-21 16:16 - 2021-06-16 06:21 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2022-09-21 16:16 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-09-21 16:16 - 2021-05-31 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genshin Impact
2022-09-21 16:16 - 2021-05-31 17:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2022-09-21 16:16 - 2021-05-31 17:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2022-09-21 16:16 - 2021-05-31 14:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-09-21 16:16 - 2021-05-31 13:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher
2022-09-21 16:16 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2022-09-21 16:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-09-21 16:14 - 2022-05-07 12:35 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-09-21 16:14 - 2022-05-07 12:35 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-09-21 16:14 - 2022-05-07 12:25 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-09-21 16:14 - 2022-05-07 12:25 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-09-21 16:14 - 2022-05-07 12:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-09-21 16:14 - 2022-05-07 12:25 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-09-21 16:14 - 2022-05-07 12:25 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-09-21 16:14 - 2022-05-07 12:25 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-09-21 16:14 - 2022-05-07 07:28 - 000000000 ____D C:\WINDOWS\Setup
2022-09-21 16:14 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-09-21 16:14 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-09-21 16:14 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-09-21 16:14 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-09-21 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-09-21 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-09-21 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\OCR
2022-09-21 16:14 - 2022-04-28 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
2022-09-21 16:14 - 2022-04-05 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TEAM R2R
2022-09-21 16:14 - 2022-03-24 05:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2022-09-21 16:14 - 2021-11-08 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2022-09-21 16:14 - 2021-10-02 08:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeameeVo
2022-09-21 16:14 - 2021-10-01 04:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Devious Machines
2022-09-21 16:14 - 2021-08-07 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon
2022-09-21 16:14 - 2021-06-01 13:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2022-09-21 16:14 - 2021-05-31 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato
2022-09-21 16:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2022-09-21 16:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\MUI
2022-09-21 16:12 - 2022-05-07 07:20 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000243048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpcivsp.sys
2022-09-21 16:12 - 2022-05-07 07:20 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000111976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcip.sys
2022-09-21 16:12 - 2022-05-07 07:20 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2022-09-21 16:12 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2022-09-21 16:12 - 2022-05-07 07:20 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2022-09-21 16:12 - 2022-05-07 07:20 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2022-09-21 16:12 - 2022-05-07 07:20 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2022-09-21 15:40 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-09-21 15:26 - 2021-05-31 13:24 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-09-21 15:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-09-21 15:24 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Windows NT
2022-09-21 15:18 - 2022-04-29 14:35 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citra
2022-09-21 15:18 - 2022-04-08 19:35 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-09-21 15:18 - 2022-04-05 19:48 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 12
2022-09-21 15:18 - 2022-03-04 13:08 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CapitaineJSparrow
2022-09-21 15:18 - 2022-02-25 04:54 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.10
2022-09-21 15:18 - 2021-12-25 19:04 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Topaz Labs
2022-09-21 15:18 - 2021-11-18 05:08 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\stromcon
2022-09-21 15:18 - 2021-10-20 06:12 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokeMMO
2022-09-21 15:18 - 2021-10-09 17:36 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FabFilter
2022-09-21 15:18 - 2021-06-16 22:30 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSYS2 64bit
2022-09-21 15:18 - 2021-06-14 06:59 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2022-09-21 15:18 - 2021-06-01 10:46 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2022-09-21 15:18 - 2021-06-01 10:38 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2022-09-21 15:18 - 2021-05-31 19:06 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FACEIT Ltd
2022-09-21 15:18 - 2021-05-31 14:07 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2022-09-21 15:18 - 2021-05-31 13:45 - 000000000 ____D C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2022-09-21 15:17 - 2022-03-03 02:15 - 000000000 ____D C:\WINDOWS\system32\SteelSeries
2022-09-21 15:17 - 2021-05-31 13:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2022-09-21 14:53 - 2021-10-05 14:24 - 000000036 _____ C:\WINDOWS\progress.ini
2022-09-21 14:39 - 2021-09-23 05:37 - 000000000 ____D C:\Users\coren\AppData\Local\PCHealthCheck
2022-09-21 14:39 - 2021-06-25 21:23 - 000001349 _____ C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-09-21 09:23 - 2021-06-01 11:58 - 000000000 ____D C:\Users\coren\Documents\My Games
2022-09-21 04:32 - 2022-01-15 14:44 - 000000000 ___HD C:\adobeTemp
2022-09-21 04:32 - 2021-05-31 19:35 - 000000000 ____D C:\Program Files\Adobe
2022-09-21 01:55 - 2022-03-24 05:55 - 000000000 ____D C:\ProgramData\SteelSeries
2022-09-19 14:29 - 2021-10-01 03:13 - 000000000 ____D C:\Program Files\Common Files\VST2
2022-09-19 08:48 - 2021-05-31 13:51 - 000000000 ____D C:\Users\coren\AppData\Local\NVIDIA
2022-09-19 06:42 - 2021-05-31 16:28 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2022-09-19 05:29 - 2021-08-11 17:13 - 000000000 ____D C:\Games
2022-09-19 05:25 - 2021-05-31 14:08 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2022-09-19 05:25 - 2021-05-31 14:07 - 000000000 ____D C:\ProgramData\Rockstar Games
2022-09-19 05:25 - 2021-05-31 14:07 - 000000000 ____D C:\Program Files\Rockstar Games
2022-09-18 06:21 - 2022-05-31 06:50 - 000000000 ____D C:\Program Files\Process Hacker 2
2022-09-18 02:23 - 2021-06-16 05:31 - 000000000 ____D C:\ProgramData\VMware
2022-09-18 01:50 - 2021-05-31 19:35 - 000000000 ____D C:\ProgramData\Adobe
2022-09-18 01:50 - 2021-05-31 19:35 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-09-18 01:25 - 2021-05-31 13:24 - 000000000 ____D C:\Users\coren\AppData\Roaming\Adobe
2022-09-18 01:14 - 2021-06-01 21:07 - 000000000 ____D C:\Users\coren\AppData\LocalLow\Adobe
2022-09-18 01:14 - 2021-05-31 19:35 - 000000000 ____D C:\Users\coren\AppData\Local\Adobe
2022-09-18 01:04 - 2021-08-31 07:51 - 000000000 ____D C:\Users\coren\Documents\Assassin's Creed Unity
2022-09-17 01:54 - 2021-06-01 10:38 - 000000000 ____D C:\Users\coren\AppData\Local\Ubisoft Game Launcher
2022-09-16 01:11 - 2021-06-02 15:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-14 03:36 - 2021-05-31 14:34 - 000000000 ____D C:\Users\coren\AppData\Roaming\slobs-client
2022-09-13 05:20 - 2021-05-31 16:09 - 000000000 ____D C:\Users\coren\AppData\Roaming\audacity
2022-09-13 00:46 - 2021-05-31 14:34 - 000000000 ____D C:\Program Files\Streamlabs OBS
2022-09-12 02:24 - 2021-06-20 10:32 - 000000000 ____D C:\Users\coren\AppData\Roaming\molotov
2022-09-10 04:27 - 2021-11-03 18:57 - 000001255 _____ C:\Users\Public\Desktop\Adobe Audition 2022.lnk
2022-09-08 22:09 - 2022-04-28 16:08 - 000000000 ____D C:\Users\coren\AppData\Roaming\iMobie
2022-09-08 22:08 - 2022-04-28 16:08 - 000000000 ____D C:\Program Files (x86)\iMobie
2022-09-07 16:24 - 2021-05-31 19:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-09-06 15:38 - 2022-06-12 11:10 - 000000000 ____D C:\Program Files\Riot Vanguard
2022-09-05 19:42 - 2022-05-25 16:41 - 000002281 _____ C:\Users\coren\Desktop\Mimic.lnk
2022-09-05 19:42 - 2022-04-28 22:55 - 000002281 _____ C:\Users\coren\Desktop\Porofessor.gg.lnk
2022-09-05 19:42 - 2022-04-20 08:35 - 000002281 _____ C:\Users\coren\Desktop\Outplayed.lnk
2022-09-05 19:42 - 2021-06-01 10:46 - 000002281 _____ C:\Users\coren\Desktop\CurseForge.lnk
2022-09-05 19:42 - 2021-06-01 10:45 - 000000000 ____D C:\Users\coren\AppData\Local\Overwolf
2022-09-05 19:42 - 2021-05-31 14:34 - 000000000 ____D C:\ProgramData\Riot Games
2022-09-03 01:22 - 2021-05-31 13:45 - 000000000 ____D C:\Users\coren\AppData\Local\SquirrelTemp
2022-08-30 11:56 - 2021-06-14 06:59 - 000000000 ____D C:\Users\coren\AppData\Roaming\WeMod
2022-08-30 11:56 - 2021-05-31 20:15 - 000000000 ____D C:\Users\coren\Documents\DS4Windows
2022-08-30 11:11 - 2021-07-21 02:40 - 000000000 ____D C:\Program Files (x86)\DODI-Repacks
2022-08-30 10:44 - 2021-05-31 20:16 - 000000000 ____D C:\Users\coren\AppData\Roaming\DS4Windows
2022-08-30 10:19 - 2022-02-26 01:08 - 000000000 ____D C:\Users\coren\AppData\Roaming\EldenRing
2022-08-30 09:53 - 2022-02-26 00:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elden Ring
2022-08-30 09:52 - 2021-06-14 06:59 - 000002173 _____ C:\Users\coren\Desktop\WeMod.lnk
==================== Fichiers à la racine de certains dossiers ========
2021-06-17 08:06 - 2018-08-10 16:37 - 000000713 _____ () C:\Program Files\remove-KMSpico.cmd
2021-05-31 18:07 - 2022-04-28 22:41 - 000000032 _____ () C:\Users\coren\AppData\Roaming\.machineId
2022-04-06 13:38 - 2022-04-06 13:38 - 001040282 _____ () C:\Users\coren\AppData\Roaming\TI Connect CE-5.6.3.2278-Installation.log
2022-08-09 21:13 - 2022-08-09 21:13 - 000001088 _____ () C:\Users\coren\AppData\Roaming\tof_launcher.reg
2022-05-12 06:43 - 2022-07-01 07:36 - 000000128 _____ () C:\Users\coren\AppData\Roaming\winscp.rnd
2022-07-29 10:33 - 2022-07-29 10:33 - 000001456 _____ () C:\Users\coren\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2022-09-18 01:30 - 2022-09-18 01:50 - 000000205 _____ () C:\Users\coren\AppData\Local\oobelibMkey.log
2021-10-04 10:35 - 2021-10-04 19:16 - 000048419 _____ () C:\Users\coren\AppData\Local\PlariumPlay.log
2022-02-28 01:53 - 2022-02-28 01:53 - 000000218 _____ () C:\Users\coren\AppData\Local\recently-used.xbel
==================== FLock ==============================
2022-05-07 07:24 C:\WINDOWS\system32\WebThreatDefSvc
==================== SigCheckExt =========================
2021-06-10 16:32 - 2022-09-22 03:18 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2007-04-27 11:43 - 2007-04-27 11:43 - 000120200 _____ () C:\WINDOWS\SysWOW64\DLLDEV32i.dll
2021-10-09 17:36 - 2021-10-09 17:36 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2021-10-01 03:03 - 2003-03-18 20:14 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2019-06-29 18:06 - 2019-06-29 18:06 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2021-10-01 03:03 - 2003-02-21 04:42 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2022-07-24 20:51 - 2009-10-23 00:00 - 000758272 _____ C:\WINDOWS\SysWOW64\RGSS100J.dll
2022-07-24 20:51 - 2005-08-30 00:00 - 000778752 _____ C:\WINDOWS\SysWOW64\RGSS102E.dll
2022-07-24 20:51 - 2005-08-30 00:00 - 000781312 _____ C:\WINDOWS\SysWOW64\RGSS102J.dll
2022-07-24 20:51 - 2007-05-11 00:00 - 000685056 _____ C:\WINDOWS\SysWOW64\RGSS103J.dll
2022-07-24 20:51 - 2009-10-23 00:00 - 000758272 _____ C:\WINDOWS\SysWOW64\RGSS104E.dll
2022-07-24 20:51 - 2009-10-23 00:00 - 000761856 _____ C:\WINDOWS\SysWOW64\RGSS104J.dll
2021-10-16 06:16 - 2021-09-17 12:03 - 002149184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFUpdate_01009.dll
2022-09-28 11:42 - 2022-09-28 11:42 - 002371072 _____ (Farbar) C:\Users\coren\Desktop\FRST64.exe
2021-06-16 23:37 - 2021-06-16 23:37 - 003038248 _____ (crosire) C:\Users\coren\Desktop\ReShade_Setup_4.9.1.exe
2022-02-06 18:08 - 2021-08-03 02:04 - 000557568 _____ C:\Users\coren\Documents\8u9.exe
2022-01-21 19:07 - 2021-07-05 09:46 - 000459776 _____ (TODO: ) C:\Users\coren\Documents\LOLPRO 12.2.exe
2022-02-06 18:07 - 2021-07-05 09:46 - 000459776 _____ (TODO: ) C:\Users\coren\Documents\LOLPRO 12.3.exe
2022-06-08 05:45 - 2022-02-15 22:28 - 000718848 _____ C:\Users\coren\Documents\Unlocker.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {ff063dc2-39b7-11ed-9ac6-f2ba3067717d}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Installation de Windows
-----------------------
identificateur {7254a080-1510-4e85-ac0f-e7fb3d444736}
device ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{3fc16c3f-39ad-11ed-8111-340a33307165}
bootstatdevice partition=C:
custom:11000083 partition=C:
path \windows\system32\winload.efi
description Windows Rollback
locale fr-FR
bootstatfilepath \$WINDOWS.~BT\Sources\SafeOS\bootstat.dat
inherit {bootloadersettings}
restartonfailure Yes
osdevice ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{3fc16c3f-39ad-11ed-8111-340a33307165}
custom:21000152 partition=C:
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {c2911350-c23c-11eb-94d9-d541ccdbe7b5}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{c2911351-c23c-11eb-94d9-d541ccdbe7b5}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{c2911351-c23c-11eb-94d9-d541ccdbe7b5}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {c2911355-c23c-11eb-94d9-d541ccdbe7b5}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{c2911356-c23c-11eb-94d9-d541ccdbe7b5}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{c2911356-c23c-11eb-94d9-d541ccdbe7b5}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {ff063dc4-39b7-11ed-9ac6-f2ba3067717d}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {ff063dc2-39b7-11ed-9ac6-f2ba3067717d}
nx OptIn
bootmenupolicy Standard
hypervisorlaunchtype Auto
Chargeur de d‚marrage Windows
-----------------------------
identificateur {ff063dc4-39b7-11ed-9ac6-f2ba3067717d}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ff063dc5-39b7-11ed-9ac6-f2ba3067717d}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ff063dc5-39b7-11ed-9ac6-f2ba3067717d}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {c2911352-c23c-11eb-94d9-d541ccdbe7b5}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {c2911355-c23c-11eb-94d9-d541ccdbe7b5}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {ff063dc2-39b7-11ed-9ac6-f2ba3067717d}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {ff063dc4-39b7-11ed-9ac6-f2ba3067717d}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
integrityservices Enable
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {3fc16c3f-39ad-11ed-8111-340a33307165}
description Windows Setup
ramdisksdidevice partition=C:
ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {c2911356-c23c-11eb-94d9-d541ccdbe7b5}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {ff063dc5-39b7-11ed-9ac6-f2ba3067717d}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================