Publicité
Publicité
Commentaire : FRST.
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par Utilisateur1 (administrateur) sur DESKTOP-GCJBLUA (Gigabyte Technology Co., Ltd. B450 GAMING X) (01-09-2022 23:47:39)
Exécuté depuis C:\Users\Utilisateur1\Downloads
Profils chargés: Utilisateur1
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1826 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(Discord Inc. -> Discord Inc.) C:\Users\Utilisateur1\AppData\Local\Discord\app-1.0.9006\Discord.exe <6>
(explorer.exe ->) (BLIFE TEAM, TOV -> Blife Team) C:\Users\Utilisateur1\AppData\Local\Blife\CustomCursor\CustomCursor.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) D:\Pilote\Vulcan TKL Pro\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Dixper Software S.L. -> Dixper Software S.L.) E:\Dixper Studio\service\dixper-service.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (TunnelBear (McAfee Canada ULC) -> TunnelBear) E:\vpn\TunnelBear\TunnelBear.Maintenance.exe
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) D:\Pilote\Vulcan TKL Pro\ROCCAT Swarm\ROCCAT_dev_service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572512 2021-06-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3071192 2022-08-17] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1067528 2022-07-31] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Steam] => E:\steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [EADM] => E:\Origin\Origin.exe [3149616 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [146944768 2022-09-01] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [BakkesMod] => E:\Epic Games\rocketleague\BakkesMod\BakkesMod.exe [16066560 2021-05-05] () [Fichier non signé]
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [14074968 2022-07-22] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [WallpaperEngine] => "E:\Wallpaper Engine\wallpaper32.exe" -silent (Pas de fichier)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [CustomCursor] => C:\Users\Utilisateur1\AppData\Local\Blife\CustomCursor\CustomCursor.exe [470240 2022-01-19] (BLIFE TEAM, TOV -> Blife Team)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [CCleanerBrowserAutoLaunch_81212A6F2F993BC9282761B7F477B4FE] => "C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe" --check-run=src=logon --auto-launch-at-startup --profile-directory="Default" (Pas de fichier)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Spotify] => C:\Users\Utilisateur1\AppData\Roaming\Spotify\Spotify.exe [19970464 2022-07-11] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [com.blitz.app] => C:\Users\Utilisateur1\AppData\Local\Programs\Blitz\Blitz.exe [130381560 2022-07-29] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Battle.net] => E:\actividion blizzard\Battle.net\Battle.net.exe [1089912 2022-07-15] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Voicemod] => E:\Voicemod Desktop\VoicemodDesktop.exe [7395712 2022-07-15] (Voicemod Sociedad Limitada -> Voicemod)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [EpicGamesLauncher] => E:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32703952 2022-08-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Overwolf] => D:\tracker\Overwolf\OverwolfLauncher.exe [1802584 2022-08-04] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Dixper Studio] => C:\Users\Utilisateur1\AppData\Local\Dixper Studio\dixper-studio\win-unpacked\dixper-studio.exe [93707424 2022-08-24] (Dixper Software S.L. -> Dixper Software S.L.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [MicrosoftEdgeAutoLaunch_3F509380E3B3578008D4EDA3E86B5305] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> "C:\Program Files (x86)\CCleaner Browser\Application\101.0.16440.70\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.54\Installer\chrmstp.exe [2022-08-31] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2021-07-31]
ShortcutTarget: ROCCAT Swarm Monitor.lnk -> D:\Pilote\Vulcan TKL Pro\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe (Voyetra Turtle Beach, Inc. -> ROCCAT)
BootExecute: autocheck autochk * Partizan
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0352BED2-DA93-4DA3-83F1-C617A265898F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {0BDE5D69-B9F1-4965-88FB-EE5C643FE699} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {1E97F30A-0458-4330-8C9D-E98F7948639A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe --type=heartbeat --logon (Pas de fichier)
Task: {21FF4A43-F69D-4D13-8533-FBDC088B59CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-02] (Google LLC -> Google LLC)
Task: {26325B8F-1BCF-4FF6-9B3E-FF47A33CE9C5} - System32\Tasks\ROCCAT DEVICE SERVICE => D:\Pilote\Vulcan TKL Pro\ROCCAT Swarm\ROCCAT_dev_service.exe [458224 2022-07-12] (Voyetra Turtle Beach, Inc. -> ROCCAT)
Task: {3B9E287D-9D9E-4EB2-9BAE-0D9AF6FF71A7} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {4E7AF00D-F7D6-47AD-8C53-EC4777C6025F} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe /c (Pas de fichier)
Task: {528A824C-E02D-4827-93D0-3A40F8D89CA8} - System32\Tasks\Opera scheduled Autoupdate 1636039244 => C:\Users\Utilisateur1\AppData\Local\Programs\Opera\launcher.exe [2538448 2022-08-23] (Opera Norway AS -> Opera Software)
Task: {57156A3B-D666-46FC-BBB8-51CF13EE256D} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {6A653B57-0283-46E6-AC89-FA06E2B0FEAB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6B8B5EE3-3D53-4365-9EE9-F2AF32C613E6} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe --type=heartbeat --hourly (Pas de fichier)
Task: {78E087C1-1F57-48A7-B939-D5F6E8EAB134} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7BE4AB4E-414F-4349-9C1C-FA023E0D268B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {BB1B9D67-BCCD-48DE-8EE3-7712E198BFFB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3073563-F75A-4EB9-8719-4BEB5F94422E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D13267A2-4A04-4174-94E7-BFE36C6EDED5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-02] (Google LLC -> Google LLC)
Task: {D2E508B3-28E7-4261-9DB9-A3E835E91B19} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-28] (Avast Software s.r.o. -> Avast Software)
Task: {D93CC206-7F15-4898-A64F-B8C4A9B8BBA0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {E0F82344-FCAA-468C-8773-BDB6810FE316} - System32\Tasks\CCleanerSkipUAC - Utilisateur1 => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E574E86D-FD37-4FC8-9540-97093F7C4E13} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{68fb8b22-c887-4df1-9647-c8b30391337e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a230d696-ea94-4d58-a2d0-3bca64a9b8ae}: [NameServer] 172.17.3.1
Tcpip\..\Interfaces\{afc9b012-37ab-4544-acbd-9451a31d56ae}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{afc9b012-37ab-4544-acbd-9451a31d56ae}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\Utilisateur1\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-01]
FireFox:
========
FF DefaultProfile: r9ut61uf.default
FF ProfilePath: C:\Users\Utilisateur1\AppData\Roaming\Mozilla\Firefox\Profiles\r9ut61uf.default [2022-01-17]
FF ProfilePath: C:\Users\Utilisateur1\AppData\Roaming\Mozilla\Firefox\Profiles\lhxzdbfr.default-release [2022-08-31]
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-10-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-10-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-07-31] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [Pas de fichier]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-07-31] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default [2022-09-01]
CHR Notifications: Default -> hxxps://nationsglory.fr; hxxps://twitter.com; hxxps://www.netflix.com; hxxps://www.reddit.com; hxxps://www.youtube.com
CHR NewTab: Default -> Not-active:"chrome-extension://pjbgfifennfhnbkhoidkdchbflppjncb/newTab/newtab.html"
CHR Extension: (Just Black) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-06-26]
CHR Extension: (Touch VPN - VPN et proxy gratuit) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2022-04-24]
CHR Extension: (uBlock Origin) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-08-24]
CHR Extension: (Free VPN for Chrome - VPN Proxy VeePN) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\majdfhpaihoncoakbjgbdhglocklcgno [2022-08-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-17]
CHR Extension: (Curseur personnalisé - Changeur de curseur) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogdlpmhglpejoiomcodnpjnfgcpmgale [2022-06-28]
CHR Extension: (Black Theme for Chrome) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjbgfifennfhnbkhoidkdchbflppjncb [2022-04-24]
CHR Profile: C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-01]
CHR Profile: C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-09-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-22]
CHR Profile: C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-01]
Opera:
=======
OPR Profile: C:\Users\Utilisateur1\AppData\Roaming\Opera Software\Opera Stable [2022-09-01]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Utilisateur1\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-11-04]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Utilisateur1\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-11-04]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [923656 2022-07-31] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3863256 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3701464 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-05-18] (BattlEye Innovations e.K. -> )
R2 Dixper Service; E:\Dixper Studio\service\dixper-service.exe [355976 2022-04-12] (Dixper Software S.L. -> Dixper Software S.L.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-22] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-07-29] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-08-04] (Epic Games Inc. -> Epic Games, Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2275928 2022-07-22] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-07-22] (GOG Sp. z o.o. -> GOG.com)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10068736 2022-09-01] (Logitech Inc -> Logitech, Inc.)
S3 Origin Client Service; E:\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; E:\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; E:\Launcher\RockstarService.exe [2133968 2022-06-26] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14770472 2021-09-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TunnelBearMaintenance; E:\vpn\TunnelBear\TunnelBear.Maintenance.exe [143544 2022-04-11] (TunnelBear (McAfee Canada ULC) -> TunnelBear)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7099632 2021-07-30] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S2 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10450928 2022-08-17] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7531208 2021-07-30] (PUBG CORPORATION -> PUBG Corporation)
S2 ccleaner; "C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe" /svc [X]
S3 CCleanerBrowserElevationService; "C:\Program Files (x86)\CCleaner Browser\Application\101.0.16440.70\elevation_service.exe" [X]
S3 ccleanerm; "C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe" /medsvc [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 iriuna0; C:\WINDOWS\system32\drivers\iriuna0.sys [46976 2021-04-06] (Iriun Oy -> Windows (R) Win 7 DDK provider)
R3 iriunvid; C:\WINDOWS\System32\DriverStore\FileRepository\iriunvid.inf_amd64_e78ff291e21a1251\iriunvid.sys [162928 2021-07-19] (Iriun Oy -> Windows (R) Win 7 DDK provider)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-07-29] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [33528 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [21704 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [62904 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 NVHDA; C:\WINDOWS\system32\drivers\nvhda64v.sys [129960 2021-07-12] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2021-06-17] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2021-11-12] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2021-11-12] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8746536 2022-08-17] (Riot Games, Inc. -> Riot Games, Inc.)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\mvvad.sys [48144 2022-07-04] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-24] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2022-08-10] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-08-01] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [312776 2022-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Nox Limited Corporation)
U1 aswbdisk; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-01 23:44 - 2022-09-01 23:46 - 000075200 _____ C:\Users\Utilisateur1\Downloads\Addition.txt
2022-09-01 23:42 - 2022-09-01 23:48 - 000027505 _____ C:\Users\Utilisateur1\Downloads\FRST.txt
2022-09-01 23:42 - 2022-09-01 23:42 - 002371072 _____ (Farbar) C:\Users\Utilisateur1\Downloads\FRST64 (1).exe
2022-09-01 23:41 - 2022-09-01 23:41 - 002371072 _____ (Farbar) C:\Users\Utilisateur1\Downloads\FRST64.exe
2022-09-01 17:10 - 2022-09-01 20:45 - 000000252 _____ C:\WINDOWS\SysWOW64\PARTIZAN.TXT
2022-09-01 17:02 - 2022-09-01 23:35 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\UnHackMe
2022-09-01 17:02 - 2022-09-01 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reanimator
2022-09-01 17:02 - 2015-12-28 11:32 - 000049968 _____ (Greatis Software) C:\WINDOWS\system32\partizan.exe
2022-09-01 17:01 - 2022-09-01 17:01 - 036631489 _____ C:\Users\Utilisateur1\Downloads\reanimator.zip
2022-09-01 16:55 - 2022-09-01 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-08-31 20:44 - 2022-08-31 20:44 - 000000000 ___HD C:\$SysReset
2022-08-29 22:08 - 2022-08-29 22:08 - 000356955 _____ C:\Users\Utilisateur1\Downloads\2022-08-29_22-07-00.mkv
2022-08-29 19:20 - 2022-08-29 19:20 - 000088370 _____ C:\Users\Utilisateur1\Downloads\x.png (1).jfif
2022-08-29 19:19 - 2022-08-29 19:19 - 000006408 _____ C:\Users\Utilisateur1\Downloads\images_1.jfif
2022-08-29 19:18 - 2022-08-29 19:18 - 000088370 _____ C:\Users\Utilisateur1\Downloads\x.png.jfif
2022-08-29 19:18 - 2022-08-29 19:18 - 000006408 _____ C:\Users\Utilisateur1\Downloads\images.jfif
2022-08-29 19:17 - 2022-08-29 19:17 - 000110054 _____ C:\Users\Utilisateur1\Downloads\FbQ-o6QXgAAejKI.jfif
2022-08-29 19:16 - 2022-08-29 19:16 - 000248340 _____ C:\Users\Utilisateur1\Downloads\CAN_WE_GET_MUCH_HIGHER_and_THE_ONE_PIECE_IS_REAL_are_trending._Finally_a_reason_the_post_this_again._https___t.co_x3zihoZ3Th.mp4
2022-08-29 19:15 - 2022-08-29 19:15 - 001277589 _____ C:\Users\Utilisateur1\Downloads\The_Onepiece_is_REAL_https___t.co_8CGD0VidaX.mp4
2022-08-29 19:15 - 2022-08-29 19:15 - 000350915 _____ C:\Users\Utilisateur1\Downloads\one_piece_cock_edit_mfs_whenever_they_finally_reach_episode_485_only_to_see_that_when_whitebeard_says__the_one_piece_is_real__it_doesnt_cut_to_him_having_a_huge_cock__https___t.co_DEiBttmoDM.mp4
2022-08-29 15:23 - 2022-08-29 15:55 - 513305398 _____ C:\Users\Utilisateur1\Downloads\Cuphead.The.Delicious.Last.Course-SKIDROW.rar
2022-08-29 15:07 - 2022-08-29 15:07 - 000254392 _____ (Mozilla Foundation) C:\Users\Utilisateur1\AppData\LocalLow\softokn3.dll
2022-08-29 15:06 - 2022-08-29 15:07 - 000684984 _____ (Mozilla Foundation) C:\Users\Utilisateur1\AppData\LocalLow\freebl3.dll
2022-08-29 15:06 - 2022-08-29 15:06 - 000627128 _____ (Mozilla Foundation) C:\Users\Utilisateur1\AppData\LocalLow\mozglue.dll
2022-08-29 14:45 - 2022-08-29 16:02 - 000000000 ____D C:\ProgramData\AVG
2022-08-29 14:44 - 2022-09-01 20:47 - 000000000 ____D C:\Program Files\CCleaner
2022-08-29 14:44 - 2022-08-29 14:44 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-29 14:44 - 2022-08-29 14:44 - 000002932 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Utilisateur1
2022-08-29 14:44 - 2022-08-29 14:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-08-25 14:52 - 2022-08-30 14:49 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_V8izZ.exe
2022-08-25 14:52 - 2022-08-29 16:05 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_AzZ9P.exe
2022-08-25 14:52 - 2022-08-25 14:52 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_6vZjT.exe
2022-08-25 14:52 - 2022-08-25 14:52 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_0Q8Pv.exe
2022-08-25 11:54 - 2022-08-25 11:54 - 000000000 ____D C:\Dixper
2022-08-24 21:13 - 2022-08-24 21:13 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\dixper-skills
2022-08-24 21:12 - 2022-08-24 21:12 - 000000000 ____D C:\Users\Utilisateur1\AppData\LocalLow\Dixper Software S.L_
2022-08-24 21:10 - 2022-08-25 15:20 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\dixper-studio
2022-08-24 21:07 - 2022-08-25 11:54 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\dixper-updater
2022-08-24 21:07 - 2022-08-24 21:10 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Dixper Studio
2022-08-24 21:07 - 2022-08-24 21:07 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2022-08-24 21:07 - 2022-08-24 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dixper Studio
2022-08-24 21:06 - 2022-08-24 21:06 - 050736288 _____ (Dixper Software S.L. ) C:\Users\Utilisateur1\Downloads\Dixper.Studio.Setup.v3.1.1.exe
2022-08-24 19:49 - 2022-08-24 19:49 - 000027056 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_96750469573106.dll
2022-08-24 19:01 - 2022-08-24 19:01 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Far Cry 6.url
2022-08-22 15:52 - 2022-08-22 15:52 - 001417448 _____ (Overwolf Ltd.) C:\Users\Utilisateur1\Downloads\U.GG - Installer.exe
2022-08-20 23:56 - 2022-08-20 23:56 - 001417360 _____ (Overwolf Ltd.) C:\Users\Utilisateur1\Downloads\Fall Guys Tracker - Installer.exe
2022-08-20 22:53 - 2022-08-20 22:53 - 000027088 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_138358546183426.dll
2022-08-20 14:31 - 2022-08-20 14:31 - 025334211 _____ C:\Users\Utilisateur1\Downloads\VideoCompilation_08-19-2022_17-07-43-843.mp4
2022-08-19 20:32 - 2022-08-19 20:32 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\My Games
2022-08-19 19:17 - 2022-08-19 19:17 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Monopoly Plus
2022-08-19 18:34 - 2022-08-19 18:34 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Tencent
2022-08-19 18:34 - 2022-08-19 18:34 - 000000000 ____D C:\ProgramData\intl_ua
2022-08-19 18:33 - 2022-08-19 18:34 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\tofMiniLoader
2022-08-19 18:33 - 2022-08-19 18:33 - 009307264 _____ (Tencent) C:\Users\Utilisateur1\Downloads\TofMiniLoader_official.wg.intl.exe
2022-08-19 14:59 - 2022-08-22 15:53 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2022-08-19 14:59 - 2022-08-19 14:59 - 000004386 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2022-08-19 14:58 - 2022-08-19 14:59 - 000000000 ____D C:\ProgramData\Overwolf
2022-08-19 14:56 - 2022-08-31 18:55 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Overwolf
2022-08-19 14:56 - 2022-08-19 14:56 - 001425512 _____ (Overwolf Ltd.) C:\Users\Utilisateur1\Downloads\Valorant Tracker - Installer.exe
2022-08-18 21:50 - 2022-08-18 21:50 - 000000000 ____D C:\Users\Utilisateur1\AppData\LocalLow\UbiSoftCTU
2022-08-18 19:33 - 2022-08-19 20:32 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\BattlEye
2022-08-18 19:33 - 2022-08-18 19:35 - 000000000 ____D C:\Users\Utilisateur1\OneDrive\Documents\The Crew 2
2022-08-18 19:13 - 2022-08-18 19:16 - 000000000 ____D C:\Users\Utilisateur1\OneDrive\Documents\Rayman Legends
2022-08-18 09:54 - 2022-08-18 09:54 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Assassin’s Creed Unity.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman Designer.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman by his Fans.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman 1.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman 3 Hoodlum Havoc.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman 2 The Great Escape.url
2022-08-17 22:24 - 2022-08-17 22:24 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steep.url
2022-08-17 22:24 - 2022-08-17 22:24 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman Legends.url
2022-08-17 22:23 - 2022-08-17 22:23 - 000000220 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Monopoly Madness.url
2022-08-17 20:14 - 2022-08-17 20:14 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trials Fusion.url
2022-08-17 20:13 - 2022-08-17 20:13 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Crew 2.url
2022-08-17 20:13 - 2022-08-17 20:13 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riders Republic.url
2022-08-17 20:12 - 2022-08-17 20:12 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Monopoly Plus.url
2022-08-17 20:11 - 2022-08-17 20:11 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trackmania Turbo.url
2022-08-17 20:11 - 2022-08-17 20:11 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Config.url
2022-08-17 20:11 - 2022-08-17 20:11 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tom Clancy's Rainbow Six Siege.url
2022-08-17 20:11 - 2022-08-17 20:11 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tom Clancy's Rainbow Six Siege - Vulkan.url
2022-08-17 20:09 - 2022-08-17 20:09 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UNO.url
2022-08-17 19:40 - 2022-08-17 19:40 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Watch Dogs Legion.url
2022-08-17 19:20 - 2022-08-17 19:20 - 000000217 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman Origins.url
2022-08-16 20:37 - 2022-08-16 20:37 - 000027088 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_107129010126930.dll
2022-08-16 18:20 - 2022-08-16 18:20 - 000008819 _____ C:\Users\Utilisateur1\OneDrive\Documents\usertesting.odt
2022-08-15 10:58 - 2022-08-15 10:58 - 000000000 ___HD C:\$WinREAgent
2022-08-15 00:10 - 2022-08-15 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends
2022-08-14 19:16 - 2022-08-14 19:16 - 000000000 ____D C:\Users\Utilisateur1\AppData\LocalLow\Curve Digital
2022-08-10 16:55 - 2022-08-10 16:55 - 000029680 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wintun.sys
2022-08-10 16:06 - 2022-08-11 15:46 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\SCP Secret Laboratory
2022-08-10 16:06 - 2022-08-10 16:06 - 000000000 ____D C:\Users\Utilisateur1\AppData\LocalLow\Northwood
2022-08-10 16:05 - 2022-08-10 16:05 - 000000000 __SHD C:\Users\Utilisateur1\AppData\Roaming\jun-takahashi
2022-08-10 16:05 - 2022-08-10 16:05 - 000000000 __SHD C:\Users\Utilisateur1\AppData\Roaming\blue-helmets
2022-08-10 16:05 - 2022-08-10 16:05 - 000000000 ___HD C:\Users\Utilisateur1\AppData\Roaming\ts-modmail
2022-08-10 16:05 - 2022-08-10 16:05 - 000000000 ___HD C:\Users\Utilisateur1\AppData\Roaming\mongo-db
2022-08-09 22:25 - 2022-08-09 22:25 - 000404339 _____ C:\Users\Utilisateur1\Downloads\Snapchat-1672645053.mp4
2022-08-09 16:26 - 2022-08-09 16:27 - 000000022 _____ C:\Users\Utilisateur1\Downloads\luigismansion_p.zip
2022-08-07 20:41 - 2022-08-29 22:10 - 000000000 ____D C:\SteamLibrary
2022-08-07 20:21 - 2022-08-07 20:21 - 013328398 _____ C:\Users\Utilisateur1\Downloads\freddyfaz_p.rar
2022-08-07 18:58 - 2022-08-07 18:58 - 001751427 _____ C:\Users\Utilisateur1\Downloads\Snapchat-179948853.mp4
2022-08-07 15:20 - 2022-08-07 15:20 - 000000022 _____ C:\Users\Utilisateur1\Downloads\groot_p.zip
2022-08-07 15:19 - 2022-08-07 15:19 - 001362767 _____ C:\Users\Utilisateur1\Downloads\fallguyamongus_p.rar
2022-08-07 15:16 - 2022-08-07 15:16 - 000000022 _____ C:\Users\Utilisateur1\Downloads\skull_kid_p_ec251.zip
2022-08-07 15:12 - 2022-08-07 15:12 - 001719994 _____ C:\Users\Utilisateur1\Downloads\dva_p.rar
2022-08-04 01:01 - 2022-08-04 01:01 - 000003818 _____ C:\Users\Utilisateur1\Downloads\d89131c8-2a1c-473d-a4ce-b75acd20cd48.jfif
2022-08-04 00:09 - 2022-08-04 00:09 - 000009246 _____ C:\Users\Utilisateur1\Downloads\pepeyes.webp
2022-08-04 00:09 - 2022-08-04 00:09 - 000009246 _____ C:\Users\Utilisateur1\Downloads\pepeyes (1).webp
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-01 23:48 - 2022-01-16 19:27 - 000000000 ____D C:\FRST
2022-09-01 23:36 - 2021-10-04 21:04 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\LGHUB
2022-09-01 23:33 - 2021-10-04 18:50 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\discord
2022-09-01 23:30 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-01 23:25 - 2021-10-02 22:26 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\.minecraft
2022-09-01 23:23 - 2021-10-04 18:50 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Discord
2022-09-01 23:12 - 2021-11-06 00:26 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\obs-studio
2022-09-01 23:00 - 2021-10-02 22:08 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-01 22:11 - 2021-10-05 15:28 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\lunarclient
2022-09-01 21:29 - 2021-07-29 17:58 - 000000000 ____D C:\ProgramData\Riot Games
2022-09-01 21:23 - 2021-10-04 21:04 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\LGHUB
2022-09-01 21:22 - 2021-07-31 00:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-01 20:48 - 2021-07-30 00:27 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-09-01 20:45 - 2021-10-05 15:29 - 000000000 ____D C:\Program Files\TeamViewer
2022-09-01 20:45 - 2021-07-31 00:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-01 20:45 - 2021-07-31 00:44 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-01 20:45 - 2021-07-29 18:20 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-01 18:07 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-01 17:33 - 2022-05-30 19:28 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Ubisoft Game Launcher
2022-09-01 16:59 - 2022-03-05 21:35 - 000002438 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-01 16:59 - 2021-12-12 16:11 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2918626343-750642969-3990261492-1002
2022-09-01 16:59 - 2021-10-02 18:26 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2918626343-750642969-3990261492-1002
2022-09-01 16:55 - 2021-07-29 21:33 - 000000000 ____D C:\Program Files\LGHUB
2022-08-31 20:30 - 2021-10-09 12:27 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\CrashDumps
2022-08-31 19:15 - 2022-07-12 22:47 - 000000000 ____D C:\ProgramData\Voicemod
2022-08-31 12:16 - 2021-10-02 22:09 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-30 17:48 - 2021-10-03 20:22 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Origin
2022-08-30 17:48 - 2021-08-01 20:20 - 000000000 ____D C:\ProgramData\Origin
2022-08-30 17:45 - 2021-10-03 20:22 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Origin
2022-08-30 14:55 - 2021-10-02 22:09 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 14:55 - 2021-10-02 22:09 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-30 14:49 - 2022-07-31 20:08 - 000001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2019.lnk
2022-08-30 14:49 - 2022-07-21 17:39 - 000001140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2020.lnk
2022-08-30 14:49 - 2022-06-24 09:48 - 000003304 _____ C:\WINDOWS\system32\.tmp
2022-08-30 14:49 - 2022-02-05 22:12 - 000005016 _____ C:\ProgramData\rsEngine.config.backup
2022-08-30 14:49 - 2021-10-10 14:52 - 000000901 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AZ Launcher - Minecraft.lnk
2022-08-30 14:49 - 2021-10-05 18:53 - 000000859 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BakkesMod.lnk
2022-08-30 14:49 - 2021-07-29 17:50 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-08-30 14:49 - 2021-07-29 17:47 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-30 14:15 - 2021-10-05 10:01 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-08-30 14:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-29 18:11 - 2021-11-04 18:31 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Voicemod
2022-08-29 16:05 - 2022-07-31 20:27 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2022-08-29 16:05 - 2021-10-03 21:50 - 000000789 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2022-08-29 16:05 - 2021-07-31 00:00 - 000000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2022-08-29 16:05 - 2021-07-29 22:38 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2022-08-29 15:07 - 2021-10-02 22:44 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\ElevatedDiagnostics
2022-08-29 14:59 - 2022-03-13 01:20 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CapitaineJSparrow
2022-08-29 14:59 - 2022-03-13 01:19 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\emusak
2022-08-29 14:59 - 2022-03-13 01:18 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\emusak_ui
2022-08-29 14:56 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-08-29 14:48 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-28 13:03 - 2021-10-02 18:25 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\D3DSCache
2022-08-26 19:46 - 2021-07-29 18:11 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-26 15:28 - 2021-11-17 14:40 - 000000933 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Badlion Client.lnk
2022-08-26 15:28 - 2021-11-04 17:20 - 000004292 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1636039244
2022-08-26 15:28 - 2021-11-04 17:20 - 000001498 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-08-25 15:20 - 2021-10-02 18:25 - 000000000 ____D C:\Users\Utilisateur1
2022-08-23 13:40 - 2022-07-31 19:57 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2022-08-19 20:32 - 2021-10-17 18:33 - 000000000 ____D C:\Users\Utilisateur1\OneDrive\Documents\My Games
2022-08-18 19:52 - 2021-10-03 09:30 - 000000000 ____D C:\Program Files\Riot Vanguard
2022-08-17 12:05 - 2021-07-31 22:14 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 12:05 - 2021-07-31 22:14 - 000003596 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7859544d98c2e
2022-08-15 00:10 - 2021-10-04 17:29 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2022-08-11 15:46 - 2021-10-02 23:30 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-08-10 16:55 - 2022-04-24 19:26 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\TunnelBear
2022-08-10 16:55 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-08-09 13:08 - 2022-06-30 22:42 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Battle.net
2022-08-09 13:08 - 2022-06-22 15:49 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Blitz
2022-08-09 13:07 - 2022-06-22 16:30 - 000000000 ___RD C:\Users\Utilisateur1\Creative Cloud Files
2022-08-09 13:06 - 2022-06-22 15:49 - 000000032 _____ C:\Users\Utilisateur1\AppData\Roaming\.machineId
2022-08-08 18:51 - 2022-03-25 21:27 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-08-08 18:51 - 2021-07-31 00:53 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-08 18:51 - 2019-12-07 16:50 - 000791718 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-08 18:51 - 2019-12-07 16:50 - 000149884 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-05 17:13 - 2021-10-15 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostrunner [GOG.com]
2022-08-04 00:58 - 2021-10-05 12:19 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Spotify
2022-08-04 00:57 - 2021-10-05 12:18 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Spotify
==================== Fichiers à la racine de certains dossiers ========
2022-08-25 14:52 - 2022-08-25 14:52 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_0Q8Pv.exe
2022-08-25 14:52 - 2022-08-25 14:52 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_6vZjT.exe
2022-08-25 14:52 - 2022-08-29 16:05 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_AzZ9P.exe
2022-08-25 14:52 - 2022-08-30 14:49 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_V8izZ.exe
2022-06-22 15:49 - 2022-08-09 13:06 - 000000032 _____ () C:\Users\Utilisateur1\AppData\Roaming\.machineId
2021-11-10 21:14 - 2022-07-21 13:25 - 000000016 _____ () C:\Users\Utilisateur1\AppData\Roaming\obs-virtualcam.txt
2021-11-12 22:57 - 2021-11-13 22:13 - 000042244 _____ () C:\Users\Utilisateur1\AppData\Roaming\VoiceMeeterBananaDefault.xml
2021-11-12 22:32 - 2021-11-12 22:51 - 000007404 _____ () C:\Users\Utilisateur1\AppData\Roaming\VoiceMeeterDefault.xml
2022-01-30 19:52 - 2022-02-27 19:58 - 000006144 _____ () C:\Users\Utilisateur1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2022-07-31 20:17 - 2022-07-31 20:17 - 000000000 _____ () C:\Users\Utilisateur1\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Utilisateur1 (administrateur) sur DESKTOP-GCJBLUA (Gigabyte Technology Co., Ltd. B450 GAMING X) (01-09-2022 23:47:39)
Exécuté depuis C:\Users\Utilisateur1\Downloads
Profils chargés: Utilisateur1
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1826 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(Discord Inc. -> Discord Inc.) C:\Users\Utilisateur1\AppData\Local\Discord\app-1.0.9006\Discord.exe <6>
(explorer.exe ->) (BLIFE TEAM, TOV -> Blife Team) C:\Users\Utilisateur1\AppData\Local\Blife\CustomCursor\CustomCursor.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) D:\Pilote\Vulcan TKL Pro\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Dixper Software S.L. -> Dixper Software S.L.) E:\Dixper Studio\service\dixper-service.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (TunnelBear (McAfee Canada ULC) -> TunnelBear) E:\vpn\TunnelBear\TunnelBear.Maintenance.exe
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) D:\Pilote\Vulcan TKL Pro\ROCCAT Swarm\ROCCAT_dev_service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572512 2021-06-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3071192 2022-08-17] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1067528 2022-07-31] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Steam] => E:\steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [EADM] => E:\Origin\Origin.exe [3149616 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [146944768 2022-09-01] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [BakkesMod] => E:\Epic Games\rocketleague\BakkesMod\BakkesMod.exe [16066560 2021-05-05] () [Fichier non signé]
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [14074968 2022-07-22] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [WallpaperEngine] => "E:\Wallpaper Engine\wallpaper32.exe" -silent (Pas de fichier)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [CustomCursor] => C:\Users\Utilisateur1\AppData\Local\Blife\CustomCursor\CustomCursor.exe [470240 2022-01-19] (BLIFE TEAM, TOV -> Blife Team)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [CCleanerBrowserAutoLaunch_81212A6F2F993BC9282761B7F477B4FE] => "C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe" --check-run=src=logon --auto-launch-at-startup --profile-directory="Default" (Pas de fichier)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Spotify] => C:\Users\Utilisateur1\AppData\Roaming\Spotify\Spotify.exe [19970464 2022-07-11] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [com.blitz.app] => C:\Users\Utilisateur1\AppData\Local\Programs\Blitz\Blitz.exe [130381560 2022-07-29] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Battle.net] => E:\actividion blizzard\Battle.net\Battle.net.exe [1089912 2022-07-15] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Voicemod] => E:\Voicemod Desktop\VoicemodDesktop.exe [7395712 2022-07-15] (Voicemod Sociedad Limitada -> Voicemod)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [EpicGamesLauncher] => E:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32703952 2022-08-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Overwolf] => D:\tracker\Overwolf\OverwolfLauncher.exe [1802584 2022-08-04] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [Dixper Studio] => C:\Users\Utilisateur1\AppData\Local\Dixper Studio\dixper-studio\win-unpacked\dixper-studio.exe [93707424 2022-08-24] (Dixper Software S.L. -> Dixper Software S.L.)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [MicrosoftEdgeAutoLaunch_3F509380E3B3578008D4EDA3E86B5305] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2918626343-750642969-3990261492-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> "C:\Program Files (x86)\CCleaner Browser\Application\101.0.16440.70\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.54\Installer\chrmstp.exe [2022-08-31] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2021-07-31]
ShortcutTarget: ROCCAT Swarm Monitor.lnk -> D:\Pilote\Vulcan TKL Pro\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe (Voyetra Turtle Beach, Inc. -> ROCCAT)
BootExecute: autocheck autochk * Partizan
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0352BED2-DA93-4DA3-83F1-C617A265898F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {0BDE5D69-B9F1-4965-88FB-EE5C643FE699} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {1E97F30A-0458-4330-8C9D-E98F7948639A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe --type=heartbeat --logon (Pas de fichier)
Task: {21FF4A43-F69D-4D13-8533-FBDC088B59CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-02] (Google LLC -> Google LLC)
Task: {26325B8F-1BCF-4FF6-9B3E-FF47A33CE9C5} - System32\Tasks\ROCCAT DEVICE SERVICE => D:\Pilote\Vulcan TKL Pro\ROCCAT Swarm\ROCCAT_dev_service.exe [458224 2022-07-12] (Voyetra Turtle Beach, Inc. -> ROCCAT)
Task: {3B9E287D-9D9E-4EB2-9BAE-0D9AF6FF71A7} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {4E7AF00D-F7D6-47AD-8C53-EC4777C6025F} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe /c (Pas de fichier)
Task: {528A824C-E02D-4827-93D0-3A40F8D89CA8} - System32\Tasks\Opera scheduled Autoupdate 1636039244 => C:\Users\Utilisateur1\AppData\Local\Programs\Opera\launcher.exe [2538448 2022-08-23] (Opera Norway AS -> Opera Software)
Task: {57156A3B-D666-46FC-BBB8-51CF13EE256D} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {6A653B57-0283-46E6-AC89-FA06E2B0FEAB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6B8B5EE3-3D53-4365-9EE9-F2AF32C613E6} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe --type=heartbeat --hourly (Pas de fichier)
Task: {78E087C1-1F57-48A7-B939-D5F6E8EAB134} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7BE4AB4E-414F-4349-9C1C-FA023E0D268B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {BB1B9D67-BCCD-48DE-8EE3-7712E198BFFB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3073563-F75A-4EB9-8719-4BEB5F94422E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D13267A2-4A04-4174-94E7-BFE36C6EDED5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-02] (Google LLC -> Google LLC)
Task: {D2E508B3-28E7-4261-9DB9-A3E835E91B19} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-28] (Avast Software s.r.o. -> Avast Software)
Task: {D93CC206-7F15-4898-A64F-B8C4A9B8BBA0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {E0F82344-FCAA-468C-8773-BDB6810FE316} - System32\Tasks\CCleanerSkipUAC - Utilisateur1 => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E574E86D-FD37-4FC8-9540-97093F7C4E13} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{68fb8b22-c887-4df1-9647-c8b30391337e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a230d696-ea94-4d58-a2d0-3bca64a9b8ae}: [NameServer] 172.17.3.1
Tcpip\..\Interfaces\{afc9b012-37ab-4544-acbd-9451a31d56ae}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{afc9b012-37ab-4544-acbd-9451a31d56ae}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\Utilisateur1\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-01]
FireFox:
========
FF DefaultProfile: r9ut61uf.default
FF ProfilePath: C:\Users\Utilisateur1\AppData\Roaming\Mozilla\Firefox\Profiles\r9ut61uf.default [2022-01-17]
FF ProfilePath: C:\Users\Utilisateur1\AppData\Roaming\Mozilla\Firefox\Profiles\lhxzdbfr.default-release [2022-08-31]
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-10-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-10-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-07-31] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [Pas de fichier]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-07-31] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default [2022-09-01]
CHR Notifications: Default -> hxxps://nationsglory.fr; hxxps://twitter.com; hxxps://www.netflix.com; hxxps://www.reddit.com; hxxps://www.youtube.com
CHR NewTab: Default -> Not-active:"chrome-extension://pjbgfifennfhnbkhoidkdchbflppjncb/newTab/newtab.html"
CHR Extension: (Just Black) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-06-26]
CHR Extension: (Touch VPN - VPN et proxy gratuit) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2022-04-24]
CHR Extension: (uBlock Origin) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-08-24]
CHR Extension: (Free VPN for Chrome - VPN Proxy VeePN) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\majdfhpaihoncoakbjgbdhglocklcgno [2022-08-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-17]
CHR Extension: (Curseur personnalisé - Changeur de curseur) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogdlpmhglpejoiomcodnpjnfgcpmgale [2022-06-28]
CHR Extension: (Black Theme for Chrome) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjbgfifennfhnbkhoidkdchbflppjncb [2022-04-24]
CHR Profile: C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-01]
CHR Profile: C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-09-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-22]
CHR Profile: C:\Users\Utilisateur1\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-01]
Opera:
=======
OPR Profile: C:\Users\Utilisateur1\AppData\Roaming\Opera Software\Opera Stable [2022-09-01]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Utilisateur1\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-11-04]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Utilisateur1\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-11-04]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [923656 2022-07-31] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3863256 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3701464 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-05-18] (BattlEye Innovations e.K. -> )
R2 Dixper Service; E:\Dixper Studio\service\dixper-service.exe [355976 2022-04-12] (Dixper Software S.L. -> Dixper Software S.L.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-22] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-07-29] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-08-04] (Epic Games Inc. -> Epic Games, Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2275928 2022-07-22] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-07-22] (GOG Sp. z o.o. -> GOG.com)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10068736 2022-09-01] (Logitech Inc -> Logitech, Inc.)
S3 Origin Client Service; E:\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; E:\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; E:\Launcher\RockstarService.exe [2133968 2022-06-26] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14770472 2021-09-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TunnelBearMaintenance; E:\vpn\TunnelBear\TunnelBear.Maintenance.exe [143544 2022-04-11] (TunnelBear (McAfee Canada ULC) -> TunnelBear)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7099632 2021-07-30] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S2 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10450928 2022-08-17] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7531208 2021-07-30] (PUBG CORPORATION -> PUBG Corporation)
S2 ccleaner; "C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe" /svc [X]
S3 CCleanerBrowserElevationService; "C:\Program Files (x86)\CCleaner Browser\Application\101.0.16440.70\elevation_service.exe" [X]
S3 ccleanerm; "C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe" /medsvc [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 iriuna0; C:\WINDOWS\system32\drivers\iriuna0.sys [46976 2021-04-06] (Iriun Oy -> Windows (R) Win 7 DDK provider)
R3 iriunvid; C:\WINDOWS\System32\DriverStore\FileRepository\iriunvid.inf_amd64_e78ff291e21a1251\iriunvid.sys [162928 2021-07-19] (Iriun Oy -> Windows (R) Win 7 DDK provider)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-07-29] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [33528 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [21704 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [62904 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 NVHDA; C:\WINDOWS\system32\drivers\nvhda64v.sys [129960 2021-07-12] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2021-06-17] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2021-11-12] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2021-11-12] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8746536 2022-08-17] (Riot Games, Inc. -> Riot Games, Inc.)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\mvvad.sys [48144 2022-07-04] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-24] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2022-08-10] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-08-01] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [312776 2022-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Nox Limited Corporation)
U1 aswbdisk; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-01 23:44 - 2022-09-01 23:46 - 000075200 _____ C:\Users\Utilisateur1\Downloads\Addition.txt
2022-09-01 23:42 - 2022-09-01 23:48 - 000027505 _____ C:\Users\Utilisateur1\Downloads\FRST.txt
2022-09-01 23:42 - 2022-09-01 23:42 - 002371072 _____ (Farbar) C:\Users\Utilisateur1\Downloads\FRST64 (1).exe
2022-09-01 23:41 - 2022-09-01 23:41 - 002371072 _____ (Farbar) C:\Users\Utilisateur1\Downloads\FRST64.exe
2022-09-01 17:10 - 2022-09-01 20:45 - 000000252 _____ C:\WINDOWS\SysWOW64\PARTIZAN.TXT
2022-09-01 17:02 - 2022-09-01 23:35 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\UnHackMe
2022-09-01 17:02 - 2022-09-01 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reanimator
2022-09-01 17:02 - 2015-12-28 11:32 - 000049968 _____ (Greatis Software) C:\WINDOWS\system32\partizan.exe
2022-09-01 17:01 - 2022-09-01 17:01 - 036631489 _____ C:\Users\Utilisateur1\Downloads\reanimator.zip
2022-09-01 16:55 - 2022-09-01 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-08-31 20:44 - 2022-08-31 20:44 - 000000000 ___HD C:\$SysReset
2022-08-29 22:08 - 2022-08-29 22:08 - 000356955 _____ C:\Users\Utilisateur1\Downloads\2022-08-29_22-07-00.mkv
2022-08-29 19:20 - 2022-08-29 19:20 - 000088370 _____ C:\Users\Utilisateur1\Downloads\x.png (1).jfif
2022-08-29 19:19 - 2022-08-29 19:19 - 000006408 _____ C:\Users\Utilisateur1\Downloads\images_1.jfif
2022-08-29 19:18 - 2022-08-29 19:18 - 000088370 _____ C:\Users\Utilisateur1\Downloads\x.png.jfif
2022-08-29 19:18 - 2022-08-29 19:18 - 000006408 _____ C:\Users\Utilisateur1\Downloads\images.jfif
2022-08-29 19:17 - 2022-08-29 19:17 - 000110054 _____ C:\Users\Utilisateur1\Downloads\FbQ-o6QXgAAejKI.jfif
2022-08-29 19:16 - 2022-08-29 19:16 - 000248340 _____ C:\Users\Utilisateur1\Downloads\CAN_WE_GET_MUCH_HIGHER_and_THE_ONE_PIECE_IS_REAL_are_trending._Finally_a_reason_the_post_this_again._https___t.co_x3zihoZ3Th.mp4
2022-08-29 19:15 - 2022-08-29 19:15 - 001277589 _____ C:\Users\Utilisateur1\Downloads\The_Onepiece_is_REAL_https___t.co_8CGD0VidaX.mp4
2022-08-29 19:15 - 2022-08-29 19:15 - 000350915 _____ C:\Users\Utilisateur1\Downloads\one_piece_cock_edit_mfs_whenever_they_finally_reach_episode_485_only_to_see_that_when_whitebeard_says__the_one_piece_is_real__it_doesnt_cut_to_him_having_a_huge_cock__https___t.co_DEiBttmoDM.mp4
2022-08-29 15:23 - 2022-08-29 15:55 - 513305398 _____ C:\Users\Utilisateur1\Downloads\Cuphead.The.Delicious.Last.Course-SKIDROW.rar
2022-08-29 15:07 - 2022-08-29 15:07 - 000254392 _____ (Mozilla Foundation) C:\Users\Utilisateur1\AppData\LocalLow\softokn3.dll
2022-08-29 15:06 - 2022-08-29 15:07 - 000684984 _____ (Mozilla Foundation) C:\Users\Utilisateur1\AppData\LocalLow\freebl3.dll
2022-08-29 15:06 - 2022-08-29 15:06 - 000627128 _____ (Mozilla Foundation) C:\Users\Utilisateur1\AppData\LocalLow\mozglue.dll
2022-08-29 14:45 - 2022-08-29 16:02 - 000000000 ____D C:\ProgramData\AVG
2022-08-29 14:44 - 2022-09-01 20:47 - 000000000 ____D C:\Program Files\CCleaner
2022-08-29 14:44 - 2022-08-29 14:44 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-29 14:44 - 2022-08-29 14:44 - 000002932 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Utilisateur1
2022-08-29 14:44 - 2022-08-29 14:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-08-25 14:52 - 2022-08-30 14:49 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_V8izZ.exe
2022-08-25 14:52 - 2022-08-29 16:05 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_AzZ9P.exe
2022-08-25 14:52 - 2022-08-25 14:52 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_6vZjT.exe
2022-08-25 14:52 - 2022-08-25 14:52 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_0Q8Pv.exe
2022-08-25 11:54 - 2022-08-25 11:54 - 000000000 ____D C:\Dixper
2022-08-24 21:13 - 2022-08-24 21:13 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\dixper-skills
2022-08-24 21:12 - 2022-08-24 21:12 - 000000000 ____D C:\Users\Utilisateur1\AppData\LocalLow\Dixper Software S.L_
2022-08-24 21:10 - 2022-08-25 15:20 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\dixper-studio
2022-08-24 21:07 - 2022-08-25 11:54 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\dixper-updater
2022-08-24 21:07 - 2022-08-24 21:10 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Dixper Studio
2022-08-24 21:07 - 2022-08-24 21:07 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2022-08-24 21:07 - 2022-08-24 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dixper Studio
2022-08-24 21:06 - 2022-08-24 21:06 - 050736288 _____ (Dixper Software S.L. ) C:\Users\Utilisateur1\Downloads\Dixper.Studio.Setup.v3.1.1.exe
2022-08-24 19:49 - 2022-08-24 19:49 - 000027056 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_96750469573106.dll
2022-08-24 19:01 - 2022-08-24 19:01 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Far Cry 6.url
2022-08-22 15:52 - 2022-08-22 15:52 - 001417448 _____ (Overwolf Ltd.) C:\Users\Utilisateur1\Downloads\U.GG - Installer.exe
2022-08-20 23:56 - 2022-08-20 23:56 - 001417360 _____ (Overwolf Ltd.) C:\Users\Utilisateur1\Downloads\Fall Guys Tracker - Installer.exe
2022-08-20 22:53 - 2022-08-20 22:53 - 000027088 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_138358546183426.dll
2022-08-20 14:31 - 2022-08-20 14:31 - 025334211 _____ C:\Users\Utilisateur1\Downloads\VideoCompilation_08-19-2022_17-07-43-843.mp4
2022-08-19 20:32 - 2022-08-19 20:32 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\My Games
2022-08-19 19:17 - 2022-08-19 19:17 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Monopoly Plus
2022-08-19 18:34 - 2022-08-19 18:34 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Tencent
2022-08-19 18:34 - 2022-08-19 18:34 - 000000000 ____D C:\ProgramData\intl_ua
2022-08-19 18:33 - 2022-08-19 18:34 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\tofMiniLoader
2022-08-19 18:33 - 2022-08-19 18:33 - 009307264 _____ (Tencent) C:\Users\Utilisateur1\Downloads\TofMiniLoader_official.wg.intl.exe
2022-08-19 14:59 - 2022-08-22 15:53 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2022-08-19 14:59 - 2022-08-19 14:59 - 000004386 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2022-08-19 14:58 - 2022-08-19 14:59 - 000000000 ____D C:\ProgramData\Overwolf
2022-08-19 14:56 - 2022-08-31 18:55 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Overwolf
2022-08-19 14:56 - 2022-08-19 14:56 - 001425512 _____ (Overwolf Ltd.) C:\Users\Utilisateur1\Downloads\Valorant Tracker - Installer.exe
2022-08-18 21:50 - 2022-08-18 21:50 - 000000000 ____D C:\Users\Utilisateur1\AppData\LocalLow\UbiSoftCTU
2022-08-18 19:33 - 2022-08-19 20:32 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\BattlEye
2022-08-18 19:33 - 2022-08-18 19:35 - 000000000 ____D C:\Users\Utilisateur1\OneDrive\Documents\The Crew 2
2022-08-18 19:13 - 2022-08-18 19:16 - 000000000 ____D C:\Users\Utilisateur1\OneDrive\Documents\Rayman Legends
2022-08-18 09:54 - 2022-08-18 09:54 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Assassin’s Creed Unity.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman Designer.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman by his Fans.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman 1.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman 3 Hoodlum Havoc.url
2022-08-17 22:26 - 2022-08-17 22:26 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman 2 The Great Escape.url
2022-08-17 22:24 - 2022-08-17 22:24 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steep.url
2022-08-17 22:24 - 2022-08-17 22:24 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman Legends.url
2022-08-17 22:23 - 2022-08-17 22:23 - 000000220 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Monopoly Madness.url
2022-08-17 20:14 - 2022-08-17 20:14 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trials Fusion.url
2022-08-17 20:13 - 2022-08-17 20:13 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Crew 2.url
2022-08-17 20:13 - 2022-08-17 20:13 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riders Republic.url
2022-08-17 20:12 - 2022-08-17 20:12 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Monopoly Plus.url
2022-08-17 20:11 - 2022-08-17 20:11 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trackmania Turbo.url
2022-08-17 20:11 - 2022-08-17 20:11 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Config.url
2022-08-17 20:11 - 2022-08-17 20:11 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tom Clancy's Rainbow Six Siege.url
2022-08-17 20:11 - 2022-08-17 20:11 - 000000218 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tom Clancy's Rainbow Six Siege - Vulkan.url
2022-08-17 20:09 - 2022-08-17 20:09 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UNO.url
2022-08-17 19:40 - 2022-08-17 19:40 - 000000219 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Watch Dogs Legion.url
2022-08-17 19:20 - 2022-08-17 19:20 - 000000217 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rayman Origins.url
2022-08-16 20:37 - 2022-08-16 20:37 - 000027088 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_107129010126930.dll
2022-08-16 18:20 - 2022-08-16 18:20 - 000008819 _____ C:\Users\Utilisateur1\OneDrive\Documents\usertesting.odt
2022-08-15 10:58 - 2022-08-15 10:58 - 000000000 ___HD C:\$WinREAgent
2022-08-15 00:10 - 2022-08-15 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends
2022-08-14 19:16 - 2022-08-14 19:16 - 000000000 ____D C:\Users\Utilisateur1\AppData\LocalLow\Curve Digital
2022-08-10 16:55 - 2022-08-10 16:55 - 000029680 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wintun.sys
2022-08-10 16:06 - 2022-08-11 15:46 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\SCP Secret Laboratory
2022-08-10 16:06 - 2022-08-10 16:06 - 000000000 ____D C:\Users\Utilisateur1\AppData\LocalLow\Northwood
2022-08-10 16:05 - 2022-08-10 16:05 - 000000000 __SHD C:\Users\Utilisateur1\AppData\Roaming\jun-takahashi
2022-08-10 16:05 - 2022-08-10 16:05 - 000000000 __SHD C:\Users\Utilisateur1\AppData\Roaming\blue-helmets
2022-08-10 16:05 - 2022-08-10 16:05 - 000000000 ___HD C:\Users\Utilisateur1\AppData\Roaming\ts-modmail
2022-08-10 16:05 - 2022-08-10 16:05 - 000000000 ___HD C:\Users\Utilisateur1\AppData\Roaming\mongo-db
2022-08-09 22:25 - 2022-08-09 22:25 - 000404339 _____ C:\Users\Utilisateur1\Downloads\Snapchat-1672645053.mp4
2022-08-09 16:26 - 2022-08-09 16:27 - 000000022 _____ C:\Users\Utilisateur1\Downloads\luigismansion_p.zip
2022-08-07 20:41 - 2022-08-29 22:10 - 000000000 ____D C:\SteamLibrary
2022-08-07 20:21 - 2022-08-07 20:21 - 013328398 _____ C:\Users\Utilisateur1\Downloads\freddyfaz_p.rar
2022-08-07 18:58 - 2022-08-07 18:58 - 001751427 _____ C:\Users\Utilisateur1\Downloads\Snapchat-179948853.mp4
2022-08-07 15:20 - 2022-08-07 15:20 - 000000022 _____ C:\Users\Utilisateur1\Downloads\groot_p.zip
2022-08-07 15:19 - 2022-08-07 15:19 - 001362767 _____ C:\Users\Utilisateur1\Downloads\fallguyamongus_p.rar
2022-08-07 15:16 - 2022-08-07 15:16 - 000000022 _____ C:\Users\Utilisateur1\Downloads\skull_kid_p_ec251.zip
2022-08-07 15:12 - 2022-08-07 15:12 - 001719994 _____ C:\Users\Utilisateur1\Downloads\dva_p.rar
2022-08-04 01:01 - 2022-08-04 01:01 - 000003818 _____ C:\Users\Utilisateur1\Downloads\d89131c8-2a1c-473d-a4ce-b75acd20cd48.jfif
2022-08-04 00:09 - 2022-08-04 00:09 - 000009246 _____ C:\Users\Utilisateur1\Downloads\pepeyes.webp
2022-08-04 00:09 - 2022-08-04 00:09 - 000009246 _____ C:\Users\Utilisateur1\Downloads\pepeyes (1).webp
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-01 23:48 - 2022-01-16 19:27 - 000000000 ____D C:\FRST
2022-09-01 23:36 - 2021-10-04 21:04 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\LGHUB
2022-09-01 23:33 - 2021-10-04 18:50 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\discord
2022-09-01 23:30 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-01 23:25 - 2021-10-02 22:26 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\.minecraft
2022-09-01 23:23 - 2021-10-04 18:50 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Discord
2022-09-01 23:12 - 2021-11-06 00:26 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\obs-studio
2022-09-01 23:00 - 2021-10-02 22:08 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-01 22:11 - 2021-10-05 15:28 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\lunarclient
2022-09-01 21:29 - 2021-07-29 17:58 - 000000000 ____D C:\ProgramData\Riot Games
2022-09-01 21:23 - 2021-10-04 21:04 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\LGHUB
2022-09-01 21:22 - 2021-07-31 00:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-01 20:48 - 2021-07-30 00:27 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-09-01 20:45 - 2021-10-05 15:29 - 000000000 ____D C:\Program Files\TeamViewer
2022-09-01 20:45 - 2021-07-31 00:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-01 20:45 - 2021-07-31 00:44 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-01 20:45 - 2021-07-29 18:20 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-01 18:07 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-01 17:33 - 2022-05-30 19:28 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Ubisoft Game Launcher
2022-09-01 16:59 - 2022-03-05 21:35 - 000002438 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-01 16:59 - 2021-12-12 16:11 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2918626343-750642969-3990261492-1002
2022-09-01 16:59 - 2021-10-02 18:26 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2918626343-750642969-3990261492-1002
2022-09-01 16:55 - 2021-07-29 21:33 - 000000000 ____D C:\Program Files\LGHUB
2022-08-31 20:30 - 2021-10-09 12:27 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\CrashDumps
2022-08-31 19:15 - 2022-07-12 22:47 - 000000000 ____D C:\ProgramData\Voicemod
2022-08-31 12:16 - 2021-10-02 22:09 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-30 17:48 - 2021-10-03 20:22 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Origin
2022-08-30 17:48 - 2021-08-01 20:20 - 000000000 ____D C:\ProgramData\Origin
2022-08-30 17:45 - 2021-10-03 20:22 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Origin
2022-08-30 14:55 - 2021-10-02 22:09 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 14:55 - 2021-10-02 22:09 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-30 14:49 - 2022-07-31 20:08 - 000001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2019.lnk
2022-08-30 14:49 - 2022-07-21 17:39 - 000001140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2020.lnk
2022-08-30 14:49 - 2022-06-24 09:48 - 000003304 _____ C:\WINDOWS\system32\.tmp
2022-08-30 14:49 - 2022-02-05 22:12 - 000005016 _____ C:\ProgramData\rsEngine.config.backup
2022-08-30 14:49 - 2021-10-10 14:52 - 000000901 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AZ Launcher - Minecraft.lnk
2022-08-30 14:49 - 2021-10-05 18:53 - 000000859 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BakkesMod.lnk
2022-08-30 14:49 - 2021-07-29 17:50 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-08-30 14:49 - 2021-07-29 17:47 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-30 14:15 - 2021-10-05 10:01 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-08-30 14:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-29 18:11 - 2021-11-04 18:31 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Voicemod
2022-08-29 16:05 - 2022-07-31 20:27 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2022-08-29 16:05 - 2021-10-03 21:50 - 000000789 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2022-08-29 16:05 - 2021-07-31 00:00 - 000000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2022-08-29 16:05 - 2021-07-29 22:38 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2022-08-29 15:07 - 2021-10-02 22:44 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\ElevatedDiagnostics
2022-08-29 14:59 - 2022-03-13 01:20 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CapitaineJSparrow
2022-08-29 14:59 - 2022-03-13 01:19 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\emusak
2022-08-29 14:59 - 2022-03-13 01:18 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\emusak_ui
2022-08-29 14:56 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-08-29 14:48 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-28 13:03 - 2021-10-02 18:25 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\D3DSCache
2022-08-26 19:46 - 2021-07-29 18:11 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-26 15:28 - 2021-11-17 14:40 - 000000933 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Badlion Client.lnk
2022-08-26 15:28 - 2021-11-04 17:20 - 000004292 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1636039244
2022-08-26 15:28 - 2021-11-04 17:20 - 000001498 _____ C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-08-25 15:20 - 2021-10-02 18:25 - 000000000 ____D C:\Users\Utilisateur1
2022-08-23 13:40 - 2022-07-31 19:57 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2022-08-19 20:32 - 2021-10-17 18:33 - 000000000 ____D C:\Users\Utilisateur1\OneDrive\Documents\My Games
2022-08-18 19:52 - 2021-10-03 09:30 - 000000000 ____D C:\Program Files\Riot Vanguard
2022-08-17 12:05 - 2021-07-31 22:14 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 12:05 - 2021-07-31 22:14 - 000003596 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7859544d98c2e
2022-08-15 00:10 - 2021-10-04 17:29 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2022-08-11 15:46 - 2021-10-02 23:30 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-08-10 16:55 - 2022-04-24 19:26 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\TunnelBear
2022-08-10 16:55 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-08-09 13:08 - 2022-06-30 22:42 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Battle.net
2022-08-09 13:08 - 2022-06-22 15:49 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Blitz
2022-08-09 13:07 - 2022-06-22 16:30 - 000000000 ___RD C:\Users\Utilisateur1\Creative Cloud Files
2022-08-09 13:06 - 2022-06-22 15:49 - 000000032 _____ C:\Users\Utilisateur1\AppData\Roaming\.machineId
2022-08-08 18:51 - 2022-03-25 21:27 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-08-08 18:51 - 2021-07-31 00:53 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-08 18:51 - 2019-12-07 16:50 - 000791718 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-08 18:51 - 2019-12-07 16:50 - 000149884 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-05 17:13 - 2021-10-15 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostrunner [GOG.com]
2022-08-04 00:58 - 2021-10-05 12:19 - 000000000 ____D C:\Users\Utilisateur1\AppData\Local\Spotify
2022-08-04 00:57 - 2021-10-05 12:18 - 000000000 ____D C:\Users\Utilisateur1\AppData\Roaming\Spotify
==================== Fichiers à la racine de certains dossiers ========
2022-08-25 14:52 - 2022-08-25 14:52 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_0Q8Pv.exe
2022-08-25 14:52 - 2022-08-25 14:52 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_6vZjT.exe
2022-08-25 14:52 - 2022-08-29 16:05 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_AzZ9P.exe
2022-08-25 14:52 - 2022-08-30 14:49 - 007088640 _____ (Wondershare) C:\ProgramData\hjokjhdrfec.exe_V8izZ.exe
2022-06-22 15:49 - 2022-08-09 13:06 - 000000032 _____ () C:\Users\Utilisateur1\AppData\Roaming\.machineId
2021-11-10 21:14 - 2022-07-21 13:25 - 000000016 _____ () C:\Users\Utilisateur1\AppData\Roaming\obs-virtualcam.txt
2021-11-12 22:57 - 2021-11-13 22:13 - 000042244 _____ () C:\Users\Utilisateur1\AppData\Roaming\VoiceMeeterBananaDefault.xml
2021-11-12 22:32 - 2021-11-12 22:51 - 000007404 _____ () C:\Users\Utilisateur1\AppData\Roaming\VoiceMeeterDefault.xml
2022-01-30 19:52 - 2022-02-27 19:58 - 000006144 _____ () C:\Users\Utilisateur1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2022-07-31 20:17 - 2022-07-31 20:17 - 000000000 _____ () C:\Users\Utilisateur1\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================