Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-11-2023 02
Exécuté par theot (administrateur) sur BABEV2 (ASRock B760 Pro RS) (01-12-2023 11:38:38)
Exécuté depuis C:\Users\theot\Downloads\FRST64.exe
Profils chargés: theot
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2715 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(E:\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) E:\Malwarebytes\Anti-Malware\mbamtray.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <66>
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2310.13.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler64.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\MPService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) E:\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Proton AG -> ProtonVPN) C:\Program Files\Proton\VPN\v3.2.7\ProtonVPN.WireGuardService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1737576 2023-05-08] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe [1618296 2022-10-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé]
HKLM-x32\...\Run: [Genshin Impact_launcher_pcgclid_1_0] => [X]
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [MicrosoftEdgeAutoLaunch_AA78FA1445ACA6BA426004616E7D92D4] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [Discord] => C:\Users\theot\AppData\Local\Discord\Update.exe [1525016 2023-04-26] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37157328 2023-11-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-11-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe [12276872 2023-11-03] (Proton AG -> ProtonVPN)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [f.lux] => C:\Users\theot\AppData\Local\FluxSoftware\Flux\flux.exe [1525880 2023-05-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [Overwolf] => E:\Overwolf\OverwolfLauncher.exe [1785864 2023-11-21] (Overwolf Ltd -> Overwolf Ltd.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65488 2020-03-06] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-12-01] (Google LLC -> Google LLC)
Startup: C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2023-08-27]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {213D3889-A8B0-44CF-9282-755A4C3B0720} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Pas de fichier)
Task: {93EA5D41-7F1B-442F-84E9-A8E02C027BCC} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\Auto Driver Installer\AsrAPPShop.exe (Pas de fichier)
Task: {9825B3F5-8265-4A60-BF52-CD4AF219DB9A} - System32\Tasks\GoogleUpdateTaskMachineCore{9F1B2765-3C36-4A62-B000-8A863EDE6FE8} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-05-26] (Google LLC -> Google LLC)
Task: {F9BF68B9-ACAD-47C0-B092-D4651C322F72} - System32\Tasks\GoogleUpdateTaskMachineUA{DCE9296F-0389-4712-A761-598CEAA21476} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-05-26] (Google LLC -> Google LLC)
Task: {DC1A69C4-08D6-47E5-822D-D8E7CEF18E9B} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [311296 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {6B0821E7-5546-4312-9825-CF6ED6B5CB0C} - System32\Tasks\Microsoft\Windows\Maintenance\InstallWinSAT => Maintenance.vbs (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {189490E9-3B7B-4700-94B7-9AAAA839A033} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {E01EBC65-E38F-4984-B6ED-5067E337CE22} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E3A83389-95A8-4EB5-80E2-60FC6EEA4E63} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC16730E-6DEB-4F3A-8E21-A4ED8F7A80E4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A0C3CA6F-07C0-4E51-9921-35A66303A2BB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B79699CD-6CE5-454F-ACBA-D6DDFF2AD08A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1B48B812-F154-4F5D-9B67-BDC2A089AFFF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1F3FAF18-4435-41E4-8726-0BA75D5AE394} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E60611FD-0570-45C7-9C61-FD620CF4E28E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DCE6D6B6-2EB4-4F05-9188-2853A1692AB6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D339BA9C-80EB-4CF1-B552-0948787B3B89} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {70BF24B9-1C02-4EF8-BC99-F092A75AC409} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3979D457-4C47-4F46-8615-BABDE9092600} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B4B25B6-7B1A-4B72-8E49-173C1EF6A366} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2641DA8D-F1CB-4471-99C4-EADC1675C279} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-11-21] (Overwolf Ltd -> Overwolf LTD)
Task: {C81B2D66-2C9C-4E5C-B8D7-F5B9017F4CE2} - System32\Tasks\update-S-1-5-21-1269307599-815623928-429291329-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO:)
Task: {20B177EF-9A0E-428F-B1B9-7E091CA00B35} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO:)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1269307599-815623928-429291329-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\..\Interfaces\{42bb2c12-ea7b-4c50-9967-0e3377d15184}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{43dd9b9d-d638-4f46-892d-c86b84c1e285}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a1e1df2b-7a5e-44ae-924f-0a601906a6c0}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{eab2262d-9ab1-5975-7d92-334d06f4972b}: [NameServer] 10.2.0.1
Edge:
=======
Edge Profile: C:\Users\theot\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-24]
Edge Extension: (Google Docs hors connexion) - C:\Users\theot\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-05]
Edge Extension: (Edge relevant text changes) - C:\Users\theot\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-24]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-03-05]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default [2023-12-01]
CHR HomePage: Default -> hxxps://www.google.fr/?gws_rd=ssl
CHR StartupUrls: Default -> "hxxps://www.youtube.com/feed/subscriptions","hxxps://twitter.com/i/notifications?lang=fr","hxxps://www.facebook.com/messages/","hxxps://trello.com/b/kw9Kc0J7/mes-projets-en-cours"
CHR Session Restore: Default -> est activé.
CHR Extension: (Just Black) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2023-05-28]
CHR Extension: (BetterTTV) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2023-11-18]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-30]
CHR Extension: (Simple Assistant) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpljccfbkelkodmmbnahgimhombjemll [2023-05-28]
CHR Extension: (Dark Reader) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2023-11-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Artstation Discover) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghkbedmkakkdhfkhchadmkhlflnafocm [2023-05-28]
CHR Extension: (Tabby Cat) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\mefhakmgclhhfbdadeojlkbllmecialg [2023-05-28]
CHR Extension: (SponsorBlock pour YouTube - Supprime les publicités intégrées) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjggcdmjocbbbhaepdhchncahnbgone [2023-11-30]
CHR Extension: (MetaMask) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2023-11-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-26]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2023-11-04]
CHR Profile: C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-01]
CHR Session Restore: Profile 1 -> est activé.
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-29]
CHR Extension: (AdBlocker Ultimate) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2023-11-29]
CHR Profile: C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-11-29]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-11-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-29]
CHR Profile: C:\Users\theot\AppData\Local\Google\Chrome\User Data\System Profile [2023-12-01]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1355776 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [151080 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairService; C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
S3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [351784 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 MBAMService; E:\Malwarebytes\Anti-Malware\mbamservice.exe [9341488 2023-12-01] (Malwarebytes Inc. -> Malwarebytes)
R2 MPService; C:\Program Files (x86)\CoolerMaster\MasterPlus\MPService.exe [198144 2023-05-17] () [Fichier non signé]
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-11-21] (Overwolf Ltd -> Overwolf LTD)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.2.7\ProtonVPNService.exe [471896 2023-11-03] (Proton AG -> ProtonVPN)
R3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.2.7\ProtonVPN.WireGuardService.exe [471384 2023-11-03] (Proton AG -> ProtonVPN)
S2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [133728 2023-10-07] (Skutta, Kristjan -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [47032 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [22968 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz157; C:\WINDOWS\temp\cpuz157\cpuz157_x64.sys [43016 2023-12-01] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
S3 HoYoProtect; C:\WINDOWS\system32\HoYoKProtect.sys [3712576 2023-03-30] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222800 2023-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl3efec7d1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BF3659C0-F89E-4AA0-8A50-2A33AAC5D575}\MpKslDrv.sys [263560 2023-12-01] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterX64; C:\WINDOWS\system32\DRIVERS\mtkbtfilterx.sys [270440 2021-10-19] (MEDIATEK INC. -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1388640 2021-10-19] (MEDIATEK INC. -> MediaTek Inc.)
R1 NemuDrv; C:\Program Files\NemuVbox\LoadedDrivers\NemuDrv.sys [299240 2022-01-12] (NetEase(Hangzhou) Network Co. Ltd. -> NetEase Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.2.7\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WinRing0_1_2_0; C:\Program Files (x86)\CoolerMaster\MasterPlus\WinRing0x64.sys [14544 2023-05-17] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2023-06-09] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2023-05-30] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-01 11:38 - 2023-12-01 11:38 - 000026386 _____ C:\Users\theot\Downloads\FRST.txt
2023-12-01 11:13 - 2023-12-01 11:38 - 000000000 ____D C:\FRST
2023-12-01 11:12 - 2023-12-01 11:13 - 002384384 _____ (Farbar) C:\Users\theot\Downloads\FRST64.exe
2023-12-01 11:12 - 2023-12-01 11:12 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2023-12-01 11:12 - 2023-12-01 11:12 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2023-12-01 11:09 - 2023-12-01 11:09 - 000000000 ____D C:\AdwCleaner
2023-12-01 11:08 - 2023-12-01 11:08 - 008791352 _____ (Malwarebytes) C:\Users\theot\Downloads\adwcleaner_8.4.0.exe
2023-12-01 10:43 - 2023-12-01 11:09 - 000000000 ____D C:\Users\theot\AppData\Local\Malwarebytes
2023-11-30 10:25 - 2023-11-30 10:25 - 000000806 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\etc\BACKUP
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\Users\theot\AppData\Local\mbamtray
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\Users\theot\AppData\Local\mbam
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-11-30 10:24 - 2023-11-30 10:24 - 000000000 ____D C:\Users\theot\Desktop\Malwarebytes PREMIUM 3.7.1.2839-Repack [Win FR]
2023-11-29 19:40 - 2023-11-29 19:40 - 000768677 _____ C:\Users\theot\Downloads\TBCV 2021 (EN).pdf
2023-11-27 11:57 - 2023-11-27 11:57 - 000000000 _____ C:\WINDOWS\system32\setup4.2.6.tmp
2023-11-27 10:03 - 2023-11-27 10:03 - 000011283 _____ C:\Users\theot\Downloads\resultat_6889275.pdf
2023-11-24 14:00 - 2023-11-24 14:00 - 000065864 _____ C:\Users\theot\Downloads\Virtuos Cover Letter.pdf
2023-11-23 14:51 - 2023-11-23 14:51 - 000070251 _____ C:\Users\theot\Downloads\Attestation sur l'honneur.pdf
2023-11-23 14:43 - 2023-11-23 14:43 - 000159064 _____ C:\Users\theot\Downloads\urssaf-justificatif-declaration-2023-09-20231123-14h43.pdf
2023-11-23 12:12 - 2023-11-23 12:12 - 000321852 _____ C:\Users\theot\Downloads\document (4).pdf
2023-11-21 19:20 - 2023-12-01 11:06 - 000001854 _____ C:\Users\theot\Desktop\CurseForge.lnk
2023-11-21 19:20 - 2023-11-21 19:20 - 000004370 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2023-11-21 19:20 - 2023-11-21 19:20 - 000000000 ____D C:\Users\theot\curseforge
2023-11-21 19:20 - 2023-11-21 19:20 - 000000000 ____D C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2023-11-21 19:19 - 2023-11-21 19:20 - 000000000 ____D C:\ProgramData\Overwolf
2023-11-21 19:17 - 2023-12-01 11:06 - 000000000 ____D C:\Users\theot\AppData\Local\Overwolf
2023-11-21 19:17 - 2023-11-21 19:17 - 002128008 _____ (Overwolf Ltd.) C:\Users\theot\Downloads\CurseForge - Installer.exe
2023-11-21 15:10 - 2023-11-21 15:10 - 000009359 _____ C:\Users\theot\Downloads\convocation_6889275.pdf
2023-11-19 16:12 - 2023-11-19 16:12 - 000050924 _____ C:\Users\theot\Downloads\Liste de studios .pdf
2023-11-17 12:09 - 2023-11-17 12:09 - 000000000 ____D C:\Users\theot\AppData\Local\Backup
2023-11-15 20:04 - 2023-11-15 20:04 - 000016240 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-11-15 20:01 - 2023-11-15 20:02 - 000000000 ___HD C:\$WinREAgent
2023-11-15 19:03 - 2023-11-15 19:03 - 000053101 _____ C:\Users\theot\Downloads\Theo Bacoux - Cover letter for Cold Symmetry.pdf
2023-11-15 18:43 - 2023-11-15 18:43 - 000050165 _____ C:\Users\theot\Downloads\facture+rpg.pdf
2023-11-14 16:49 - 2023-11-14 16:49 - 000011283 _____ C:\Users\theot\Downloads\resultat_2440.pdf
2023-11-13 16:15 - 2023-11-13 16:15 - 007734488 _____ C:\Users\theot\Downloads\Ten Pager (GDD) - Samodeus.pdf
2023-11-13 16:15 - 2023-11-13 16:15 - 001242909 _____ C:\Users\theot\Downloads\Exemples de schémas.pdf
2023-11-13 10:08 - 2023-11-13 10:08 - 000158721 _____ C:\Users\theot\Downloads\Avis_de_situation_89539686900011_13_11_2023 10_08_26.pdf
2023-11-10 12:24 - 2023-11-10 12:24 - 000215230 _____ C:\Users\theot\Downloads\document (3).pdf
2023-11-10 12:21 - 2023-11-10 12:21 - 000013875 _____ C:\Users\theot\Downloads\Avis de situation au répertoire SIREN.pdf
2023-11-08 16:31 - 2023-11-08 16:31 - 065591148 _____ C:\Users\theot\Downloads\Frank's_Inkers.tpl
2023-11-07 10:06 - 2023-11-07 10:12 - 000000000 ____D C:\Users\theot\Desktop\SEAMLESS COBBLE TEXTURES
2023-11-07 10:06 - 2023-11-07 10:08 - 000000000 ____D C:\Users\theot\Desktop\GRUNGE WALL TEXTURES
2023-11-07 10:06 - 2023-11-07 10:06 - 000000000 ____D C:\Users\theot\Desktop\LEAFY BUSHES CUTOUT
2023-11-06 15:49 - 2023-11-06 15:49 - 000000234 _____ C:\Users\theot\Desktop\Anno 1800.url
2023-11-05 21:52 - 2023-11-05 21:52 - 000000000 ____D C:\Users\theot\AppData\Local\mod.io
2023-11-05 21:52 - 2023-11-05 21:52 - 000000000 ____D C:\Users\Public\mod.io
2023-11-05 18:23 - 2023-11-15 20:55 - 000000000 ____D C:\Users\theot\Documents\Anno 1800
2023-11-04 21:34 - 2023-11-04 21:34 - 000000000 ____D C:\ProgramData\Ubisoft
2023-11-04 21:29 - 2023-11-18 14:04 - 000000000 ____D C:\Users\theot\AppData\Local\Ubisoft Game Launcher
2023-11-04 21:29 - 2023-11-04 21:35 - 000000000 ____D C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2023-11-04 21:29 - 2023-11-04 21:29 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2023-11-04 19:47 - 2023-11-04 19:47 - 000000000 ____D C:\Users\theot\AppData\Local\UXP
2023-11-04 19:46 - 2023-11-04 19:46 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2023-11-01 09:53 - 2023-11-01 09:53 - 000159062 _____ C:\Users\theot\Downloads\urssaf-justificatif-declaration-2023-10-20231101-09h53.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-01 11:36 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-01 11:23 - 2023-05-26 20:01 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-01 11:23 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-01 11:20 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-01 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-01 11:12 - 2023-08-23 14:12 - 001803994 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-01 11:12 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-12-01 11:10 - 2023-05-26 19:55 - 000000000 ____D C:\ProgramData\NVIDIA
2023-12-01 11:09 - 2023-05-29 09:25 - 000000000 ____D C:\Program Files (x86)\Steam
2023-12-01 11:09 - 2023-05-28 16:12 - 000000000 ____D C:\Users\theot\AppData\Roaming\discord
2023-12-01 11:08 - 2023-05-26 19:56 - 000000000 ____D C:\Users\theot\AppData\Local\D3DSCache
2023-12-01 11:06 - 2023-08-23 10:19 - 000000000 ____D C:\Users\theot\AppData\Roaming\Microsoft\Windows
2023-12-01 11:06 - 2023-05-28 16:12 - 000000000 ____D C:\Users\theot\AppData\Local\Discord
2023-12-01 11:05 - 2023-08-23 12:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-01 11:05 - 2023-05-26 19:31 - 000012288 ___SH C:\DumpStack.log.tmp
2023-12-01 11:05 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-01 10:57 - 2023-08-23 12:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-01 10:47 - 2023-05-29 09:49 - 000000000 ____D C:\Program Files\Epic Games
2023-12-01 00:18 - 2023-08-23 12:33 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{DCE9296F-0389-4712-A761-598CEAA21476}
2023-12-01 00:18 - 2023-08-23 12:33 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{9F1B2765-3C36-4A62-B000-8A863EDE6FE8}
2023-11-30 15:49 - 2023-07-18 21:29 - 000000987 _____ C:\Users\theot\mumu_boot.txt
2023-11-30 15:49 - 2023-07-18 21:05 - 000000000 ____D C:\Users\theot\.NEMU
2023-11-30 15:49 - 2023-07-18 21:05 - 000000000 ____D C:\Users\Public\Documents\MuMu Files
2023-11-30 15:23 - 2023-05-28 15:52 - 000000000 ____D C:\Users\theot\AppData\Local\CrashDumps
2023-11-30 10:25 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-11-30 08:12 - 2023-05-28 16:24 - 000000000 ____D C:\Users\theot\AppData\Roaming\Corsair
2023-11-30 08:12 - 2023-05-26 19:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-29 22:26 - 2023-06-01 19:37 - 000000000 ____D C:\Users\theot\AppData\Roaming\UnityHub
2023-11-28 17:37 - 2023-07-12 12:52 - 000000000 ____D C:\Users\theot\Herbier project
2023-11-28 17:37 - 2023-06-01 20:29 - 000000000 ____D C:\Users\theot\AppData\LocalLow\Unity
2023-11-27 11:59 - 2023-08-27 16:29 - 000000000 ____D C:\Users\theot\Desktop\Text
2023-11-27 11:59 - 2023-07-18 21:09 - 000000000 ____D C:\Users\theot\Desktop\Img
2023-11-27 11:48 - 2023-06-04 17:43 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-11-27 11:48 - 2023-06-04 17:43 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-11-23 11:33 - 2023-05-26 19:52 - 000000000 ___SD C:\Users\theot\AppData\Roaming\Microsoft\Protect
2023-11-21 19:41 - 2023-08-27 13:55 - 000000000 ____D C:\Users\theot\AppData\Roaming\.minecraft
2023-11-21 19:20 - 2023-08-23 10:19 - 000000000 ____D C:\Users\theot
2023-11-20 21:15 - 2023-08-23 12:33 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1269307599-815623928-429291329-1001
2023-11-20 21:15 - 2023-08-23 12:33 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1269307599-815623928-429291329-1001
2023-11-20 21:15 - 2023-05-26 19:57 - 000002417 _____ C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-18 16:52 - 2023-06-04 17:28 - 000000000 ____D C:\Users\theot\AppData\Roaming\qBittorrent
2023-11-18 10:18 - 2023-05-29 09:26 - 000000000 ____D C:\Users\theot\AppData\Local\Steam
2023-11-17 17:58 - 2023-05-29 09:31 - 000000000 ____D C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-11-17 11:06 - 2023-05-26 19:52 - 000000000 ___SD C:\Users\theot\AppData\Roaming\Microsoft\Credentials
2023-11-17 10:29 - 2023-06-01 20:31 - 000000000 ____D C:\Users\theot\AppData\LocalLow\DefaultCompany
2023-11-16 11:12 - 2023-09-14 08:55 - 000263784 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_3.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 002758248 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000210536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000095848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-11-16 11:12 - 2023-08-27 13:50 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-11-15 20:39 - 2023-05-26 19:56 - 000000000 ____D C:\Users\theot\AppData\Local\Packages
2023-11-15 20:39 - 2023-05-26 19:32 - 000000000 ____D C:\ProgramData\Packages
2023-11-15 20:39 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-11-15 20:28 - 2023-05-29 09:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-15 20:26 - 2023-05-29 09:15 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-15 20:23 - 2023-08-23 12:31 - 000318528 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-15 20:22 - 2023-10-13 03:25 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-11-15 20:22 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-11-15 20:22 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\fr
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\id-ID
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-15 20:22 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2023-11-15 20:08 - 2022-05-07 11:31 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-15 20:08 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-15 20:08 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-15 20:08 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-15 20:05 - 2023-08-23 14:05 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-14 16:10 - 2023-05-29 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton
2023-11-10 11:36 - 2023-05-31 14:36 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-07 16:58 - 2023-07-02 12:05 - 000000000 ____D C:\Users\theot\Desktop\Jeux
2023-11-07 09:09 - 2023-05-26 19:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-04 19:47 - 2023-06-04 17:43 - 000000000 ____D C:\Users\theot\AppData\Local\Adobe
2023-11-04 19:47 - 2023-05-26 19:56 - 000000000 ____D C:\Users\theot\AppData\Roaming\Adobe
2023-11-04 19:46 - 2023-06-12 15:29 - 000000000 ____D C:\Users\theot\Documents\Adobe
2023-11-04 19:46 - 2023-06-04 17:43 - 000000000 ____D C:\ProgramData\Adobe
2023-11-04 19:46 - 2023-06-04 17:43 - 000000000 ____D C:\Program Files\Adobe
==================== Fichiers à la racine de certains dossiers ========
2023-06-16 16:58 - 2023-06-20 16:22 - 000000117 _____ () C:\Users\theot\AppData\Roaming\D2Info0
2023-06-16 16:58 - 2023-06-16 17:04 - 000000008 _____ () C:\Users\theot\AppData\Roaming\DofusAppId0_1
2023-06-20 16:22 - 2023-06-20 16:55 - 000000008 _____ () C:\Users\theot\AppData\Roaming\DofusAppId0_2
2023-10-28 15:54 - 2023-10-28 15:54 - 000000507 _____ () C:\Users\theot\AppData\Roaming\PureRef.ini
2023-07-28 16:16 - 2023-10-26 10:36 - 000000615 _____ () C:\Users\theot\AppData\Local\oobelibMkey.log
2023-05-30 19:14 - 2023-05-30 19:14 - 000000003 _____ () C:\Users\theot\AppData\Local\updater.log
2023-05-30 19:14 - 2023-05-30 19:14 - 000000424 _____ () C:\Users\theot\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par theot (administrateur) sur BABEV2 (ASRock B760 Pro RS) (01-12-2023 11:38:38)
Exécuté depuis C:\Users\theot\Downloads\FRST64.exe
Profils chargés: theot
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2715 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(E:\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) E:\Malwarebytes\Anti-Malware\mbamtray.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <66>
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2310.13.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler64.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\MPService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) E:\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Proton AG -> ProtonVPN) C:\Program Files\Proton\VPN\v3.2.7\ProtonVPN.WireGuardService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1737576 2023-05-08] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe [1618296 2022-10-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé]
HKLM-x32\...\Run: [Genshin Impact_launcher_pcgclid_1_0] => [X]
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [MicrosoftEdgeAutoLaunch_AA78FA1445ACA6BA426004616E7D92D4] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [Discord] => C:\Users\theot\AppData\Local\Discord\Update.exe [1525016 2023-04-26] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37157328 2023-11-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-11-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe [12276872 2023-11-03] (Proton AG -> ProtonVPN)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [f.lux] => C:\Users\theot\AppData\Local\FluxSoftware\Flux\flux.exe [1525880 2023-05-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-1269307599-815623928-429291329-1001\...\Run: [Overwolf] => E:\Overwolf\OverwolfLauncher.exe [1785864 2023-11-21] (Overwolf Ltd -> Overwolf Ltd.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65488 2020-03-06] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-12-01] (Google LLC -> Google LLC)
Startup: C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2023-08-27]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {213D3889-A8B0-44CF-9282-755A4C3B0720} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Pas de fichier)
Task: {93EA5D41-7F1B-442F-84E9-A8E02C027BCC} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\Auto Driver Installer\AsrAPPShop.exe (Pas de fichier)
Task: {9825B3F5-8265-4A60-BF52-CD4AF219DB9A} - System32\Tasks\GoogleUpdateTaskMachineCore{9F1B2765-3C36-4A62-B000-8A863EDE6FE8} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-05-26] (Google LLC -> Google LLC)
Task: {F9BF68B9-ACAD-47C0-B092-D4651C322F72} - System32\Tasks\GoogleUpdateTaskMachineUA{DCE9296F-0389-4712-A761-598CEAA21476} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-05-26] (Google LLC -> Google LLC)
Task: {DC1A69C4-08D6-47E5-822D-D8E7CEF18E9B} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [311296 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {6B0821E7-5546-4312-9825-CF6ED6B5CB0C} - System32\Tasks\Microsoft\Windows\Maintenance\InstallWinSAT => Maintenance.vbs (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {189490E9-3B7B-4700-94B7-9AAAA839A033} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {E01EBC65-E38F-4984-B6ED-5067E337CE22} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E3A83389-95A8-4EB5-80E2-60FC6EEA4E63} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC16730E-6DEB-4F3A-8E21-A4ED8F7A80E4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A0C3CA6F-07C0-4E51-9921-35A66303A2BB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B79699CD-6CE5-454F-ACBA-D6DDFF2AD08A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1B48B812-F154-4F5D-9B67-BDC2A089AFFF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1F3FAF18-4435-41E4-8726-0BA75D5AE394} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E60611FD-0570-45C7-9C61-FD620CF4E28E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DCE6D6B6-2EB4-4F05-9188-2853A1692AB6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D339BA9C-80EB-4CF1-B552-0948787B3B89} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {70BF24B9-1C02-4EF8-BC99-F092A75AC409} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3979D457-4C47-4F46-8615-BABDE9092600} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B4B25B6-7B1A-4B72-8E49-173C1EF6A366} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2641DA8D-F1CB-4471-99C4-EADC1675C279} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-11-21] (Overwolf Ltd -> Overwolf LTD)
Task: {C81B2D66-2C9C-4E5C-B8D7-F5B9017F4CE2} - System32\Tasks\update-S-1-5-21-1269307599-815623928-429291329-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO:
Task: {20B177EF-9A0E-428F-B1B9-7E091CA00B35} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO:
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1269307599-815623928-429291329-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\..\Interfaces\{42bb2c12-ea7b-4c50-9967-0e3377d15184}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{43dd9b9d-d638-4f46-892d-c86b84c1e285}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a1e1df2b-7a5e-44ae-924f-0a601906a6c0}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{eab2262d-9ab1-5975-7d92-334d06f4972b}: [NameServer] 10.2.0.1
Edge:
=======
Edge Profile: C:\Users\theot\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-24]
Edge Extension: (Google Docs hors connexion) - C:\Users\theot\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-05]
Edge Extension: (Edge relevant text changes) - C:\Users\theot\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-24]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-03-05]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default [2023-12-01]
CHR HomePage: Default -> hxxps://www.google.fr/?gws_rd=ssl
CHR StartupUrls: Default -> "hxxps://www.youtube.com/feed/subscriptions","hxxps://twitter.com/i/notifications?lang=fr","hxxps://www.facebook.com/messages/","hxxps://trello.com/b/kw9Kc0J7/mes-projets-en-cours"
CHR Session Restore: Default -> est activé.
CHR Extension: (Just Black) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2023-05-28]
CHR Extension: (BetterTTV) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2023-11-18]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-30]
CHR Extension: (Simple Assistant) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpljccfbkelkodmmbnahgimhombjemll [2023-05-28]
CHR Extension: (Dark Reader) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2023-11-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Artstation Discover) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghkbedmkakkdhfkhchadmkhlflnafocm [2023-05-28]
CHR Extension: (Tabby Cat) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\mefhakmgclhhfbdadeojlkbllmecialg [2023-05-28]
CHR Extension: (SponsorBlock pour YouTube - Supprime les publicités intégrées) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjggcdmjocbbbhaepdhchncahnbgone [2023-11-30]
CHR Extension: (MetaMask) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2023-11-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-26]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2023-11-04]
CHR Profile: C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-01]
CHR Session Restore: Profile 1 -> est activé.
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-29]
CHR Extension: (AdBlocker Ultimate) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2023-11-29]
CHR Profile: C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-11-29]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-11-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theot\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-29]
CHR Profile: C:\Users\theot\AppData\Local\Google\Chrome\User Data\System Profile [2023-12-01]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1355776 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [151080 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairService; C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
S3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [351784 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 MBAMService; E:\Malwarebytes\Anti-Malware\mbamservice.exe [9341488 2023-12-01] (Malwarebytes Inc. -> Malwarebytes)
R2 MPService; C:\Program Files (x86)\CoolerMaster\MasterPlus\MPService.exe [198144 2023-05-17] () [Fichier non signé]
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-11-21] (Overwolf Ltd -> Overwolf LTD)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.2.7\ProtonVPNService.exe [471896 2023-11-03] (Proton AG -> ProtonVPN)
R3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.2.7\ProtonVPN.WireGuardService.exe [471384 2023-11-03] (Proton AG -> ProtonVPN)
S2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [133728 2023-10-07] (Skutta, Kristjan -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [47032 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [22968 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz157; C:\WINDOWS\temp\cpuz157\cpuz157_x64.sys [43016 2023-12-01] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
S3 HoYoProtect; C:\WINDOWS\system32\HoYoKProtect.sys [3712576 2023-03-30] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222800 2023-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl3efec7d1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BF3659C0-F89E-4AA0-8A50-2A33AAC5D575}\MpKslDrv.sys [263560 2023-12-01] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterX64; C:\WINDOWS\system32\DRIVERS\mtkbtfilterx.sys [270440 2021-10-19] (MEDIATEK INC. -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1388640 2021-10-19] (MEDIATEK INC. -> MediaTek Inc.)
R1 NemuDrv; C:\Program Files\NemuVbox\LoadedDrivers\NemuDrv.sys [299240 2022-01-12] (NetEase(Hangzhou) Network Co. Ltd. -> NetEase Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.2.7\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WinRing0_1_2_0; C:\Program Files (x86)\CoolerMaster\MasterPlus\WinRing0x64.sys [14544 2023-05-17] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2023-06-09] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2023-05-30] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-01 11:38 - 2023-12-01 11:38 - 000026386 _____ C:\Users\theot\Downloads\FRST.txt
2023-12-01 11:13 - 2023-12-01 11:38 - 000000000 ____D C:\FRST
2023-12-01 11:12 - 2023-12-01 11:13 - 002384384 _____ (Farbar) C:\Users\theot\Downloads\FRST64.exe
2023-12-01 11:12 - 2023-12-01 11:12 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2023-12-01 11:12 - 2023-12-01 11:12 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2023-12-01 11:09 - 2023-12-01 11:09 - 000000000 ____D C:\AdwCleaner
2023-12-01 11:08 - 2023-12-01 11:08 - 008791352 _____ (Malwarebytes) C:\Users\theot\Downloads\adwcleaner_8.4.0.exe
2023-12-01 10:43 - 2023-12-01 11:09 - 000000000 ____D C:\Users\theot\AppData\Local\Malwarebytes
2023-11-30 10:25 - 2023-11-30 10:25 - 000000806 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\etc\BACKUP
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\Users\theot\AppData\Local\mbamtray
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\Users\theot\AppData\Local\mbam
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2023-11-30 10:25 - 2023-11-30 10:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-11-30 10:24 - 2023-11-30 10:24 - 000000000 ____D C:\Users\theot\Desktop\Malwarebytes PREMIUM 3.7.1.2839-Repack [Win FR]
2023-11-29 19:40 - 2023-11-29 19:40 - 000768677 _____ C:\Users\theot\Downloads\TBCV 2021 (EN).pdf
2023-11-27 11:57 - 2023-11-27 11:57 - 000000000 _____ C:\WINDOWS\system32\setup4.2.6.tmp
2023-11-27 10:03 - 2023-11-27 10:03 - 000011283 _____ C:\Users\theot\Downloads\resultat_6889275.pdf
2023-11-24 14:00 - 2023-11-24 14:00 - 000065864 _____ C:\Users\theot\Downloads\Virtuos Cover Letter.pdf
2023-11-23 14:51 - 2023-11-23 14:51 - 000070251 _____ C:\Users\theot\Downloads\Attestation sur l'honneur.pdf
2023-11-23 14:43 - 2023-11-23 14:43 - 000159064 _____ C:\Users\theot\Downloads\urssaf-justificatif-declaration-2023-09-20231123-14h43.pdf
2023-11-23 12:12 - 2023-11-23 12:12 - 000321852 _____ C:\Users\theot\Downloads\document (4).pdf
2023-11-21 19:20 - 2023-12-01 11:06 - 000001854 _____ C:\Users\theot\Desktop\CurseForge.lnk
2023-11-21 19:20 - 2023-11-21 19:20 - 000004370 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2023-11-21 19:20 - 2023-11-21 19:20 - 000000000 ____D C:\Users\theot\curseforge
2023-11-21 19:20 - 2023-11-21 19:20 - 000000000 ____D C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2023-11-21 19:19 - 2023-11-21 19:20 - 000000000 ____D C:\ProgramData\Overwolf
2023-11-21 19:17 - 2023-12-01 11:06 - 000000000 ____D C:\Users\theot\AppData\Local\Overwolf
2023-11-21 19:17 - 2023-11-21 19:17 - 002128008 _____ (Overwolf Ltd.) C:\Users\theot\Downloads\CurseForge - Installer.exe
2023-11-21 15:10 - 2023-11-21 15:10 - 000009359 _____ C:\Users\theot\Downloads\convocation_6889275.pdf
2023-11-19 16:12 - 2023-11-19 16:12 - 000050924 _____ C:\Users\theot\Downloads\Liste de studios .pdf
2023-11-17 12:09 - 2023-11-17 12:09 - 000000000 ____D C:\Users\theot\AppData\Local\Backup
2023-11-15 20:04 - 2023-11-15 20:04 - 000016240 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-11-15 20:01 - 2023-11-15 20:02 - 000000000 ___HD C:\$WinREAgent
2023-11-15 19:03 - 2023-11-15 19:03 - 000053101 _____ C:\Users\theot\Downloads\Theo Bacoux - Cover letter for Cold Symmetry.pdf
2023-11-15 18:43 - 2023-11-15 18:43 - 000050165 _____ C:\Users\theot\Downloads\facture+rpg.pdf
2023-11-14 16:49 - 2023-11-14 16:49 - 000011283 _____ C:\Users\theot\Downloads\resultat_2440.pdf
2023-11-13 16:15 - 2023-11-13 16:15 - 007734488 _____ C:\Users\theot\Downloads\Ten Pager (GDD) - Samodeus.pdf
2023-11-13 16:15 - 2023-11-13 16:15 - 001242909 _____ C:\Users\theot\Downloads\Exemples de schémas.pdf
2023-11-13 10:08 - 2023-11-13 10:08 - 000158721 _____ C:\Users\theot\Downloads\Avis_de_situation_89539686900011_13_11_2023 10_08_26.pdf
2023-11-10 12:24 - 2023-11-10 12:24 - 000215230 _____ C:\Users\theot\Downloads\document (3).pdf
2023-11-10 12:21 - 2023-11-10 12:21 - 000013875 _____ C:\Users\theot\Downloads\Avis de situation au répertoire SIREN.pdf
2023-11-08 16:31 - 2023-11-08 16:31 - 065591148 _____ C:\Users\theot\Downloads\Frank's_Inkers.tpl
2023-11-07 10:06 - 2023-11-07 10:12 - 000000000 ____D C:\Users\theot\Desktop\SEAMLESS COBBLE TEXTURES
2023-11-07 10:06 - 2023-11-07 10:08 - 000000000 ____D C:\Users\theot\Desktop\GRUNGE WALL TEXTURES
2023-11-07 10:06 - 2023-11-07 10:06 - 000000000 ____D C:\Users\theot\Desktop\LEAFY BUSHES CUTOUT
2023-11-06 15:49 - 2023-11-06 15:49 - 000000234 _____ C:\Users\theot\Desktop\Anno 1800.url
2023-11-05 21:52 - 2023-11-05 21:52 - 000000000 ____D C:\Users\theot\AppData\Local\mod.io
2023-11-05 21:52 - 2023-11-05 21:52 - 000000000 ____D C:\Users\Public\mod.io
2023-11-05 18:23 - 2023-11-15 20:55 - 000000000 ____D C:\Users\theot\Documents\Anno 1800
2023-11-04 21:34 - 2023-11-04 21:34 - 000000000 ____D C:\ProgramData\Ubisoft
2023-11-04 21:29 - 2023-11-18 14:04 - 000000000 ____D C:\Users\theot\AppData\Local\Ubisoft Game Launcher
2023-11-04 21:29 - 2023-11-04 21:35 - 000000000 ____D C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2023-11-04 21:29 - 2023-11-04 21:29 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2023-11-04 19:47 - 2023-11-04 19:47 - 000000000 ____D C:\Users\theot\AppData\Local\UXP
2023-11-04 19:46 - 2023-11-04 19:46 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2023-11-01 09:53 - 2023-11-01 09:53 - 000159062 _____ C:\Users\theot\Downloads\urssaf-justificatif-declaration-2023-10-20231101-09h53.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-01 11:36 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-01 11:23 - 2023-05-26 20:01 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-01 11:23 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-01 11:20 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-01 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-01 11:12 - 2023-08-23 14:12 - 001803994 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-01 11:12 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-12-01 11:10 - 2023-05-26 19:55 - 000000000 ____D C:\ProgramData\NVIDIA
2023-12-01 11:09 - 2023-05-29 09:25 - 000000000 ____D C:\Program Files (x86)\Steam
2023-12-01 11:09 - 2023-05-28 16:12 - 000000000 ____D C:\Users\theot\AppData\Roaming\discord
2023-12-01 11:08 - 2023-05-26 19:56 - 000000000 ____D C:\Users\theot\AppData\Local\D3DSCache
2023-12-01 11:06 - 2023-08-23 10:19 - 000000000 ____D C:\Users\theot\AppData\Roaming\Microsoft\Windows
2023-12-01 11:06 - 2023-05-28 16:12 - 000000000 ____D C:\Users\theot\AppData\Local\Discord
2023-12-01 11:05 - 2023-08-23 12:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-01 11:05 - 2023-05-26 19:31 - 000012288 ___SH C:\DumpStack.log.tmp
2023-12-01 11:05 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-01 10:57 - 2023-08-23 12:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-01 10:47 - 2023-05-29 09:49 - 000000000 ____D C:\Program Files\Epic Games
2023-12-01 00:18 - 2023-08-23 12:33 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{DCE9296F-0389-4712-A761-598CEAA21476}
2023-12-01 00:18 - 2023-08-23 12:33 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{9F1B2765-3C36-4A62-B000-8A863EDE6FE8}
2023-11-30 15:49 - 2023-07-18 21:29 - 000000987 _____ C:\Users\theot\mumu_boot.txt
2023-11-30 15:49 - 2023-07-18 21:05 - 000000000 ____D C:\Users\theot\.NEMU
2023-11-30 15:49 - 2023-07-18 21:05 - 000000000 ____D C:\Users\Public\Documents\MuMu Files
2023-11-30 15:23 - 2023-05-28 15:52 - 000000000 ____D C:\Users\theot\AppData\Local\CrashDumps
2023-11-30 10:25 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-11-30 08:12 - 2023-05-28 16:24 - 000000000 ____D C:\Users\theot\AppData\Roaming\Corsair
2023-11-30 08:12 - 2023-05-26 19:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-29 22:26 - 2023-06-01 19:37 - 000000000 ____D C:\Users\theot\AppData\Roaming\UnityHub
2023-11-28 17:37 - 2023-07-12 12:52 - 000000000 ____D C:\Users\theot\Herbier project
2023-11-28 17:37 - 2023-06-01 20:29 - 000000000 ____D C:\Users\theot\AppData\LocalLow\Unity
2023-11-27 11:59 - 2023-08-27 16:29 - 000000000 ____D C:\Users\theot\Desktop\Text
2023-11-27 11:59 - 2023-07-18 21:09 - 000000000 ____D C:\Users\theot\Desktop\Img
2023-11-27 11:48 - 2023-06-04 17:43 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-11-27 11:48 - 2023-06-04 17:43 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-11-23 11:33 - 2023-05-26 19:52 - 000000000 ___SD C:\Users\theot\AppData\Roaming\Microsoft\Protect
2023-11-21 19:41 - 2023-08-27 13:55 - 000000000 ____D C:\Users\theot\AppData\Roaming\.minecraft
2023-11-21 19:20 - 2023-08-23 10:19 - 000000000 ____D C:\Users\theot
2023-11-20 21:15 - 2023-08-23 12:33 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1269307599-815623928-429291329-1001
2023-11-20 21:15 - 2023-08-23 12:33 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1269307599-815623928-429291329-1001
2023-11-20 21:15 - 2023-05-26 19:57 - 000002417 _____ C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-18 16:52 - 2023-06-04 17:28 - 000000000 ____D C:\Users\theot\AppData\Roaming\qBittorrent
2023-11-18 10:18 - 2023-05-29 09:26 - 000000000 ____D C:\Users\theot\AppData\Local\Steam
2023-11-17 17:58 - 2023-05-29 09:31 - 000000000 ____D C:\Users\theot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-11-17 11:06 - 2023-05-26 19:52 - 000000000 ___SD C:\Users\theot\AppData\Roaming\Microsoft\Credentials
2023-11-17 10:29 - 2023-06-01 20:31 - 000000000 ____D C:\Users\theot\AppData\LocalLow\DefaultCompany
2023-11-16 11:12 - 2023-09-14 08:55 - 000263784 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_3.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 002758248 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000210536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-11-16 11:12 - 2023-08-27 13:50 - 000095848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-11-16 11:12 - 2023-08-27 13:50 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-11-15 20:39 - 2023-05-26 19:56 - 000000000 ____D C:\Users\theot\AppData\Local\Packages
2023-11-15 20:39 - 2023-05-26 19:32 - 000000000 ____D C:\ProgramData\Packages
2023-11-15 20:39 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-11-15 20:28 - 2023-05-29 09:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-15 20:26 - 2023-05-29 09:15 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-15 20:23 - 2023-08-23 12:31 - 000318528 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-15 20:22 - 2023-10-13 03:25 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-11-15 20:22 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-11-15 20:22 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\fr
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\id-ID
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-15 20:22 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-15 20:22 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2023-11-15 20:08 - 2022-05-07 11:31 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-15 20:08 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-15 20:08 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-15 20:08 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-15 20:05 - 2023-08-23 14:05 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-14 16:10 - 2023-05-29 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton
2023-11-10 11:36 - 2023-05-31 14:36 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-07 16:58 - 2023-07-02 12:05 - 000000000 ____D C:\Users\theot\Desktop\Jeux
2023-11-07 09:09 - 2023-05-26 19:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-04 19:47 - 2023-06-04 17:43 - 000000000 ____D C:\Users\theot\AppData\Local\Adobe
2023-11-04 19:47 - 2023-05-26 19:56 - 000000000 ____D C:\Users\theot\AppData\Roaming\Adobe
2023-11-04 19:46 - 2023-06-12 15:29 - 000000000 ____D C:\Users\theot\Documents\Adobe
2023-11-04 19:46 - 2023-06-04 17:43 - 000000000 ____D C:\ProgramData\Adobe
2023-11-04 19:46 - 2023-06-04 17:43 - 000000000 ____D C:\Program Files\Adobe
==================== Fichiers à la racine de certains dossiers ========
2023-06-16 16:58 - 2023-06-20 16:22 - 000000117 _____ () C:\Users\theot\AppData\Roaming\D2Info0
2023-06-16 16:58 - 2023-06-16 17:04 - 000000008 _____ () C:\Users\theot\AppData\Roaming\DofusAppId0_1
2023-06-20 16:22 - 2023-06-20 16:55 - 000000008 _____ () C:\Users\theot\AppData\Roaming\DofusAppId0_2
2023-10-28 15:54 - 2023-10-28 15:54 - 000000507 _____ () C:\Users\theot\AppData\Roaming\PureRef.ini
2023-07-28 16:16 - 2023-10-26 10:36 - 000000615 _____ () C:\Users\theot\AppData\Local\oobelibMkey.log
2023-05-30 19:14 - 2023-05-30 19:14 - 000000003 _____ () C:\Users\theot\AppData\Local\updater.log
2023-05-30 19:14 - 2023-05-30 19:14 - 000000424 _____ () C:\Users\theot\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================