Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01.07.2024
Exécuté par quent (administrateur) sur HAPPY (Micro-Star International Co., Ltd. MS-7D18) (06-07-2024 17:48:09)
Exécuté depuis C:\Users\quent\Downloads\FRST64.exe
Profils chargés: quent & OVRLibraryService
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3810 (X64) Langue: Français (France)
Navigateur par défaut non détecté(e)!
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\winrtutil32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.87\msedgewebview2.exe <6>
(C:\Riot Games\Riot Client\RiotClientServices.exe ->) () [Fichier non signé] C:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(C:\Windows\SysWOW64\wallpaperservice32.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(Discord Inc. -> Discord Inc.) C:\Users\quent\AppData\Local\Discord\app-1.0.9152\Discord.exe <6>
(explorer.exe ->) (MUSIC Tribe Brands DE GmbH -> ) C:\Program Files\TC-Helicon\GoXLR_Audio_Driver\x64\GoXLRAudioCplApp.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\Riot Client\RiotClientServices.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(explorer.exe ->) (T.C. Electronic A/S (MUSIC Tribe Brands DK A/S) -> ) C:\Program Files (x86)\TC-Helicon\GOXLR\GoXLR App.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <37>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_677da8a9230cea15\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe <2>
(services.exe ->) (Skutta Software GmbH -> ) C:\Windows\SysWOW64\wallpaperservice32.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24052.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.30.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe [1945544 2024-02-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [15920976 2024-06-25] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3022640 2023-11-28] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore: [DisableConfig] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\MRT: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [enablesmartscreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-06-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37550568 2024-06-21] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [15850496 2023-01-23] () [Fichier non signé]
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [MicrosoftEdgeAutoLaunch_420FD62473182A13ABDE718DFEB14A56] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70989920 2024-06-28] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [Discord] => C:\Users\quent\AppData\Local\Discord\Update.exe [1525016 2023-07-31] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [AF_uuid_2426960] => c6d707a8-a106-4061-9558-122e5e8c9e62****„ P*@Ðj*à«******Q‚Ùm*#**i*e*d*o (Pas de fichier)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [AF_counter_2426960] => 18* (Pas de fichier)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [] => [X]
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\WPXSCR~1.SCR [243136 2024-06-06] (Skutta Software GmbH -> )
HKU\S-1-5-80-3238277391-1891473654-1195688043-4149050645-2494734967\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
Startup: C:\Users\quent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CrystalDiskInfo8.lnk [2022-12-12]
ShortcutTarget: CrystalDiskInfo8.lnk -> C:\Users\quent\AppData\Roaming\crystaldiskinfo\taskhosts.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoXLR App.lnk [2024-06-13]
ShortcutTarget: GoXLR App.lnk -> C:\Program Files (x86)\TC-Helicon\GOXLR\GoXLR App.exe (T.C. Electronic A/S (MUSIC Tribe Brands DK A/S) -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoXLR Control Panel Autostart.lnk [2023-12-21]
ShortcutTarget: GoXLR Control Panel Autostart.lnk -> C:\Program Files\TC-Helicon\GoXLR_Audio_Driver\x64\GoXLRAudioCplApp.exe (MUSIC Tribe Brands DE GmbH -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {8AAA40FF-19DB-41C5-8F6E-34D92756AFD9} - System32\Tasks\ar => C:\WINDOWS\system32\wscript.exe [200704 2024-06-01] (Microsoft Windows -> Microsoft Corporation) -> "%appdata%\obs-studio\bin\64bit\.vbs" "%appdata%\obs-studio\bin\64bit\.cmd"
Task: {2F86B3D5-24B3-4A94-ACDC-D124B629F546} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {DC689004-21D6-42A6-983F-B7C7C87288D6} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7D238926-E199-4748-BD8C-27C48F8A83F8} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "eb99c384-fba8-481c-8518-80112a82b324" --version "6.25.11131" --silent
Task: {6FF95DED-FD44-4BA8-8449-F11DE1A2B222} - System32\Tasks\CCleanerSkipUAC - quent => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {0D08943B-5BC7-439A-A330-8D8398253D9F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6425.0{D0E2F931-721B-4FA4-AF9A-BC66FE709246} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
Task: {F6BE7875-C4FF-4C38-8851-A38B895C109C} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\WINDOWS\system32\rundll32.exe [73728 2024-04-24] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {3D4AF69D-85A2-4E36-A8F5-BA7C330EF201} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5DE302F3-A951-4CEF-8F92-40D636833CF1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F7ECF4A-D941-47E8-B2D8-6EAA73EEEE52} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BBEF5676-3B97-4036-915C-0C4344C441B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BB3DDAD9-4E21-42B5-84C2-12E58059D6AF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {92CA1774-90CF-4FA7-BE08-A6C4061A8922} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4FE84290-8773-45BA-B39B-38FBCC165DC4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {3629B314-29C3-4CC3-899A-94DCF3FA3CCF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D0F0287A-17EC-442A-987A-E7C6A2CD3D30} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {41C8DA0F-9CE0-47AB-BD2A-5D51808BFD4D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA11ECED-B9F7-4033-9DFE-0CBB7A4F8053} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2350046A-21FB-4030-9B56-977AE9AA4312} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23A70EAF-BE63-48D9-B686-B6580E430069} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0812736F-B1EB-4ED6-89F9-D02DB273BBC3} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1672939524 => C:\Users\quent\AppData\Local\Programs\Opera GX\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\quent\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {E0F7B065-E1F1-4A81-A502-3E2E5D78E766} - System32\Tasks\Opera scheduled assistant Autoupdate 1718195925 => C:\Users\quent\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\quent\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {6529AD65-6D3B-4D7A-8F5C-C8ADDC5B3C57} - System32\Tasks\Opera scheduled Autoupdate 1718195924 => C:\Users\quent\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 0.0.0.0 safebrowsing.googleapis.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3f2d3497-7838-40e5-b318-0747cafcb82a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3f2d3497-7838-40e5-b318-0747cafcb82a}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-06]
Edge Notifications: Default -> hxxps://web.snapchat.com
Edge HomePage: Default -> hxxps://www.google.fr/
Edge StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3330901&octid=EB_ORIGINAL_CTID&ISID=MDC68ABCF-40B8-4013-9EB3-81BEE137913F&SearchSource=55&CUI=&UM=6&UP=SP0DA44D31-DDF7-4119-8A0E-9FBB3918E65B&SSPV=","hxxp://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_CH","hxxp://start.mysearchs.com/?pid=210","hxxp://www.google.com/"
Edge Extension: (Google Docs hors connexion) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-26]
Edge Extension: (Edge relevant text changes) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-04-05]
Edge Extension: (Indexing Test) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lgonpmchaeokedifbjenbcnjcdefdceg [2022-10-04]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-06-25]
Edge Extension: (Speedtest by Ookla) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2023-06-15]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AntiCheatExpert Protection; C:\Program Files\AntiCheatExpert\ACE-Service64.exe [3107232 2024-07-04] (ACEVILLE PTE LTD -> ANTICHEATEXPERT.COM)
S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2098080 2024-07-04] (ACEVILLE PTE LTD -> ANTICHEATEXPERT.COM)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2568840 2024-07-02] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15747368 2024-05-01] (BattlEye Innovations e.K. -> )
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [964336 2024-06-11] (EasyAntiCheat Oy -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-06-20] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [13405720 2023-12-27] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_677da8a9230cea15\Display.NvContainer\NVDisplay.Container.exe [1275544 2023-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
S4 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [148024 2023-09-19] (Oculus VR, LLC -> Facebook Technologies, LLC)
S4 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [508984 2023-09-19] (Oculus VR, LLC -> Facebook Technologies, LLC)
S3 SteelSeriesGGUpdateServiceProxy; C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe [1500608 2023-09-18] (SteelSeries ApS -> )
S3 TavernWorker_1_1; C:\Program Files\IRONMACE\Tavern\Steam\TavernApp_1_1\TavernWorker.exe [21277104 2024-06-29] (IRONMACE Co., Ltd. -> IRONMACE Co., Ltd.)
S4 Updater; C:\Program Files\Virtual Desktop Streamer\Updater.exe [1163480 2022-11-01] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9623432 2023-11-28] (Riot Games, Inc. -> Riot Games, Inc.)
S4 VirtualDesktop.Service.exe; C:\Program Files\Virtual Desktop\VirtualDesktop.Service.exe [10648792 2022-11-01] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3580352 2024-06-06] (Skutta Software GmbH -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [3211824 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> ANTICHEATEXPERT.COM)
S3 ACE-SSC-DRV64; C:\Program Files\AntiCheatExpert\SGuard\x64\plugins\ACE-SSC-DRV64.sys [188416 2024-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ANTICHEATEXPERT.COM)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [544768 2024-01-22] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [188416 2024-01-22] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218608 2024-06-01] (Microsoft Windows -> Microsoft Corporation)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 goxlr_audio; C:\WINDOWS\System32\drivers\goxlr_audio.sys [428544 2023-05-23] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 goxlr_audioks; C:\WINDOWS\System32\drivers\goxlr_audioks.sys [55296 2023-05-23] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_4fcff055ed32f652\iaLPSS2_GPIO2_TGL.sys [132072 2024-04-18] (Intel Corporation -> Intel Corporation)
R3 MpKsl2a1cf659; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DB68EFE2-DAE1-44E4-8E54-FF227642A6E9}\MpKslDrv.sys [271640 2024-07-06] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [75280 2022-11-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2022-11-24] (Oculus VR, LLC -> Facebook Inc.)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_44eaf8324075f31c\rt25cx21x64.sys [779736 2023-12-05] (Realtek Semiconductor Corp. -> Realtek)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [43568 2024-06-10] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [54408 2024-06-10] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys [95440 2023-03-17] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 UB3400.X64; C:\WINDOWS\System32\drivers\UB3400.X64.SYS [3519528 2021-07-23] (Corsair Memory, Inc. -> )
R3 vdvad_WaveExtensible; C:\WINDOWS\System32\drivers\vdvad.sys [44936 2022-05-02] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R3 vdvge; C:\WINDOWS\System32\drivers\vdvge.sys [77864 2022-05-02] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22035200 2023-11-27] (Riot Games, Inc. -> Riot Games, Inc.)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2024-01-22] (Microsoft Windows -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-05-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-29] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-07-06 17:48 - 2024-07-06 17:48 - 000029575 _____ C:\Users\quent\Downloads\FRST.txt
2024-07-06 17:47 - 2024-07-06 17:48 - 000000000 ____D C:\FRST
2024-07-06 17:47 - 2024-07-06 17:47 - 002395648 _____ (Farbar) C:\Users\quent\Downloads\FRST64.exe
2024-07-06 13:42 - 2024-07-06 13:42 - 000771570 _____ C:\WINDOWS\system32\perfh00C.dat
2024-07-06 13:42 - 2024-07-06 13:42 - 000148698 _____ C:\WINDOWS\system32\perfc00C.dat
2024-07-06 13:17 - 2024-07-06 17:42 - 000000000 ____D C:\Users\quent\AppData\Roaming\obs-studio
2024-07-06 13:17 - 2024-07-06 13:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2024-07-06 13:16 - 2024-07-06 14:47 - 000000000 ____D C:\Program Files\obs-studio
2024-07-06 12:54 - 2024-07-06 12:54 - 006970144 _____ (VS Revo Group ) C:\Users\quent\Downloads\revosetup.exe
2024-07-06 12:54 - 2024-07-06 12:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2024-07-06 12:54 - 2024-07-06 12:54 - 000000000 ____D C:\Program Files\VS Revo Group
2024-07-06 12:40 - 2024-07-06 12:40 - 000000000 ____D C:\WINDOWS\system32\o2
2024-07-06 12:39 - 2024-07-06 12:39 - 000263520 _____ (AVAST Software) C:\Users\quent\Downloads\avast_antivirus_gratuit_installateur_en-ligne.exe
2024-07-06 11:57 - 2024-07-06 11:57 - 000000000 ____D C:\Users\quent\Downloads\Autoruns
2024-07-06 11:56 - 2024-07-06 11:56 - 002932380 _____ C:\Users\quent\Downloads\Autoruns.zip
2024-07-05 08:52 - 2024-07-05 08:52 - 000000000 ____D C:\Users\quent\OneDrive\Documents\TotalAV
2024-07-05 08:51 - 2024-07-05 08:51 - 000000000 ____D C:\Users\quent\AppData\Local\GUI
2024-07-05 08:51 - 2024-07-05 08:51 - 000000000 ____D C:\ProgramData\SecuritySuite
2024-07-05 08:50 - 2024-07-05 08:51 - 057488912 _____ C:\Users\quent\Downloads\TotalAV_Setup.exe
2024-07-04 13:42 - 2024-07-06 11:25 - 000000000 ____D C:\ProgramData\AntiCheatExpert
2024-07-04 13:42 - 2024-07-04 13:44 - 000000000 ____D C:\Program Files\AntiCheatExpert
2024-07-04 13:42 - 2024-07-04 13:42 - 000000000 ____D C:\Users\quent\AppData\Roaming\TDM
2024-07-04 13:42 - 2024-07-04 13:42 - 000000000 ____D C:\Users\quent\AppData\Local\Dungeonborne
2024-07-04 13:42 - 2024-07-04 13:42 - 000000000 ____D C:\ProgramData\INTL
2024-07-04 13:33 - 2024-07-04 13:33 - 000000223 _____ C:\Users\quent\OneDrive\Bureau\Dungeonborne Playtest.url
2024-07-02 13:38 - 2024-07-02 13:38 - 000000000 ____D C:\Users\quent\AppData\LocalLow\IronGate
2024-07-02 10:08 - 2024-07-02 10:08 - 000000222 _____ C:\Users\quent\OneDrive\Bureau\Valheim.url
2024-07-01 13:19 - 2024-07-01 13:19 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-01 13:18 - 2024-07-01 13:18 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-06-29 16:11 - 2024-07-04 13:42 - 000000000 ____D C:\Users\quent\AppData\Roaming\GME
2024-06-29 16:11 - 2024-06-29 16:11 - 000000000 ____D C:\Users\quent\AppData\Local\DungeonCrawler
2024-06-29 16:11 - 2024-06-29 16:11 - 000000000 ____D C:\Program Files\IRONMACE
2024-06-29 16:10 - 2024-06-29 16:11 - 000000000 ____D C:\ProgramData\Tavern
2024-06-29 16:10 - 2024-06-29 16:10 - 000000000 ____D C:\Users\quent\AppData\Local\IRONMACE
2024-06-26 13:47 - 2024-07-04 21:16 - 000000000 ____D C:\WINDOWS\Minidump
2024-06-21 17:46 - 2024-06-21 17:46 - 000067680 _____ C:\WINDOWS\system32\lc.dat
2024-06-16 20:14 - 2024-06-06 21:27 - 000243136 _____ C:\WINDOWS\SysWOW64\wpxscreensaver64.scr
2024-06-12 14:38 - 2024-07-05 12:02 - 000003710 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1718195924
2024-06-12 14:38 - 2024-07-05 08:46 - 000003966 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1718195925
2024-06-07 17:48 - 2024-06-07 17:48 - 000000222 _____ C:\Users\quent\OneDrive\Bureau\Phasmophobia.url
2024-06-06 09:22 - 2024-06-06 09:22 - 005229128 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys
2024-06-06 09:22 - 2024-06-06 09:22 - 001496136 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter10.dll
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-07-06 17:42 - 2022-10-02 11:23 - 000000000 ____D C:\Program Files (x86)\Steam
2024-07-06 17:39 - 2024-01-22 17:10 - 000000000 ____D C:\Users\quent\AppData\Roaming\Microsoft\Windows
2024-07-06 17:36 - 2023-12-14 19:45 - 000000000 ____D C:\Users\quent\AppData\Local\Discord
2024-07-06 15:47 - 2024-01-22 19:22 - 000004158 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{1165D099-A717-48F6-ACB3-BA3824184F2E}
2024-07-06 14:30 - 2022-09-28 20:38 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-06 13:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-06 13:45 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-06 13:42 - 2024-01-22 19:21 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-06 13:42 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-06 13:38 - 2023-12-14 19:18 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2024-07-06 13:37 - 2022-10-02 11:17 - 000000000 ____D C:\Users\quent\AppData\Roaming\discord
2024-07-06 13:35 - 2024-01-22 19:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-06 13:35 - 2022-09-28 20:32 - 000012288 ___SH C:\DumpStack.log.tmp
2024-07-06 13:35 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-07-06 13:26 - 2024-01-22 19:18 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2024-07-06 13:26 - 2022-09-30 15:21 - 000000000 ____D C:\ProgramData\Avast Software
2024-07-06 13:24 - 2022-09-30 15:28 - 000000000 ____D C:\Program Files\CCleaner
2024-07-06 13:17 - 2023-11-21 15:17 - 000000000 ____D C:\ProgramData\obs-studio
2024-07-06 13:12 - 2024-01-22 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-06 13:12 - 2022-09-30 15:54 - 000000000 ____D C:\ProgramData\obs-studio-hook
2024-07-06 13:12 - 2022-09-30 15:28 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-06 12:40 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-06 12:26 - 2022-10-02 14:18 - 000000000 ____D C:\Users\quent\AppData\Roaming\Microsoft\MMC
2024-07-06 12:25 - 2022-10-03 11:24 - 000000000 ____D C:\Users\quent\AppData\Local\CrashDumps
2024-07-06 12:20 - 2022-10-02 09:12 - 000000000 ____D C:\Users\quent\AppData\Local\ElevatedDiagnostics
2024-07-06 11:34 - 2024-01-22 19:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-06 11:34 - 2024-01-22 19:22 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-05 21:31 - 2023-04-15 19:47 - 000000000 ____D C:\Users\quent\AppData\Roaming\HearthstoneDeckTracker
2024-07-05 21:31 - 2023-02-14 09:57 - 000000000 ____D C:\Users\quent\AppData\Local\Battle.net
2024-07-05 20:32 - 2023-04-22 14:13 - 000000000 ____D C:\Users\quent\AppData\Local\HearthstoneDeckTracker
2024-07-05 20:32 - 2023-04-22 14:12 - 000002515 _____ C:\Users\quent\OneDrive\Bureau\Hearthstone Deck Tracker.lnk
2024-07-05 20:32 - 2023-04-15 19:47 - 000000000 ____D C:\Users\quent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2024-07-05 20:32 - 2022-10-02 11:17 - 000000000 ____D C:\Users\quent\AppData\Local\SquirrelTemp
2024-07-05 20:26 - 2022-09-30 14:43 - 000000000 ____D C:\Users\quent\AppData\Local\D3DSCache
2024-07-05 20:26 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-05 18:35 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-05 11:49 - 2022-09-30 14:41 - 000000000 ___SD C:\Users\quent\AppData\Roaming\Microsoft\Credentials
2024-07-05 08:57 - 2023-01-02 21:19 - 000000000 ____D C:\Users\quent\AppData\Local\Opera Software
2024-07-05 08:56 - 2024-01-22 16:30 - 000000000 ___DC C:\WINDOWS\Panther
2024-07-05 08:52 - 2024-01-22 19:22 - 000003746 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled assistant Autoupdate 1672939524
2024-07-05 08:48 - 2024-02-03 11:48 - 000002202 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-07-04 19:37 - 2024-02-18 16:55 - 000267768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-07-04 19:37 - 2022-10-29 08:42 - 000108024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-07-04 19:37 - 2022-10-29 08:42 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-07-04 19:37 - 2022-10-02 11:19 - 002799208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-07-04 19:37 - 2022-10-02 11:19 - 000751096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-07-04 19:37 - 2022-10-02 11:19 - 000222824 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-07-04 19:37 - 2022-10-02 11:19 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-07-04 19:37 - 2022-10-02 11:19 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-07-04 13:43 - 2022-09-30 15:06 - 000000000 ____D C:\ProgramData\Package Cache
2024-07-04 13:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\tracing
2024-07-04 13:27 - 2022-09-28 20:33 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-02 09:00 - 2024-01-22 19:22 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2962275541-2836048220-3333607648-1002
2024-07-02 09:00 - 2024-01-22 19:22 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2962275541-2836048220-3333607648-1002
2024-07-02 09:00 - 2022-09-30 14:45 - 000002421 _____ C:\Users\quent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-01 19:31 - 2024-01-22 19:18 - 000333152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-01 19:30 - 2024-01-22 17:06 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-01 13:30 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-07-01 13:22 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-01 13:19 - 2024-01-22 19:22 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-06-30 16:52 - 2023-12-15 17:37 - 000000000 ____D C:\Users\quent\AppData\Roaming\EasyAntiCheat
2024-06-29 16:11 - 2022-10-03 11:15 - 000000000 ____D C:\Users\quent\AppData\Local\UnrealEngine
2024-06-29 10:13 - 2024-06-02 21:07 - 000000000 ____D C:\Hearthstone
2024-06-28 16:29 - 2023-11-06 12:38 - 000000000 ____D C:\Users\quent\OneDrive\Documents\tuto phasmo
2024-06-27 21:41 - 2022-09-30 16:31 - 000000000 ____D C:\Users\quent\AppData\Roaming\steelseries-gg-client
2024-06-26 13:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-06-24 11:52 - 2022-10-03 09:47 - 000000000 ____D C:\Users\quent\AppData\Roaming\vlc
2024-06-23 16:44 - 2024-06-04 08:32 - 000000000 ____D C:\Overwatch
2024-06-23 16:44 - 2023-02-14 09:57 - 000000000 ____D C:\Users\quent\AppData\Local\Blizzard Entertainment
2024-06-21 17:39 - 2023-02-14 09:57 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-06-20 21:15 - 2024-01-22 19:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2024-06-20 21:15 - 2023-07-22 19:51 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-06-15 21:22 - 2022-09-30 14:43 - 000000000 ____D C:\Users\quent\AppData\Local\Packages
2024-06-15 19:34 - 2024-01-22 17:06 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-06-14 14:01 - 2023-02-14 09:57 - 000000000 ____D C:\Users\quent\AppData\Roaming\Battle.net
2024-06-13 13:26 - 2023-05-28 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoXLR App
2024-06-12 14:38 - 2023-04-12 07:45 - 000000000 ____D C:\Users\quent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-06-12 14:38 - 2023-04-12 07:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-06-12 14:38 - 2023-04-12 07:45 - 000000000 ____D C:\Program Files\WinRAR
2024-06-12 14:38 - 2023-01-02 21:18 - 000000000 ____D C:\Users\quent\AppData\Roaming\Opera Software
2024-06-11 14:23 - 2024-05-14 11:26 - 000000222 _____ C:\Users\quent\OneDrive\Bureau\Rust.url
2024-06-11 14:10 - 2023-12-15 17:37 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2024-06-10 21:57 - 2024-03-01 11:34 - 000043568 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\ssdevfactory.sys
2024-06-10 21:57 - 2023-08-07 11:14 - 000054408 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\sshid.sys
2024-06-10 14:30 - 2022-09-28 20:34 - 000000000 ____D C:\ProgramData\Packages
2024-06-07 17:31 - 2024-01-22 19:22 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-06-07 17:31 - 2024-01-22 19:22 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2023-03-31 20:42 - 2023-03-31 20:42 - 000000068 _____ () C:\Users\quent\AppData\Roaming\changzhi_leidian.data
2023-07-22 13:59 - 2024-02-19 14:16 - 000000016 _____ () C:\Users\quent\AppData\Roaming\obs-virtualcam.txt
2023-06-03 13:05 - 2023-07-08 19:20 - 000011942 _____ () C:\Users\quent\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par quent (administrateur) sur HAPPY (Micro-Star International Co., Ltd. MS-7D18) (06-07-2024 17:48:09)
Exécuté depuis C:\Users\quent\Downloads\FRST64.exe
Profils chargés: quent & OVRLibraryService
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3810 (X64) Langue: Français (France)
Navigateur par défaut non détecté(e)!
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\winrtutil32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.87\msedgewebview2.exe <6>
(C:\Riot Games\Riot Client\RiotClientServices.exe ->) () [Fichier non signé] C:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(C:\Windows\SysWOW64\wallpaperservice32.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(Discord Inc. -> Discord Inc.) C:\Users\quent\AppData\Local\Discord\app-1.0.9152\Discord.exe <6>
(explorer.exe ->) (MUSIC Tribe Brands DE GmbH -> ) C:\Program Files\TC-Helicon\GoXLR_Audio_Driver\x64\GoXLRAudioCplApp.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\Riot Client\RiotClientServices.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(explorer.exe ->) (T.C. Electronic A/S (MUSIC Tribe Brands DK A/S) -> ) C:\Program Files (x86)\TC-Helicon\GOXLR\GoXLR App.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <37>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_677da8a9230cea15\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe <2>
(services.exe ->) (Skutta Software GmbH -> ) C:\Windows\SysWOW64\wallpaperservice32.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24052.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.30.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe [1945544 2024-02-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [15920976 2024-06-25] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3022640 2023-11-28] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore: [DisableConfig] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\MRT: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [enablesmartscreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-06-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37550568 2024-06-21] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [15850496 2023-01-23] () [Fichier non signé]
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [MicrosoftEdgeAutoLaunch_420FD62473182A13ABDE718DFEB14A56] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70989920 2024-06-28] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [Discord] => C:\Users\quent\AppData\Local\Discord\Update.exe [1525016 2023-07-31] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [AF_uuid_2426960] => c6d707a8-a106-4061-9558-122e5e8c9e62****„ P*@Ðj*à«******Q‚Ùm*#**i*e*d*o (Pas de fichier)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [AF_counter_2426960] => 18* (Pas de fichier)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\...\Run: [] => [X]
HKU\S-1-5-21-2962275541-2836048220-3333607648-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\WPXSCR~1.SCR [243136 2024-06-06] (Skutta Software GmbH -> )
HKU\S-1-5-80-3238277391-1891473654-1195688043-4149050645-2494734967\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-07-05] (Google LLC -> Google, Inc.)
Startup: C:\Users\quent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CrystalDiskInfo8.lnk [2022-12-12]
ShortcutTarget: CrystalDiskInfo8.lnk -> C:\Users\quent\AppData\Roaming\crystaldiskinfo\taskhosts.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoXLR App.lnk [2024-06-13]
ShortcutTarget: GoXLR App.lnk -> C:\Program Files (x86)\TC-Helicon\GOXLR\GoXLR App.exe (T.C. Electronic A/S (MUSIC Tribe Brands DK A/S) -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoXLR Control Panel Autostart.lnk [2023-12-21]
ShortcutTarget: GoXLR Control Panel Autostart.lnk -> C:\Program Files\TC-Helicon\GoXLR_Audio_Driver\x64\GoXLRAudioCplApp.exe (MUSIC Tribe Brands DE GmbH -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {8AAA40FF-19DB-41C5-8F6E-34D92756AFD9} - System32\Tasks\ar => C:\WINDOWS\system32\wscript.exe [200704 2024-06-01] (Microsoft Windows -> Microsoft Corporation) -> "%appdata%\obs-studio\bin\64bit\.vbs" "%appdata%\obs-studio\bin\64bit\.cmd"
Task: {2F86B3D5-24B3-4A94-ACDC-D124B629F546} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {DC689004-21D6-42A6-983F-B7C7C87288D6} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7D238926-E199-4748-BD8C-27C48F8A83F8} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "eb99c384-fba8-481c-8518-80112a82b324" --version "6.25.11131" --silent
Task: {6FF95DED-FD44-4BA8-8449-F11DE1A2B222} - System32\Tasks\CCleanerSkipUAC - quent => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {0D08943B-5BC7-439A-A330-8D8398253D9F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6425.0{D0E2F931-721B-4FA4-AF9A-BC66FE709246} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
Task: {F6BE7875-C4FF-4C38-8851-A38B895C109C} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\WINDOWS\system32\rundll32.exe [73728 2024-04-24] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {3D4AF69D-85A2-4E36-A8F5-BA7C330EF201} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5DE302F3-A951-4CEF-8F92-40D636833CF1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F7ECF4A-D941-47E8-B2D8-6EAA73EEEE52} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BBEF5676-3B97-4036-915C-0C4344C441B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BB3DDAD9-4E21-42B5-84C2-12E58059D6AF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {92CA1774-90CF-4FA7-BE08-A6C4061A8922} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4FE84290-8773-45BA-B39B-38FBCC165DC4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {3629B314-29C3-4CC3-899A-94DCF3FA3CCF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D0F0287A-17EC-442A-987A-E7C6A2CD3D30} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {41C8DA0F-9CE0-47AB-BD2A-5D51808BFD4D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA11ECED-B9F7-4033-9DFE-0CBB7A4F8053} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2350046A-21FB-4030-9B56-977AE9AA4312} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23A70EAF-BE63-48D9-B686-B6580E430069} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0812736F-B1EB-4ED6-89F9-D02DB273BBC3} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1672939524 => C:\Users\quent\AppData\Local\Programs\Opera GX\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\quent\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {E0F7B065-E1F1-4A81-A502-3E2E5D78E766} - System32\Tasks\Opera scheduled assistant Autoupdate 1718195925 => C:\Users\quent\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\quent\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {6529AD65-6D3B-4D7A-8F5C-C8ADDC5B3C57} - System32\Tasks\Opera scheduled Autoupdate 1718195924 => C:\Users\quent\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 0.0.0.0 safebrowsing.googleapis.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3f2d3497-7838-40e5-b318-0747cafcb82a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3f2d3497-7838-40e5-b318-0747cafcb82a}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-06]
Edge Notifications: Default -> hxxps://web.snapchat.com
Edge HomePage: Default -> hxxps://www.google.fr/
Edge StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3330901&octid=EB_ORIGINAL_CTID&ISID=MDC68ABCF-40B8-4013-9EB3-81BEE137913F&SearchSource=55&CUI=&UM=6&UP=SP0DA44D31-DDF7-4119-8A0E-9FBB3918E65B&SSPV=","hxxp://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_CH","hxxp://start.mysearchs.com/?pid=210","hxxp://www.google.com/"
Edge Extension: (Google Docs hors connexion) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-26]
Edge Extension: (Edge relevant text changes) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-04-05]
Edge Extension: (Indexing Test) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lgonpmchaeokedifbjenbcnjcdefdceg [2022-10-04]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-06-25]
Edge Extension: (Speedtest by Ookla) - C:\Users\quent\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2023-06-15]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AntiCheatExpert Protection; C:\Program Files\AntiCheatExpert\ACE-Service64.exe [3107232 2024-07-04] (ACEVILLE PTE LTD -> ANTICHEATEXPERT.COM)
S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2098080 2024-07-04] (ACEVILLE PTE LTD -> ANTICHEATEXPERT.COM)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2568840 2024-07-02] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15747368 2024-05-01] (BattlEye Innovations e.K. -> )
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [964336 2024-06-11] (EasyAntiCheat Oy -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-06-20] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [13405720 2023-12-27] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_677da8a9230cea15\Display.NvContainer\NVDisplay.Container.exe [1275544 2023-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
S4 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [148024 2023-09-19] (Oculus VR, LLC -> Facebook Technologies, LLC)
S4 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [508984 2023-09-19] (Oculus VR, LLC -> Facebook Technologies, LLC)
S3 SteelSeriesGGUpdateServiceProxy; C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe [1500608 2023-09-18] (SteelSeries ApS -> )
S3 TavernWorker_1_1; C:\Program Files\IRONMACE\Tavern\Steam\TavernApp_1_1\TavernWorker.exe [21277104 2024-06-29] (IRONMACE Co., Ltd. -> IRONMACE Co., Ltd.)
S4 Updater; C:\Program Files\Virtual Desktop Streamer\Updater.exe [1163480 2022-11-01] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9623432 2023-11-28] (Riot Games, Inc. -> Riot Games, Inc.)
S4 VirtualDesktop.Service.exe; C:\Program Files\Virtual Desktop\VirtualDesktop.Service.exe [10648792 2022-11-01] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3580352 2024-06-06] (Skutta Software GmbH -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [3211824 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> ANTICHEATEXPERT.COM)
S3 ACE-SSC-DRV64; C:\Program Files\AntiCheatExpert\SGuard\x64\plugins\ACE-SSC-DRV64.sys [188416 2024-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ANTICHEATEXPERT.COM)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [544768 2024-01-22] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [188416 2024-01-22] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218608 2024-06-01] (Microsoft Windows -> Microsoft Corporation)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 goxlr_audio; C:\WINDOWS\System32\drivers\goxlr_audio.sys [428544 2023-05-23] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 goxlr_audioks; C:\WINDOWS\System32\drivers\goxlr_audioks.sys [55296 2023-05-23] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_4fcff055ed32f652\iaLPSS2_GPIO2_TGL.sys [132072 2024-04-18] (Intel Corporation -> Intel Corporation)
R3 MpKsl2a1cf659; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DB68EFE2-DAE1-44E4-8E54-FF227642A6E9}\MpKslDrv.sys [271640 2024-07-06] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [75280 2022-11-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2022-11-24] (Oculus VR, LLC -> Facebook Inc.)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_44eaf8324075f31c\rt25cx21x64.sys [779736 2023-12-05] (Realtek Semiconductor Corp. -> Realtek)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [43568 2024-06-10] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [54408 2024-06-10] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys [95440 2023-03-17] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 UB3400.X64; C:\WINDOWS\System32\drivers\UB3400.X64.SYS [3519528 2021-07-23] (Corsair Memory, Inc. -> )
R3 vdvad_WaveExtensible; C:\WINDOWS\System32\drivers\vdvad.sys [44936 2022-05-02] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R3 vdvge; C:\WINDOWS\System32\drivers\vdvge.sys [77864 2022-05-02] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22035200 2023-11-27] (Riot Games, Inc. -> Riot Games, Inc.)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2024-01-22] (Microsoft Windows -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-05-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-29] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-07-06 17:48 - 2024-07-06 17:48 - 000029575 _____ C:\Users\quent\Downloads\FRST.txt
2024-07-06 17:47 - 2024-07-06 17:48 - 000000000 ____D C:\FRST
2024-07-06 17:47 - 2024-07-06 17:47 - 002395648 _____ (Farbar) C:\Users\quent\Downloads\FRST64.exe
2024-07-06 13:42 - 2024-07-06 13:42 - 000771570 _____ C:\WINDOWS\system32\perfh00C.dat
2024-07-06 13:42 - 2024-07-06 13:42 - 000148698 _____ C:\WINDOWS\system32\perfc00C.dat
2024-07-06 13:17 - 2024-07-06 17:42 - 000000000 ____D C:\Users\quent\AppData\Roaming\obs-studio
2024-07-06 13:17 - 2024-07-06 13:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2024-07-06 13:16 - 2024-07-06 14:47 - 000000000 ____D C:\Program Files\obs-studio
2024-07-06 12:54 - 2024-07-06 12:54 - 006970144 _____ (VS Revo Group ) C:\Users\quent\Downloads\revosetup.exe
2024-07-06 12:54 - 2024-07-06 12:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2024-07-06 12:54 - 2024-07-06 12:54 - 000000000 ____D C:\Program Files\VS Revo Group
2024-07-06 12:40 - 2024-07-06 12:40 - 000000000 ____D C:\WINDOWS\system32\o2
2024-07-06 12:39 - 2024-07-06 12:39 - 000263520 _____ (AVAST Software) C:\Users\quent\Downloads\avast_antivirus_gratuit_installateur_en-ligne.exe
2024-07-06 11:57 - 2024-07-06 11:57 - 000000000 ____D C:\Users\quent\Downloads\Autoruns
2024-07-06 11:56 - 2024-07-06 11:56 - 002932380 _____ C:\Users\quent\Downloads\Autoruns.zip
2024-07-05 08:52 - 2024-07-05 08:52 - 000000000 ____D C:\Users\quent\OneDrive\Documents\TotalAV
2024-07-05 08:51 - 2024-07-05 08:51 - 000000000 ____D C:\Users\quent\AppData\Local\GUI
2024-07-05 08:51 - 2024-07-05 08:51 - 000000000 ____D C:\ProgramData\SecuritySuite
2024-07-05 08:50 - 2024-07-05 08:51 - 057488912 _____ C:\Users\quent\Downloads\TotalAV_Setup.exe
2024-07-04 13:42 - 2024-07-06 11:25 - 000000000 ____D C:\ProgramData\AntiCheatExpert
2024-07-04 13:42 - 2024-07-04 13:44 - 000000000 ____D C:\Program Files\AntiCheatExpert
2024-07-04 13:42 - 2024-07-04 13:42 - 000000000 ____D C:\Users\quent\AppData\Roaming\TDM
2024-07-04 13:42 - 2024-07-04 13:42 - 000000000 ____D C:\Users\quent\AppData\Local\Dungeonborne
2024-07-04 13:42 - 2024-07-04 13:42 - 000000000 ____D C:\ProgramData\INTL
2024-07-04 13:33 - 2024-07-04 13:33 - 000000223 _____ C:\Users\quent\OneDrive\Bureau\Dungeonborne Playtest.url
2024-07-02 13:38 - 2024-07-02 13:38 - 000000000 ____D C:\Users\quent\AppData\LocalLow\IronGate
2024-07-02 10:08 - 2024-07-02 10:08 - 000000222 _____ C:\Users\quent\OneDrive\Bureau\Valheim.url
2024-07-01 13:19 - 2024-07-01 13:19 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-01 13:18 - 2024-07-01 13:18 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-06-29 16:11 - 2024-07-04 13:42 - 000000000 ____D C:\Users\quent\AppData\Roaming\GME
2024-06-29 16:11 - 2024-06-29 16:11 - 000000000 ____D C:\Users\quent\AppData\Local\DungeonCrawler
2024-06-29 16:11 - 2024-06-29 16:11 - 000000000 ____D C:\Program Files\IRONMACE
2024-06-29 16:10 - 2024-06-29 16:11 - 000000000 ____D C:\ProgramData\Tavern
2024-06-29 16:10 - 2024-06-29 16:10 - 000000000 ____D C:\Users\quent\AppData\Local\IRONMACE
2024-06-26 13:47 - 2024-07-04 21:16 - 000000000 ____D C:\WINDOWS\Minidump
2024-06-21 17:46 - 2024-06-21 17:46 - 000067680 _____ C:\WINDOWS\system32\lc.dat
2024-06-16 20:14 - 2024-06-06 21:27 - 000243136 _____ C:\WINDOWS\SysWOW64\wpxscreensaver64.scr
2024-06-12 14:38 - 2024-07-05 12:02 - 000003710 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1718195924
2024-06-12 14:38 - 2024-07-05 08:46 - 000003966 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1718195925
2024-06-07 17:48 - 2024-06-07 17:48 - 000000222 _____ C:\Users\quent\OneDrive\Bureau\Phasmophobia.url
2024-06-06 09:22 - 2024-06-06 09:22 - 005229128 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys
2024-06-06 09:22 - 2024-06-06 09:22 - 001496136 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter10.dll
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-07-06 17:42 - 2022-10-02 11:23 - 000000000 ____D C:\Program Files (x86)\Steam
2024-07-06 17:39 - 2024-01-22 17:10 - 000000000 ____D C:\Users\quent\AppData\Roaming\Microsoft\Windows
2024-07-06 17:36 - 2023-12-14 19:45 - 000000000 ____D C:\Users\quent\AppData\Local\Discord
2024-07-06 15:47 - 2024-01-22 19:22 - 000004158 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{1165D099-A717-48F6-ACB3-BA3824184F2E}
2024-07-06 14:30 - 2022-09-28 20:38 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-06 13:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-06 13:45 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-06 13:42 - 2024-01-22 19:21 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-06 13:42 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-06 13:38 - 2023-12-14 19:18 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2024-07-06 13:37 - 2022-10-02 11:17 - 000000000 ____D C:\Users\quent\AppData\Roaming\discord
2024-07-06 13:35 - 2024-01-22 19:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-06 13:35 - 2022-09-28 20:32 - 000012288 ___SH C:\DumpStack.log.tmp
2024-07-06 13:35 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-07-06 13:26 - 2024-01-22 19:18 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2024-07-06 13:26 - 2022-09-30 15:21 - 000000000 ____D C:\ProgramData\Avast Software
2024-07-06 13:24 - 2022-09-30 15:28 - 000000000 ____D C:\Program Files\CCleaner
2024-07-06 13:17 - 2023-11-21 15:17 - 000000000 ____D C:\ProgramData\obs-studio
2024-07-06 13:12 - 2024-01-22 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-06 13:12 - 2022-09-30 15:54 - 000000000 ____D C:\ProgramData\obs-studio-hook
2024-07-06 13:12 - 2022-09-30 15:28 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-06 12:40 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-06 12:26 - 2022-10-02 14:18 - 000000000 ____D C:\Users\quent\AppData\Roaming\Microsoft\MMC
2024-07-06 12:25 - 2022-10-03 11:24 - 000000000 ____D C:\Users\quent\AppData\Local\CrashDumps
2024-07-06 12:20 - 2022-10-02 09:12 - 000000000 ____D C:\Users\quent\AppData\Local\ElevatedDiagnostics
2024-07-06 11:34 - 2024-01-22 19:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-06 11:34 - 2024-01-22 19:22 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-05 21:31 - 2023-04-15 19:47 - 000000000 ____D C:\Users\quent\AppData\Roaming\HearthstoneDeckTracker
2024-07-05 21:31 - 2023-02-14 09:57 - 000000000 ____D C:\Users\quent\AppData\Local\Battle.net
2024-07-05 20:32 - 2023-04-22 14:13 - 000000000 ____D C:\Users\quent\AppData\Local\HearthstoneDeckTracker
2024-07-05 20:32 - 2023-04-22 14:12 - 000002515 _____ C:\Users\quent\OneDrive\Bureau\Hearthstone Deck Tracker.lnk
2024-07-05 20:32 - 2023-04-15 19:47 - 000000000 ____D C:\Users\quent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2024-07-05 20:32 - 2022-10-02 11:17 - 000000000 ____D C:\Users\quent\AppData\Local\SquirrelTemp
2024-07-05 20:26 - 2022-09-30 14:43 - 000000000 ____D C:\Users\quent\AppData\Local\D3DSCache
2024-07-05 20:26 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-05 18:35 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-05 11:49 - 2022-09-30 14:41 - 000000000 ___SD C:\Users\quent\AppData\Roaming\Microsoft\Credentials
2024-07-05 08:57 - 2023-01-02 21:19 - 000000000 ____D C:\Users\quent\AppData\Local\Opera Software
2024-07-05 08:56 - 2024-01-22 16:30 - 000000000 ___DC C:\WINDOWS\Panther
2024-07-05 08:52 - 2024-01-22 19:22 - 000003746 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled assistant Autoupdate 1672939524
2024-07-05 08:48 - 2024-02-03 11:48 - 000002202 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-07-04 19:37 - 2024-02-18 16:55 - 000267768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-07-04 19:37 - 2022-10-29 08:42 - 000108024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-07-04 19:37 - 2022-10-29 08:42 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-07-04 19:37 - 2022-10-02 11:19 - 002799208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-07-04 19:37 - 2022-10-02 11:19 - 000751096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-07-04 19:37 - 2022-10-02 11:19 - 000222824 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-07-04 19:37 - 2022-10-02 11:19 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-07-04 19:37 - 2022-10-02 11:19 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-07-04 13:43 - 2022-09-30 15:06 - 000000000 ____D C:\ProgramData\Package Cache
2024-07-04 13:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\tracing
2024-07-04 13:27 - 2022-09-28 20:33 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-02 09:00 - 2024-01-22 19:22 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2962275541-2836048220-3333607648-1002
2024-07-02 09:00 - 2024-01-22 19:22 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2962275541-2836048220-3333607648-1002
2024-07-02 09:00 - 2022-09-30 14:45 - 000002421 _____ C:\Users\quent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-01 19:31 - 2024-01-22 19:18 - 000333152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-01 19:30 - 2024-01-22 17:06 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-07-01 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-01 13:30 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-07-01 13:22 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-01 13:19 - 2024-01-22 19:22 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-06-30 16:52 - 2023-12-15 17:37 - 000000000 ____D C:\Users\quent\AppData\Roaming\EasyAntiCheat
2024-06-29 16:11 - 2022-10-03 11:15 - 000000000 ____D C:\Users\quent\AppData\Local\UnrealEngine
2024-06-29 10:13 - 2024-06-02 21:07 - 000000000 ____D C:\Hearthstone
2024-06-28 16:29 - 2023-11-06 12:38 - 000000000 ____D C:\Users\quent\OneDrive\Documents\tuto phasmo
2024-06-27 21:41 - 2022-09-30 16:31 - 000000000 ____D C:\Users\quent\AppData\Roaming\steelseries-gg-client
2024-06-26 13:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-06-24 11:52 - 2022-10-03 09:47 - 000000000 ____D C:\Users\quent\AppData\Roaming\vlc
2024-06-23 16:44 - 2024-06-04 08:32 - 000000000 ____D C:\Overwatch
2024-06-23 16:44 - 2023-02-14 09:57 - 000000000 ____D C:\Users\quent\AppData\Local\Blizzard Entertainment
2024-06-21 17:39 - 2023-02-14 09:57 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-06-20 21:15 - 2024-01-22 19:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2024-06-20 21:15 - 2023-07-22 19:51 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-06-15 21:22 - 2022-09-30 14:43 - 000000000 ____D C:\Users\quent\AppData\Local\Packages
2024-06-15 19:34 - 2024-01-22 17:06 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-06-14 14:01 - 2023-02-14 09:57 - 000000000 ____D C:\Users\quent\AppData\Roaming\Battle.net
2024-06-13 13:26 - 2023-05-28 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoXLR App
2024-06-12 14:38 - 2023-04-12 07:45 - 000000000 ____D C:\Users\quent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-06-12 14:38 - 2023-04-12 07:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-06-12 14:38 - 2023-04-12 07:45 - 000000000 ____D C:\Program Files\WinRAR
2024-06-12 14:38 - 2023-01-02 21:18 - 000000000 ____D C:\Users\quent\AppData\Roaming\Opera Software
2024-06-11 14:23 - 2024-05-14 11:26 - 000000222 _____ C:\Users\quent\OneDrive\Bureau\Rust.url
2024-06-11 14:10 - 2023-12-15 17:37 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2024-06-10 21:57 - 2024-03-01 11:34 - 000043568 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\ssdevfactory.sys
2024-06-10 21:57 - 2023-08-07 11:14 - 000054408 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\sshid.sys
2024-06-10 14:30 - 2022-09-28 20:34 - 000000000 ____D C:\ProgramData\Packages
2024-06-07 17:31 - 2024-01-22 19:22 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-06-07 17:31 - 2024-01-22 19:22 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2023-03-31 20:42 - 2023-03-31 20:42 - 000000068 _____ () C:\Users\quent\AppData\Roaming\changzhi_leidian.data
2023-07-22 13:59 - 2024-02-19 14:16 - 000000016 _____ () C:\Users\quent\AppData\Roaming\obs-virtualcam.txt
2023-06-03 13:05 - 2023-07-08 19:20 - 000011942 _____ () C:\Users\quent\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================