cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-05-2021
Exécuté par rudyw (administrateur) sur LAPTOP-HF524L1K (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X570ZD_X570ZD) (27-05-2021 09:08:00)
Exécuté depuis C:\Users\rudyw\Desktop
Profils chargés: rudyw
Platform: Windows 10 Home Version 21H1 19043.985 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0358400.inf_amd64_d42706c82ef44182\B358199\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0358400.inf_amd64_d42706c82ef44182\B358199\atiesrxx.exe
(ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBox.Agent.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSLiveUpdateAgent\AsusLiveUpdateAgent.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSOptimization\ASUSOptimization.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.splendid_1.0.15.0_x64__qmba6cd70vzyy\ACMON.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.exe
(CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28>
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_db704b106aae3892\ICEsoundService64.exe
(McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\rudyw\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.549981c3f5f10_2.2103.17603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_0c3a7a30aa93284f\Display.NvContainer\NVDisplay.Container.exe <2>
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio2_1.1.50.0_x86__qt57b6kdvhcfw\SAII\SmartAudio.exe
(Synaptics Incorporated -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc32.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [cAudioFilterAgent] => "C:\Program Files (x86)\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe"
HKU\S-1-5-21-2239427298-287064825-219834473-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1160944 2021-05-21] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
HKU\S-1-5-21-2239427298-287064825-219834473-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
HKU\S-1-5-21-2239427298-287064825-219834473-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\rudyw\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2239427298-287064825-219834473-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\rudyw\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2239427298-287064825-219834473-1001\...\RunOnce: [Uninstall 21.073.0411.0002\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rudyw\AppData\Local\Microsoft\OneDrive\21.073.0411.0002\amd64"
HKU\S-1-5-21-2239427298-287064825-219834473-1001\...\RunOnce: [Uninstall 21.073.0411.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rudyw\AppData\Local\Microsoft\OneDrive\21.073.0411.0002"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-13] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {03576EEE-C059-4BFA-9F61-521947ACF063} - \McAfee\McAfee Idle Detection Task -> Pas de fichier <==== ATTENTION
Task: {0B1AC522-C281-4A86-B398-975FDF758685} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-04-28] (Google LLC -> Google LLC)
Task: {0ED930FB-FB5B-4CA8-9E96-50BDDFDEC1CC} - \NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {1B48E695-BDB7-4D29-A3E1-E83A92969846} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1C263F6B-2153-4FC3-A60E-B025AB9ACA9F} - \NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {2445A71A-E012-4E96-8150-2BD3BDE86734} - \NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Pas de fichier <==== ATTENTION
Task: {2C9F6099-322F-4EB5-95E0-BC0BB3BB6561} - \OneDrive Standalone Update Task v2 -> Pas de fichier <==== ATTENTION
Task: {3068FBF5-A416-42E6-8FAD-B196C9876C3D} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {3143E3E0-172A-490A-83BE-B0323BA04778} - \McAfee\McAfee Auto Maintenance Task Agent -> Pas de fichier <==== ATTENTION
Task: {4199AC30-21F0-431E-A88A-4ED5341EB750} - \NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {41C683A9-D116-4061-9011-A0C8BE2DE66A} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.6.102\DADUpdater.exe [4114728 2021-04-26] (McAfee, LLC -> McAfee, LLC)
Task: {4629BE49-611B-4A94-931D-D47F07446ECB} - \NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {47273275-9F1B-404D-B161-93588B3A7A6A} - \NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {5017A46C-9777-4AFB-B4FD-6E3FE6E2D62A} - \McAfee Remediation (Prepare) -> Pas de fichier <==== ATTENTION
Task: {50671BF0-03C8-4B58-AE0A-8DA9353251B2} - \McAfeeLogon -> Pas de fichier <==== ATTENTION
Task: {522D9971-56FD-4C50-B370-0BD9AD9C75EC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6A45CB16-24E4-4402-AFD1-01B7FCB4EC1C} - \NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Pas de fichier <==== ATTENTION
Task: {8D3B8A19-5A9D-4907-AF52-2DE61CC1E4D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-04-28] (Google LLC -> Google LLC)
Task: {9C80EB33-FF6B-4CF5-8D9C-E85283244942} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2215464 2021-01-13] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {A68B7BC3-406E-429C-B80A-0928D851FE8D} - \NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {A9A4B8DA-A93F-4F11-8F4D-4E50EAF748FD} - \NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> Pas de fichier <==== ATTENTION
Task: {C1EF45A1-44D2-48F3-862D-DCB5FA3AA96A} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> Pas de fichier <==== ATTENTION
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> Pas de fichier <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION
Task: {D5620C1A-90FD-444E-8C20-0EE9C2F1B4FA} - \NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {DFC97ED5-1B08-4451-8034-4160CD121D80} - \NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION
Task: {E7F9FF71-2F20-4D6F-B329-CD59D3441D7D} - System32\Tasks\Update Checker => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSLiveUpdateAgent\UpdateChecker.exe [181688 2021-01-13] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {EA7C842D-FFFD-4145-80C1-51B6019BBF9D} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio2_1.1.50.0_x86__qt57b6kdvhcfw\SAII\SACpl.exe
Task: {F4B240A3-6566-41A5-A990-28152AE86E18} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FBEB94FF-D963-40FF-8B65-9A644CEEECBC} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {FE652158-C4A7-4D95-A60F-5DDEF8C4657A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{454059aa-b221-4bab-8218-b50b27724892}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{87fd9a97-0de8-4629-a01c-50148c1b5e1f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ee40bd98-7162-47c6-a10d-267fadbe87db}: [DhcpNameServer] 40.53.1.13

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rudyw\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-27]

FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )

Chrome:
=======
CHR Profile: C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default [2021-05-27]
CHR Notifications: Default -> hxxps://www.netflix.com
CHR HomePage: Default -> qwant.com
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?q={searchTerms}&pc=COS2&ptag=D043021-N0640A2D586A4510&form=CONBDF&conlogo=CT3335800
CHR DefaultSearchKeyword: Default -> Bing®
CHR DefaultNewTabURL: Default -> hxxps://www.bing.com/chrome/newtab?pc=COS2&ptag=D043021-N0630A2D586A4510&form=CONMHP&conlogo=CT3335800
CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Slides) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-04-28]
CHR Extension: (Docs) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-04-28]
CHR Extension: (Google Drive) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-04-28]
CHR Extension: (YouTube) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-28]
CHR Extension: (Unknown Space) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpjdbdbhiomamecfnjahemfimgjamhjd [2021-04-28]
CHR Extension: (Sheets) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-04-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-01]
CHR Extension: (Qwant) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2021-04-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-28]
CHR Extension: (Gmail) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\rudyw\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-28]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSLiveUpdateAgent\AsusLiveUpdateAgent.exe [272840 2021-01-13] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSOptimization\ASUSOptimization.exe [202168 2021-01-13] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2215464 2021-01-13] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [518048 2021-01-13] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-22] (McAfee, Inc. -> McAfee, Inc.)
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [77216 2020-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems LLC.)
R2 CxUIUSvc; C:\WINDOWS\System32\CxUIUSvc32.exe [114968 2020-11-09] (Synaptics Incorporated -> Conexant Systems, Inc.)
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [66800 2021-05-21] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [285144 2018-04-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-22] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971976 2021-04-30] (McAfee, LLC -> McAfee, LLC)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-05-17] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-27] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-27] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-27] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
S2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_0c3a7a30aa93284f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_0c3a7a30aa93284f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109504 2018-04-26] (Alcorlink Corp. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ASUSSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_062c4d867b14997b\ASUSSystemAnalysis\ASUSSAIO.sys [36408 2021-01-13] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-05-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-22] (Malwarebytes Inc -> Malwarebytes)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521104 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108432 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2020-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-05-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421112 2021-05-14] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-05-27 09:08 - 2021-05-27 09:08 - 000026006 _____ C:\Users\rudyw\Desktop\FRST.txt
2021-05-27 09:07 - 2021-05-27 09:08 - 000000000 ____D C:\FRST
2021-05-27 09:06 - 2021-05-27 09:06 - 002299904 _____ (Farbar) C:\Users\rudyw\Desktop\FRST64.exe
2021-05-27 08:50 - 2021-05-27 08:59 - 3894504699 _____ C:\Users\rudyw\Downloads\Bliss.2021.4K.MULTI.2160p.HDR.WEB.EAC3.x265-Wawacity.video.mkv
2021-05-27 08:27 - 2021-05-27 08:27 - 000283978 _____ C:\Users\rudyw\Desktop\ZHPDiag.txt
2021-05-27 08:20 - 2021-05-27 08:27 - 000000000 ____D C:\Users\rudyw\AppData\Roaming\ZHP
2021-05-27 08:20 - 2021-05-27 08:20 - 000000867 _____ C:\Users\rudyw\Desktop\ZHPSuite.lnk
2021-05-27 08:20 - 2021-05-27 08:20 - 000000000 ____D C:\Users\rudyw\AppData\Local\ZHP
2021-05-27 08:19 - 2021-05-27 08:19 - 003469464 _____ (Nicolas Coolman) C:\Users\rudyw\Downloads\ZHPSuite.exe
2021-05-25 06:26 - 2021-05-25 06:26 - 011096456 _____ (McAfee, Inc.) C:\Users\rudyw\Downloads\MCPR (2).exe
2021-05-25 06:25 - 2021-05-25 06:25 - 011096456 _____ (McAfee, Inc.) C:\Users\rudyw\Downloads\MCPR (1).exe
2021-05-25 06:25 - 2021-05-25 06:25 - 001243560 _____ (BraveSoftware Inc.) C:\Users\rudyw\Downloads\BraveBrowserSetup-CLU884.exe
2021-05-25 06:12 - 2021-05-25 06:12 - 000004094 _____ C:\WINDOWS\system32\Tasks\Update Checker
2021-05-22 21:58 - 2021-05-22 21:58 - 000000218 _____ C:\Users\rudyw\AppData\Local\recently-used.xbel
2021-05-22 18:13 - 2021-05-22 18:14 - 000000000 ____D C:\Users\rudyw\Downloads\F1 GP DE MONACO 2021 - CANAL+ - LES QUALIFICATIONS ET EN POLE HDTV 1080P
2021-05-22 18:13 - 2021-05-22 18:13 - 000023539 _____ C:\Users\rudyw\Downloads\F1 GP DE MONACO 2021 - CANAL+ - LES QUALIFICATIONS ET EN POLE HDTV 1080P.torrent
2021-05-22 16:03 - 2021-05-22 16:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-05-22 15:18 - 2021-05-22 20:48 - 000000000 ____D C:\Users\rudyw\AppData\Local\CrashDumps
2021-05-22 15:18 - 2021-05-22 15:18 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-05-22 15:18 - 2021-05-22 15:18 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-05-22 15:18 - 2021-05-22 15:18 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-05-22 15:18 - 2021-05-22 15:18 - 000000000 ____D C:\Users\rudyw\AppData\Local\mbam
2021-05-22 15:18 - 2021-05-22 15:17 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-05-22 15:18 - 2021-05-22 15:17 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-05-22 15:17 - 2021-05-22 15:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-05-22 15:17 - 2021-05-22 15:17 - 000000000 ____D C:\Program Files\Malwarebytes
2021-05-22 15:14 - 2021-05-22 15:14 - 002078632 _____ (Malwarebytes) C:\Users\rudyw\Downloads\MBSetup.exe
2021-05-22 15:04 - 2021-05-22 15:04 - 008534696 _____ (Malwarebytes) C:\Users\rudyw\Downloads\adwcleaner_8.2 (1).exe
2021-05-22 14:56 - 2021-05-22 14:56 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2021-05-22 14:49 - 2021-05-22 15:55 - 000000000 ____D C:\Users\rudyw\AppData\Roaming\DVDVideoSoft
2021-05-22 14:46 - 2021-05-22 14:46 - 081480920 _____ (Digital Wave Ltd ) C:\Users\rudyw\Downloads\free-youtube-download_4-3-45-326_fr_72314.exe
2021-05-21 12:38 - 2021-05-21 12:38 - 000002181 _____ C:\Users\rudyw\Desktop\MX Player.lnk
2021-05-21 11:04 - 2021-05-21 11:17 - 680883647 _____ C:\Users\rudyw\Downloads\Captain.America.Civil.War.2016.2160p.UHD.BLURAY.REMUX.HDR.HEVC.MULTI.DTS-HDHRA.x265-wawacity.ec.mkv
2021-05-16 22:11 - 2021-05-16 22:11 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-05-12 13:18 - 2021-05-12 13:18 - 000018043 _____ C:\Users\rudyw\Downloads\Terminator 2 Judgement Day 1991 SPÉCIAL ÉDITION SKYNET MULTi VFF 1080p HDLight x264.GHT.mkv.torrent
2021-05-12 05:00 - 2021-05-12 05:00 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-12 05:00 - 2021-05-12 05:00 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-12 05:00 - 2021-05-12 05:00 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-12 05:00 - 2021-05-12 05:00 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-12 05:00 - 2021-05-12 05:00 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-12 05:00 - 2021-05-12 05:00 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-12 05:00 - 2021-05-12 05:00 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-12 04:59 - 2021-05-12 04:59 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-12 04:59 - 2021-05-12 04:59 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-12 04:59 - 2021-05-12 04:59 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-12 04:59 - 2021-05-12 04:59 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-12 04:59 - 2021-05-12 04:59 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-03 10:13 - 2021-05-23 11:57 - 000000000 ____D C:\Users\rudyw\AppData\Roaming\vlc
2021-05-03 10:13 - 2021-05-03 10:13 - 042585440 _____ C:\Users\rudyw\Downloads\vlc-3.0.12-win64.exe
2021-05-03 10:13 - 2021-05-03 10:13 - 000000918 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-05-03 10:13 - 2021-05-03 10:13 - 000000000 ____D C:\Program Files\VideoLAN
2021-05-02 00:12 - 2021-05-02 00:14 - 000000000 ____D C:\Users\rudyw\Downloads\K2R Riddim - K2R Live (1999) FLAC 16bits
2021-05-02 00:11 - 2021-05-02 00:11 - 000022659 _____ C:\Users\rudyw\Downloads\K2R Riddim - K2R Live (1999) FLAC 16bits.torrent
2021-05-02 00:10 - 2021-05-02 00:10 - 000012057 _____ C:\Users\rudyw\Downloads\Live.torrent
2021-05-01 23:57 - 2021-05-01 23:57 - 000041172 _____ C:\Users\rudyw\Downloads\Nobody.2021.MULTi.WEBrip.1080p.x264_JiHEFF.mkv.torrent
2021-05-01 19:15 - 2021-05-01 19:15 - 000027201 _____ C:\Users\rudyw\Downloads\Romeo doit mourir 2000 MULTi VFF AC3 1080p x264.mkv.torrent
2021-04-30 11:41 - 2021-05-01 22:52 - 000000000 ____D C:\Users\rudyw\AppData\Local\ASUS
2021-04-30 11:31 - 2021-05-21 12:09 - 000000000 ____D C:\Users\rudyw\AppData\Local\NVIDIA Corporation
2021-04-30 11:31 - 2021-05-03 11:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2021-04-30 11:05 - 2021-04-30 11:05 - 000020932 _____ C:\Users\rudyw\Downloads\Service Après Vente des Emissions (SAV d'Omar & Fred).torrent
2021-04-30 11:05 - 2021-04-30 11:05 - 000000000 ____D C:\Users\rudyw\Downloads\Service Après Vente des Emissions (SAV d'Omar & Fred)
2021-04-30 10:53 - 2021-04-30 10:58 - 2064257560 _____ C:\Users\rudyw\Downloads\Asterix.Le.Secret.de.la.Potion.Magique.2018.FRENCH.1080p.HDLight.x264.AC3-TOXIC.mkv
2021-04-30 10:53 - 2021-04-30 10:53 - 000010175 _____ C:\Users\rudyw\Downloads\Asterix.Le.Secret.de.la.Potion.Magique.2018.FRENCH.1080p.HDLight.x264.AC3-TOXIC.mkv.torrent
2021-04-30 10:43 - 2021-05-02 00:10 - 000000000 ____D C:\Users\rudyw\AppData\Roaming\deluge
2021-04-30 10:36 - 2021-04-30 10:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-04-30 10:28 - 2021-04-30 10:28 - 000001050 _____ C:\Users\Public\Desktop\Deluge.lnk
2021-04-30 10:26 - 2021-04-30 10:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluge
2021-04-30 10:26 - 2021-04-30 10:26 - 000000000 ____D C:\Program Files (x86)\Deluge
2021-04-30 10:24 - 2021-04-30 10:25 - 016189143 _____ (Deluge Team) C:\Users\rudyw\Downloads\deluge-1.3.15-win32-py2.7.exe
2021-04-30 10:19 - 2021-05-22 15:08 - 000000000 ____D C:\Users\rudyw\AppData\Roaming\Lavasoft
2021-04-30 10:19 - 2021-05-22 15:08 - 000000000 ____D C:\Users\rudyw\AppData\Local\Lavasoft
2021-04-30 10:19 - 2021-05-22 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2021-04-30 10:19 - 2021-05-22 15:08 - 000000000 ____D C:\ProgramData\Lavasoft
2021-04-30 10:19 - 2021-05-22 15:08 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2021-04-30 10:18 - 2021-04-30 11:20 - 000000000 ____D C:\Users\rudyw\AppData\Roaming\uTorrent
2021-04-30 10:01 - 2021-05-27 09:07 - 000000000 ____D C:\Users\rudyw\AppData\Local\CyberGhost
2021-04-30 10:01 - 2021-04-30 10:02 - 000000000 ____D C:\Program Files\CyberGhost 8
2021-04-30 10:01 - 2021-04-30 10:01 - 000001069 _____ C:\Users\rudyw\Desktop\CyberGhost 8.lnk
2021-04-30 10:01 - 2021-04-30 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 8
2021-04-30 10:01 - 2021-04-30 10:01 - 000000000 ____D C:\Program Files\TAP-Windows
2021-04-30 10:00 - 2021-04-30 10:00 - 000076880 _____ (CyberGhost S.A.) C:\Users\rudyw\Downloads\cgsetup_fr_t2RaLrhqH9m2TvUppn5U.exe
2021-04-29 20:59 - 2021-04-29 20:59 - 000000000 ___HD C:\OneDriveTemp
2021-04-29 15:27 - 2021-04-29 15:27 - 000000000 ____D C:\Users\rudyw\AppData\Local\OneDrive
2021-04-29 12:44 - 2021-04-29 12:44 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-29 12:43 - 2021-05-12 04:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-28 16:33 - 2021-05-27 08:24 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2021-04-28 14:49 - 2021-04-28 14:49 - 000002195 _____ C:\Users\rudyw\Desktop\CyberGhost.lnk
2021-04-28 14:30 - 2021-04-28 13:58 - 000000000 ____D C:\WINDOWS\Panther
2021-04-28 14:30 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\ASUS
2021-04-28 14:27 - 2021-04-30 14:29 - 000000000 ____D C:\Windows.old
2021-04-28 14:27 - 2021-04-28 14:27 - 000003946 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2021-04-28 14:27 - 2021-04-28 14:27 - 000002223 _____ C:\Users\rudyw\Desktop\SMARTGO IPTV.lnk
2021-04-28 14:27 - 2021-04-28 14:27 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-04-28 14:26 - 2021-05-08 14:59 - 000000000 ____D C:\WINDOWS\AMDTAs
2021-04-28 14:26 - 2021-04-28 14:26 - 000000000 ____D C:\WINDOWS\Firmware
2021-04-28 14:26 - 2021-04-28 14:26 - 000000000 ____D C:\Program Files (x86)\Razer
2021-04-28 14:25 - 2021-04-28 14:25 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-04-28 14:24 - 2021-05-25 06:19 - 000792842 _____ C:\WINDOWS\system32\perfh00C.dat
2021-04-28 14:24 - 2021-05-25 06:19 - 000149972 _____ C:\WINDOWS\system32\perfc00C.dat
2021-04-28 14:24 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-04-28 14:24 - 2021-04-28 14:24 - 000351124 _____ C:\WINDOWS\system32\perfi00C.dat
2021-04-28 14:24 - 2021-04-28 14:24 - 000040694 _____ C:\WINDOWS\system32\perfd00C.dat
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\fr
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\0409
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\Setup
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\OCR
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\DigitalLocker
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\addins
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\ProgramData\ssh
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\Program Files\MSBuild
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-04-28 14:24 - 2021-04-28 14:24 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-04-28 14:24 - 2021-04-28 13:40 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-04-28 14:24 - 2021-04-28 13:40 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-04-28 14:24 - 2021-04-28 13:40 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-04-28 14:24 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-04-28 14:24 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-04-28 14:24 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-04-28 14:24 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-04-28 14:24 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-04-28 14:21 - 2021-05-27 09:04 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-28 14:21 - 2021-05-27 08:19 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-28 14:21 - 2021-05-25 08:56 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-28 14:21 - 2021-05-23 03:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-04-28 14:21 - 2021-05-22 20:42 - 000000000 ____D C:\WINDOWS\registration
2021-04-28 14:21 - 2021-05-22 20:34 - 000000000 ___HD C:\Program Files\WindowsApps.tmp
2021-04-28 14:21 - 2021-05-22 15:55 - 000000000 ___RD C:\Program Files (x86)
2021-04-28 14:21 - 2021-05-22 15:18 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-28 14:21 - 2021-05-19 09:34 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-04-28 14:21 - 2021-05-13 12:44 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-04-28 14:21 - 2021-05-13 12:42 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-28 14:21 - 2021-04-29 08:48 - 000000000 ____D C:\WINDOWS\appcompat
2021-04-28 14:21 - 2021-04-28 16:34 - 000000000 ____D C:\Program Files\Windows Defender
2021-04-28 14:21 - 2021-04-28 14:29 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-04-28 14:21 - 2021-04-28 14:28 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\WINDOWS\system32\Com
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\Program Files (x86)\Windows NT
2021-04-28 14:21 - 2021-04-28 14:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-04-28 14:21 - 2021-04-28 14:23 - 000000000 ____D C:\ProgramData\BlueStacks
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 __SHD C:\Program Files\Windows Sidebar
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 __RSD C:\WINDOWS\Media
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ___SD C:\WINDOWS\system32\Nui
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\Web
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\WaaS
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\Vss
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\tracing
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\TAPI
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SystemApps
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\winevt
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ti-et
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ta-in
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\si-lk
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ras
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\my-mm
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\IME
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\icsxml
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ias
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\downlevel
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\am-et
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\System
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SKB
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\security
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\schemas
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\SchCache
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\rescache
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\PLA
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\Performance
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\ModemLogs
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\L2Schemas
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\InputMethod
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\IdentityCRL
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\Globalization
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\Cursors
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\Containers
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\Branding
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\ProgramData\USOShared
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\Program Files\Windows Security
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\Program Files\Windows Portable Devices
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\Program Files\Common Files\Services
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\Program Files\BlueStacks
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2021-04-28 14:21 - 2021-04-28 14:21 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2021-04-28 14:21 - 2021-04-28 14:19 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2021-04-28 14:21 - 2021-04-28 14:19 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2021-04-28 14:21 - 2021-04-28 14:19 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-04-28 14:21 - 2021-04-28 14:19 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2021-04-28 14:21 - 2021-04-28 14:19 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2021-04-28 14:21 - 2021-04-28 14:19 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2021-04-28 14:21 - 2021-04-28 14:19 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2021-04-28 14:21 - 2021-04-28 14:19 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2021-04-28 14:21 - 2021-04-28 14:19 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2021-04-28 14:21 - 2021-04-28 14:18 - 000000000 ____D C:\WINDOWS\ServiceState
2021-04-28 14:21 - 2021-04-28 13:58 - 000000000 ____D C:\ProgramData\USOPrivate
2021-04-28 14:21 - 2021-04-28 13:49 - 000000000 ____D C:\Program Files\Windows NT
2021-04-28 14:21 - 2021-04-28 13:47 - 000000000 __RHD C:\Users\Public\Libraries
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ___SD C:\WINDOWS\system32\dsc
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\system32\spool
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\system32\DriverState
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\Resources
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\IME
2021-04-28 14:21 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\Help
2021-04-28 14:21 - 2021-04-28 13:37 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-04-28 14:21 - 2021-04-28 13:37 - 000000000 ____D C:\Program Files\Common Files\System
2021-04-28 14:21 - 2021-04-28 13:37 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-04-28 14:21 - 2021-04-28 13:30 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2021-04-28 14:20 - 2021-05-25 06:19 - 000000000 ____D C:\WINDOWS\INF
2021-04-28 14:19 - 2021-04-28 14:19 - 000000000 ____D C:\Users\rudyw\AppData\Local\CEF
2021-04-28 14:18 - 2021-05-22 16:11 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-28 14:18 - 2021-05-22 16:11 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-04-28 14:18 - 2021-04-28 14:23 - 000002083 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2021-04-28 14:18 - 2021-04-28 14:23 - 000002071 _____ C:\Users\Public\Desktop\BlueStacks Multi-Instance Manager.lnk
2021-04-28 14:18 - 2021-04-28 14:23 - 000001922 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2021-04-28 14:18 - 2021-04-28 14:18 - 000000000 ____D C:\Users\rudyw\AppData\Local\Comms
2021-04-28 14:17 - 2021-04-28 14:22 - 000000000 ____D C:\Users\rudyw\AppData\Local\Google
2021-04-28 14:17 - 2021-04-28 14:17 - 001310832 _____ (Google LLC) C:\Users\rudyw\Downloads\ChromeSetup (2).exe
2021-04-28 14:17 - 2021-04-28 14:17 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-28 14:17 - 2021-04-28 14:17 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-28 14:17 - 2021-04-28 14:17 - 000000000 ____D C:\Program Files\Google
2021-04-28 14:17 - 2021-04-28 14:17 - 000000000 ____D C:\Program Files (x86)\Google
2021-04-28 14:16 - 2021-05-22 16:09 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-28 14:16 - 2021-05-09 18:54 - 000000000 ____D C:\Users\rudyw\AppData\Local\NVIDIA
2021-04-28 14:15 - 2021-05-25 06:12 - 079953920 _____ C:\WINDOWS\system32\config\SOFTWARE
2021-04-28 14:15 - 2021-05-25 06:12 - 024379392 _____ C:\WINDOWS\system32\config\SYSTEM
2021-04-28 14:15 - 2021-05-25 06:12 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2021-04-28 14:15 - 2021-05-25 06:12 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-04-28 14:15 - 2021-05-25 06:12 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2021-04-28 14:15 - 2021-05-25 06:12 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY
2021-04-28 14:15 - 2021-04-29 12:48 - 000000000 ____D C:\WINDOWS\servicing
2021-04-28 14:15 - 2021-04-28 14:21 - 000000000 ____D C:\WINDOWS\system32\SMI
2021-04-28 14:15 - 2021-04-28 13:47 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-04-28 14:14 - 2021-04-28 14:21 - 000000000 ____D C:\Users\rudyw\AppData\Local\Bluestacks
2021-04-28 14:14 - 2021-04-28 14:21 - 000000000 ____D C:\Users\Public\BlueStacks
2021-04-28 14:14 - 2021-04-28 14:20 - 000000000 ____D C:\Users\rudyw\AppData\Local\BlueStacksSetup
2021-04-28 14:06 - 2021-04-28 14:06 - 000000000 ____D C:\Users\rudyw\AppData\Local\ElevatedDiagnostics
2021-04-28 14:02 - 2021-04-28 14:02 - 000000000 ____D C:\ProgramData\Conexant
2021-04-28 14:01 - 2021-05-25 06:13 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2239427298-287064825-219834473-1001
2021-04-28 14:01 - 2021-04-28 14:02 - 000000000 ____D C:\Users\rudyw\AppData\Local\PlaceholderTileLogoFolder
2021-04-28 14:01 - 2021-04-28 14:01 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-04-28 13:59 - 2021-05-25 06:18 - 000000000 ____D C:\Users\rudyw\AppData\Local\Packages
2021-04-28 13:59 - 2021-05-23 14:15 - 000000000 ____D C:\Users\rudyw\AppData\Local\D3DSCache
2021-04-28 13:59 - 2021-05-22 14:59 - 000000000 ____D C:\Users\rudyw\AppData\Local\AMD
2021-04-28 13:59 - 2021-04-29 08:46 - 000000000 ____D C:\Users\rudyw\AppData\Local\ConnectedDevicesPlatform
2021-04-28 13:59 - 2021-04-28 14:18 - 000000000 ____D C:\ProgramData\Packages
2021-04-28 13:59 - 2021-04-28 14:01 - 000001526 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-04-28 13:59 - 2021-04-28 13:59 - 000000020 ___SH C:\Users\rudyw\ntuser.ini
2021-04-28 13:59 - 2021-04-28 13:59 - 000000000 ____D C:\Users\rudyw\AppData\Roaming\Adobe
2021-04-28 13:59 - 2021-04-28 13:59 - 000000000 ____D C:\Users\rudyw\AppData\Local\VirtualStore
2021-04-28 13:59 - 2021-04-28 13:59 - 000000000 ____D C:\Users\rudyw\AppData\Local\Publishers
2021-04-28 13:50 - 2021-05-25 06:19 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-28 13:49 - 2021-04-28 13:49 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique
2021-04-28 13:49 - 2021-04-28 13:49 - 000000000 _SHDL C:\Users\Default User
2021-04-28 13:49 - 2021-04-28 13:49 - 000000000 _SHDL C:\Users\All Users
2021-04-28 13:49 - 2021-04-28 13:49 - 000000000 _SHDL C:\ProgramData\Modèles
2021-04-28 13:49 - 2021-04-28 13:49 - 000000000 _SHDL C:\ProgramData\Menu Démarrer
2021-04-28 13:49 - 2021-04-28 13:49 - 000000000 _SHDL C:\ProgramData\Bureau
2021-04-28 13:49 - 2021-04-28 13:49 - 000000000 _SHDL C:\Program Files\Fichiers communs
2021-04-28 13:47 - 2021-04-28 13:47 - 000013428 _____ C:\Users\rudyw\Desktop\Applications supprimées.html
2021-04-28 13:44 - 2021-04-28 13:44 - 000023108 _____ C:\WINDOWS\system32\emptyregdb.dat
2021-04-28 13:41 - 2021-05-25 06:13 - 000002403 _____ C:\Users\rudyw\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-28 13:41 - 2021-04-28 13:59 - 000000000 ____D C:\Users\rudyw
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\Voisinage réseau
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\Voisinage d'impression
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\Modèles
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\Mes documents
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\Menu Démarrer
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\Documents\Mes vidéos
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\Documents\Mes images
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\Documents\Ma musique
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-04-28 13:41 - 2021-04-28 13:41 - 000000000 _SHDL C:\Users\rudyw\AppData\Local\Historique
2021-04-28 13:37 - 2021-04-28 13:37 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-04-28 13:32 - 2021-05-25 06:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-28 13:32 - 2021-05-22 16:11 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-04-28 13:32 - 2021-05-21 12:06 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-04-28 13:32 - 2021-05-14 18:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-28 13:32 - 2021-04-28 14:01 - 000000000 ____D C:\WINDOWS\CxSvc
2021-04-28 13:32 - 2021-04-28 14:00 - 000000000 ____D C:\ProgramData\ASUS
2021-04-28 13:32 - 2021-04-28 13:59 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-28 13:32 - 2021-04-28 13:59 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-04-28 13:32 - 2021-04-28 13:39 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-04-28 13:32 - 2021-04-28 13:32 - 000003726 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2021-04-28 13:32 - 2021-04-28 13:32 - 000000000 ____D C:\WINDOWS\system32\lxss
2021-04-28 13:32 - 2021-04-28 13:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-04-28 13:32 - 2021-04-28 13:32 - 000000000 ____D C:\Program Files\AMD
2021-04-28 13:30 - 2021-05-27 08:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-28 13:30 - 2021-05-13 12:43 - 000258208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-28 11:52 - 2021-04-28 11:52 - 004446280 _____ (Screenovate Technologies Ltd.) C:\Users\rudyw\Desktop\ASUSSyncDriversSetup_6366.exe
2021-04-28 11:52 - 2021-04-28 11:52 - 004446280 _____ (Screenovate Technologies Ltd.) C:\Users\rudyw\Desktop\ASUSSyncDriversSetup_6366 (1).exe
2021-04-28 11:19 - 2021-04-28 11:22 - 2348591808 _____ C:\Users\rudyw\Desktop\Game.Of.Thrones.S07E06.FRENCH.720p.BluRay.x264-Wawacity.ec.mkv

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-05-27 08:17 - 2020-11-25 18:44 - 000000000 ___RD C:\Users\rudyw\OneDrive
2021-05-26 12:25 - 2019-04-02 05:48 - 000000000 ____D C:\ProgramData\NVIDIA
2021-05-25 06:12 - 2020-11-26 03:33 - 000000288 _____ C:\pefdata.dat
2021-05-25 06:12 - 2020-11-26 03:24 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-22 16:11 - 2020-11-26 03:28 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-22 15:08 - 2021-04-14 18:38 - 000000000 ____D C:\AdwCleaner
2021-05-22 15:08 - 2019-04-02 06:01 - 000000000 ____D C:\Program Files (x86)\ASUS
2021-05-22 14:55 - 2019-04-02 05:48 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-03 10:13 - 2020-12-02 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2021-05-02 00:06 - 2020-12-26 19:42 - 000000000 ____D C:\Users\rudyw\Desktop\Films enfants
2021-04-30 11:31 - 2019-04-02 05:52 - 000000000 ____D C:\ProgramData\McAfee
2021-04-30 11:31 - 2019-04-02 05:52 - 000000000 ____D C:\Program Files\mcafee
2021-04-28 14:28 - 2021-01-19 12:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2021-04-28 14:28 - 2020-12-15 10:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMPlayer
2021-04-28 14:28 - 2019-04-02 06:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2021-04-28 14:27 - 2020-12-15 23:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
2021-04-28 14:27 - 2019-04-02 05:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower
2021-04-28 13:59 - 2020-11-25 18:43 - 000000000 ___RD C:\Users\rudyw\3D Objects
2021-04-28 13:59 - 2019-04-02 05:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-04-28 13:47 - 2020-12-27 07:53 - 000000000 ____D C:\Users\rudyw\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2021-04-28 13:44 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-04-28 13:39 - 2019-04-02 06:10 - 000000000 ____D C:\WINDOWS\OEM
2021-04-28 13:39 - 2018-05-14 22:24 - 000000000 ____D C:\WINDOWS\Log
2021-04-28 13:39 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-04-28 13:39 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-04-28 13:37 - 2019-04-02 06:06 - 000000000 ____D C:\Program Files\Asus
2021-04-28 13:37 - 2019-04-02 05:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2021-04-28 13:37 - 2019-04-02 05:52 - 000000000 ____D C:\Program Files\mcafee.com
2021-04-28 13:37 - 2019-04-02 05:52 - 000000000 ____D C:\Program Files\Common Files\mcafee
2021-04-28 13:37 - 2019-04-02 05:52 - 000000000 ____D C:\Program Files\Common Files\av
2021-04-28 13:37 - 2019-04-02 05:52 - 000000000 ____D C:\Program Files (x86)\McAfee
2021-04-28 13:37 - 2019-04-02 05:51 - 000000000 ____D C:\Program Files (x86)\ICEpower
2021-04-28 13:37 - 2019-04-02 05:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-04-28 13:37 - 2019-04-02 05:48 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-04-28 13:37 - 2019-04-02 05:48 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2021-04-28 13:37 - 2019-04-02 05:48 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation

==================== Fichiers à la racine de certains dossiers ========

2021-05-22 21:58 - 2021-05-22 21:58 - 000000218 _____ () C:\Users\rudyw\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité