Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2022
Exécuté par arobe (administrateur) sur SMOOSS (Micro-Star International Co., Ltd. MS-7C79) (08-02-2022 19:10:49)
Exécuté depuis C:\Users\arobe\Downloads
Profils chargés: arobe
Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.469 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.43\msedgewebview2.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\arobe\AppData\Local\Microsoft\OneDrive\22.002.0103.0004\FileCoAuth.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft Windows) C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_421.20050.505.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\arobe\Downloads\ZHPSuite.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4ef17f85da2b0fa5\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe <2>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe [3408512 2021-12-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKU\S-1-5-21-3674095613-2748580544-14723221-1001\...\Run: [MicrosoftEdgeAutoLaunch_44DA1785FA8BC99FE6B45350964F4498] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3674095613-2748580544-14723221-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2022-02-04] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3674095613-2748580544-14723221-1001\...\Run: [Steam] => D:\Steam\steam.exe [4268456 2022-01-16] (Valve Corp. -> Valve Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-04] (Google LLC -> Google LLC)
IFEO\EOSnotify.exe: [Debugger] /
IFEO\InstallAgent.exe: [Debugger] /
IFEO\MusNotification.exe: [Debugger] /
IFEO\MusNotificationUx.exe: [Debugger] /
IFEO\remsh.exe: [Debugger] /
IFEO\SihClient.exe: [Debugger] /
IFEO\UpdateAssistant.exe: [Debugger] /
IFEO\upfc.exe: [Debugger] /
IFEO\UsoClient.exe: [Debugger] /
IFEO\WaaSMedic.exe: [Debugger] /
IFEO\WaasMedicAgent.exe: [Debugger] /
IFEO\Windows10Upgrade.exe: [Debugger] /
IFEO\Windows10UpgraderApp.exe: [Debugger] /
GroupPolicy: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1A4565B0-D112-444B-A188-392D6B997F9B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {26A482F0-9F93-475E-94D9-79B8AEA3FCD7} - System32\Tasks\GoogleUpdateTaskMachineCore{01A8E8C2-54A6-43F3-9C05-A6E33D46210F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-04] (Google LLC -> Google LLC)
Task: {56D4EE93-DCCE-46DE-AF38-C6922F6026B5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F1ABA17-B324-42D7-8D0B-2495528297FE} - System32\Tasks\GoogleUpdateTaskMachineUA{9BC393E7-F520-469E-8614-E2D6847B811B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-04] (Google LLC -> Google LLC)
Task: {81CE69B9-1FE5-458D-8D6D-E974B450D3F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F6909402-986E-44E5-B9EE-CA879E198870} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1d392a2d-f097-42ec-8f94-4f843f298c4b}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{34a4fd72-4e26-41bd-bfdb-e7f96d88fa40}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Profile: C:\Users\arobe\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-08]
Chrome:
=======
CHR Profile: C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default [2022-02-08]
CHR Extension: (Slides) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-02-04]
CHR Extension: (Just Black) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-02-04]
CHR Extension: (Docs) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2022-02-04]
CHR Extension: (Google Drive) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-02-04]
CHR Extension: (YouTube) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-02-04]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-02-04]
CHR Extension: (uBlock Origin) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-02-04]
CHR Extension: (minerBlock) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\emikbbbebcdfohonlaifafnoanocnebl [2022-02-04]
CHR Extension: (Sheets) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-02-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-04]
CHR Extension: (Gmail) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-02-04]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812008 2022-02-04] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2022-02-08] (Epic Games Inc. -> Epic Games, Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11067456 2022-02-04] (Logitech Inc -> Logitech, Inc.)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-02-08] (Malwarebytes Inc -> Malwarebytes)
S3 Rockstar Service; D:\RockstarService.exe [2447152 2022-02-04] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078536 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WMIRegistrationService; C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe [538736 2021-10-05] (Intel Corporation -> Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4ef17f85da2b0fa5\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4ef17f85da2b0fa5\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2022-01-12] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2022-01-12] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2022-01-12] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-02-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-08] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl50c62fdd; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FB7438F0-D209-4FC2-B19D-0E66AEAF1BD3}\MpKslDrv.sys [135440 2022-02-08] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 NTIOLib_CC_Clock; \??\C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-08 19:10 - 2022-02-08 19:11 - 000014683 _____ C:\Users\arobe\Downloads\FRST.txt
2022-02-08 19:10 - 2022-02-08 19:10 - 002311680 _____ (Farbar) C:\Users\arobe\Downloads\FRST64.exe
2022-02-08 19:08 - 2022-02-08 19:09 - 003479704 _____ (Nicolas Coolman) C:\Users\arobe\Downloads\ZHPSuite.exe
2022-02-08 18:42 - 2022-02-08 18:42 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-08 18:42 - 2022-02-08 18:42 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-02-08 18:42 - 2022-02-08 18:42 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-02-08 18:42 - 2022-02-08 18:42 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-02-08 18:42 - 2022-02-08 18:42 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-02-08 18:42 - 2022-02-08 18:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-08 18:42 - 2022-02-08 18:42 - 000000000 ____D C:\Program Files\Malwarebytes
2022-02-08 18:41 - 2022-02-08 18:41 - 002911928 _____ (Malwarebytes) C:\Users\arobe\Downloads\MBSetup.exe
2022-02-08 18:41 - 2022-02-08 18:41 - 002911928 _____ (Malwarebytes) C:\Users\arobe\Downloads\MBSetup (1).exe
2022-02-08 18:27 - 2022-02-08 18:33 - 000000000 ____D C:\AdwCleaner
2022-02-08 18:27 - 2022-02-08 18:27 - 008540344 _____ (Malwarebytes) C:\Users\arobe\Downloads\adwcleaner_8.3.1.exe
2022-02-08 18:06 - 2022-02-08 18:06 - 003293336 _____ (Nicolas Coolman) C:\Users\arobe\Downloads\ZHPCleaner.exe
2022-02-08 17:48 - 2022-02-08 17:48 - 000000000 ____D C:\Users\arobe\Downloads\Wub
2022-02-08 15:28 - 2022-02-08 15:29 - 000275158 _____ C:\WINDOWS\ntbtlog.txt
2022-02-08 15:28 - 2022-02-08 15:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2022-02-08 15:09 - 2022-02-08 19:11 - 000000000 ____D C:\FRST
2022-02-08 15:03 - 2022-02-08 19:12 - 000000000 ____D C:\Users\arobe\AppData\Roaming\ZHP
2022-02-08 15:03 - 2022-02-08 18:04 - 000000000 ____D C:\Users\arobe\AppData\Local\ZHP
2022-02-08 00:26 - 2022-02-08 00:26 - 000000000 ____D C:\Users\arobe\AppData\LocalLow\Mediatonic
2022-02-08 00:25 - 2022-02-08 00:25 - 000000000 ____D C:\Users\arobe\AppData\Roaming\EasyAntiCheat
2022-02-08 00:25 - 2022-02-08 00:25 - 000000000 ____D C:\Users\arobe\AppData\Local\EOSUserHelper
2022-02-08 00:24 - 2022-02-08 00:26 - 000000000 ____D C:\Users\arobe\AppData\Local\Epic Games
2022-02-08 00:24 - 2022-02-08 00:25 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2022-02-08 00:24 - 2022-02-08 00:24 - 000000000 ____D C:\Users\arobe\AppData\Local\UnrealEngine
2022-02-08 00:24 - 2022-02-08 00:24 - 000000000 ____D C:\ProgramData\Epic
2022-02-08 00:24 - 2022-02-08 00:24 - 000000000 ____D C:\Program Files (x86)\Epic Games
2022-02-07 01:37 - 2022-02-07 01:37 - 000000000 ____D C:\Users\arobe\AppData\Roaming\NVIDIA
2022-02-07 01:37 - 2022-02-07 01:37 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2022-02-06 22:49 - 2022-02-06 22:49 - 000000000 ____D C:\Users\arobe\AppData\Local\HaloInfinite
2022-02-04 21:45 - 2022-02-04 21:45 - 000000000 ____D C:\Program Files\Rockstar Games
2022-02-04 21:45 - 2022-02-04 21:45 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2022-02-04 21:44 - 2022-02-07 01:37 - 000000000 ____D C:\Users\arobe\AppData\Local\Rockstar Games
2022-02-04 21:44 - 2022-02-04 21:44 - 000000000 ____D C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2022-02-04 21:44 - 2022-02-04 21:44 - 000000000 ____D C:\ProgramData\Rockstar Games
2022-02-04 21:08 - 2022-02-04 21:08 - 000000000 ____D C:\Users\arobe\AppData\Local\Steam
2022-02-04 21:08 - 2022-02-04 21:08 - 000000000 ____D C:\Users\arobe\AppData\Local\CEF
2022-02-04 21:07 - 2022-02-04 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-02-04 20:20 - 2022-02-07 16:02 - 000000000 ____D C:\Users\arobe\AppData\Roaming\discord
2022-02-04 20:20 - 2022-02-07 16:01 - 000000000 ____D C:\Users\arobe\AppData\Local\Discord
2022-02-04 20:20 - 2022-02-04 20:20 - 000000000 ____D C:\Users\arobe\AppData\Local\SquirrelTemp
2022-02-04 17:06 - 2022-02-04 17:06 - 000000000 ____D C:\Users\arobe\AppData\Local\mbam
2022-02-04 16:11 - 2022-02-04 16:34 - 000007601 _____ C:\Users\arobe\AppData\Local\resmon.resmoncfg
2022-02-04 16:05 - 2022-02-04 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerShell
2022-02-04 16:05 - 2022-02-04 16:05 - 000000000 ____D C:\Program Files\PowerShell
2022-02-04 14:41 - 2022-02-08 17:44 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2022-02-04 14:41 - 2022-02-04 14:43 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2022-02-04 14:38 - 2022-02-06 22:50 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2022-02-04 14:38 - 2022-02-04 14:38 - 000000000 ____D C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2022-02-04 14:29 - 2022-02-08 19:11 - 000000000 ____D C:\Users\arobe\AppData\Local\LGHUB
2022-02-04 14:29 - 2022-02-08 18:37 - 000000000 ____D C:\Users\arobe\AppData\Roaming\LGHUB
2022-02-04 14:29 - 2022-02-04 14:29 - 000000000 ____D C:\ProgramData\Logishrd
2022-02-04 14:28 - 2022-02-04 14:29 - 000000000 ____D C:\ProgramData\LGHUB
2022-02-04 14:28 - 2022-02-04 14:29 - 000000000 ____D C:\Program Files\LGHUB
2022-02-04 14:28 - 2022-02-04 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-02-04 14:20 - 2022-02-07 15:49 - 000000000 ____D C:\MSI
2022-02-04 14:20 - 2022-02-06 21:54 - 000164572 _____ C:\WINDOWS\cFosSpeed_Setup_Log.txt
2022-02-04 14:20 - 2022-02-04 14:20 - 000000000 ____D C:\Program Files (x86)\ENE
2022-02-04 14:20 - 2020-05-12 01:28 - 000020992 _____ C:\WINDOWS\system32\Drivers\ene.sys
2022-02-04 14:20 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\WINDOWS\system32\Drivers\MsIo64.sys
2022-02-04 14:19 - 2022-02-04 14:21 - 000000000 ____D C:\ProgramData\MSI
2022-02-04 13:36 - 2022-02-04 13:36 - 000000000 ____D C:\Users\arobe\AppData\Local\PeerDistRepub
2022-02-04 13:33 - 2022-02-07 15:49 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-04 13:33 - 2022-02-04 13:33 - 000000000 ____D C:\Program Files\Intel
2022-02-04 13:31 - 2022-02-04 13:31 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-04 13:30 - 2022-01-28 12:28 - 000127968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2022-02-04 13:30 - 2022-01-28 12:28 - 000040920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-02-04 13:26 - 2022-02-04 13:26 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-04 13:26 - 2022-01-28 20:19 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-04 13:26 - 2022-01-28 20:19 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-04 13:26 - 2022-01-28 20:19 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-04 13:26 - 2022-01-28 20:19 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-04 13:26 - 2022-01-28 20:19 - 001466000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001432312 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001432312 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001207440 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001144552 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001144552 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 001528448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 001179584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 000795264 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 000714880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 000638912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 008610432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 002121360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 001602704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 000985024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 000794552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 000710800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-02-04 13:26 - 2022-01-28 20:15 - 000455808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-02-04 13:26 - 2022-01-28 20:14 - 007715256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-02-04 13:26 - 2022-01-28 20:14 - 005726336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-02-04 13:26 - 2022-01-28 20:14 - 005098112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-02-04 13:26 - 2022-01-28 20:14 - 002932864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-02-04 13:26 - 2022-01-28 20:13 - 000850872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-02-04 13:26 - 2022-01-28 20:11 - 006459952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-02-04 13:26 - 2022-01-28 12:28 - 000089185 _____ C:\WINDOWS\system32\nvinfo.pb
2022-02-04 13:15 - 2022-02-04 16:26 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-04 13:14 - 2022-02-08 18:38 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-04 13:14 - 2022-02-04 13:24 - 000000000 ____D C:\Users\arobe\AppData\Local\Google
2022-02-04 13:14 - 2022-02-04 13:14 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{9BC393E7-F520-469E-8614-E2D6847B811B}
2022-02-04 13:14 - 2022-02-04 13:14 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{01A8E8C2-54A6-43F3-9C05-A6E33D46210F}
2022-02-04 13:14 - 2022-02-04 13:14 - 000000000 ____D C:\Program Files\Google
2022-02-04 03:48 - 2022-02-04 03:48 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-04 03:47 - 2022-02-04 03:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-04 03:46 - 2022-02-04 03:46 - 000000000 ___HD C:\$WinREAgent
2022-02-04 03:44 - 2022-02-04 14:05 - 000000000 ____D C:\Users\arobe\AppData\Local\Comms
2022-02-04 03:40 - 2022-02-04 03:40 - 000000000 ____D C:\Users\arobe\AppData\Local\OneDrive
2022-02-04 03:39 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Office Lens
2022-02-04 03:39 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\League of Legends
2022-02-04 03:38 - 2022-02-08 18:37 - 000000000 ___RD C:\Users\arobe\OneDrive
2022-02-04 03:38 - 2022-02-06 21:22 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3674095613-2748580544-14723221-1001
2022-02-04 03:38 - 2022-02-06 21:22 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3674095613-2748580544-14723221-1001
2022-02-04 03:38 - 2022-02-06 21:22 - 000002421 _____ C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-04 03:38 - 2022-02-04 13:00 - 000000000 ____D C:\Users\arobe\AppData\Local\PlaceholderTileLogoFolder
2022-02-04 03:38 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\My Games
2022-02-04 03:38 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Electronic Arts
2022-02-04 03:38 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Battlefield 2042 Open Beta
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ___HD C:\OneDriveTemp
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Rockstar Games
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Overwatch
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Criterion Games
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\BioWare
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Battlefield 2042
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Assassin's Creed Valhalla
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\AppData\Local\VirtualStore
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-02-04 03:37 - 2022-02-06 21:23 - 000000000 ____D C:\ProgramData\Packages
2022-02-04 03:37 - 2022-02-04 03:37 - 000000000 ____D C:\Users\arobe\AppData\Local\Publishers
2022-02-04 03:36 - 2022-02-08 17:41 - 000000000 ____D C:\Users\arobe\AppData\Local\D3DSCache
2022-02-04 03:36 - 2022-02-06 21:23 - 000000000 ____D C:\Users\arobe\AppData\Local\Packages
2022-02-04 03:36 - 2022-02-04 21:10 - 000000000 ____D C:\Users\arobe\AppData\Local\NVIDIA
2022-02-04 03:36 - 2022-02-04 12:58 - 000000000 ____D C:\Users\arobe\AppData\Local\ConnectedDevicesPlatform
2022-02-04 03:36 - 2022-02-04 03:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-02-04 03:36 - 2022-02-04 03:36 - 000000000 ____D C:\Users\arobe\AppData\Roaming\Adobe
2022-02-04 03:30 - 2022-02-07 03:35 - 000000000 ____D C:\Users\arobe
2022-02-04 03:30 - 2022-02-04 03:30 - 000000020 ___SH C:\Users\arobe\ntuser.ini
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Voisinage réseau
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Voisinage d'impression
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Modèles
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Mes documents
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Menu Démarrer
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\AppData\Local\Historique
2022-02-04 03:30 - 2021-06-05 13:04 - 000001281 _____ C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2022-02-04 03:30 - 2021-06-05 13:04 - 000000407 _____ C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2022-02-04 03:29 - 2022-02-04 03:29 - 000000000 ____D C:\ProgramData\Intel
2022-02-04 03:19 - 2022-02-08 18:28 - 001800200 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Voisinage réseau
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Modèles
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Mes documents
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Menu Démarrer
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\ProgramData\Modèles
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\ProgramData\Menu Démarrer
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\ProgramData\Bureau
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Program Files\Fichiers communs
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Documents and Settings
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 ____D C:\WINDOWS\CSC
2022-02-04 03:13 - 2022-02-08 18:36 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-04 03:13 - 2022-02-04 15:31 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-04 03:13 - 2022-02-04 14:08 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-04 03:13 - 2022-02-04 14:08 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-04 03:13 - 2022-02-04 03:29 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-04 03:13 - 2022-02-04 03:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2022-02-04 03:12 - 2022-02-08 18:36 - 000012288 ___SH C:\DumpStack.log.tmp
2022-02-04 03:12 - 2022-02-08 18:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-04 03:12 - 2022-02-08 17:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-04 03:12 - 2022-02-04 16:22 - 000292856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-04 03:12 - 2022-02-04 13:08 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-04 03:12 - 2022-02-04 03:12 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-02-04 03:10 - 2022-02-04 03:15 - 000000000 ____D C:\WINDOWS\Panther
2022-02-04 03:09 - 2022-02-04 03:09 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2022-02-04 03:05 - 2022-02-04 03:05 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-02-04 03:05 - 2022-02-04 03:05 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-02-04 03:05 - 2022-02-04 03:05 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000339968 _____ C:\WINDOWS\system32\pku2u.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000311296 _____ C:\WINDOWS\system32\EsclScan.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2022-02-04 03:05 - 2022-02-04 03:05 - 000247808 _____ C:\WINDOWS\SysWOW64\pku2u.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000188416 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000121344 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-04 03:05 - 2022-02-04 03:05 - 000077824 _____ C:\WINDOWS\system32\APMonUI.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json
2022-02-04 03:05 - 2022-02-04 03:05 - 000040960 _____ C:\WINDOWS\system32\prxyqry.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000015056 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-04 03:05 - 2022-02-04 03:05 - 000013824 _____ C:\WINDOWS\SysWOW64\prxyqry.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList
2022-02-04 03:05 - 2022-02-04 03:05 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList
2022-02-04 03:05 - 2022-02-04 03:05 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList
2022-02-04 03:05 - 2022-02-04 03:05 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2022-02-04 03:05 - 2022-02-04 03:05 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList
2022-02-04 03:05 - 2022-02-04 03:05 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2022-02-04 03:05 - 2022-02-04 03:05 - 000006656 _____ C:\WINDOWS\SysWOW64\nrtapi.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2022-02-04 03:04 - 2022-02-04 03:04 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000339968 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe
2022-02-04 03:04 - 2022-02-04 03:04 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000208896 _____ C:\WINDOWS\system32\IHDS.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-04 03:04 - 2022-02-04 03:04 - 000167936 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-04 03:04 - 2022-02-04 03:04 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2022-02-04 03:04 - 2022-02-04 03:04 - 000041594 _____ C:\WINDOWS\system32\ctac.json
2022-02-04 03:04 - 2022-02-04 03:04 - 000024576 _____ C:\WINDOWS\system32\nrtapi.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\Program Files\MSBuild
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-02-04 02:59 - 2022-02-04 02:59 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-02-04 02:35 - 2022-02-04 03:10 - 000000000 ___HD C:\$SysReset
2022-01-18 15:21 - 2022-01-28 20:11 - 007612320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-01-12 20:30 - 2022-01-12 20:30 - 000066896 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2022-01-12 20:30 - 2022-01-12 20:30 - 000037200 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2022-01-12 20:30 - 2022-01-12 20:30 - 000025928 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2022-01-08 22:51 - 2022-01-08 22:51 - 001159216 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2022-01-08 20:55 - 2022-01-08 20:55 - 045101144 _____ C:\WINDOWS\system32\Drivers\Netwfw10.dat
2022-01-08 20:55 - 2022-01-08 20:55 - 004955248 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys
2022-01-08 20:55 - 2022-01-08 20:55 - 001622088 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll
2021-12-05 19:06 - 2021-12-05 19:06 - 000053200 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\Drivers\ETDSMBus.sys
2021-11-18 20:22 - 2021-11-18 20:22 - 001347776 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAC.sys
2021-11-18 20:22 - 2021-11-18 20:22 - 000027328 _____ (Intel Corporation) C:\WINDOWS\system32\RstMwEventLogMsg.dll
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-08 18:54 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-02-08 18:49 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-08 18:42 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-08 18:37 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-08 18:36 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-08 18:28 - 2021-06-05 19:15 - 000806506 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-08 18:28 - 2021-06-05 19:15 - 000156164 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-08 18:28 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-02-08 17:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2022-02-08 17:39 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-08 15:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-02-06 21:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\appcompat
2022-02-06 21:26 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-04 14:41 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-02-04 13:14 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2022-02-04 13:08 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows Defender
2022-02-04 12:59 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-02-04 03:37 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-04 03:17 - 2021-06-05 19:22 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-02-04 03:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\spool
2022-02-04 03:15 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-02-04 03:15 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\USOPrivate
2022-02-04 03:15 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows NT
2022-02-04 03:13 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-02-04 03:13 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-02-04 03:10 - 2021-06-05 13:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-02-04 03:09 - 2021-06-05 19:23 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-02-04 03:09 - 2021-06-05 19:23 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-02-04 03:09 - 2021-06-05 19:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\setup
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\DiagTrack
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System
2022-02-04 03:08 - 2021-06-05 19:23 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2022-02-04 03:08 - 2021-06-05 19:23 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2022-02-04 03:02 - 2021-06-05 19:23 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\MUI
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender
==================== Fichiers à la racine de certains dossiers ========
2022-02-04 16:11 - 2022-02-04 16:34 - 000007601 _____ () C:\Users\arobe\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2022-02-08 19:10 - 2022-02-08 19:10 - 002311680 _____ (Farbar) C:\Users\arobe\Downloads\FRST64.exe
2022-02-08 18:06 - 2022-02-08 18:06 - 003293336 _____ (Nicolas Coolman) C:\Users\arobe\Downloads\ZHPCleaner.exe
2022-02-08 19:08 - 2022-02-08 19:09 - 003479704 _____ (Nicolas Coolman) C:\Users\arobe\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{64456dd4-70bb-11ec-99a2-806e6f6e6963}
{64456dd5-70bb-11ec-99a2-806e6f6e6963}
{64456dd6-70bb-11ec-99a2-806e6f6e6963}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {8e4b6ddc-855f-11ec-841b-f961f314a19c}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 5
Application logicielle (101fffff)
--------------------------------
identificateur {64456dd4-70bb-11ec-99a2-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {64456dd5-70bb-11ec-99a2-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {64456dd6-70bb-11ec-99a2-806e6f6e6963}
description UEFI:Network Device
Chargeur de d‚marrage Windows
-----------------------------
identificateur {14be25b9-70c0-11ec-b182-a4ea5690d4f8}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{14be25ba-70c0-11ec-b182-a4ea5690d4f8}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{14be25ba-70c0-11ec-b182-a4ea5690d4f8}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {14be25b9-70c0-11ec-b182-a4ea5690d4f8}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {8e4b6ddc-855f-11ec-841b-f961f314a19c}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {d2cbad26-2527-11eb-a157-efdc8fab6ba9}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{d2cbad27-2527-11eb-a157-efdc8fab6ba9}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride PushButtonReset
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{d2cbad27-2527-11eb-a157-efdc8fab6ba9}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {8e4b6ddc-855f-11ec-841b-f961f314a19c}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {14be25b9-70c0-11ec-b182-a4ea5690d4f8}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {14be25ba-70c0-11ec-b182-a4ea5690d4f8}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par arobe (administrateur) sur SMOOSS (Micro-Star International Co., Ltd. MS-7C79) (08-02-2022 19:10:49)
Exécuté depuis C:\Users\arobe\Downloads
Profils chargés: arobe
Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.469 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.43\msedgewebview2.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\arobe\AppData\Local\Microsoft\OneDrive\22.002.0103.0004\FileCoAuth.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft Windows) C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_421.20050.505.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\arobe\Downloads\ZHPSuite.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4ef17f85da2b0fa5\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe <2>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe [3408512 2021-12-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKU\S-1-5-21-3674095613-2748580544-14723221-1001\...\Run: [MicrosoftEdgeAutoLaunch_44DA1785FA8BC99FE6B45350964F4498] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3674095613-2748580544-14723221-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2022-02-04] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3674095613-2748580544-14723221-1001\...\Run: [Steam] => D:\Steam\steam.exe [4268456 2022-01-16] (Valve Corp. -> Valve Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-04] (Google LLC -> Google LLC)
IFEO\EOSnotify.exe: [Debugger] /
IFEO\InstallAgent.exe: [Debugger] /
IFEO\MusNotification.exe: [Debugger] /
IFEO\MusNotificationUx.exe: [Debugger] /
IFEO\remsh.exe: [Debugger] /
IFEO\SihClient.exe: [Debugger] /
IFEO\UpdateAssistant.exe: [Debugger] /
IFEO\upfc.exe: [Debugger] /
IFEO\UsoClient.exe: [Debugger] /
IFEO\WaaSMedic.exe: [Debugger] /
IFEO\WaasMedicAgent.exe: [Debugger] /
IFEO\Windows10Upgrade.exe: [Debugger] /
IFEO\Windows10UpgraderApp.exe: [Debugger] /
GroupPolicy: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1A4565B0-D112-444B-A188-392D6B997F9B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {26A482F0-9F93-475E-94D9-79B8AEA3FCD7} - System32\Tasks\GoogleUpdateTaskMachineCore{01A8E8C2-54A6-43F3-9C05-A6E33D46210F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-04] (Google LLC -> Google LLC)
Task: {56D4EE93-DCCE-46DE-AF38-C6922F6026B5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F1ABA17-B324-42D7-8D0B-2495528297FE} - System32\Tasks\GoogleUpdateTaskMachineUA{9BC393E7-F520-469E-8614-E2D6847B811B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-04] (Google LLC -> Google LLC)
Task: {81CE69B9-1FE5-458D-8D6D-E974B450D3F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F6909402-986E-44E5-B9EE-CA879E198870} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1d392a2d-f097-42ec-8f94-4f843f298c4b}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{34a4fd72-4e26-41bd-bfdb-e7f96d88fa40}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Profile: C:\Users\arobe\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-08]
Chrome:
=======
CHR Profile: C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default [2022-02-08]
CHR Extension: (Slides) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-02-04]
CHR Extension: (Just Black) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-02-04]
CHR Extension: (Docs) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2022-02-04]
CHR Extension: (Google Drive) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-02-04]
CHR Extension: (YouTube) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-02-04]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-02-04]
CHR Extension: (uBlock Origin) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-02-04]
CHR Extension: (minerBlock) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\emikbbbebcdfohonlaifafnoanocnebl [2022-02-04]
CHR Extension: (Sheets) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-02-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-04]
CHR Extension: (Gmail) - C:\Users\arobe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-02-04]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812008 2022-02-04] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2022-02-08] (Epic Games Inc. -> Epic Games, Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11067456 2022-02-04] (Logitech Inc -> Logitech, Inc.)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-02-08] (Malwarebytes Inc -> Malwarebytes)
S3 Rockstar Service; D:\RockstarService.exe [2447152 2022-02-04] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078536 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WMIRegistrationService; C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe [538736 2021-10-05] (Intel Corporation -> Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4ef17f85da2b0fa5\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_4ef17f85da2b0fa5\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2022-01-12] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2022-01-12] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2022-01-12] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-02-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-08] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl50c62fdd; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FB7438F0-D209-4FC2-B19D-0E66AEAF1BD3}\MpKslDrv.sys [135440 2022-02-08] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 NTIOLib_CC_Clock; \??\C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-08 19:10 - 2022-02-08 19:11 - 000014683 _____ C:\Users\arobe\Downloads\FRST.txt
2022-02-08 19:10 - 2022-02-08 19:10 - 002311680 _____ (Farbar) C:\Users\arobe\Downloads\FRST64.exe
2022-02-08 19:08 - 2022-02-08 19:09 - 003479704 _____ (Nicolas Coolman) C:\Users\arobe\Downloads\ZHPSuite.exe
2022-02-08 18:42 - 2022-02-08 18:42 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-08 18:42 - 2022-02-08 18:42 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-02-08 18:42 - 2022-02-08 18:42 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-02-08 18:42 - 2022-02-08 18:42 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-02-08 18:42 - 2022-02-08 18:42 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-02-08 18:42 - 2022-02-08 18:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-08 18:42 - 2022-02-08 18:42 - 000000000 ____D C:\Program Files\Malwarebytes
2022-02-08 18:41 - 2022-02-08 18:41 - 002911928 _____ (Malwarebytes) C:\Users\arobe\Downloads\MBSetup.exe
2022-02-08 18:41 - 2022-02-08 18:41 - 002911928 _____ (Malwarebytes) C:\Users\arobe\Downloads\MBSetup (1).exe
2022-02-08 18:27 - 2022-02-08 18:33 - 000000000 ____D C:\AdwCleaner
2022-02-08 18:27 - 2022-02-08 18:27 - 008540344 _____ (Malwarebytes) C:\Users\arobe\Downloads\adwcleaner_8.3.1.exe
2022-02-08 18:06 - 2022-02-08 18:06 - 003293336 _____ (Nicolas Coolman) C:\Users\arobe\Downloads\ZHPCleaner.exe
2022-02-08 17:48 - 2022-02-08 17:48 - 000000000 ____D C:\Users\arobe\Downloads\Wub
2022-02-08 15:28 - 2022-02-08 15:29 - 000275158 _____ C:\WINDOWS\ntbtlog.txt
2022-02-08 15:28 - 2022-02-08 15:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2022-02-08 15:09 - 2022-02-08 19:11 - 000000000 ____D C:\FRST
2022-02-08 15:03 - 2022-02-08 19:12 - 000000000 ____D C:\Users\arobe\AppData\Roaming\ZHP
2022-02-08 15:03 - 2022-02-08 18:04 - 000000000 ____D C:\Users\arobe\AppData\Local\ZHP
2022-02-08 00:26 - 2022-02-08 00:26 - 000000000 ____D C:\Users\arobe\AppData\LocalLow\Mediatonic
2022-02-08 00:25 - 2022-02-08 00:25 - 000000000 ____D C:\Users\arobe\AppData\Roaming\EasyAntiCheat
2022-02-08 00:25 - 2022-02-08 00:25 - 000000000 ____D C:\Users\arobe\AppData\Local\EOSUserHelper
2022-02-08 00:24 - 2022-02-08 00:26 - 000000000 ____D C:\Users\arobe\AppData\Local\Epic Games
2022-02-08 00:24 - 2022-02-08 00:25 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2022-02-08 00:24 - 2022-02-08 00:24 - 000000000 ____D C:\Users\arobe\AppData\Local\UnrealEngine
2022-02-08 00:24 - 2022-02-08 00:24 - 000000000 ____D C:\ProgramData\Epic
2022-02-08 00:24 - 2022-02-08 00:24 - 000000000 ____D C:\Program Files (x86)\Epic Games
2022-02-07 01:37 - 2022-02-07 01:37 - 000000000 ____D C:\Users\arobe\AppData\Roaming\NVIDIA
2022-02-07 01:37 - 2022-02-07 01:37 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2022-02-06 22:49 - 2022-02-06 22:49 - 000000000 ____D C:\Users\arobe\AppData\Local\HaloInfinite
2022-02-04 21:45 - 2022-02-04 21:45 - 000000000 ____D C:\Program Files\Rockstar Games
2022-02-04 21:45 - 2022-02-04 21:45 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2022-02-04 21:44 - 2022-02-07 01:37 - 000000000 ____D C:\Users\arobe\AppData\Local\Rockstar Games
2022-02-04 21:44 - 2022-02-04 21:44 - 000000000 ____D C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2022-02-04 21:44 - 2022-02-04 21:44 - 000000000 ____D C:\ProgramData\Rockstar Games
2022-02-04 21:08 - 2022-02-04 21:08 - 000000000 ____D C:\Users\arobe\AppData\Local\Steam
2022-02-04 21:08 - 2022-02-04 21:08 - 000000000 ____D C:\Users\arobe\AppData\Local\CEF
2022-02-04 21:07 - 2022-02-04 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-02-04 20:20 - 2022-02-07 16:02 - 000000000 ____D C:\Users\arobe\AppData\Roaming\discord
2022-02-04 20:20 - 2022-02-07 16:01 - 000000000 ____D C:\Users\arobe\AppData\Local\Discord
2022-02-04 20:20 - 2022-02-04 20:20 - 000000000 ____D C:\Users\arobe\AppData\Local\SquirrelTemp
2022-02-04 17:06 - 2022-02-04 17:06 - 000000000 ____D C:\Users\arobe\AppData\Local\mbam
2022-02-04 16:11 - 2022-02-04 16:34 - 000007601 _____ C:\Users\arobe\AppData\Local\resmon.resmoncfg
2022-02-04 16:05 - 2022-02-04 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerShell
2022-02-04 16:05 - 2022-02-04 16:05 - 000000000 ____D C:\Program Files\PowerShell
2022-02-04 14:41 - 2022-02-08 17:44 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2022-02-04 14:41 - 2022-02-04 14:43 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2022-02-04 14:38 - 2022-02-06 22:50 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2022-02-04 14:38 - 2022-02-04 14:38 - 000000000 ____D C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2022-02-04 14:29 - 2022-02-08 19:11 - 000000000 ____D C:\Users\arobe\AppData\Local\LGHUB
2022-02-04 14:29 - 2022-02-08 18:37 - 000000000 ____D C:\Users\arobe\AppData\Roaming\LGHUB
2022-02-04 14:29 - 2022-02-04 14:29 - 000000000 ____D C:\ProgramData\Logishrd
2022-02-04 14:28 - 2022-02-04 14:29 - 000000000 ____D C:\ProgramData\LGHUB
2022-02-04 14:28 - 2022-02-04 14:29 - 000000000 ____D C:\Program Files\LGHUB
2022-02-04 14:28 - 2022-02-04 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-02-04 14:20 - 2022-02-07 15:49 - 000000000 ____D C:\MSI
2022-02-04 14:20 - 2022-02-06 21:54 - 000164572 _____ C:\WINDOWS\cFosSpeed_Setup_Log.txt
2022-02-04 14:20 - 2022-02-04 14:20 - 000000000 ____D C:\Program Files (x86)\ENE
2022-02-04 14:20 - 2020-05-12 01:28 - 000020992 _____ C:\WINDOWS\system32\Drivers\ene.sys
2022-02-04 14:20 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\WINDOWS\system32\Drivers\MsIo64.sys
2022-02-04 14:19 - 2022-02-04 14:21 - 000000000 ____D C:\ProgramData\MSI
2022-02-04 13:36 - 2022-02-04 13:36 - 000000000 ____D C:\Users\arobe\AppData\Local\PeerDistRepub
2022-02-04 13:33 - 2022-02-07 15:49 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-04 13:33 - 2022-02-04 13:33 - 000000000 ____D C:\Program Files\Intel
2022-02-04 13:31 - 2022-02-04 13:31 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-04 13:30 - 2022-01-28 12:28 - 000127968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2022-02-04 13:30 - 2022-01-28 12:28 - 000040920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-02-04 13:26 - 2022-02-04 13:26 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-04 13:26 - 2022-01-28 20:19 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-04 13:26 - 2022-01-28 20:19 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-04 13:26 - 2022-01-28 20:19 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-04 13:26 - 2022-01-28 20:19 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-04 13:26 - 2022-01-28 20:19 - 001466000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001432312 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001432312 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001207440 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001144552 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-04 13:26 - 2022-01-28 20:19 - 001144552 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 001528448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 001179584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 000795264 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 000714880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-02-04 13:26 - 2022-01-28 20:16 - 000638912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 008610432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 002121360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 001602704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 000985024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 000794552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-02-04 13:26 - 2022-01-28 20:15 - 000710800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-02-04 13:26 - 2022-01-28 20:15 - 000455808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-02-04 13:26 - 2022-01-28 20:14 - 007715256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-02-04 13:26 - 2022-01-28 20:14 - 005726336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-02-04 13:26 - 2022-01-28 20:14 - 005098112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-02-04 13:26 - 2022-01-28 20:14 - 002932864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-02-04 13:26 - 2022-01-28 20:13 - 000850872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-02-04 13:26 - 2022-01-28 20:11 - 006459952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-02-04 13:26 - 2022-01-28 12:28 - 000089185 _____ C:\WINDOWS\system32\nvinfo.pb
2022-02-04 13:15 - 2022-02-04 16:26 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-04 13:14 - 2022-02-08 18:38 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-04 13:14 - 2022-02-04 13:24 - 000000000 ____D C:\Users\arobe\AppData\Local\Google
2022-02-04 13:14 - 2022-02-04 13:14 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{9BC393E7-F520-469E-8614-E2D6847B811B}
2022-02-04 13:14 - 2022-02-04 13:14 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{01A8E8C2-54A6-43F3-9C05-A6E33D46210F}
2022-02-04 13:14 - 2022-02-04 13:14 - 000000000 ____D C:\Program Files\Google
2022-02-04 03:48 - 2022-02-04 03:48 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-04 03:47 - 2022-02-04 03:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-04 03:46 - 2022-02-04 03:46 - 000000000 ___HD C:\$WinREAgent
2022-02-04 03:44 - 2022-02-04 14:05 - 000000000 ____D C:\Users\arobe\AppData\Local\Comms
2022-02-04 03:40 - 2022-02-04 03:40 - 000000000 ____D C:\Users\arobe\AppData\Local\OneDrive
2022-02-04 03:39 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Office Lens
2022-02-04 03:39 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\League of Legends
2022-02-04 03:38 - 2022-02-08 18:37 - 000000000 ___RD C:\Users\arobe\OneDrive
2022-02-04 03:38 - 2022-02-06 21:22 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3674095613-2748580544-14723221-1001
2022-02-04 03:38 - 2022-02-06 21:22 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3674095613-2748580544-14723221-1001
2022-02-04 03:38 - 2022-02-06 21:22 - 000002421 _____ C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-04 03:38 - 2022-02-04 13:00 - 000000000 ____D C:\Users\arobe\AppData\Local\PlaceholderTileLogoFolder
2022-02-04 03:38 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\My Games
2022-02-04 03:38 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Electronic Arts
2022-02-04 03:38 - 2022-02-04 03:39 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Battlefield 2042 Open Beta
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ___HD C:\OneDriveTemp
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Rockstar Games
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Overwatch
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Criterion Games
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\BioWare
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Battlefield 2042
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\OneDrive\Documents\Assassin's Creed Valhalla
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\Users\arobe\AppData\Local\VirtualStore
2022-02-04 03:38 - 2022-02-04 03:38 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-02-04 03:37 - 2022-02-06 21:23 - 000000000 ____D C:\ProgramData\Packages
2022-02-04 03:37 - 2022-02-04 03:37 - 000000000 ____D C:\Users\arobe\AppData\Local\Publishers
2022-02-04 03:36 - 2022-02-08 17:41 - 000000000 ____D C:\Users\arobe\AppData\Local\D3DSCache
2022-02-04 03:36 - 2022-02-06 21:23 - 000000000 ____D C:\Users\arobe\AppData\Local\Packages
2022-02-04 03:36 - 2022-02-04 21:10 - 000000000 ____D C:\Users\arobe\AppData\Local\NVIDIA
2022-02-04 03:36 - 2022-02-04 12:58 - 000000000 ____D C:\Users\arobe\AppData\Local\ConnectedDevicesPlatform
2022-02-04 03:36 - 2022-02-04 03:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-02-04 03:36 - 2022-02-04 03:36 - 000000000 ____D C:\Users\arobe\AppData\Roaming\Adobe
2022-02-04 03:30 - 2022-02-07 03:35 - 000000000 ____D C:\Users\arobe
2022-02-04 03:30 - 2022-02-04 03:30 - 000000020 ___SH C:\Users\arobe\ntuser.ini
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Voisinage réseau
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Voisinage d'impression
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Modèles
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Mes documents
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\Menu Démarrer
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-02-04 03:30 - 2022-02-04 03:30 - 000000000 _SHDL C:\Users\arobe\AppData\Local\Historique
2022-02-04 03:30 - 2021-06-05 13:04 - 000001281 _____ C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2022-02-04 03:30 - 2021-06-05 13:04 - 000000407 _____ C:\Users\arobe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2022-02-04 03:29 - 2022-02-04 03:29 - 000000000 ____D C:\ProgramData\Intel
2022-02-04 03:19 - 2022-02-08 18:28 - 001800200 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Voisinage réseau
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Modèles
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Mes documents
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\Menu Démarrer
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\ProgramData\Modèles
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\ProgramData\Menu Démarrer
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\ProgramData\Bureau
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Program Files\Fichiers communs
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 _SHDL C:\Documents and Settings
2022-02-04 03:15 - 2022-02-04 03:15 - 000000000 ____D C:\WINDOWS\CSC
2022-02-04 03:13 - 2022-02-08 18:36 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-04 03:13 - 2022-02-04 15:31 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-04 03:13 - 2022-02-04 14:08 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-04 03:13 - 2022-02-04 14:08 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-04 03:13 - 2022-02-04 03:29 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-04 03:13 - 2022-02-04 03:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2022-02-04 03:12 - 2022-02-08 18:36 - 000012288 ___SH C:\DumpStack.log.tmp
2022-02-04 03:12 - 2022-02-08 18:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-04 03:12 - 2022-02-08 17:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-04 03:12 - 2022-02-04 16:22 - 000292856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-04 03:12 - 2022-02-04 13:08 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-04 03:12 - 2022-02-04 03:12 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-02-04 03:10 - 2022-02-04 03:15 - 000000000 ____D C:\WINDOWS\Panther
2022-02-04 03:09 - 2022-02-04 03:09 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2022-02-04 03:05 - 2022-02-04 03:05 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-02-04 03:05 - 2022-02-04 03:05 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-02-04 03:05 - 2022-02-04 03:05 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000339968 _____ C:\WINDOWS\system32\pku2u.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000311296 _____ C:\WINDOWS\system32\EsclScan.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2022-02-04 03:05 - 2022-02-04 03:05 - 000247808 _____ C:\WINDOWS\SysWOW64\pku2u.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000188416 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000121344 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-04 03:05 - 2022-02-04 03:05 - 000077824 _____ C:\WINDOWS\system32\APMonUI.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json
2022-02-04 03:05 - 2022-02-04 03:05 - 000040960 _____ C:\WINDOWS\system32\prxyqry.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000015056 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-04 03:05 - 2022-02-04 03:05 - 000013824 _____ C:\WINDOWS\SysWOW64\prxyqry.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList
2022-02-04 03:05 - 2022-02-04 03:05 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList
2022-02-04 03:05 - 2022-02-04 03:05 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList
2022-02-04 03:05 - 2022-02-04 03:05 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2022-02-04 03:05 - 2022-02-04 03:05 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList
2022-02-04 03:05 - 2022-02-04 03:05 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2022-02-04 03:05 - 2022-02-04 03:05 - 000006656 _____ C:\WINDOWS\SysWOW64\nrtapi.dll
2022-02-04 03:05 - 2022-02-04 03:05 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2022-02-04 03:04 - 2022-02-04 03:04 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000339968 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe
2022-02-04 03:04 - 2022-02-04 03:04 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000208896 _____ C:\WINDOWS\system32\IHDS.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-04 03:04 - 2022-02-04 03:04 - 000167936 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-04 03:04 - 2022-02-04 03:04 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2022-02-04 03:04 - 2022-02-04 03:04 - 000041594 _____ C:\WINDOWS\system32\ctac.json
2022-02-04 03:04 - 2022-02-04 03:04 - 000024576 _____ C:\WINDOWS\system32\nrtapi.dll
2022-02-04 03:04 - 2022-02-04 03:04 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\Program Files\MSBuild
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-02-04 03:02 - 2022-02-04 03:02 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-02-04 02:59 - 2022-02-04 02:59 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-02-04 02:35 - 2022-02-04 03:10 - 000000000 ___HD C:\$SysReset
2022-01-18 15:21 - 2022-01-28 20:11 - 007612320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-01-12 20:30 - 2022-01-12 20:30 - 000066896 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2022-01-12 20:30 - 2022-01-12 20:30 - 000037200 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2022-01-12 20:30 - 2022-01-12 20:30 - 000025928 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2022-01-08 22:51 - 2022-01-08 22:51 - 001159216 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2022-01-08 20:55 - 2022-01-08 20:55 - 045101144 _____ C:\WINDOWS\system32\Drivers\Netwfw10.dat
2022-01-08 20:55 - 2022-01-08 20:55 - 004955248 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys
2022-01-08 20:55 - 2022-01-08 20:55 - 001622088 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll
2021-12-05 19:06 - 2021-12-05 19:06 - 000053200 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\Drivers\ETDSMBus.sys
2021-11-18 20:22 - 2021-11-18 20:22 - 001347776 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAC.sys
2021-11-18 20:22 - 2021-11-18 20:22 - 000027328 _____ (Intel Corporation) C:\WINDOWS\system32\RstMwEventLogMsg.dll
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-08 18:54 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-02-08 18:49 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-08 18:42 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-08 18:37 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-08 18:36 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-08 18:28 - 2021-06-05 19:15 - 000806506 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-08 18:28 - 2021-06-05 19:15 - 000156164 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-08 18:28 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-02-08 17:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2022-02-08 17:39 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-08 15:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-02-06 21:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\appcompat
2022-02-06 21:26 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-04 14:41 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-02-04 13:14 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2022-02-04 13:08 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows Defender
2022-02-04 12:59 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-02-04 03:37 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-04 03:17 - 2021-06-05 19:22 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-02-04 03:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\spool
2022-02-04 03:15 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-02-04 03:15 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\USOPrivate
2022-02-04 03:15 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows NT
2022-02-04 03:13 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-02-04 03:13 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-02-04 03:10 - 2021-06-05 13:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-02-04 03:09 - 2021-06-05 19:23 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-02-04 03:09 - 2021-06-05 19:23 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-02-04 03:09 - 2021-06-05 19:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\setup
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\DiagTrack
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-04 03:09 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System
2022-02-04 03:08 - 2021-06-05 19:23 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2022-02-04 03:08 - 2021-06-05 19:23 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2022-02-04 03:02 - 2021-06-05 19:23 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-02-04 03:02 - 2021-06-05 19:15 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\MUI
2022-02-04 03:02 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender
==================== Fichiers à la racine de certains dossiers ========
2022-02-04 16:11 - 2022-02-04 16:34 - 000007601 _____ () C:\Users\arobe\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2022-02-08 19:10 - 2022-02-08 19:10 - 002311680 _____ (Farbar) C:\Users\arobe\Downloads\FRST64.exe
2022-02-08 18:06 - 2022-02-08 18:06 - 003293336 _____ (Nicolas Coolman) C:\Users\arobe\Downloads\ZHPCleaner.exe
2022-02-08 19:08 - 2022-02-08 19:09 - 003479704 _____ (Nicolas Coolman) C:\Users\arobe\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{64456dd4-70bb-11ec-99a2-806e6f6e6963}
{64456dd5-70bb-11ec-99a2-806e6f6e6963}
{64456dd6-70bb-11ec-99a2-806e6f6e6963}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {8e4b6ddc-855f-11ec-841b-f961f314a19c}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 5
Application logicielle (101fffff)
--------------------------------
identificateur {64456dd4-70bb-11ec-99a2-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {64456dd5-70bb-11ec-99a2-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {64456dd6-70bb-11ec-99a2-806e6f6e6963}
description UEFI:Network Device
Chargeur de d‚marrage Windows
-----------------------------
identificateur {14be25b9-70c0-11ec-b182-a4ea5690d4f8}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{14be25ba-70c0-11ec-b182-a4ea5690d4f8}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{14be25ba-70c0-11ec-b182-a4ea5690d4f8}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {14be25b9-70c0-11ec-b182-a4ea5690d4f8}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {8e4b6ddc-855f-11ec-841b-f961f314a19c}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {d2cbad26-2527-11eb-a157-efdc8fab6ba9}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{d2cbad27-2527-11eb-a157-efdc8fab6ba9}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride PushButtonReset
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{d2cbad27-2527-11eb-a157-efdc8fab6ba9}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {8e4b6ddc-855f-11ec-841b-f961f314a19c}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {14be25b9-70c0-11ec-b182-a4ea5690d4f8}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {14be25ba-70c0-11ec-b182-a4ea5690d4f8}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================