Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-05-2022 Exécuté par orest (administrateur) sur PCDEORESTIS (HP HP ENVY x360 Convertible 15-eu0xxx) (18-05-2022 18:25:20) Exécuté depuis C:\Users\orest\Downloads Profils chargés: orest Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.675 (X64) Langue: Français (France) Navigateur par défaut: Opera Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <5> (C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe ->) (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.195.0.18\OverwolfHelper.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.195.0.18\OverwolfHelper64.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.195.0.18\OverwolfBrowser.exe <3> (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Users\orest\AppData\Local\Overwolf\ProcessCache\0.195.0.18\cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj\curseforge.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe (C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (C:\Program Files\WindowsApps\MicrosoftTeams_22115.300.1313.2464_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\101.0.1210.39\msedgewebview2.exe <7> (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.305.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\101.0.1210.47\msedgewebview2.exe <6> (C:\Users\orest\AppData\Local\Discord\app-1.0.9004\Discord.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.15.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe (C:\Users\orest\AppData\Local\Programs\Opera\opera.exe ->) (Opera Software AS -> Opera Software) C:\Users\orest\AppData\Local\Programs\Opera\86.0.4363.59\opera_crashreporter.exe (C:\Users\orest\AppData\Roaming\USBHelperLauncher\USBHelperLauncher.exe ->) (Hikari06) [Fichier non signé] C:\Users\orest\AppData\Roaming\USBHelperLauncher\WiiU_USB_Helper_.exe (C:\Users\orest\AppData\Roaming\Zoom\bin\Zoom.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\orest\AppData\Roaming\Zoom\bin\Aomhost\aomhost64.exe (C:\Users\orest\AppData\Roaming\Zoom\bin\Zoom.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\orest\AppData\Roaming\Zoom\bin\CptHost.exe (C:\Users\orest\Downloads\FRST64.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2203.10.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe (Discord Inc. -> Discord Inc.) C:\Users\orest\AppData\Local\Discord\app-1.0.9004\Discord.exe <6> (DriverStore\FileRepository\hpanalyticscomp.inf_amd64_a6e24179070178de\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_a6e24179070178de\x64\TouchpointGpuInfo.exe (DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\AppHelperCap.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.10.41.0_x64__v10z8vjag6ke6\SysWin32Process\HPCC.Bg.BackgroundSys.exe (DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\BridgeCommunication.exe <2> (DriverStore\FileRepository\u0373951.inf_amd64_8acf4e15d023c549\B373799\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0373951.inf_amd64_8acf4e15d023c549\B373799\atieclxx.exe (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (explorer.exe ->) () [Fichier non signé] C:\Users\orest\AppData\Roaming\USBHelperLauncher\USBHelperLauncher.exe (explorer.exe ->) (Globalhop Ltd -> ) C:\Users\orest\AppData\Local\Programs\RestMinder\RestMinder.exe (explorer.exe ->) (Opera Software AS -> Opera Software) C:\Users\orest\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2> (explorer.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\orest\AppData\Roaming\Zoom\bin\Zoom.exe <2> (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe (GitHub, Inc. -> GitHub, Inc.) C:\Users\orest\AppData\Local\atom\app-1.60.0\atom.exe <6> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2204.3.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\EoAExperiences.exe (Opera Software AS -> Opera Software) C:\Users\orest\AppData\Local\Programs\Opera\opera.exe <15> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518d87c88cca4558\RtkAudUService64.exe <2> (SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0373951.inf_amd64_8acf4e15d023c549\B373799\atiesrxx.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Cowan Innovations Inc. -> Cowan Innovations Inc.) C:\Program Files (x86)\Altruistics\Altruistics.exe <2> (services.exe ->) (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_a6e24179070178de\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\SysInfoCap.exe (services.exe ->) (HufraystenNavy -> SuperiorSystem LLC) [Fichier non signé] C:\Program Files (x86)\SpecialVelvetKPV\SpecialVelvetKPV.exe (services.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\CSP\4.9.104.0\McCSPServiceHost.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <3> (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_21_9\mcapexe.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.65.8001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.65.8001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe (sihost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPEnhance_1.2.13.0_x64__v10z8vjag6ke6\Win32\HPEnhancedLighting.Bg.exe (sihost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.10.41.0_x64__v10z8vjag6ke6\Win32Process\HPCC.Bg.BackgroundApp.exe (sihost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.myHP_1.10.53228.0_x64__v10z8vjag6ke6\win32\HPBackgroundProcess.exe (sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe (svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.10.41.0_x64__v10z8vjag6ke6\HpSystemManagement.exe (svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.myHP_1.10.53228.0_x64__v10z8vjag6ke6\HP.myHP.exe (svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\orest\AppData\Local\Microsoft\OneDrive\22.089.0426.0003\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2203.4603.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20858.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20858.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.305.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe Impossible d'accéder au processus -> RtkAudUService64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518d87c88cca4558\RtkAudUService64.exe [1265232 2021-08-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [208152 2022-04-28] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [465120 2020-08-20] (Express Vpn LLC -> ExpressVPN) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [100580600 2020-08-04] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\101.0.1210.47\Installer\setup.exe [3206056 2022-05-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [HPCC_InstallationBooster] => c:\system.sav\util\HpccLauncher.exe [456200 2020-07-16] (HP Inc. -> HP Inc.) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [525312 2021-11-13] (HP Inc.) [Fichier non signé] HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32632800 2022-05-18] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [Discord] => C:\Users\orest\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [BraveSoftware Update] => C:\Users\orest\AppData\Local\BraveSoftware\Update\1.3.361.111\BraveUpdateCore.exe [220312 2021-12-31] (Brave Software, Inc. -> BraveSoftware Inc.) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-14] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802072 2022-04-29] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [RestMinder] => C:\Users\orest\AppData\Local\Programs\RestMinder\RestMinder.exe [199232 2021-09-06] (Globalhop Ltd -> ) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\Run: [Opera Browser Assistant] => C:\Users\orest\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4110592 2022-04-20] (Opera Software AS -> Opera Software) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\orest\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\orest\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier) HKU\S-1-5-21-2776117173-3126400350-2201401534-1001\...\RunOnce: [Uninstall 22.077.0410.0007] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\orest\AppData\Local\Microsoft\OneDrive\22.077.0410.0007" (Pas de fichier) HKU\S-1-5-18\...\RunOnce: [Application Restart #4] => C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.10.6.0_x64__v10z8vjag6ke6\SysWin32Process\HPCC.Bg.BackgroundSys.exe (Pas de fichier) HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.10.41.0_x64__v10z8vjag6ke6\SysWin32Process\HPCC.Bg.BackgroundSys.exe [189632 2022-04-13] (HP Inc. -> HP Inc.) HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.10.30.0_x64__v10z8vjag6ke6\SysWin32Process\HPCC.Bg.BackgroundSys.exe (Pas de fichier) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\101.0.4951.67\Installer\chrmstp.exe [2022-05-14] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyCortana.lnk [2021-11-14] ShortcutTarget: MyCortana.lnk -> C:\Users\orest\Downloads\MyCortana.exe (Pas de fichier) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {080804E4-0511-4D80-A027-E120BA1E58A9} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice Task: {08D7A703-733C-406F-80BC-CC2703E3B028} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61336 2022-04-30] (Microsoft Corporation -> Microsoft Corporation) Task: {14F45DC3-97EF-4ACD-8924-8F048A7A1BD4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894544 2022-05-14] (Microsoft Corporation -> Microsoft Corporation) "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" n'a pas pu être déverrouillé. <==== ATTENTION Task: {32900422-31DD-4B74-B918-AF84E8F19BC0} - System32\Tasks\McAfee\McAfee Idle Detection Task Task: {38F44DA9-04E9-4FFC-8EA0-488F43614EB5} - System32\Tasks\Opera scheduled assistant Autoupdate 1651172393 => C:\Users\orest\AppData\Local\Programs\Opera\launcher.exe [2433792 2022-05-10] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\orest\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {3D194122-DA7E-4E18-8180-3F227889CB6A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [314032 2022-03-28] (HP Inc. -> HP Inc.) Task: {3DE7DEEC-AB70-4693-94C6-D903BC8BDE53} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1032448 2021-08-02] (McAfee, LLC -> McAfee, LLC) Task: {4E5FF6CF-11DC-4984-81ED-87058F40A673} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894544 2022-05-14] (Microsoft Corporation -> Microsoft Corporation) Task: {703D0845-DB0A-4312-9923-CEEE28499F75} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [757944 2021-05-06] (McAfee, LLC -> McAfee, LLC) Task: {704A965F-A033-4FB6-892F-91FD96B07D69} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4992792 2022-04-28] (Avast Software s.r.o. -> AVAST Software) Task: {98E0C415-AC6A-4815-9154-648CFC463DBC} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer.3cbf4cf75a4e4a658dfbb4148e3280e5\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe (Pas de fichier) Task: {9A2E4E70-EF49-4770-BD34-6C215652140B} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier) Task: {9E6E2229-C365-43EB-9A4F-91F23012BB15} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1145944 2022-03-28] (HP Inc. -> HP Inc.) Task: {BA643FF2-D7EF-460C-B92D-3A55B28BDE64} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-14] (Google LLC -> Google LLC) Task: {BCC7F965-0D74-4456-8D47-05E6D9D9D521} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2296088 2022-04-28] (Avast Software s.r.o. -> Avast Software) Task: {BE4294D8-8878-46C2-A9CF-7DF1CC80769E} - System32\Tasks\Opera scheduled Autoupdate 1651172385 => C:\Users\orest\AppData\Local\Programs\Opera\launcher.exe [2433792 2022-05-10] (Opera Software AS -> Opera Software) Task: {CBDB02C6-D3D8-4C7C-A8D5-D444D298EDC2} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2776117173-3126400350-2201401534-1001UA => C:\Users\orest\AppData\Local\BraveSoftware\Update\BraveUpdate.exe [162456 2021-12-31] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {D3E0A727-A960-4DAA-93A8-007D0D6D435C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1145944 2022-03-28] (HP Inc. -> HP Inc.) Task: {E8CA0814-9FD2-4147-8586-529C2A97155D} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1651032 2020-11-05] (HP Inc. -> HP Inc.) Task: {E9A20718-8104-4AAF-BF94-8DC711722245} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.7.104\DADUpdater.exe [4089168 2022-02-08] (McAfee, LLC -> McAfee, LLC) Task: {EDA68F23-381A-4EA7-960C-A9172717D004} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2574168 2022-04-29] (Overwolf Ltd -> Overwolf LTD) Task: {EE7E109D-2E98-467E-B282-46785F2397F4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-03-28] (HP Inc. -> HP Inc.) Task: {F600A579-119D-47B0-AEEB-5979C9828CC4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-14] (Google LLC -> Google LLC) Task: {F7B6F4C4-D6AF-4189-8FD2-C163859C003C} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2776117173-3126400350-2201401534-1001Core => C:\Users\orest\AppData\Local\BraveSoftware\Update\BraveUpdate.exe [162456 2021-12-31] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {FA9F56F7-3C28-474E-9856-D0FD6982ABE9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144816 2022-05-14] (Microsoft Corporation -> Microsoft Corporation) Task: {FB4126A0-8534-4433-BB40-E70A7B0E9B72} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144816 2022-05-14] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{81456470-b899-4bad-b22b-537f3f32a490}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{816a0516-5886-4e74-8658-b65908af0c3a}: [DhcpNameServer] 172.168.0.7 Edge: ======= Edge Profile: C:\Users\orest\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-15] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-12-29] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-12-29] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2021-12-11] (McAfee, LLC -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2021-12-11] (McAfee, LLC -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default [2022-05-18] CHR Notifications: Default -> hxxps://www.youtube.com; hxxps://www49.alfonzoheriberto.pro; hxxps://www85.nathanaeldan.pro CHR Extension: (Awesome Prank Extension) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bchkhnbplmkjjiapponpbkhgafdfhnen [2022-04-28] CHR Extension: (Video Ad Remover) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default\Extensions\effglehmnhneamjihaffmcbhcichnhce [2022-05-18] CHR Extension: (McAfee® WebAdvisor) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-05-11] CHR Extension: (Google Docs hors connexion) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-18] CHR Extension: (Cornify - Unicorn et bonheur arc-en-ciel!!!) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghdnfbmfflgelndafnlgabneckbmfpla [2022-04-28] CHR Extension: (Web Prank - replace the internet) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkffecnmmhcjkhlgdmgecafhjbecgndb [2022-04-28] CHR Extension: (Edit Anything) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgkhambjbahgejgoaefmekdchedkihln [2022-04-28] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-14] CHR Profile: C:\Users\orest\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-05-18] CHR Profile: C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-04-06] CHR Extension: (Slides) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-04-03] CHR Extension: (Docs) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2022-04-03] CHR Extension: (Google Drive) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-04-03] CHR Extension: (YouTube) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-04-03] CHR Extension: (Sheets) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-04-03] CHR Extension: (McAfee® WebAdvisor) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-04-03] CHR Extension: (Google Docs hors connexion) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-03] CHR Extension: (Gmail) - C:\Users\orest\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-04-03] CHR Profile: C:\Users\orest\AppData\Local\Google\Chrome\User Data\System Profile [2022-05-18] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] Opera: ======= OPR Profile: C:\Users\orest\AppData\Roaming\Opera Software\Opera Stable [2022-05-18] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (GX Calculator) - C:\Users\orest\AppData\Roaming\Opera Software\Opera Stable\Extensions\egfmanjgfhplflidocofbefbdaafbpjk [2022-05-11] OPR Extension: (Rich Hints Agent) - C:\Users\orest\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-05-11] OPR Extension: (Opera Crypto Wallet) - C:\Users\orest\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-05-11] OPR Extension: (Pacman Popup) - C:\Users\orest\AppData\Roaming\Opera Software\Opera Stable\Extensions\jpgoehepfdofhfgffbpbbhkdmebppbij [2022-05-11] OPR Extension: (Amazon Assistant Promotion) - C:\Users\orest\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-05-11] OPR Extension: (Sidebar for Google™ Translate) - C:\Users\orest\AppData\Roaming\Opera Software\Opera Stable\Extensions\ogmklpmbehclccahgccdnhjipkmmjaom [2022-05-18] Brave: ======= BRA Profile: C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-12-31] BRA Extension: (Brave Local Data Files Updater) - C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-12-31] BRA Extension: (Brave NTP background images) - C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2021-12-31] BRA Extension: (Wallet Data Files Updater) - C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2021-12-31] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-12-31] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2021-12-31] BRA Extension: (Brave SpeedReader Updater) - C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-12-31] BRA Extension: (Brave NTP sponsored images) - C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-12-31] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\orest\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-12-31] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AltruisticsService; C:\Program Files (x86)\Altruistics\Altruistics.exe [18316936 2022-04-28] (Cowan Innovations Inc. -> Cowan Innovations Inc.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8507016 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [563024 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [563024 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-04-28] (Avast Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-11-14] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11759056 2022-05-14] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-01-30] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.) R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [437472 2020-08-20] (Express Vpn LLC -> ExpressVPN) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [891256 2020-07-30] (HP Inc. -> HP Inc.) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\AppHelperCap.exe [764448 2022-03-30] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\DiagsCap.exe [763480 2022-03-30] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\NetworkCap.exe [759336 2022-03-30] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_82b4ea84f6cb4b64\x64\SysInfoCap.exe [762904 2022-03-30] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_a6e24179070178de\x64\TouchpointAnalyticsClientService.exe [497328 2022-03-30] (HP Inc. -> HP Inc.) R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation -> Microsoft Corporation) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [975088 2022-04-21] (McAfee, LLC -> McAfee, LLC) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_21_9\McApExe.exe [797576 2021-12-07] (McAfee, LLC -> McAfee, LLC) S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [589592 2020-06-24] (McAfee, LLC -> McAfee, LLC) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\4.9.104.0\\McCSPServiceHost.exe [2671064 2021-11-26] (McAfee, LLC -> McAfee, LLC) S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1242112 2021-09-24] (McAfee, Inc. -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1242112 2021-09-24] (McAfee, Inc. -> McAfee, LLC) R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1242112 2021-09-24] (McAfee, Inc. -> McAfee, LLC) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1681704 2021-12-10] (McAfee, LLC -> McAfee, LLC) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2574168 2022-04-29] (Overwolf Ltd -> Overwolf LTD) R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4288832 2021-08-31] (McAfee, LLC -> McAfee, LLC) R2 SpecialVelvetKPV; C:\Program Files (x86)\SpecialVelvetKPV\SpecialVelvetKPV.exe [3927168 2022-04-26] (HufraystenNavy -> SuperiorSystem LLC) [Fichier non signé] S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [187904 2017-09-28] (Microsoft Corporation) [Fichier non signé] S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) S4 ELANFPService; %SystemRoot%\System32\ELANFPService.exe [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AMDAfdAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\amdacpafd.inf_amd64_005d44ae46fe7683\amdacpafd.sys [346048 2021-11-03] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25016 2021-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0373951.inf_amd64_8acf4e15d023c549\B373799\amdkmdag.sys [80551784 2021-11-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36768 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [228912 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [378944 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [252984 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [100408 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2022-04-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42400 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [269448 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [546296 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108888 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83968 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [855320 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [556088 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215936 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [320904 2022-04-28] (Avast Software s.r.o. -> AVAST Software) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [74752 2021-09-28] (McAfee, Inc. -> McAfee, LLC) S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [37024 2020-08-20] (ExprsVPN LLC -> ExpressVPN) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.) S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [111960 2022-05-11] (Microsoft Windows -> Microsoft Corporation) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [574464 2021-09-28] (McAfee, Inc. -> McAfee, LLC) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [390656 2021-09-28] (McAfee, Inc. -> McAfee, LLC) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [90048 2021-09-28] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [526336 2021-09-28] (McAfee, Inc. -> McAfee, LLC) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [1088512 2021-09-28] (McAfee, Inc. -> McAfee, LLC) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [638464 2021-09-16] (McAfee, Inc. -> McAfee LLC.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [110080 2021-09-16] (McAfee, Inc. -> McAfee LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [118784 2021-09-28] (McAfee, Inc. -> McAfee, LLC) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [256512 2021-09-28] (McAfee, Inc. -> McAfee, LLC) R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [62352 2019-03-20] (Realtek Semiconductor Corp. -> Realtek) R3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_a19e472f32bd1e8d\rtucx22x64.sys [1385296 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation) R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [52904 2020-08-20] (ExprsVPN LLC -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation) U3 aspnet_state; pas de ImagePath S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-05-18 18:23 - 2022-05-18 18:25 - 000082194 _____ C:\Users\orest\Downloads\Addition.txt 2022-05-18 18:19 - 2022-05-18 18:26 - 000046233 _____ C:\Users\orest\Downloads\FRST.txt 2022-05-18 18:19 - 2022-05-18 18:25 - 000000000 ____D C:\FRST 2022-05-18 18:18 - 2022-05-18 18:18 - 002366464 _____ (Farbar) C:\Users\orest\Downloads\FRST64.exe 2022-05-15 13:56 - 2022-05-15 13:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2022-05-15 12:46 - 2022-05-15 12:47 - 000000000 ____D C:\Users\orest\AppData\Roaming\yuzu 2022-05-15 12:44 - 2022-05-15 12:45 - 006879744 _____ C:\Users\orest\Downloads\yuzu_install.exe 2022-05-15 00:28 - 2022-05-15 00:29 - 000000000 ____D C:\Users\Default\.dotnet 2022-05-14 10:57 - 2022-05-14 10:57 - 000000028 ____H C:\.GamingRoot 2022-05-14 10:57 - 2022-05-14 10:57 - 000000000 ____D C:\XboxGames 2022-05-13 21:28 - 2022-05-14 10:37 - 1646818616 _____ C:\Users\orest\Downloads\Pokemon Sword [0100ABF008968800][v0](nsw2u.com).rar 2022-05-13 21:25 - 2022-05-13 21:25 - 000001807 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2019.lnk 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\3082 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\2052 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1055 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1049 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1046 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1045 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1042 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1041 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1040 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1036 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1033 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1031 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1029 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1028 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\3082 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\2052 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1055 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1049 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1046 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1045 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1042 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1041 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1040 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1036 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1033 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1031 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1029 2022-05-13 21:25 - 2022-05-13 21:25 - 000000000 ____D C:\WINDOWS\system32\1028 2022-05-13 21:22 - 2022-05-13 21:22 - 000000000 ____D C:\Program Files\Microsoft SQL Server 2022-05-13 21:22 - 2022-05-13 21:22 - 000000000 ____D C:\Program Files (x86)\NuGet 2022-05-13 21:22 - 2022-05-13 21:22 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2022-05-13 21:07 - 2022-05-13 21:07 - 000000000 ____D C:\Users\orest\.dotnet 2022-05-13 21:05 - 2022-05-13 21:05 - 004247529 _____ C:\Users\orest\Downloads\BetterJoy-master (1).zip 2022-05-13 21:03 - 2022-05-13 21:03 - 000000000 ____D C:\Users\orest\Downloads\BetterJoy-master 2022-05-13 20:57 - 2022-05-15 00:30 - 000000000 ____D C:\Program Files (x86)\dotnet 2022-05-13 20:57 - 2022-05-15 00:29 - 000000000 ____D C:\Program Files\dotnet 2022-05-13 20:54 - 2022-05-13 20:54 - 000000000 ____D C:\Users\orest\source 2022-05-13 20:54 - 2022-05-13 20:54 - 000000000 ____D C:\Users\orest\OneDrive\Documents\Visual Studio 2019 2022-05-13 20:54 - 2022-05-13 20:54 - 000000000 ____D C:\Users\orest\AppData\Local\ServiceHub 2022-05-13 20:54 - 2022-05-13 20:54 - 000000000 ____D C:\Users\orest\AppData\Local\IdentityNexusIntegration 2022-05-13 20:53 - 2022-05-13 20:53 - 004247529 _____ C:\Users\orest\Downloads\BetterJoy-master.zip 2022-05-13 20:47 - 2022-05-13 20:47 - 000000000 ____D C:\Users\orest\AppData\Local\Cemu 2022-05-13 20:41 - 2022-05-13 20:43 - 052122159 _____ C:\Users\orest\Downloads\SkyNX-master.zip 2022-05-13 20:30 - 2022-05-13 20:30 - 000000000 ____D C:\Users\orest\Downloads\zelda 2022-05-13 20:16 - 2022-05-13 21:26 - 1646818360 _____ C:\Users\orest\Downloads\Pokemon Sword [0100ABF008968800][v0](nsw2u.com).nsp 2022-05-13 18:28 - 2022-05-13 18:37 - 4091012804 _____ C:\Users\orest\Downloads\Pokemon Sword [0100ABF008968000][v0](nsw2u.com).rar 2022-05-13 18:07 - 2022-05-13 18:28 - 4178194061 _____ C:\Users\orest\Downloads\Pokemon Sword [0100ABF008968000][v0](nsw2u.com).nsz 2022-05-13 18:06 - 2022-05-13 18:06 - 012615680 _____ C:\Users\orest\Downloads\Non confirmé 321981.crdownload 2022-05-11 21:17 - 2022-05-11 21:17 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2022-05-11 21:17 - 2022-05-11 21:17 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2022-05-11 21:17 - 2022-05-11 21:17 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec 2022-05-11 21:17 - 2022-05-11 21:17 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp 2022-05-11 21:17 - 2022-05-11 21:17 - 000208896 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\l3codecp.acm 2022-05-11 21:17 - 2022-05-11 21:17 - 000196096 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\SysWOW64\l3codecp.acm 2022-05-11 21:17 - 2022-05-11 21:17 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remotesp.tsp 2022-05-11 21:17 - 2022-05-11 21:17 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hidphone.tsp 2022-05-11 21:16 - 2022-05-11 21:16 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Bubbles.scr 2022-05-11 21:16 - 2022-05-11 21:16 - 000774144 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-05-11 21:16 - 2022-05-11 21:16 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec 2022-05-11 21:16 - 2022-05-11 21:16 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp 2022-05-11 21:16 - 2022-05-11 21:16 - 000311296 _____ C:\WINDOWS\system32\EsclScan.dll 2022-05-11 21:16 - 2022-05-11 21:16 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr 2022-05-11 21:16 - 2022-05-11 21:16 - 000188416 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-05-11 21:16 - 2022-05-11 21:16 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Ribbons.scr 2022-05-11 21:16 - 2022-05-11 21:16 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Mystify.scr 2022-05-11 21:16 - 2022-05-11 21:16 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\remotesp.tsp 2022-05-11 21:16 - 2022-05-11 21:16 - 000079192 _____ C:\WINDOWS\system32\Drivers\NDKPerf.sys 2022-05-11 21:16 - 2022-05-11 21:16 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidphone.tsp 2022-05-11 21:16 - 2022-05-11 21:16 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\more.com 2022-05-11 21:16 - 2022-05-11 21:16 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-05-11 21:16 - 2022-05-11 21:16 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\format.com 2022-05-11 21:16 - 2022-05-11 21:16 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-05-11 21:16 - 2022-05-11 21:16 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp 2022-05-11 21:16 - 2022-05-11 21:16 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-05-11 21:16 - 2022-05-11 21:16 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\more.com 2022-05-11 21:16 - 2022-05-11 21:16 - 000019456 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-05-11 21:16 - 2022-05-11 21:16 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-05-11 21:16 - 2022-05-11 21:16 - 000015046 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-05-11 21:15 - 2022-05-11 21:15 - 000460800 _____ C:\WINDOWS\SysWOW64\SettingSyncDownloadHelper.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000356352 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000294912 _____ C:\WINDOWS\system32\pnpdiag.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000098304 _____ C:\WINDOWS\system32\sstpcfg.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000086016 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000086016 _____ C:\WINDOWS\system32\CredProvCommonCore.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000077824 _____ C:\WINDOWS\system32\APMonUI.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp 2022-05-11 21:15 - 2022-05-11 21:15 - 000051712 _____ C:\WINDOWS\SysWOW64\CredProvCommonCore.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000042752 _____ C:\WINDOWS\system32\wow64base.dll 2022-05-11 21:15 - 2022-05-11 21:15 - 000038760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msgsm32.acm 2022-05-11 21:15 - 2022-05-11 21:15 - 000034112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imaadp32.acm 2022-05-11 21:15 - 2022-05-11 21:15 - 000033568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msadp32.acm 2022-05-11 21:15 - 2022-05-11 21:15 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrnsave.scr 2022-05-11 21:14 - 2022-05-11 21:14 - 002125824 _____ C:\WINDOWS\system32\dwmscene.dll 2022-05-11 21:14 - 2022-05-11 21:14 - 000208896 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2022-05-11 21:14 - 2022-05-11 21:14 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll 2022-05-11 21:14 - 2022-05-11 21:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\format.com 2022-05-11 21:14 - 2022-05-11 21:14 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrnsave.scr 2022-05-11 21:14 - 2022-05-11 21:14 - 000040960 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-05-11 21:13 - 2022-05-11 21:13 - 000643072 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-05-11 21:13 - 2022-05-11 21:13 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-05-11 21:13 - 2022-05-11 21:13 - 000286720 _____ C:\WINDOWS\system32\Microsoft.Bluetooth.Audio.dll 2022-05-11 21:13 - 2022-05-11 21:13 - 000067528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msgsm32.acm 2022-05-11 21:13 - 2022-05-11 21:13 - 000063392 _____ (Microsoft Corporation) C:\WINDOWS\system32\imaadp32.acm 2022-05-11 21:13 - 2022-05-11 21:13 - 000059264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msadp32.acm 2022-05-11 21:05 - 2022-05-11 21:05 - 000000000 ___HD C:\$WinREAgent 2022-05-11 18:17 - 2022-05-11 18:17 - 000357859 _____ C:\Users\orest\Downloads\iiiii.jfif 2022-05-06 19:30 - 2022-05-07 03:29 - 2288022362 _____ C:\Users\orest\Downloads\Legend of Zelda, The - Link's Awakening (World) (En,Ja,Fr,De,Es,It,Nl,Zh,Ko,Ru).zip 2022-05-06 15:28 - 2022-05-06 15:44 - 193740800 _____ C:\Users\orest\Downloads\Non confirmé 897225.crdownload 2022-05-06 14:11 - 2022-05-06 14:11 - 000000000 ____D C:\Users\orest\AppData\Roaming\com.lunime.gachalife 2022-05-05 13:59 - 2022-05-05 14:47 - 113292574 _____ C:\Users\orest\Downloads\GachaLife.zip 2022-05-04 14:39 - 2022-05-04 14:39 - 001903742 _____ C:\Users\orest\Downloads\infinite_dura_48268.zip 2022-05-03 22:08 - 2022-05-03 22:08 - 000008903 _____ C:\Users\orest\Downloads\master_sword_20c08.rar 2022-05-03 21:12 - 2022-05-03 21:39 - 104064736 _____ C:\Users\orest\Downloads\gacha-life-1-1-4.apk 2022-05-03 20:44 - 2022-05-03 20:44 - 000000000 ____D C:\Users\orest\AppData\Local\Gh 2022-05-03 20:32 - 2022-05-14 22:08 - 000000000 ____D C:\Users\orest\AppData\Roaming\USB_HELPER 2022-05-03 20:32 - 2022-05-03 20:32 - 000000000 ____D C:\Users\orest\AppData\Local\Hikari06 2022-05-03 20:15 - 2022-05-03 20:15 - 000001077 _____ C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wii U USB Helper.lnk 2022-05-03 20:10 - 2022-05-03 20:32 - 000000000 ____D C:\Users\orest\AppData\Roaming\USBHelperLauncher 2022-05-03 20:03 - 2022-05-03 20:03 - 000000000 ____D C:\Users\orest\AppData\LocalLow\Oracle 2022-05-03 15:46 - 2022-05-03 16:01 - 061493754 _____ C:\Users\orest\Downloads\FILES TUTO.zip 2022-05-03 14:54 - 2022-04-29 14:30 - 000000119 _____ C:\Users\orest\Downloads\01007EF00011E000.pv.txt 2022-05-03 14:22 - 2022-05-03 14:25 - 024874437 _____ C:\Users\orest\Downloads\cemu_1.26.0.zip 2022-05-03 14:21 - 2022-05-03 21:02 - 000000000 ____D C:\Users\orest\Downloads\cemu 2022-05-03 14:19 - 2022-05-03 14:19 - 000675398 _____ C:\Users\orest\Downloads\vault.tar.gz 2022-05-03 14:11 - 2022-05-03 14:13 - 000000000 ____D C:\Users\orest\Downloads\01007EF00011F001 2022-05-03 14:09 - 2022-05-03 14:09 - 000000000 ____D C:\Users\orest\Downloads\01007EF00011E000 2022-05-03 13:55 - 2022-05-03 14:00 - 024987546 _____ C:\Users\orest\Downloads\cemu_1.26.2.zip 2022-04-29 13:47 - 2022-04-29 13:47 - 000000000 ____D C:\Users\orest\AppData\Local\Avast Software 2022-04-28 21:06 - 2022-04-28 21:06 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk 2022-04-28 21:06 - 2022-04-28 21:06 - 000000000 ____D C:\Users\orest\AppData\Roaming\Avast Software 2022-04-28 20:59 - 2022-05-18 18:25 - 000003842 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1651172393 2022-04-28 20:59 - 2022-05-18 18:25 - 000003614 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1651172385 2022-04-28 20:59 - 2022-05-13 08:47 - 000001410 _____ C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2022-04-28 20:59 - 2022-04-28 20:59 - 000000000 ____D C:\Users\orest\AppData\Local\Opera Software 2022-04-28 20:58 - 2022-05-18 18:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-04-28 20:58 - 2022-04-28 20:58 - 000000000 ____D C:\WINDOWS\system32\gf2engine 2022-04-28 20:57 - 2022-05-18 17:43 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-04-28 20:57 - 2022-04-28 20:57 - 000855320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000556088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000546296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000378944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000340760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2022-04-28 20:57 - 2022-04-28 20:57 - 000320904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000269448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000252984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000228912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000215936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000108888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000100408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000083968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000042400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000036768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000021936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2022-04-28 20:57 - 2022-04-28 20:57 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2022-04-28 20:50 - 2022-05-18 17:43 - 000000000 ____D C:\Users\orest\AppData\Roaming\Altruistics 2022-04-28 20:50 - 2022-05-03 19:54 - 000000000 ____D C:\ProgramData\Altruistics 2022-04-28 20:50 - 2022-04-28 20:50 - 000000000 ____D C:\Program Files (x86)\Altruistics 2022-04-28 20:47 - 2022-05-15 13:52 - 000000000 ____D C:\ProgramData\Avast Software 2022-04-28 20:47 - 2022-04-28 20:47 - 000000000 ____D C:\Program Files\Avast Software 2022-04-28 20:44 - 2022-04-28 20:44 - 000000000 ____D C:\Program Files (x86)\SpecialVelvetKPV 2022-04-28 20:44 - 2022-04-28 20:44 - 000000000 _____ C:\WINDOWS\WebsitSpot.INI 2022-04-28 20:42 - 2022-04-28 20:42 - 000000000 ____D C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RestMinder 2022-04-28 20:41 - 2022-04-28 20:41 - 000000000 ____D C:\Users\orest\AppData\Roaming\Opera Software 2022-04-28 20:40 - 2022-04-28 20:40 - 000000000 _____ C:\Users\orest\Downloads\file 2022-04-28 20:37 - 2022-04-28 20:38 - 002980348 _____ C:\Users\orest\Downloads\Eragon-2022setup_13633.zip 2022-04-28 20:36 - 2022-04-28 20:52 - 080640316 _____ (Paladium) C:\Users\orest\Downloads\Paladium (3).exe 2022-04-28 15:09 - 2022-04-28 15:11 - 002495785 _____ C:\Users\orest\Downloads\titles.rar 2022-04-25 20:28 - 2022-04-25 20:28 - 002393369 _____ C:\Users\orest\Downloads\forge-1.6.4-9.11.1.1345-installer.jar 2022-04-25 09:27 - 2022-04-25 09:28 - 000630843 _____ C:\Users\orest\Downloads\infinitestaminaforallnoslip_980d0.bnp 2022-04-25 09:12 - 2019-10-06 22:59 - 1393188015 _____ C:\Users\orest\Downloads\T.L.O.Z.BOTW__DLC_Pack_1_The_Master_Trials___switch-xci.com__v196608_.nsp 2022-04-25 09:12 - 2019-10-06 22:59 - 000122027 _____ C:\Users\orest\Downloads\T.L.O.Z.BOTW__DLC_Pack_2_The_Champions_Ballad___switch-xci.com__v196608_.nsp 2022-04-24 17:03 - 2022-04-24 17:03 - 000049642 _____ C:\Users\orest\Downloads\keys (1).rar 2022-04-24 12:27 - 2022-04-24 12:35 - 141949934 _____ C:\Users\orest\Downloads\zeldasballadswitch-standalone-3_0_1.bnp 2022-04-24 11:53 - 2022-04-24 11:53 - 000246409 _____ C:\Users\orest\Downloads\bowsbruh.zip 2022-04-24 11:34 - 2022-04-24 11:34 - 000049642 _____ C:\Users\orest\Downloads\keys.rar 2022-04-24 11:05 - 2022-04-24 11:16 - 000177590 _____ C:\Users\orest\Downloads\draconic_bow.rar 2022-04-24 10:59 - 2019-03-28 17:58 - 2952855552 _____ C:\Users\orest\Downloads\Legend of Zelda The Breath of the Wild(ALL Region).xci 2022-04-24 08:26 - 2022-04-24 04:18 - 1806384730 _____ C:\Users\orest\Downloads\LegendofZeldaTBreathoTWildXCI-xcinspdotcom.part2 - Copie (2).rar 2022-04-23 23:20 - 2022-04-24 04:18 - 1806384730 _____ C:\Users\orest\Downloads\LegendofZeldaTBreathoTWildXCI-xcinspdotcom.part2.rar 2022-04-23 20:55 - 2022-04-23 20:55 - 000000000 ____D C:\Users\orest\AppData\Roaming\WinRAR 2022-04-23 20:55 - 2022-04-23 20:55 - 000000000 ____D C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-04-23 20:55 - 2022-04-23 20:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-04-23 20:55 - 2022-04-23 20:55 - 000000000 ____D C:\Program Files (x86)\WinRAR 2022-04-23 20:21 - 2022-04-23 20:21 - 000773952 _____ C:\Users\orest\Downloads\Snow Shoveler v1.0 for MC 1.8.8.zip 2022-04-23 11:49 - 2022-04-23 20:53 - 1073741824 _____ C:\Users\orest\Downloads\LegendofZeldaTBreathoTWildXCI-xcinspdotcom.part1.rar 2022-04-23 09:25 - 2022-04-23 10:54 - 1815937024 _____ C:\Users\orest\Downloads\Non confirmé 625527.crdownload 2022-04-22 11:08 - 2022-04-22 11:08 - 000575205 _____ C:\Users\orest\Downloads\More+Dimensions+Mod+1.0.4.jar 2022-04-22 11:03 - 2022-04-22 11:14 - 1491910656 _____ C:\Users\orest\Downloads\Non confirmé 940507.crdownload 2022-04-21 19:55 - 2022-04-21 20:28 - 1393310935 _____ C:\Users\orest\OneDrive\Documents\The Legend of Zelda Breath of the Wild [DLC Pack 1+2] NSP.rar 2022-04-20 18:24 - 2022-05-15 12:31 - 000002245 _____ C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk 2022-04-20 18:24 - 2022-04-20 18:24 - 000001327 _____ C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu Maintenance Tool.lnk 2022-04-20 18:23 - 2022-05-18 17:46 - 000000000 ____D C:\Users\orest\AppData\Local\yuzu 2022-04-20 17:16 - 2022-04-20 17:17 - 006915098 _____ C:\Users\orest\Downloads\forge-1.18.1-39.1.0-installer.jar 2022-04-20 16:51 - 2021-10-28 20:04 - 020223944 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPRes.dll 2022-04-20 16:51 - 2021-10-28 20:04 - 004455880 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPEnh.exe 2022-04-20 16:51 - 2021-10-28 20:04 - 000335304 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll 2022-04-18 21:51 - 2022-04-18 21:51 - 000328793 _____ C:\Users\orest\Downloads\p455w0rdslib-1.12.2-2.3.161 (2).jar 2022-04-18 21:33 - 2022-04-18 21:33 - 000328793 _____ C:\Users\orest\Downloads\p455w0rdslib-1.12.2-2.3.161.jar ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-05-18 18:27 - 2021-11-11 16:39 - 000000512 _____ C:\Users\Public\amdsfhdcd.bin 2022-05-18 18:25 - 2022-04-08 20:03 - 000003270 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task 2022-05-18 18:25 - 2021-12-31 11:39 - 000003718 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2776117173-3126400350-2201401534-1001UA 2022-05-18 18:25 - 2021-12-31 11:39 - 000003450 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2776117173-3126400350-2201401534-1001Core 2022-05-18 18:25 - 2021-12-11 22:25 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2776117173-3126400350-2201401534-1001 2022-05-18 18:25 - 2021-12-09 09:15 - 000003424 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7dba8be94d6e2 2022-05-18 18:25 - 2021-11-17 13:49 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-05-18 18:25 - 2021-11-17 13:49 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-05-18 18:25 - 2021-11-17 13:49 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-05-18 18:25 - 2021-11-17 13:49 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-05-18 18:25 - 2021-11-17 13:49 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2776117173-3126400350-2201401534-1001 2022-05-18 18:25 - 2021-11-17 13:49 - 000002850 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-727648007-1791248194-970200190-500 2022-05-18 18:25 - 2021-11-17 13:49 - 000002766 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch 2022-05-18 18:25 - 2021-11-17 13:49 - 000002698 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon 2022-05-18 18:22 - 2021-12-10 18:31 - 000000000 ____D C:\Users\orest\AppData\Roaming\discord 2022-05-18 18:22 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-05-18 18:13 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-05-18 17:57 - 2021-11-14 10:24 - 000000000 ____D C:\Users\orest\AppData\Roaming\Atom 2022-05-18 17:56 - 2021-11-14 10:24 - 000000000 ____D C:\Users\orest\.atom 2022-05-18 17:54 - 2021-11-14 10:11 - 000000000 ____D C:\Program Files (x86)\Google 2022-05-18 17:53 - 2021-12-10 18:31 - 000000000 ____D C:\Users\orest\AppData\Local\Discord 2022-05-18 17:47 - 2021-12-31 11:39 - 000002628 _____ C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2022-05-18 17:47 - 2021-11-17 13:53 - 001919810 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-05-18 17:47 - 2021-06-05 20:14 - 000842296 _____ C:\WINDOWS\system32\perfh00C.dat 2022-05-18 17:47 - 2021-06-05 20:14 - 000171946 _____ C:\WINDOWS\system32\perfc00C.dat 2022-05-18 17:47 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF 2022-05-18 17:46 - 2021-11-13 21:58 - 000000000 ___RD C:\Users\orest\OneDrive 2022-05-18 17:46 - 2021-11-13 21:56 - 000000000 ____D C:\Users\orest\AppData\Local\Packages 2022-05-18 17:46 - 2021-11-13 21:48 - 000002428 _____ C:\Users\orest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-05-18 17:46 - 2021-06-18 16:08 - 000000000 ____D C:\ProgramData\Packages 2022-05-18 17:46 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps 2022-05-18 17:44 - 2021-11-11 16:40 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-05-15 18:59 - 2021-11-17 13:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-05-15 13:53 - 2022-04-08 20:02 - 000000000 ____D C:\Users\orest\AppData\Local\Overwolf 2022-05-15 13:53 - 2022-01-23 19:04 - 000000000 ____D C:\Program Files (x86)\Steam 2022-05-15 13:52 - 2021-11-17 13:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-05-15 13:52 - 2021-11-11 16:38 - 000012288 ___SH C:\DumpStack.log.tmp 2022-05-15 13:52 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState 2022-05-15 13:51 - 2021-11-17 13:45 - 000000000 ____D C:\Users\orest 2022-05-15 13:51 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-05-15 13:51 - 2021-06-05 14:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-05-15 13:49 - 2022-02-20 13:29 - 000000000 ____D C:\Users\orest\AppData\Local\.IdentityService 2022-05-15 13:48 - 2022-02-20 13:14 - 000001440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk 2022-05-15 13:48 - 2022-02-20 13:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 2022-05-15 13:47 - 2021-11-13 21:56 - 000000000 ____D C:\Users\orest\AppData\Local\D3DSCache 2022-05-15 00:30 - 2021-06-18 16:10 - 000000000 ____D C:\ProgramData\Package Cache 2022-05-14 22:09 - 2022-04-09 21:18 - 000000000 ____D C:\Users\orest\AppData\Local\CrashDumps 2022-05-14 17:03 - 2021-04-19 07:46 - 000000000 ____D C:\Program Files\Microsoft Office 2022-05-14 10:57 - 2021-11-19 17:59 - 000132560 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2022-05-14 10:57 - 2021-11-14 17:56 - 002274768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2022-05-14 10:57 - 2021-11-14 17:56 - 000394704 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2022-05-14 10:57 - 2021-11-14 17:56 - 000222672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2022-05-14 10:57 - 2021-11-14 17:56 - 000198096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2022-05-14 10:57 - 2021-11-14 17:56 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2022-05-14 10:57 - 2021-11-14 17:56 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe 2022-05-14 10:38 - 2021-11-14 10:11 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-05-13 21:23 - 2022-02-20 13:16 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs 2022-05-13 21:22 - 2022-02-20 13:16 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2022-05-13 20:54 - 2021-12-29 21:44 - 000000000 ____D C:\Users\orest\Bibliothèque calibre 2022-05-12 06:10 - 2021-11-17 13:44 - 000592504 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-05-12 06:10 - 2021-11-11 16:38 - 000000000 ____D C:\ProgramData\Realtek 2022-05-12 06:10 - 2021-06-18 16:14 - 000000000 ____D C:\Program Files (x86)\McAfee 2022-05-12 05:50 - 2021-06-05 20:22 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2022-05-12 05:50 - 2021-06-05 20:22 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\F12 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\setup 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Com 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\IME 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Windows Defender 2022-05-12 05:50 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Common Files\System 2022-05-12 05:50 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\servicing 2022-05-11 21:26 - 2021-11-14 05:17 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-05-11 21:24 - 2021-11-14 05:17 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-05-11 21:24 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-05-11 21:21 - 2021-06-05 14:08 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2022-05-11 21:21 - 2021-06-05 14:08 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2022-05-11 21:13 - 2021-11-17 13:45 - 003101696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-05-11 18:15 - 2021-12-08 18:55 - 000000000 ____D C:\Users\orest\Downloads\animate 2022-05-11 17:47 - 2021-06-05 14:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-05-08 06:29 - 2022-02-22 16:56 - 000000000 ____D C:\Users\orest\AppData\Roaming\UnityHub 2022-05-06 14:33 - 2021-11-14 17:58 - 000000000 ____D C:\Users\orest\AppData\Roaming\.minecraft 2022-05-05 14:09 - 2022-02-22 16:56 - 000000000 ____D C:\Users\orest\AppData\Local\unityhub-updater 2022-05-05 13:56 - 2022-02-22 17:31 - 000000000 ____D C:\Users\orest\My project 2022-05-05 13:56 - 2022-02-20 13:41 - 000000000 ____D C:\Users\orest\AppData\LocalLow\Unity 2022-05-04 14:47 - 2021-11-24 19:07 - 000000000 ____D C:\Users\orest\Downloads\hover_files 2022-05-03 20:51 - 2022-04-08 20:03 - 000000000 ____D C:\Program Files (x86)\Overwolf 2022-04-28 21:12 - 2022-04-09 22:26 - 000000000 ____D C:\Users\orest\OneDrive\Documents\mods 2022-04-28 20:57 - 2021-06-05 14:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-04-20 17:32 - 2021-11-11 16:38 - 000000000 ____D C:\WINDOWS\system32\AMD 2022-04-18 21:29 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\NDF ==================== Fichiers à la racine de certains dossiers ======== 2022-03-23 19:13 - 2022-03-23 19:13 - 000000881 _____ () C:\Users\orest\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)