start::
CloseProcesses:
EmptyTemp:
CreateRestorePoint: 
(AtrtisDev Group P -> ) [Fichier non signé] C:\Program Files (x86)\AlrucsApplication\AlrucsApp.exe
(services.exe ->) (AtrtisDev Group P -> ) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\AlrucsApplication\AlrucsService.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKU\S-1-5-21-2979890511-4242597161-4246557499-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9255128 2024-03-25] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
Task: {08572B97-4DD5-4CF2-9517-89EB87D2781A} - System32\Tasks\PC HelpSoft Driver Updater automatic scan and new device notifications => "C:\Program Files (x86)\PC HelpSoft Driver Updater\PCHelpSoftDriverUpdater.exe"  -> C:\Program Files (x86)\PC HelpSoft Driver Updater\/TRAY <==== ATTENTION
Edge HomePage: Default -> hxxps://?
Edge StartupUrls: Default -> "hxxps://?"
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> McAfee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR HKLM-x32\...\Chrome\Extension: [dhkpghipgnngohhckpiadpmjoobjljim]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
R2 AlrucsService; C:\Program Files (x86)\AlrucsApplication\AlrucsService.exe [77052512 2024-03-21] (AtrtisDev Group P -> ) [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3420376 2024-03-25] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
R2 rsDNSClientSvc; C:\Program Files\ReasonLabs\DNS\rsDNSClientSvc.exe [672912 2024-03-25] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSResolver; C:\Program Files\ReasonLabs\DNS\rsDNSResolver.exe [11469968 2024-03-25] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSSvc; C:\Program Files\ReasonLabs\DNS\rsDNSSvc.exe [208528 2024-03-25] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [27856 2024-03-25] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S3 rsDwf; C:\Windows\system32\DRIVERS\rsDwf.sys [54144 2024-03-25] (Reason CyberSecurity Inc. -> Reason CyberSecurity Inc.)
C:\Program Files (x86)\AlrucsApplication\AlrucsApp.exe
C:\Program Files (x86)\AlrucsApplication\AlrucsService.exe
C:\Users\gael\AppData\Local\AlrucsApplication
C:\ProgramData\AlrucsApplication
C:\Program Files (x86)\AlrucsApplication
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Startup.log:4098BA314F [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Startup.log:B2DD4C1AB7 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk:E77773B271 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup.log:0E4B5BDF43 [3442]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [2852]
C:\Windows\system32\Tasks\PC HelpSoft Driver Updater automatic scan and new device notifications
2024-03-16 21:50 - 2024-03-16 21:59 - 000000000 ____D C:\Users\gael\AppData\Roaming\PC HelpSoft Driver Updater
2024-03-16 21:50 - 2024-03-16 21:50 - 006767016 _____ (PC HelpSoft ) C:\Users\gael\Downloads\Driver_Updater_setup.exe
2024-03-16 21:50 - 2024-03-16 21:50 - 000000000 ____D C:\ProgramData\PC HelpSoft Driver Updater Pro
2024-03-16 21:50 - 2024-03-16 21:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC HelpSoft Driver Updater
C:\Users\gael\Downloads\Driver_Updater_setup (1).exe
2024-03-16 21:50 - 2024-03-26 23:13 - 000002624 _____ C:\Windows\system32\Tasks\PC HelpSoft Driver Updater automatic scan and new device notifications
2024-03-16 21:50 - 2024-03-16 21:59 - 000000000 ____D C:\Users\gael\AppData\Roaming\PC HelpSoft Driver Updater
2024-03-16 21:50 - 2024-03-16 21:50 - 006767016 _____ (PC HelpSoft ) C:\Users\gael\Downloads\Driver_Updater_setup.exe
FirewallRules: [TCP Query User{152FE1FA-D387-4F49-925E-653E3A845B1C}C:\program files (x86)\steam\steamapps\common\call of duty hq\cod22\cod22-cod.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\call of duty hq\cod22\cod22-cod.exe => Pas de fichier
FirewallRules: [UDP Query User{746875D8-C5B0-44AD-B462-6C6846785CE9}C:\program files (x86)\steam\steamapps\common\call of duty hq\cod22\cod22-cod.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\call of duty hq\cod22\cod22-cod.exe => Pas de fichier
End::