Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05.03.2024 Exécuté par pino9 (administrateur) sur DESKTOP-51VUMR5 (ASUS System Product Name) (06-03-2024 22:45:53) Exécuté depuis C:\Users\pino9\Desktop\FRST64.exe Profils chargés: pino9 Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3803 (X64) Langue: Français (France) Navigateur par défaut: Opera Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Psyonix, LLC) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <9> (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe (C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <5> (C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe (C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe (C:\Users\pino9\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\pino9\AppData\Local\Programs\Opera GX\107.0.5045.37\opera_crashreporter.exe (Discord Inc. -> Discord Inc.) C:\Users\pino9\AppData\Local\Discord\app-1.0.9034\Discord.exe <6> (explorer.exe ->) () [Fichier non signé] C:\Program Files\BakkesMod\BakkesMod.exe (explorer.exe ->) (04797BBC-C7BB-462F-9B66-331C81E27C0E -> TranslucentTB Open Source Developers) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2023.2.0.0_x64__v826wp6bftszj\TranslucentTB.exe (explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\pino9\AppData\Roaming\Spotify\Spotify.exe <6> (explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe (Opera Norway AS -> Opera Software) C:\Users\pino9\AppData\Local\Programs\Opera GX\opera.exe <32> (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_866484083fc526af\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [13932880 2024-02-20] (SteelSeries ApS -> SteelSeries ApS) HKLM\...\Run: [Riot Vanguard] => "C:\Program Files\Riot Vanguard\vgtray.exe" (Pas de fichier) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [96195352 2024-01-30] (Discord Inc. -> Discord Inc.) HKLM\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 1 HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\MRT: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION HKLM\Software\Policies\...\system: [PublishUserActivities] 0 HKLM\Software\Policies\...\system: [UploadUserActivities] 0 HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKLM\Software\Policies\...\system: [EnableActivityFeed] 0 HKLM\Software\Policies\...\system: [DisableAcrylicBackgroundOnLogon] 1 HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [MicrosoftEdgeAutoLaunch_C2C7F38C50323B94C98B8CD295648738] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060728 2024-03-01] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46010112 2024-01-26] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [Discord] => C:\Users\pino9\AppData\Local\Discord\Update.exe [1525016 2023-12-19] (Discord Inc. -> GitHub) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4388712 2024-02-29] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (Pas de fichier) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45018016 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [Opera GX Stable] => C:\Users\pino9\AppData\Local\Programs\Opera GX\launcher.exe [2303904 2024-02-27] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [Spotify] => C:\Users\pino9\AppData\Roaming\Spotify\Spotify.exe [30560072 2024-02-19] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\pino9\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [15850496 2023-01-23] () [Fichier non signé] HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [DiscordCanary] => "C:\Users\pino9\AppData\Local\DiscordCanary\Update.exe" --processStart DiscordCanary.exe (Pas de fichier) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [DesktopAPM] => C:\Program Files (x86)\Desktop APM\DesktopAPM.exe (Pas de fichier) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Run: [Windscribe] => "C:\Program Files\Windscribe\Windscribe.exe" -os_restart (Pas de fichier) HKU\S-1-5-21-3900531747-52743300-353053920-1001\...\Policies\Explorer: [NoAutoTrayNotify] 1 IFEO\EOSnotify.exe: [Debugger] / IFEO\InstallAgent.exe: [Debugger] / IFEO\MoNotificationUx.exe: [Debugger] / IFEO\MusNotification.exe: [Debugger] / IFEO\MusNotificationUx.exe: [Debugger] / IFEO\remsh.exe: [Debugger] / IFEO\SihClient.exe: [Debugger] / IFEO\UpdateAssistant.exe: [Debugger] / IFEO\UsoClient.exe: [Debugger] / IFEO\WaaSMedic.exe: [Debugger] / IFEO\WaasMedicAgent.exe: [Debugger] / IFEO\Windows10Upgrade.exe: [Debugger] / IFEO\Windows10UpgraderApp.exe: [Debugger] / GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {7D7D0102-DB24-45EC-A3E8-FAA5EAE01F48} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {3FFB7179-F5BC-4725-9A8D-9C9B3E60C664} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "5c92e456-0093-46d0-aa4a-5e934bb31113" --version "6.21.10918" --silent Task: {64D23841-9966-4216-A648-70517C5F54C5} - System32\Tasks\CCleanerSkipUAC - pino9 => C:\Program Files\CCleaner\CCleaner.exe [38778272 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {2F3994B9-6F31-4501-9B1C-B5BAE1E1CEB7} - System32\Tasks\Disable LockScreen => C:\WINDOWS\system32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI\SessionData /t REG_DWORD /v AllowLockScreen /d 0 /f Task: {32B14A68-31BA-48A7-BA6D-D134FD735F5D} - System32\Tasks\GoogleUpdateTaskMachineUAC => C:\WINDOWS\system32\cscript.exe [161280 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> //nologo "C:\Users\pino9\AppData\Roaming\EpicGamesLauncher\CheckEpicGamesLauncher.vbs" <==== ATTENTION Task: {B6BF543B-DC07-4902-83A9-2AE19CB2CBD9} - System32\Tasks\Intelligent StandbyList Cleaner => C:\Users\pino9\Desktop\OptiPcGamer\ISLC v1.0.2.8\Intelligent standby list cleaner ISLC.exe (Pas de fichier) Task: {8A6103D5-73B0-4032-B647-9EC7D87AF04C} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804312 2022-11-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {4431EAB5-3BFD-4E43-9D73-1D74B0AE31D6} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3900531747-52743300-353053920-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier) Task: {FF09EAF0-F83B-4B1D-8846-5A803A49BA19} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1704721902 => C:\Users\pino9\AppData\Local\Programs\Opera GX\launcher.exe [2303904 2024-02-27] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\pino9\AppData\Local\Programs\Opera GX\assistant" $(Arg0) Task: {9488B115-0D7C-43A0-A477-7B565E3E90B4} - System32\Tasks\Opera GX scheduled Autoupdate 1704644061 => C:\Users\pino9\AppData\Local\Programs\Opera GX\launcher.exe [2303904 2024-02-27] (Opera Norway AS -> Opera Software) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{71049887-a1e4-47d2-b77c-df6e8585465e}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{71049887-a1e4-47d2-b77c-df6e8585465e}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{71049887-a1e4-47d2-b77c-df6e8585465e}: [DhcpDomain] home HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\pino9\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-06] Edge Extension: (Google Docs hors connexion) - C:\Users\pino9\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-29] Edge Extension: (Edge relevant text changes) - C:\Users\pino9\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-3900531747-52743300-353053920-1001) Opera GXStable - "C:\Users\pino9\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [842128 2024-02-27] (ASUSTeK Computer Inc. -> ) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15772456 2023-12-26] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-12-27] (EasyAntiCheat Oy -> Epic Games, Inc.) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10962688 2024-01-26] (Logitech Inc -> Logitech, Inc.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_866484083fc526af\Display.NvContainer\NVDisplay.Container.exe [1274992 2023-12-08] (NVIDIA Corporation -> NVIDIA Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SteelSeriesGGUpdateServiceProxy; C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe [1500608 2023-09-18] (SteelSeries ApS -> ) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 EpicOnlineServices; "C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe" [X] S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X] S3 vgc; "C:\Program Files\Riot Vanguard\vgc.exe" [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2024-01-07] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 EagleX64; C:\WINDOWS\system32\drivers\EagleX64.sys [140600 2024-01-12] (AhnLab, Inc. -> AhnLab, Inc.) R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2024-03-06] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk]) R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [52672 2023-12-23] (Logitech Inc -> Logitech) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-12-23] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-12-23] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-12-23] (Logitech Inc -> Logitech) R3 R0SteelSeriesSystemMonitor; C:\Program Files\SteelSeries\GG\apps\engine\engineApps\system-stats\SteelSeriesSystemMonitor.sys [14544 2024-03-06] (Noriyuki MIYAZAKI -> OpenLibSys.org) R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [43456 2023-12-19] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [44456 2023-09-18] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys [95440 2023-03-17] (SteelSeries ApS -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2023-06-16] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 xhunter1; C:\WINDOWS\xhunter1.sys [215864 2024-03-01] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R2 BlueStacksDrv_bgp64; \??\C:\Program Files\BlueStacks_bgp64\BstkDrv_bgp64.sys [X] S1 vgk; \??\C:\Program Files\Riot Vanguard\vgk.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-03-06 22:45 - 2024-03-06 22:46 - 000017784 _____ C:\Users\pino9\Desktop\FRST.txt 2024-03-06 22:45 - 2024-03-06 22:46 - 000000000 ____D C:\FRST 2024-03-06 22:45 - 2024-03-06 22:45 - 002390016 _____ (Farbar) C:\Users\pino9\Desktop\FRST64.exe 2024-03-06 22:43 - 2024-03-06 22:43 - 000198696 _____ C:\Users\pino9\Desktop\ZHPDiag.txt 2024-03-06 22:40 - 2024-03-06 22:43 - 000000000 ____D C:\Users\pino9\AppData\Roaming\ZHP 2024-03-06 22:40 - 2024-03-06 22:40 - 003538592 _____ (Nicolas Coolman) C:\Users\pino9\Downloads\ZHPSuite.exe 2024-03-06 22:40 - 2024-03-06 22:40 - 000000865 _____ C:\Users\pino9\Desktop\ZHPSuite.lnk 2024-03-06 22:40 - 2024-03-06 22:40 - 000000000 ____D C:\Users\pino9\AppData\Local\ZHP 2024-03-06 18:59 - 2024-03-06 18:59 - 000000000 ____D C:\Users\pino9\AppData\Local\PeerDistRepub 2024-03-06 10:54 - 2024-03-06 10:54 - 000015008 _____ (Highresolution Enterprises [www.highrez.co.uk]) C:\WINDOWS\system32\Drivers\inpoutx64.sys 2024-03-06 10:23 - 2024-03-06 10:23 - 000000000 ____D C:\Users\pino9\AppData\Local\PlaceholderTileLogoFolder 2024-03-06 10:19 - 2024-03-06 10:19 - 000000000 ____D C:\Users\pino9\Documents\RL backup replay 2024-03-06 10:18 - 2024-03-06 10:18 - 000000000 ____D C:\Users\pino9\Documents\Twitch 2024-03-06 10:15 - 2024-03-06 10:15 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2024-03-06 09:40 - 2024-03-06 09:40 - 001296760 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys 2024-03-06 09:24 - 2024-03-06 09:26 - 000003766 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUAC 2024-03-01 05:21 - 2024-03-01 05:21 - 000215864 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys 2024-02-21 00:15 - 2024-02-21 00:15 - 000000865 _____ C:\Users\Public\Desktop\BakkesMod.lnk 2024-02-19 22:28 - 2024-02-19 22:28 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2024-02-15 02:32 - 2024-02-15 02:32 - 000000000 ____D C:\Users\pino9\AppData\Local\Windscribe 2024-02-11 06:54 - 2024-02-11 06:54 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop APM 2024-02-09 20:32 - 2024-02-09 20:32 - 000000000 ____D C:\Users\pino9\AppData\Local\Rocket League 2024-02-06 19:32 - 2024-02-27 15:44 - 000003676 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini 2024-02-06 18:55 - 2024-02-06 18:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2024-02-06 18:55 - 2024-02-06 18:55 - 000000000 ____D C:\Program Files\LGHUB 2024-02-06 18:54 - 2024-02-21 00:16 - 000000000 ____D C:\Users\pino9\AppData\Roaming\bakkesmod 2024-01-30 12:41 - 2024-01-30 12:41 - 000000000 ____D C:\ProgramData\SquirrelMachineInstalls 2024-01-29 16:28 - 2024-01-29 16:28 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2024-01-28 07:38 - 2024-02-21 00:15 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BakkesMod.lnk 2024-01-28 07:38 - 2024-02-21 00:15 - 000000000 ____D C:\Program Files\BakkesMod 2024-01-28 06:53 - 2024-01-28 06:53 - 000000000 ____D C:\Users\pino9\Documents\My Games 2024-01-21 17:48 - 2024-02-23 07:59 - 000000438 _____ C:\ProgramData\ntuser.pol 2024-01-08 14:51 - 2024-02-28 14:52 - 000004244 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1704644061 2024-01-08 14:51 - 2024-01-08 14:51 - 000004478 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled assistant Autoupdate 1704721902 2024-01-08 08:59 - 2024-01-12 23:03 - 000140600 _____ (AhnLab, Inc.) C:\WINDOWS\system32\Drivers\EagleX64.sys 2024-01-07 18:54 - 2024-03-06 22:44 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Spotify 2024-01-07 18:54 - 2024-03-06 18:01 - 000000000 ____D C:\Users\pino9\AppData\Local\Spotify 2024-01-07 18:54 - 2024-01-07 18:54 - 000001850 _____ C:\Users\pino9\Desktop\Spotify.lnk 2024-01-07 18:54 - 2024-01-07 18:54 - 000001836 _____ C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2024-01-07 17:42 - 2024-01-07 17:42 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\MMC 2024-01-07 17:40 - 2024-01-07 17:40 - 000007605 _____ C:\Users\pino9\AppData\Local\Resmon.ResmonCfg 2024-01-07 17:38 - 2024-01-07 17:38 - 000003614 _____ C:\WINDOWS\system32\Tasks\Intelligent StandbyList Cleaner 2024-01-07 17:37 - 2024-01-07 17:37 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Opera Software 2024-01-07 17:34 - 2024-03-06 09:37 - 000000000 ____D C:\Program Files\CCleaner 2024-01-07 17:34 - 2024-02-27 14:59 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2024-01-07 17:34 - 2024-02-27 14:59 - 000003376 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2024-01-07 17:34 - 2024-02-27 14:59 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2024-01-07 17:34 - 2024-01-07 17:34 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - pino9 2024-01-07 17:34 - 2024-01-07 17:34 - 000000000 ____D C:\Users\pino9\AppData\Local\NVIDIA Corporation 2024-01-07 17:34 - 2024-01-07 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2024-01-07 17:33 - 2024-01-07 17:33 - 000000000 ____D C:\Users\pino9\AppData\Roaming\NVIDIA 2024-01-07 17:30 - 2024-01-07 17:30 - 000438704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdtee_api.dll 2024-01-07 17:30 - 2024-01-07 17:30 - 000352176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdtee_api.dll 2024-01-07 17:30 - 2024-01-07 17:30 - 000039008 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AMDPCIDev.sys 2024-01-07 17:30 - 2024-01-07 17:30 - 000003490 _____ C:\WINDOWS\system32\Tasks\Disable LockScreen 2024-01-07 17:29 - 2024-01-07 17:29 - 000056024 _____ (Advanced Micro Devices, Inc) C:\WINDOWS\system32\Drivers\amdgpio2.sys 2024-01-07 17:28 - 2024-03-06 10:26 - 000003142 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner 2024-01-07 17:26 - 2024-01-07 17:26 - 000000000 ____D C:\Users\pino9\AppData\Roaming\AMD 2024-01-07 17:26 - 2024-01-07 17:26 - 000000000 ____D C:\Program Files (x86)\AMD 2024-01-07 17:26 - 2024-01-07 17:26 - 000000000 ____D C:\AMD 2024-01-07 17:25 - 2024-01-07 17:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2024-01-07 17:25 - 2024-01-07 17:25 - 000000000 ____D C:\Program Files (x86)\Realtek 2024-01-07 17:24 - 2024-01-07 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2024-01-07 17:24 - 2024-01-07 17:24 - 000000000 ____D C:\Program Files\CPUID 2024-01-07 17:23 - 2024-01-07 17:24 - 000000000 ____D C:\Users\pino9\AppData\Local\NVIDIA Profile Inspector 2024-01-07 17:21 - 2024-02-27 15:07 - 000000000 ____D C:\ProgramData\NVIDIA 2024-01-07 17:21 - 2024-01-07 17:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2024-01-07 17:21 - 2024-01-07 17:21 - 000000000 ____D C:\Users\pino9\AppData\LocalLow\NVIDIA 2024-01-07 17:21 - 2024-01-07 17:21 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2024-01-07 17:20 - 2024-03-06 21:46 - 000000000 ____D C:\ProgramData\ProductData 2024-01-07 17:20 - 2023-12-07 00:05 - 000121880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2024-01-07 17:19 - 2024-03-06 18:59 - 000000000 ____D C:\Users\pino9\AppData\Local\D3DSCache 2024-01-07 17:19 - 2023-12-08 02:23 - 001487368 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2024-01-07 17:19 - 2023-12-08 02:23 - 001424064 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-01-07 17:19 - 2023-12-08 02:23 - 001424064 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-01-07 17:19 - 2023-12-08 02:23 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-01-07 17:19 - 2023-12-08 02:23 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-01-07 17:19 - 2023-12-08 02:23 - 001227288 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2024-01-07 17:19 - 2023-12-08 02:23 - 000850616 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-01-07 17:19 - 2023-12-08 02:23 - 000850616 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-01-07 17:19 - 2023-12-08 02:23 - 000731320 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-01-07 17:19 - 2023-12-08 02:23 - 000731320 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-01-07 17:19 - 2023-12-08 02:19 - 000957960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2024-01-07 17:19 - 2023-12-08 02:19 - 000670232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll 2024-01-07 17:19 - 2023-12-08 02:19 - 000505480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll 2024-01-07 17:19 - 2023-12-08 02:18 - 012375688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2024-01-07 17:19 - 2023-12-08 02:18 - 002170992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2024-01-07 17:19 - 2023-12-08 02:18 - 001624712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2024-01-07 17:19 - 2023-12-08 02:18 - 001541256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2024-01-07 17:19 - 2023-12-08 02:18 - 001198728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2024-01-07 17:19 - 2023-12-08 02:18 - 000997512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2024-01-07 17:19 - 2023-12-08 02:18 - 000810096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2024-01-07 17:19 - 2023-12-08 02:18 - 000773744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2024-01-07 17:19 - 2023-12-08 02:18 - 000459912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2024-01-07 17:19 - 2023-12-08 02:17 - 015095408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2024-01-07 17:19 - 2023-12-08 02:17 - 006462600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2024-01-07 17:19 - 2023-12-08 02:17 - 005862512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2024-01-07 17:19 - 2023-12-08 02:17 - 005861000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2024-01-07 17:19 - 2023-12-08 02:17 - 003620488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2024-01-07 17:19 - 2023-12-08 02:17 - 000853640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2024-01-07 17:19 - 2023-12-08 02:16 - 007869576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2024-01-07 17:19 - 2023-12-08 02:16 - 006745768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2024-01-07 17:19 - 2023-12-07 00:05 - 000113947 _____ C:\WINDOWS\system32\nvinfo.pb 2024-01-07 17:14 - 2024-03-06 10:26 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2024-01-07 17:14 - 2024-02-28 14:52 - 000001430 _____ C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk 2024-01-07 17:14 - 2024-01-07 17:14 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2024-01-07 17:14 - 2024-01-07 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2024-01-07 17:14 - 2024-01-07 17:14 - 000000000 ____D C:\Program Files\VS Revo Group 2024-01-07 17:12 - 2024-01-07 17:40 - 000000000 ____D C:\Users\pino9\Documents\Opti 2024-01-07 17:11 - 2024-01-07 17:11 - 000000000 ____D C:\WINDOWS\pss 2024-01-07 17:09 - 2024-01-07 17:10 - 000000000 ____D C:\Users\pino9\AppData\Roaming\AnyDesk 2024-01-05 07:57 - 2024-01-05 07:57 - 000000000 ____D C:\Users\pino9\AppData\LocalLow\Adobe 2024-01-03 04:41 - 2024-02-23 07:59 - 000000000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR.lnk 2024-01-03 04:34 - 2024-03-06 09:38 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2024-01-03 04:02 - 2024-02-15 03:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2024-01-03 04:02 - 2024-01-03 04:02 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games 2024-01-02 01:02 - 2024-01-06 13:12 - 000000031 _____ C:\WINDOWS\Launcher.INI 2024-01-02 00:59 - 2024-01-02 00:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freestyle GunZ 2023-12-29 22:53 - 2024-01-07 17:38 - 000000000 ____D C:\WINDOWS\Minidump 2023-12-29 22:39 - 2023-12-29 22:39 - 000001304 _____ C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM Application Data.lnk 2023-12-27 12:42 - 2023-12-27 12:42 - 000000000 ____D C:\ProgramData\Packer 2023-12-25 22:22 - 2023-12-25 22:22 - 000001298 _____ C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk 2023-12-25 16:00 - 2023-12-25 16:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REVisionEffects 2023-12-25 16:00 - 2023-12-25 16:00 - 000000000 ____D C:\Program Files\REVisionEffects 2023-12-25 15:57 - 2023-12-30 19:05 - 000000000 ____D C:\Users\pino9\AppData\Roaming\com.adobe.dunamis 2023-12-25 15:57 - 2023-12-25 15:57 - 000000000 ____D C:\Users\pino9\Documents\Adobe 2023-12-25 15:52 - 2024-02-23 07:59 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2023.lnk 2023-12-25 15:52 - 2023-12-25 15:52 - 000000000 ____D C:\Users\Public\Documents\Adobe 2023-12-25 15:51 - 2024-03-06 10:17 - 000000000 ____D C:\Program Files\Common Files\Adobe 2023-12-25 15:51 - 2024-03-06 10:17 - 000000000 ____D C:\Program Files\Adobe 2023-12-25 15:51 - 2023-12-30 19:04 - 000000000 ____D C:\Program Files (x86)\Adobe 2023-12-25 15:49 - 2024-03-06 10:17 - 000000000 ____D C:\ProgramData\Adobe 2023-12-25 15:49 - 2023-12-30 19:05 - 000000000 ____D C:\Users\pino9\AppData\Local\Adobe 2023-12-25 14:21 - 2023-12-25 14:21 - 000000000 ___SH C:\Users\Public\Shared Files 2023-12-25 14:13 - 2023-12-27 12:42 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2023-12-25 12:47 - 2024-03-06 10:09 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-12-25 12:40 - 2024-02-29 23:29 - 000000000 ____D C:\Program Files\Epic Games 2023-12-25 12:38 - 2023-12-27 12:42 - 000000000 ____D C:\Users\pino9\AppData\Local\UnrealEngine 2023-12-25 12:38 - 2023-12-25 12:38 - 000000000 ____D C:\Users\pino9\AppData\Local\UnrealEngineLauncher 2023-12-24 15:58 - 2023-12-24 15:58 - 000000000 ____D C:\ProgramData\PLUG 2023-12-24 13:06 - 2023-12-24 13:06 - 000000000 ___HD C:\$WinREAgent 2023-12-24 13:06 - 2023-12-24 13:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-12-24 12:00 - 2023-12-24 12:00 - 000000000 ____D C:\WINDOWS\system32\SteelSeries 2023-12-24 11:59 - 2023-12-24 12:00 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-12-24 11:58 - 2023-12-24 11:58 - 000000000 ____D C:\Program Files\RUXIM 2023-12-23 22:00 - 2024-02-05 01:50 - 000000000 ____D C:\Users\pino9\AppData\Local\DigitalEntitlements 2023-12-23 22:00 - 2023-12-23 22:00 - 000002128 _____ C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk 2023-12-23 22:00 - 2023-12-23 22:00 - 000002120 _____ C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM - Cfx.re Development Kit (FxDK).lnk 2023-12-23 21:59 - 2023-12-23 21:59 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2023-12-23 21:59 - 2023-12-23 21:59 - 000000000 ____D C:\Program Files\Reference Assemblies 2023-12-23 21:59 - 2023-12-23 21:59 - 000000000 ____D C:\Program Files\MSBuild 2023-12-23 21:59 - 2023-12-23 21:59 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2023-12-23 21:59 - 2023-12-23 21:59 - 000000000 ____D C:\Program Files (x86)\MSBuild 2023-12-23 20:02 - 2024-02-23 07:59 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2023-12-23 20:02 - 2024-02-21 06:28 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Notepad++ 2023-12-23 20:02 - 2023-12-23 20:02 - 000000000 ____D C:\Program Files\Notepad++ 2023-12-23 19:41 - 2024-02-19 22:28 - 000001108 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk 2023-12-23 19:41 - 2024-01-30 20:45 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-12-23 19:41 - 2024-01-30 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-12-23 19:41 - 2023-12-23 19:41 - 000000000 ____D C:\Users\pino9\AppData\Roaming\WinRAR 2023-12-23 19:41 - 2023-12-23 19:41 - 000000000 ____D C:\Program Files\WinRAR 2023-12-23 18:50 - 2023-12-23 18:50 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2023-12-23 18:49 - 2023-12-23 21:58 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2023-12-23 18:48 - 2024-01-17 14:32 - 000000691 _____ C:\Users\pino9\Desktop\REC.lnk 2023-12-23 18:48 - 2023-12-23 18:48 - 000000520 _____ C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REC.lnk 2023-12-23 18:43 - 2024-03-06 10:57 - 000000000 ____D C:\Users\pino9\AppData\Roaming\obs-studio 2023-12-23 18:43 - 2023-12-23 18:43 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk 2023-12-23 18:43 - 2023-12-23 18:43 - 000000000 ____D C:\ProgramData\obs-studio 2023-12-23 18:43 - 2023-12-23 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio 2023-12-23 18:42 - 2023-12-23 18:43 - 000000000 ____D C:\Program Files\obs-studio 2023-12-23 18:26 - 2024-03-06 10:55 - 000000000 ____D C:\Users\pino9\AppData\Roaming\steelseries-gg-client 2023-12-23 18:26 - 2023-12-23 18:26 - 000000000 ____D C:\ProgramData\obs-studio-hook 2023-12-23 18:25 - 2023-12-23 18:25 - 000000000 ____D C:\ProgramData\SteelSeries 2023-12-23 18:25 - 2023-12-23 18:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries 2023-12-23 18:25 - 2023-12-23 18:25 - 000000000 ____D C:\Program Files\SteelSeries 2023-12-23 18:06 - 2024-02-23 07:59 - 000001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks (64-bit).lnk 2023-12-23 18:06 - 2024-02-15 02:59 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager (64-bit).lnk 2023-12-23 18:06 - 2023-12-23 18:06 - 000000000 ____D C:\Users\pino9\AppData\Local\OneDrive 2023-12-23 18:05 - 2024-03-06 09:53 - 000000000 ____D C:\Program Files\BlueStacks_bgp64 2023-12-23 18:04 - 2023-12-23 18:05 - 000000000 ____D C:\Users\Public\BlueStacks 2023-12-23 18:03 - 2023-12-25 12:46 - 000000000 ____D C:\Users\pino9\AppData\Local\Steam 2023-12-23 18:03 - 2023-12-23 18:03 - 000000000 ____D C:\Users\pino9\AppData\Local\CEF 2023-12-23 18:02 - 2024-03-06 22:08 - 000000000 ____D C:\Program Files (x86)\Steam 2023-12-23 18:02 - 2023-12-23 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2023-12-23 17:55 - 2024-01-07 17:37 - 000000000 ____D C:\Users\pino9\AppData\Local\Opera Software 2023-12-23 17:50 - 2024-03-06 22:35 - 000000000 ____D C:\Users\pino9\AppData\Local\Discord 2023-12-23 17:50 - 2024-03-04 03:14 - 000000000 ____D C:\Users\pino9\AppData\Roaming\discord 2023-12-23 17:50 - 2024-01-30 12:42 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2023-12-23 17:48 - 2023-12-23 17:48 - 000000000 ____D C:\ProgramData\LGHUBData 2023-12-23 17:45 - 2024-03-06 22:24 - 000000000 ____D C:\Users\pino9\AppData\Roaming\lghub 2023-12-23 17:45 - 2024-02-27 16:21 - 000000000 ____D C:\Users\pino9\AppData\Roaming\G HUB 2023-12-23 17:45 - 2024-02-27 14:59 - 000000000 ____D C:\Users\pino9\AppData\Local\LGHUB 2023-12-23 17:45 - 2023-12-23 17:45 - 002082048 _____ (Logitech) C:\WINDOWS\system32\logi_audio_hx2e_render_apo.dll 2023-12-23 17:45 - 2023-12-23 17:45 - 000406984 _____ (Logitech) C:\WINDOWS\system32\logi_audio_dts_studio_capture_apo.dll 2023-12-23 17:45 - 2023-12-23 17:45 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys 2023-12-23 17:45 - 2023-12-23 17:45 - 000052672 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_audio_surround.sys 2023-12-23 17:45 - 2023-12-23 17:45 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys 2023-12-23 17:45 - 2023-12-23 17:45 - 000032080 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys 2023-12-23 17:45 - 2023-12-23 17:45 - 000000000 ____D C:\ProgramData\Logishrd 2023-12-23 17:45 - 2023-12-23 17:45 - 000000000 ____D C:\ProgramData\LGHUB 2023-12-23 17:45 - 2023-12-23 17:45 - 000000000 ____D C:\Program Files\Logitech 2023-12-23 17:44 - 2024-03-01 05:17 - 000000000 ____D C:\ProgramData\Package Cache 2023-12-23 17:42 - 2023-12-23 17:42 - 000000000 ____D C:\Users\pino9\AppData\Local\Comms 2023-12-23 17:40 - 2023-12-23 17:45 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Spelling 2023-12-23 17:38 - 2023-12-24 17:38 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3900531747-52743300-353053920-1001 2023-12-23 17:36 - 2024-01-24 18:36 - 000000000 ____D C:\Users\pino9\AppData\Local\NVIDIA 2023-12-23 17:36 - 2024-01-07 18:54 - 000000000 ____D C:\Users\pino9\AppData\Local\Packages 2023-12-23 17:36 - 2023-12-30 19:05 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Adobe 2023-12-23 17:36 - 2023-12-25 01:04 - 000000000 ____D C:\Users\pino9\AppData\Local\ConnectedDevicesPlatform 2023-12-23 17:36 - 2023-12-23 17:38 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-12-23 17:36 - 2023-12-23 17:36 - 000338272 _____ () C:\WINDOWS\system32\AsusDownLoadLicense.exe 2023-12-23 17:36 - 2023-12-23 17:36 - 000000000 ___SD C:\Users\pino9\AppData\Roaming\Microsoft\Crypto 2023-12-23 17:36 - 2023-12-23 17:36 - 000000000 ___RD C:\Users\pino9\3D Objects 2023-12-23 17:36 - 2023-12-23 17:36 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Vault 2023-12-23 17:36 - 2023-12-23 17:36 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Network 2023-12-23 17:34 - 2024-03-06 09:26 - 000000000 ____D C:\Users\pino9\AppData\Roaming\Microsoft\Windows 2023-12-23 17:34 - 2024-01-08 21:03 - 000000000 ____D C:\Users\pino9 2023-12-23 17:34 - 2023-12-27 11:37 - 000000000 ____D C:\ProgramData\Packages 2023-12-23 17:34 - 2023-12-23 17:45 - 000000000 ___SD C:\Users\pino9\AppData\Roaming\Microsoft\Credentials 2023-12-23 17:34 - 2023-12-23 17:34 - 000000020 ___SH C:\Users\pino9\ntuser.ini 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\Voisinage réseau 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\Voisinage d'impression 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\Modèles 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\Mes documents 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\Menu Démarrer 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\Documents\Mes vidéos 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\Documents\Mes images 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\Documents\Ma musique 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 _SHDL C:\Users\pino9\AppData\Local\Historique 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 ___SD C:\Users\pino9\AppData\Roaming\Microsoft\SystemCertificates 2023-12-23 17:34 - 2023-12-23 17:34 - 000000000 ___SD C:\Users\pino9\AppData\Roaming\Microsoft\Protect 2023-12-23 17:33 - 2024-02-27 15:06 - 001771434 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-12-23 17:33 - 2024-01-07 19:32 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2023-12-23 17:33 - 2024-01-07 17:20 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2023-12-23 17:33 - 2023-12-23 17:33 - 000000000 ____D C:\WINDOWS\system32\lxss 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidéos 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Public\Documents\Mes images 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\Modèles 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\Mes documents 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\Documents\Mes images 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\ProgramData\Modèles 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\ProgramData\Bureau 2023-12-23 17:27 - 2023-12-23 17:27 - 000000000 _SHDL C:\Program Files\Fichiers communs 2023-12-23 17:24 - 2024-03-06 01:05 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-12-23 17:24 - 2024-03-06 01:05 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-12-23 17:24 - 2024-03-03 12:54 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-12-23 17:24 - 2024-02-27 14:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-12-23 17:24 - 2023-12-23 17:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-12-23 17:24 - 2023-12-23 17:24 - 000000000 ____D C:\WINDOWS\CSC 2023-12-23 17:24 - 2023-12-23 17:24 - 000000000 ____D C:\ProgramData\ASUS 2023-12-23 17:23 - 2024-03-06 21:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-12-23 17:23 - 2024-02-27 14:59 - 000880672 _____ C:\WINDOWS\system32\wpbbin.exe 2023-12-23 17:23 - 2024-02-27 14:59 - 000842128 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe 2023-12-23 17:23 - 2023-12-23 17:23 - 000259584 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-12-23 17:23 - 2023-12-23 17:23 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2023-12-23 17:22 - 2023-12-23 17:39 - 000000000 ____D C:\Windows.old 2023-12-23 17:20 - 2023-12-23 17:20 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2023-12-23 17:16 - 2024-01-07 17:38 - 000000000 ___DC C:\WINDOWS\Panther 2023-12-23 17:08 - 2023-12-23 17:16 - 000000000 ____D C:\ESD 2023-12-23 17:06 - 2023-12-23 17:06 - 000000000 ___HD C:\$Windows.~WS 2023-12-23 17:01 - 2023-12-23 17:01 - 000000000 ___HD C:\$SysReset ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-03-06 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-03-06 10:16 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-03-06 09:40 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2024-03-03 12:54 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-03-03 12:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-02-27 15:06 - 2019-12-07 15:50 - 000791886 _____ C:\WINDOWS\system32\perfh00C.dat 2024-02-27 15:06 - 2019-12-07 15:50 - 000150052 _____ C:\WINDOWS\system32\perfc00C.dat 2024-02-27 14:59 - 2022-09-13 16:32 - 000008192 ___SH C:\DumpStack.log.tmp 2024-02-27 14:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2024-02-27 13:44 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI ==================== Fichiers à la racine de certains dossiers ======== 2024-01-07 17:40 - 2024-01-07 17:40 - 000007605 _____ () C:\Users\pino9\AppData\Local\Resmon.ResmonCfg ==================== SigCheckExt ========================= 2024-03-06 22:45 - 2024-03-06 22:45 - 002390016 _____ (Farbar) C:\Users\pino9\Desktop\FRST64.exe 2024-03-06 22:40 - 2024-03-06 22:40 - 003538592 _____ (Nicolas Coolman) C:\Users\pino9\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {2205c3d0-5705-11ed-b29f-806e6f6e6963} {b5d32df1-c517-11ee-92ea-806e6f6e6963} timeout 1 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {613dde49-a1af-11ee-b313-7c10c91d3cd8} displayorder {current} toolsdisplayorder {memdiag} timeout 10 Application logicielle (101fffff) -------------------------------- identificateur {2205c3d0-5705-11ed-b29f-806e6f6e6963} device partition=\Device\HarddiskVolume1 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager Application logicielle (101fffff) -------------------------------- identificateur {b5d32df1-c517-11ee-92ea-806e6f6e6963} device partition=E: description UEFI: USB DISK 2.0 PMAP, Partition 1 Chargeur de démarrage Windows ----------------------------- identificateur {22eebeda-3381-11ed-92e4-d6eb17e0d22f} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{22eebedb-3381-11ed-92e4-d6eb17e0d22f} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-fr inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{22eebedb-3381-11ed-92e4-d6eb17e0d22f} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {ae63389f-a1af-11ee-92de-ec30c6518e44} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {613dde49-a1af-11ee-b313-7c10c91d3cd8} nx OptOut bootmenupolicy Legacy quietboot Yes Chargeur de démarrage Windows ----------------------------- identificateur {ae63389f-a1af-11ee-92de-ec30c6518e44} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ae6338a0-a1af-11ee-92de-ec30c6518e44} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ae6338a0-a1af-11ee-92de-ec30c6518e44} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {613dde49-a1af-11ee-b313-7c10c91d3cd8} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {ae63389f-a1af-11ee-92de-ec30c6518e44} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {ae6338a0-a1af-11ee-92de-ec30c6518e44} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================