Serveur minecraft

Ordinateur faisant des choses étranges, virus possible – Monter un serveur MineCraft

Par Titanfall , le 12 avril 2021 - 67 minutes de lecture

[bzkshopping keyword= »Minecraft » count= »8″ template= »grid »]

FRST ne fonctionnait pas en mode normal, j'ai donc dû passer en mode administrateur, comme vous l'avez suggéré.

Mon fils jouait avec des macros dans un programme de souris qu'il venait d'installer; donc je l'ai désinstallé.

Cela m'a ensuite permis d'exécuter les choses que vous avez suggérées.

Il a été laissé un clic lorsque j'ai survolé quoi que ce soit, ce qui peut avoir expliqué le comportement étrange que j'ai vécu.

quoi qu'il en soit, voici les résultats de vos instructions.

Résultat de l'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10-04-2021

Ran by Administrator (administrator) on DESKTOP-H2AS07G (11-04-2021 15:42:48)

Exécution à partir de C: Users Administrator Desktop

Profils chargés: administrateur

Plate-forme: Windows 10 Pro Version 20H2 19042.870 (X64) Langue: Anglais (États-Unis)

Navigateur par défaut: Edge

Mode de démarrage: normal

==================== Processus (sur liste blanche) ==================

(Si une entrée est incluse dans la liste de correctifs, le processus sera fermé. Le fichier ne sera pas déplacé.)

(Advanced Micro Devices, Inc. -> AMD) C: Windows System32 DriverStore FileRepository͈324.inf_amd64_ca2817dddfc40077 B346462 atieclxx.exe

(Advanced Micro Devices, Inc. -> AMD) C: Windows System32 DriverStore FileRepository͈324.inf_amd64_ca2817dddfc40077 B346462 atiesrxx.exe

(Dropbox, Inc -> Dropbox, Inc.) C: Program Files (x86) Dropbox Client Dropbox.exe <3>

(Dropbox, Inc -> Dropbox, Inc.) C: Program Files (x86) Dropbox Update DropboxUpdate.exe <2>

(Dropbox, Inc -> Dropbox, Inc.) C: Windows System32 DbxSvc.exe

(Heimdal Security A / S -> Heimdal Security) C: Program Files (x86) Heimdal Heimdal.AgentLoader.exe

(Heimdal Security A / S -> Heimdal Security) C: Program Files (x86) Heimdal Heimdal.ClientHost.exe

(Heimdal Security A / S -> Heimdal Security) C: Program Files (x86) Heimdal Heimdal.UpdateService.exe

(Heimdal Security A / S -> Heimdal Security) C: Program Files (x86) Heimdal Heimdal.UptimeChecker.exe

(Malwarebytes Inc -> Malwarebytes) C: Program Files Malwarebytes Anti-Malware MBAMService.exe

(Malwarebytes Inc -> Malwarebytes) C: Program Files Malwarebytes Anti-Malware mbamtray.exe

(Microsoft Corporation -> Microsoft Corporation) C: Users Administrator AppData Local Microsoft OneDrive OneDrive.exe

(Microsoft Windows -> Microsoft Corporation) C: Windows System32 PrintIsolationHost.exe

(Microsoft Windows -> Microsoft Corporation) C: Windows System32 smartscreen.exe

(Microsoft Windows -> Microsoft Corporation) C: Windows System32 userinit.exe

(Microsoft Windows -> Microsoft Corporation) C: Windows SysWOW64 runonce.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C: ProgramData Microsoft Windows Defender Platform 4.18.2103.7-0 MsMpEng.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C: ProgramData Microsoft Windows Defender Platform 4.18.2103.7-0 NisSrv.exe

(Oracle America, Inc. -> Oracle Corporation) C: Program Files (x86) Common Files Java Java Update jusched.exe

==================== Registre (sur liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, l'élément de registre sera restauré par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM-x32 … Exécuter: [SunJavaUpdateSched] => C: Program Files (x86) Common Files Java Java Update jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)

HKLM-x32 … Exécuter: [HeimdalAgentLoader] => C: Program Files (x86) Heimdal Heimdal.AgentLoader.exe [43592 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

HKLM-x32 … Exécuter: [KeePass 2 PreLoad] => C: Program Files KeePass Password Safe 2 KeePass.exe [3137728 2021-01-09] (Développeur Open Source, Dominik Reichl -> Dominik Reichl)

HKLM-x32 … Exécuter: [Dropbox] => C: Program Files (x86) Dropbox Client Dropbox.exe [7991528 2021-03-30] (Dropbox, Inc -> Dropbox, Inc.)

HKU S-1-5-21-17591080-1060373698-219075334-1001 … Exécuter: [Discord] => C: Users TTsco AppData Local Discord Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)

HKU S-1-5-21-17591080-1060373698-219075334-1001 … Exécuter: [Gaijin.Net Updater] => C: Users TTsco AppData Local Gaijin Program Files (x86) NetAgent gjagent.exe [2374376 2020-12-03] (Gaijin Network LTD -> Gaijin)

HKU S-1-5-21-17591080-1060373698-219075334-1001 … Exécuter: [CCleaner Smart Cleaning] => C: Program Files CCleaner CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)

HKU S-1-5-21-17591080-1060373698-219075334-1001 … Exécuter: [EpicGamesLauncher] => C: Program Files (x86) Epic Games Launcher Portal Binaries Win64 EpicGamesLauncher.exe [33000928 2021-04-07] (Epic Games Inc. -> Epic Games, Inc.)

HKU S-1-5-21-17591080-1060373698-219075334-1001 … Exécuter: [LGHUB] => "C: Program Files LGHUB lghub.exe" – arrière-plan

HKU S-1-5-21-17591080-1060373698-219075334-1002 … Exécuter: [CCleaner Smart Cleaning] => C: Program Files CCleaner CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)

HKU S-1-5-21-17591080-1060373698-219075334-1002 … Exécuter: [LGHUB] => "C: Program Files LGHUB lghub.exe" – arrière-plan

HKU S-1-5-21-17591080-1060373698-219075334-1007 … Exécuter: [CCleaner Smart Cleaning] => C: Program Files CCleaner CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)

HKU S-1-5-21-17591080-1060373698-219075334-1007 … Exécuter: [EpicGamesLauncher] => C: Program Files (x86) Epic Games Launcher Portal Binaries Win64 EpicGamesLauncher.exe [33000928 2021-04-07] (Epic Games Inc. -> Epic Games, Inc.)

HKU S-1-5-21-17591080-1060373698-219075334-1007 Panneau de configuration Bureau \ SCRNSAVE.EXE -> C: Windows system32 Mystify.scr [154624 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

HKLM … Windows x64 Processeurs d'impression OKHSPP3: C: Windows System32 spool prtprocs x64 OKHSPP3.DLL [62464 2013-05-10] (Éditeur de compatibilité matérielle Microsoft Windows -> Oki Data Corporation)

HKLM … Print Monitors OKI HiperC Language Monitor 7 x64: C: Windows system32 OPDMN075.DLL [167936 2012-11-06] (Éditeur de compatibilité matérielle Microsoft Windows -> Oki Data Corporation)

HKLM Software Microsoft Active Setup Composants installés: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> "C: Program Files Google Chrome Application 88.0.4324.182 Installer chrmstp.exe" –configure-user-settings –verbose-logging –system-level

HKLM Software Wow6432Node Microsoft Active Setup Installed Components: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C: Program Files Google Chrome Application 89.0.4389.114 Installer chrmstp.exe [2021-03-31] (Google LLC -> Google LLC)

GroupPolicy: Restriction – Chrome <==== ATTENTION

Stratégies: C: ProgramData NTUSER.pol: Restriction <==== ATTENTION

HKLM SOFTWARE Policies Google: Restriction <==== ATTENTION

HKLM SOFTWARE Policies Microsoft Edge: Restriction <==== ATTENTION

==================== Tâches planifiées (sur liste blanche) ============

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

Tâche: 3384AC0C-E2D5-4F61-A527-3A716B96D43F – System32 Tasks GoogleUpdateTaskMachineCore => C: Program Files (x86) Google Update GoogleUpdate.exe [155592 2021-02-02] (Google LLC -> Google LLC)

Tâche: 345CBBAE-31BF-4E39-97DF-DFCE1B859487 – System32 Tasks DropboxUpdateTaskMachineUA => C: Program Files (x86) Dropbox Update DropboxUpdate.exe [143144 2021-03-29] (Dropbox, Inc -> Dropbox, Inc.)

Tâche: 5A26B680-455A-41A6-9AE6-BB6966812723 – System32 Tasks CCleaner Update => C: Program Files CCleaner CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)

Tâche: 74550CFF-C633-421B-A036-66A02CDA0119 – System32 Tasks Microsoft Windows Windows Defender Windows Defender Verification => C: ProgramData Microsoft Windows Defender Platform 4.18.2103.7-0 MpCmdRun. EXE [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)

Tâche: 78A5FB4D-6218-40C1-8B35-109DAFB34A90 – System32 Tasks Microsoft Windows Windows Defender Windows Defender Cache Maintenance => C: ProgramData Microsoft Windows Defender Platform 4.18.2103.7-0 MpCmdRun .EXE [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)

Tâche: 8E01A593-8FA3-48BE-9520-9BF7ADDF2FB7 – System32 Tasks Microsoft Windows Windows Defender Windows Defender Cleanup => C: ProgramData Microsoft Windows Defender Platform 4.18.2103.7-0 MpCmdRun. EXE [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)

Tâche: 9229BB06-A72E-4073-9ED1-8202526EC249 – System32 Tasks DropboxUpdateTaskMachineCore => C: Program Files (x86) Dropbox Update DropboxUpdate.exe [143144 2021-03-29] (Dropbox, Inc -> Dropbox, Inc.)

Tâche: A1FC9025-FCAB-41A0-A6FE-9A90E1CBB8B3 – System32 Tasks AsrPolychromeRGB => C: Program Files (x86) ASRock Utility ASRRGBLED Bin AsrPolychromeRGB.exe [8934872 2019-08-22] (Incorporation ASRock ->)

Tâche: BDFFF92D-E521-4923-83DC-54846F351395 – System32 Tasks Microsoft Windows Windows Defender Windows Defender Scheduled Scan => C: ProgramData Microsoft Windows Defender Platform 4.18.2103.7-0 MpCmdRun .EXE [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)

Tâche: EF7199D2-6938-4323-AE04-96501E98E45B – System32 Tasks CCleanerSkipUAC => C: Program Files CCleaner CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)

Tâche: F983EF9D-5CF2-4891-92F2-3AFDC829115E – System32 Tasks GoogleUpdateTaskMachineUA => C: Program Files (x86) Google Update GoogleUpdate.exe [155592 2021-02-02] (Google LLC -> Google LLC)

Tâche: FBC81DCC-7440-4C3B-870F-5CE399B0E435 – System32 Tasks Heimdal Security Service Monitor => C: Windows SysWOW64 Heimdal Security Heimdal Jobs Heimdal.MonitorServices.exe [40520 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

(Si une entrée est incluse dans la liste de correctifs, le fichier de la tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Tâche: C: Windows Tasks CreateExplorerShellUnelevatedTask.job => C: Windows explorer.exe

Tâche: C: Windows Tasks DropboxUpdateTaskMachineCore.job => C: Program Files (x86) Dropbox Update DropboxUpdate.exe

Tâche: C: Windows Tasks DropboxUpdateTaskMachineUA.job => C: Program Files (x86) Dropbox Update DropboxUpdate.exe

Tâche: C: Windows Tasks EOSv3 Scheduler onLogOn.job => C: Users veggi Downloads esetonlinescanner.exe

Tâche: C: Windows Tasks EOSv3 Scheduler onTime.job => C: Users veggi Downloads esetonlinescanner.exe

==================== Internet (sur liste blanche) ====================

(Si un élément est inclus dans la liste de correctifs, s'il s'agit d'un élément de registre, il sera supprimé ou restauré par défaut.)

Tcpip Paramètres: [DhcpNameServer] 192.168.1.1

Tcpip .. Interfaces 4a5418e8-c53e-4932-9342-70bb3f288b6c: [DhcpNameServer] 192.168.1.1

Bord:

=======

Edge DefaultProfile: Par défaut

Profil Edge: C: Users Administrator AppData Local Microsoft Edge User Data Default [2021-04-11]

Renard de feu:

========

Plugin FF: @ java.com / DTPlugin, version = 11.291.2 -> C: Program Files Java jre1.8.0_291 bin dtplugin npDeployJava1.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)

Plugin FF: @ java.com / JavaPlugin, version = 11.291.2 -> C: Program Files Java jre1.8.0_291 bin plugin2 npjp2.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)

Plugin FF: @ videolan.org / vlc, version = 3.0.12 -> C: Program Files VideoLAN VLC npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)

==================== Services (sur liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

S3 BEService; C: Program Files (x86) Common Files BattlEye BEService.exe [8901968 2021-03-07] (BattlEye Innovations e.K. ->)

S2 dbupdate; C: Program Files (x86) Dropbox Update DropboxUpdate.exe [143144 2021-03-29] (Dropbox, Inc -> Dropbox, Inc.)

S3 dbupdatem; C: Program Files (x86) Dropbox Update DropboxUpdate.exe [143144 2021-03-29] (Dropbox, Inc -> Dropbox, Inc.)

R2 DbxSvc; C: Windows system32 DbxSvc.exe [44272 2021-03-30] (Dropbox, Inc -> Dropbox, Inc.)

S3 EasyAntiCheat; C: Program Files (x86) EasyAntiCheat EasyAntiCheat.exe [818304 2021-03-07] (EasyAntiCheat Oy -> Epic Games, Inc)

S3 privilège d'administration Heimdal; C: Program Files (x86) Heimdal Heimdal.AdminPrivilege.exe [129608 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

S3 Heimdal Antivirus; C: Program Files (x86) Heimdal Heimdal.Antivirus.exe [324680 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

R2 Heimdal Client Host; C: Program Files (x86) Heimdal Heimdal.ClientHost.exe [127048 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

S2 Heimdal DarkLayer Guard; C: Program Files (x86) Heimdal Heimdal.DarkLayerGuard.exe [197192 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

S3 Pare-feu Heimdal; C: Program Files (x86) Heimdal Heimdal.Firewall.exe [68680 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

S3 Heimdal MailSentry; C: Program Files (x86) Heimdal Heimdal.MailSentry.exe [81480 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

Service de mise à jour R2 Heimdal; C: Program Files (x86) Heimdal Heimdal.UpdateService.exe [59464 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

R2 Heimdal Uptime Checker; C: Program Files (x86) Heimdal Heimdal.UptimeChecker.exe [63560 2020-12-10] (Heimdal Security A / S -> Heimdal Security)

R2 MBAMService; C: Program Files Malwarebytes Anti-Malware MBAMService.exe [7456464 2021-02-02] (Malwarebytes Inc -> Malwarebytes)

S3 Sense; C: Program Files Windows Defender Advanced Threat Protection MsSense.exe [5352528 2021-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 ss_conn_launcher_service; C: Windows System32 Samsung EasySetup ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

R3 WdNisSvc; C: ProgramData Microsoft Windows Defender Platform 4.18.2103.7-0 NisSrv.exe [2624104 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WinDefend; C: ProgramData Microsoft Windows Defender Platform 4.18.2103.7-0 MsMpEng.exe [128376 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (sur liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

S3 AppleLowerFilter; C: Windows System32 drivers AppleLowerFilter.sys [35976 2020-10-09] (Version WDKTestCert, 132303256403278908 -> Apple Inc.)

S3 AsrDrv103; C: Windows SysWOW64 Drivers AsrDrv103.sys [34568 2021-02-03] (Incorporation ASROCK -> Incorporation ASRock) [File not signed]

S3 BthA2dp; C: Windows System32 drivers BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]

S3 dg_ssudbus; C: Windows system32 DRIVERS ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

R1 EneIo; C: Windows system32 drivers ene.sys [16320 2018-03-20] (Ptolemy Tech Co., Ltd ->)

R1 GLCKIO2; C: Windows system32 drivers GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. ->)

S3 logi_joy_bus_enum; C: Windows system32 drivers logi_joy_bus_enum.sys [37200 2021-04-11] (Logitech Inc -> Logitech)

S3 logi_joy_vir_hid; C: Windows system32 drivers logi_joy_vir_hid.sys [25928 2021-04-11] (Logitech Inc -> Logitech)

S3 logi_joy_xlcore; C: Windows system32 drivers logi_joy_xlcore.sys [66896 2021-04-11] (Logitech Inc -> Logitech)

R2 MBAMChameleon; C: Windows System32 Drivers MbamChameleon.sys [220616 2021-04-11] (Malwarebytes Inc -> Malwarebytes)

S0 MbamElam; C: Windows System32 DRIVERS MbamElam.sys [19912 2021-02-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R3 MBAMSwissArmy; C: Windows System32 Drivers mbamswissarmy.sys [248992 2021-04-11] (Malwarebytes Inc -> Malwarebytes)

S3 MSIO; C: Program Files (x86) ASRock Utility ASRRGBLED Bin msio64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. ->)

S3 RTCore64; C: Program Files (x86) MSI Afterburner RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. ->)

S3 ssudmdm; C: Windows system32 DRIVERS ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

S3 ss_conn_usb_driver2; C: Windows System32 Drivers ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

S0 WdBoot; C: Windows System32 drivers wd WdBoot.sys [49560 2021-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WDC_SAM; C: Windows System32 drivers wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab, 130885612892544312 -> Western Digital Technologies, Inc.)

R0 WdFilter; C: Windows System32 drivers wd WdFilter.sys [421088 2021-04-11] (Microsoft Windows -> Microsoft Corporation)

R3 WdNisDrv; C: Windows System32 drivers wd WdNisDrv.sys [72928 2021-04-11] (Microsoft Windows -> Microsoft Corporation)

U3 avgbdisk; pas d'ImagePath

==================== NetSvcs (sur liste blanche) ====================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

==================== Un mois (créé) (sur liste blanche) =========

(Si une entrée est incluse dans la liste de correctifs, le fichier / dossier sera déplacé.)

2021-04-11 15:41 – 2021-04-11 15:41 – 000003257 _____ C: Users Administrator Desktop Fixlog.txt

2021-04-11 15:41 – 2021-04-11 15:41 – 000000000 ____D C: Users Administrator AppData Local PeerDistRepub

2021-04-11 15:32 – 2021-04-11 15:43 – 000016595 _____ C: Users Administrator Desktop FRST.txt

2021-04-11 15:30 – 2021-04-11 15:30 – 000000000 ____D C: Users Administrator AppData Local Comms

2021-04-11 15:29 – 2021-04-11 15:29 – 000000000 ____D C: Users Administrator AppData Local PlaceholderTileLogoFolder

2021-04-11 15:27 – 2021-04-11 15:28 – 002297856 _____ (Farbar) C: Users Administrator Desktop FRST64.exe

2021-04-11 15:27 – 2021-04-11 15:27 – 000000000 ___RD C: Users Administrator OneDrive

2021-04-11 15:27 – 2021-04-11 15:27 – 000000000 ____D C: Users Administrator AppData Local Dropbox

2021-04-11 15:26 – 2021-04-11 15:43 – 000000000 ____D C: Users Administrator AppData Local Packages

2021-04-11 15:26 – 2021-04-11 15:37 – 000000000 ____D C: Users Administrator AppData Local D3DSCache

2021-04-11 15:26 – 2021-04-11 15:27 – 000002383 _____ C: Users Administrator AppData Roaming Microsoft Windows Menu Démarrer Programmes OneDrive.lnk

2021-04-11 15:26 – 2021-04-11 15:27 – 000000000 ____D C: Users Administrator

2021-04-11 15:26 – 2021-04-11 15:26 – 000002344 _____ C: Users Administrator Desktop Microsoft Edge.lnk

2021-04-11 15:26 – 2021-04-11 15:26 – 000002057 _____ C: Users Administrator Desktop Google Chrome.lnk

2021-04-11 15:26 – 2021-04-11 15:26 – 000000020 ___SH C: Users Administrator ntuser.ini

2021-04-11 15:26 – 2021-04-11 15:26 – 000000000 ___RD C: Users Administrator 3D Objects

2021-04-11 15:26 – 2021-04-11 15:26 – 000000000 ____D C: Users Administrator AppData Roaming Adobe

2021-04-11 15:26 – 2021-04-11 15:26 – 000000000 ____D C: Users Administrator AppData LocalLow AMD

2021-04-11 15:26 – 2021-04-11 15:26 – 000000000 ____D C: Users Administrator AppData Local Publishers

2021-04-11 15:26 – 2021-04-11 15:26 – 000000000 ____D C: Users Administrator AppData Local Google

2021-04-11 15:26 – 2021-04-11 15:26 – 000000000 ____D C: Users Administrator AppData Local ConnectedDevicesPlatform

2021-04-11 15:26 – 2021-03-30 08:16 – 000000000 ____D C: Users Administrator AppData Roaming Sun

2021-04-11 15:26 – 2021-02-06 11:28 – 000000000 ____D C: Users Administrator AppData Local AMD

2021-04-11 14:56 – 2021-04-11 14:57 – 000000000 ____D C: Users defaultuser100000.DESKTOP-H2AS07G

2021-04-11 12:11 – 2021-04-11 12:11 – 000000288 _____ C: Windows Tasks EOSv3 Scheduler onTime.job

2021-04-11 12:11 – 2021-04-11 12:11 – 000000288 _____ C: Windows Tasks EOSv3 Scheduler onLogOn.job

2021-04-11 11:51 – 2021-04-11 15:42 – 000000000 ____D C: FRST

2021-04-11 11:44 – 2021-04-11 11:44 – 000000778 _____ C: Users veggi AppData Roaming Microsoft Windows Menu Démarrer Programmes ESET Online Scanner.lnk

2021-04-11 11:44 – 2021-04-11 11:44 – 000000000 ____D C: Users veggi AppData Local ESET

2021-04-11 11:42 – 2021-04-11 11:42 – 000687319 _____ C: Users veggi AppData Local Census.cache

2021-04-11 11:42 – 2021-04-11 11:42 – 000374043 _____ C: Users veggi AppData Local ars.cache

2021-04-11 11:39 – 2021-04-11 11:40 – 015019488 _____ (ESET spol. S r.o.) C: Users veggi Downloads esetonlinescanner.exe

2021-04-11 11:39 – 2021-04-11 11:39 – 000000010 _____ C: Users veggi AppData Local sponge.last.runtime.cache

2021-04-11 11:36 – 2021-04-11 11:36 – 000000000 ____D C: Windows Trend Micro

2021-04-11 11:36 – 2021-04-11 11:36 – 000000000 ____D C: ProgramData Trend Micro

2021-04-11 11:33 – 2021-04-11 11:33 – 000000036 _____ C: Users veggi AppData Local housecall.guid.cache

2021-04-11 11:28 – 2021-04-11 14:58 – 000000214 _____ C: Windows Tasks CreateExplorerShellUnelevatedTask.job

2021-04-11 11:27 – 2021-04-11 14:48 – 000000000 ____D C: Windows pss

2021-04-11 11:12 – 2021-04-11 15:05 – 000556432 _____ C: Windows ntbtlog.txt

2021-04-11 10:43 – 2021-04-11 10:43 – 000000000 ____D C: Users veggi AppData Roaming Sun

2021-04-11 10:43 – 2021-04-11 10:43 – 000000000 ____D C: Users veggi AppData LocalLow Sun

2021-04-11 10:38 – 2021-04-11 10:39 – 000000000 ____D C: Users defaultuser100000

2021-04-11 10:29 – 2021-04-11 10:29 – 000000000 ____D C: Users veggi AppData Roaming Macromedia

2021-04-11 10:29 – 2021-04-11 10:29 – 000000000 ____D C: ProgramData Adobe

2021-04-11 10:28 – 2021-04-11 10:28 – 000000000 ____D C: Users veggi AppData Local Adobe

2021-04-11 10:08 – 2021-04-11 10:08 – 000000000 ____D C: Users veggi AppData Roaming Logishrd

2021-04-11 09:50 – 2021-04-11 10:55 – 000000000 ____D C: Users TTsco AppData Roaming LGHUB

2021-04-11 09:50 – 2021-04-11 10:42 – 000000000 ____D C: Users TTsco AppData Local LGHUB

2021-04-11 09:49 – 2021-04-11 15:38 – 000000000 ____D C: Users veggi AppData Roaming LGHUB

2021-04-11 09:49 – 2021-04-11 15:26 – 000000000 ____D C: Users veggi AppData Local LGHUB

2021-04-11 09:48 – 2021-04-11 09:48 – 041076128 _____ (Logitech, Inc.) C: Users TTsco Downloads lghub_installer (2) .exe

2021-04-11 09:48 – 2021-04-11 09:48 – 000066896 _____ (Logitech) C: Windows system32 Drivers logi_joy_xlcore.sys

2021-04-11 09:48 – 2021-04-11 09:48 – 000037200 _____ (Logitech) C: Windows system32 Drivers logi_joy_bus_enum.sys

2021-04-11 09:48 – 2021-04-11 09:48 – 000025928 _____ (Logitech) C: Windows system32 Drivers logi_joy_vir_hid.sys

2021-04-11 09:47 – 2021-04-11 09:47 – 041076128 _____ (Logitech, Inc.) C: Users TTsco Downloads lghub_installer (1) .exe

2021-04-11 09:46 – 2021-04-11 09:46 – 041076128 _____ (Logitech, Inc.) C: Users TTsco Downloads lghub_installer.exe

2021-04-10 20:23 – 2021-04-10 20:23 – 000000000 ____D C: Users veggi_kmgs1lg AppData Local cache

2021-04-10 20:22 – 2021-04-10 20:23 – 000000000 ____D C: Users veggi_kmgs1lg AppData Local Dropbox

2021-04-09 08:49 – 2021-04-09 15:57 – 000000000 ____D C: Users TTsco AppData Roaming Twitch Studio

2021-04-09 08:49 – 2021-04-09 08:49 – 001243920 _____ (Twitch Interactive, Inc.) C: Users TTsco Downloads TwitchStudioSetup-network_[usher-670915028][referrer-prospects].EXE

2021-04-09 08:49 – 2021-04-09 08:49 – 000001114 _____ C: Users TTsco AppData Roaming Microsoft Windows Start Menu Programs Twitch Studio.lnk

2021-04-09 08:49 – 2021-04-09 08:49 – 000000000 ____D C: Users TTsco AppData Roaming twitch-desktop-electron-platform

2021-04-08 16:59 – 2021-04-08 16:59 – 000000000 ____D C: Windows system32 Tasks Agent Activation Runtime

2021-04-05 21:13 – 2021-04-05 21:13 – 000000000 ____D C: Users TTsco AppData Local DBG

2021-04-05 21:13 – 2021-04-05 21:13 – 000000000 ____D C: Users TTsco AppData Local CrashReportClient

2021-04-05 16:30 – 2021-04-05 16:30 – 000002342 _____ C: Users TTsco AppData Roaming Microsoft Windows Start Menu Programs Lunar Client.lnk

2021-04-05 16:29 – 2021-04-05 16:29 – 000749904 _____ (Moonsworth, LLC) C: Users TTsco Downloads Lunar Client v2.6.0.exe

2021-04-04 08:45 – 2021-04-04 08:45 – 004198447 _____ C: Users TTsco Downloads forge-1.8.9-11.15.1.2318-1.8.9-installer-win (2). EXE

2021-04-04 08:44 – 2021-04-04 08:44 – 004198447 _____ C: Users TTsco Downloads forge-1.8.9-11.15.1.2318-1.8.9-installer-win.exe

2021-04-04 08:44 – 2021-04-04 08:44 – 004198447 _____ C: Users TTsco Downloads forge-1.8.9-11.15.1.2318-1.8.9-installer-win (1). EXE

02/04/2021 19:03 – 02/04/2021 19:03 – 001447246 _____ C: Users TTsco Downloads autoclicker.zip

2021-04-01 19:22 – 2021-04-01 19:22 – 000033615 _____ C: Users TTsco Downloads WispOPVillagers-1.0-SNAPSHOT.jar

2021-04-01 19:03 – 2021-04-01 19:03 – 007241670 _____ C: Users TTsco Downloads forge-1.16.5-36.1.3-installer.jar

2021-04-01 18:56 – 2021-04-01 18:56 – 037962360 _____ C: Users TTsco Downloads server.jar

2021-04-01 18:52 – 2021-04-01 18:52 – 000000000 ____D C: Users TTsco Downloads WispOPVillagers-main

2021-04-01 12:58 – 2021-04-01 12:58 – 000000000 ____D C: Users veggi AppData Roaming Microsoft Windows Menu Démarrer Programmes Blackmagic Design

2021-03-31 07:28 – 2021-03-31 07:28 – 000000000 ____D C: ProgramData Microsoft Windows Menu Démarrer Programmes Dropbox

2021-03-30 19:08 – 2021-03-30 19:08 – 005924305 _____ C: Users TTsco Downloads OptiFine_1.16.5_HD_U_G7.jar

2021-03-30 18:52 – 2021-03-30 18:52 – 000047600 _____ (Dropbox, Inc.) C: Windows system32 Drivers dbx-stable.sys

2021-03-30 18:52 – 2021-03-30 18:52 – 000047600 _____ (Dropbox, Inc.) C: Windows system32 Drivers dbx-dev.sys

2021-03-30 18:52 – 2021-03-30 18:52 – 000047600 _____ (Dropbox, Inc.) C: Windows system32 Drivers dbx-canary.sys

2021-03-30 18:52 – 2021-03-30 18:52 – 000044272 _____ (Dropbox, Inc.) C: Windows system32 DbxSvc.exe

2021-03-30 08:16 – 2021-03-30 08:16 – 000000000 ____D C: Users Default AppData Roaming Sun

2021-03-29 15:51 – 2021-03-29 15:52 – 000000000 ____D C: Users TTsco AppData Local Dropbox

2021-03-29 13:49 – 2021-03-31 07:28 – 000000000 ____D C: Program Files (x86) Dropbox

2021-03-29 13:49 – 2021-03-29 15:47 – 000000938 _____ C: Windows Tasks DropboxUpdateTaskMachineUA.job

2021-03-29 13:49 – 2021-03-29 15:47 – 000000934 _____ C: Windows Tasks DropboxUpdateTaskMachineCore.job

2021-03-29 13:49 – 2021-03-29 13:49 – 000003998 _____ C: Windows system32 Tasks DropboxUpdateTaskMachineUA

2021-03-29 13:49 – 2021-03-29 13:49 – 000003766 _____ C: Windows system32 Tasks DropboxUpdateTaskMachineCore

2021-03-29 13:49 – 2021-03-29 13:49 – 000000000 ____D C: Users veggi AppData Roaming Dropbox

2021-03-29 13:48 – 2021-03-29 13:48 – 000000000 ____D C: ProgramData Dropbox

2021-03-28 18:46 – 2021-03-28 18:46 – 000000000 ____D C: Users TTsco Downloads Skypixel-master

2021-03-28 18:43 – 2021-03-28 18:43 – 002585014 _____ C: Users TTsco Downloads OptiFine_1.8.9_HD_U_M5.jar

2021-03-28 15:58 – 2021-03-28 15:58 – 001138335 _____ C: Users TTsco Downloads ThirtyVirus_BLC (1) .json

2021-03-28 15:57 – 2021-03-28 15:57 – 001138335 _____ C: Users TTsco Downloads ThirtyVirus_BLC.json

2021-03-27 12:10 – 2021-03-27 12:10 – 000011357 _____ C: Windows system32 DrtmAuthTxt.wim

2021-03-27 09:33 – 2021-03-27 09:33 – 000000823 _____ C: ProgramData Desktop CCleaner.lnk

2021-03-26 15:03 – 2021-03-26 15:48 – 000000000 ____D C: Users veggi AppData Roaming Notepad ++

2021-03-26 15:03 – 2021-03-26 15:03 – 000000837 _____ C: ProgramData Microsoft Windows Menu Démarrer Programmes Notepad ++. Lnk

2021-03-26 15:03 – 2021-03-26 15:03 – 000000000 ____D C: Program Files Notepad ++

2021-03-23 ​​16:54 – 2021-03-23 ​​16:54 – 000000000 ____D C: Users TTsco AppData Local Okidata

2021-03-21 20:30 – 2021-03-24 17:53 – 000000000 ____D C: Users TTsco AppData Roaming HandBrake

21/03/2021 20:30 – 21/03/2021 20:30 – 000001222 _____ C: Users TTsco AppData Roaming Microsoft Windows Menu Démarrer Programmes HandBrake.lnk

2021-03-21 20:13 – 2021-04-10 19:39 – 000000000 ____D C: vol0

2021-03-21 20:12 – 2021-03-21 20:12 – 000004732 _____ C: Users TTsco AppData Roaming Microsoft Windows Menu Démarrer Programmes Resolve.lnk

2021-03-21 20:12 – 2021-03-21 20:12 – 000000000 ____D C: Users TTsco AppData Roaming Blackmagic Design

2021-03-21 17:13 – 2021-03-21 17:13 – 000002409 _____ C: Users veggi AppData Local recent-used.xbel

2021-03-21 17:07 – 2021-04-11 15:41 – 000000000 ____D C: Users veggi AppData LocalLow Temp

2021-03-18 13:20 – 2021-03-18 13:20 – 000000000 ____D C: Users veggi AppData Local Okidata

2021-03-17 20:35 – 2021-03-17 20:39 – 003927093 _____ C: Users TTsco Downloads forge-1.8.9-11.15.1.1722-installer-win.exe

2021-03-17 20:32 – 2021-03-17 20:32 – 000000000 ____D C: ProgramData Microsoft Windows Menu Démarrer Programmes Minecraft Launcher

2021-03-13 15:16 – 2021-03-13 15:16 – 002755584 _____ (Microsoft Corporation) C: Windows SysWOW64 mshtml.tlb

2021-03-13 15:16 – 2021-03-13 15:16 – 002755584 _____ (Microsoft Corporation) C: Windows system32 mshtml.tlb

2021-03-13 15:16 – 2021-03-13 15:16 – 001163776 _____ C: Windows system32 MBR2GPT.EXE

2021-03-13 15:16 – 2021-03-13 15:16 – 000707016 _____ C: Windows system32 TextShaping.dll

2021-03-13 15:16 – 2021-03-13 15:16 – 000611952 _____ C: Windows SysWOW64 TextShaping.dll

==================== Un mois (modifié) ===================

(Si une entrée est incluse dans la liste de correctifs, le fichier / dossier sera déplacé.)

2021-04-11 15:43 – 2019-12-07 10:14 – 000000000 ___RD C: Windows PrintDialog

2021-04-11 15:43 – 2019-12-07 10:14 – 000000000 ____D C: Windows AppReadiness

2021-04-11 15:42 – 2021-02-03 16:06 – 000008192 ___SH C: DumpStack.log.tmp

2021-04-11 15:42 – 2021-02-02 17:40 – 000065536 _____ C: Windows system32 spu_storage.bin

2021-04-11 15:42 – 2020-11-19 08:41 – 000000006 ____H C: Windows Tasks SA.DAT

2021-04-11 15:42 – 2019-12-07 10:14 – 000000000 ____D C: ProgramData regid.1991-06.com.microsoft

2021-04-11 15:42 – 2019-12-07 10:03 – 001048576 _____ C: Windows system32 config BBI

2021-04-11 15:41 – 2021-03-02 15:01 – 000000000 ____D C: Users veggi_kmgs1lg AppData LocalLow Temp

2021-04-11 15:38 – 2019-12-07 10:13 – 000000000 ____D C: Windows INF

2021-04-11 15:32 – 2021-02-02 17:36 – 000776042 _____ C: Windows system32 PerfStringBackup.INI

2021-04-11 15:28 – 2021-02-03 10:16 – 000000000 ____D C: Program Files CCleaner

2021-04-11 15:27 – 2021-02-03 16:06 – 000003388 _____ C: Windows system32 Tasks OneDrive Standalone Update Task-S-1-5-21-17591080-1060373698-219075334-500

2021-04-11 15:26 – 2021-02-03 13:16 – 000003072 _____ C: Windows system32 Tasks AsrPolychromeRGB

2021-04-11 15:26 – 2021-02-03 10:39 – 000000000 ___RD C: Users veggi OneDrive

2021-04-11 15:26 – 2021-02-02 18:25 – 000248992 _____ (Malwarebytes) C: Windows system32 Drivers mbamswissarmy.sys

2021-04-11 15:26 – 2019-12-07 10:14 – 000000000 ___RD C: Windows ImmersiveControlPanel

2021-04-11 15:26 – 2019-12-07 10:14 – 000000000 ____D C: Windows system32 AppLocker

2021-04-11 14:58 – 2021-02-02 18:25 – 000220616 _____ (Malwarebytes) C: Windows system32 Drivers MbamChameleon.sys

2021-04-11 14:56 – 2021-02-05 11:51 – 000000000 ____D C: Users veggi AppData Roaming XnViewMP

2021-04-11 14:54 – 2021-02-03 10:17 – 000000000 ____D C: ProgramData TEMP

2021-04-11 11:15 – 2019-12-07 10:14 – 000000000 ___HD C: Program Files WindowsApps

2021-04-11 11:14 – 2020-11-19 08:40 – 000267128 _____ C: Windows system32 FNTCACHE.DAT

2021-04-11 11:13 – 2019-12-07 10:52 – 000000000 ____D C: Program Files Windows Defender Advanced Threat Protection

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows SystemResources

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows system32 setup

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows system32 lv-LV

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows system32 lt-LT

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows system32 et-EE

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows system32 es-MX

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows Provisioning

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows PolicyDefinitions

2021-04-11 11:13 – 2019-12-07 10:14 – 000000000 ____D C: Windows bcastdvr

2021-04-11 11:10 – 2021-02-03 18:33 – 000000000 ____D C: Users veggi AppData Local CrashDumps

2021-04-11 11:06 – 2021-02-03 10:37 – 000000000 ____D C: Users veggi AppData Local D3DSCache

2021-04-11 10:57 – 2019-12-07 10:03 – 000000000 ____D C: Windows CbsTemp

2021-04-11 10:55 – 2021-02-03 13:34 – 000000000 ____D C:UsersTTscoAppDataRoamingdiscord

2021-04-11 10:45 – 2019-12-07 10:14 – 000000000 ____D C:WindowsLiveKernelReports

2021-04-11 10:44 – 2021-02-03 10:19 – 000185184 __RSH C:ProgramDatantuser.pol

2021-04-11 10:44 – 2021-02-03 10:17 – 000000000 ____D C:Program Files (x86)SpywareBlaster

2021-04-11 10:42 – 2021-02-03 13:34 – 000000000 ____D C:UsersTTscoAppDataLocalDiscord

2021-04-11 10:42 – 2021-02-02 17:50 – 000000000 ___RD C:UsersTTscoOneDrive

2021-04-11 10:40 – 2021-02-05 13:22 – 000000000 ___RD C:Usersveggi_kmgs1lgOneDrive

2021-04-11 10:40 – 2020-11-19 08:40 – 000000000 ____D C:Windowssystem32SleepStudy

2021-04-11 10:10 – 2021-02-02 17:48 – 000000000 ____D C:UsersTTscoAppDataLocalD3DSCache

2021-04-11 08:47 – 2021-02-03 09:07 – 000000000 ____D C:UsersTTscoAppDataRoamingMicrosoftWindowsStart MenuProgramsRoblox

2021-04-11 08:47 – 2021-02-02 18:05 – 000000000 ____D C:UsersTTscoAppDataRoaming.minecraft

2021-04-11 08:18 – 2020-11-19 08:41 – 000000000 ____D C:Windowssystem32Driverswd

2021-04-11 08:15 – 2021-02-02 18:11 – 000000000 ____D C:UsersTTscoAppDataRoaminglunarclient

2021-04-10 20:23 – 2021-02-05 13:20 – 000000000 ____D C:Usersveggi_kmgs1lgAppDataLocalD3DSCache

2021-04-10 20:22 – 2021-02-05 13:22 – 000003390 _____ C:Windowssystem32TasksOneDrive Standalone Update Task-S-1-5-21-17591080-1060373698-219075334-1007

2021-04-10 20:22 – 2021-02-05 13:20 – 000002383 _____ C:Usersveggi_kmgs1lgAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk

2021-04-10 04:55 – 2020-11-19 08:43 – 000002438 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk

2021-04-09 10:58 – 2021-02-28 20:52 – 000000000 ____D C:UsersTTscoAppDataRoamingobs-studio

2021-04-09 10:53 – 2021-02-22 13:35 – 000000000 ____D C:UsersveggiAppDataLocalElevatedDiagnostics

2021-04-08 18:59 – 2021-02-03 10:41 – 000000000 ____D C:UsersveggiAppDataLocalPlaceholderTileLogoFolder

2021-04-08 12:51 – 2021-02-03 10:37 – 000000000 ____D C:UsersveggiAppDataLocalPackages

2021-04-08 12:45 – 2021-02-02 17:50 – 000000000 ____D C:UsersTTscoAppDataLocalPlaceholderTileLogoFolder

2021-04-08 08:45 – 2021-02-02 17:48 – 000000000 ____D C:UsersTTscoAppDataLocalPackages

2021-04-06 13:19 – 2021-02-05 11:51 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsXnViewMP

2021-04-06 13:19 – 2021-02-05 11:51 – 000000000 ____D C:Program FilesXnViewMP

2021-04-06 13:12 – 2021-02-04 14:23 – 000000000 ____D C:UsersTTscoAppDataLocalCrossout

2021-04-06 08:30 – 2021-03-07 10:42 – 000000000 ____D C:UsersTTscoDownloadsFortnite

2021-04-05 21:13 – 2021-02-15 09:13 – 000000000 ____D C:UsersTTscoAppDataLocalCrashDumps

2021-04-05 16:32 – 2021-02-02 18:24 – 000199128 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys

2021-04-04 08:11 – 2021-02-02 18:11 – 000000000 ____D C:UsersTTsco.lunarclient

2021-04-03 21:31 – 2021-02-03 18:29 – 000000000 ____D C:UsersveggiAppDataRoamingBadlion Client

2021-04-03 21:31 – 2021-02-03 09:45 – 000000000 ____D C:UsersTTscoAppDataRoamingWhatsApp

2021-04-03 19:07 – 2021-02-03 09:44 – 000000000 ____D C:UsersTTscoAppDataLocalWhatsApp

2021-04-02 19:01 – 2021-02-05 14:47 – 000000000 ____D C:UsersTTscoAppDataRoamingvlc

2021-04-01 12:59 – 2021-02-03 09:24 – 000000000 ____D C:ProgramDataPackage Cache

2021-04-01 12:50 – 2021-02-03 10:39 – 000003374 _____ C:Windowssystem32TasksOneDrive Standalone Update Task-S-1-5-21-17591080-1060373698-219075334-1002

2021-04-01 12:50 – 2021-02-03 10:37 – 000002359 _____ C:UsersveggiAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk

2021-03-31 20:57 – 2021-02-02 17:50 – 000003374 _____ C:Windowssystem32TasksOneDrive Standalone Update Task-S-1-5-21-17591080-1060373698-219075334-1001

2021-03-31 20:57 – 2021-02-02 17:46 – 000002359 _____ C:UsersTTscoAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk

2021-03-31 14:34 – 2021-02-02 18:03 – 000002098 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk

2021-03-31 09:25 – 2021-02-03 21:48 – 000000000 ____D C:UsersveggiAppDataRoamingvlc

2021-03-31 07:28 – 2021-02-03 09:25 – 000000000 ____D C:UsersTTscoAppDataLocalcache

2021-03-30 17:05 – 2021-02-20 09:54 – 000000000 ____D C:UsersveggiAppDataRoamingKeePass

2021-03-30 08:17 – 2021-02-02 18:30 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsJava

2021-03-30 08:17 – 2021-02-02 18:30 – 000000000 ____D C:Program FilesJava

2021-03-30 08:16 – 2021-02-02 18:30 – 000191776 _____ (Oracle Corporation) C:Windowssystem32WindowsAccessBridge-64.dll

2021-03-29 14:17 – 2021-02-20 09:12 – 000000000 ___RD C:UsersveggiDropbox

2021-03-29 13:53 – 2021-02-20 09:09 – 000000000 ____D C:UsersveggiAppDataLocalDropbox

2021-03-28 15:49 – 2021-02-02 20:05 – 000000000 ____D C:ProgramDataBadlionClient

2021-03-28 15:49 – 2021-02-02 20:05 – 000000000 ____D C:Program FilesBadlion Client

2021-03-27 14:43 – 2021-02-02 17:46 – 000000000 ____D C:UsersTTsco

2021-03-27 12:05 – 2021-02-03 10:16 – 000002888 _____ C:Windowssystem32TasksCCleanerSkipUAC

2021-03-27 09:33 – 2021-02-03 10:16 – 000003936 _____ C:Windowssystem32TasksCCleaner Update

2021-03-25 21:31 – 2020-11-19 08:44 – 000000000 ____D C:ProgramDataPackages

2021-03-21 17:39 – 2021-03-11 13:57 – 000000000 ____D C:Usersveggi.dbus-keyrings

2021-03-20 21:29 – 2021-02-08 09:02 – 000000000 ____D C:UsersveggiAppDataRoaming.minecraft

2021-03-17 20:32 – 2021-02-02 18:05 – 000000000 ____D C:Program Files (x86)Minecraft Launcher

2021-03-16 16:54 – 2021-02-06 11:28 – 000000000 ____D C:ProgramDataDocumentsHeimdal Security

2021-03-13 21:16 – 2019-12-07 10:52 – 000000000 ___SD C:Windowssystem32AppV

2021-03-13 21:16 – 2019-12-07 10:14 – 000000000 ____D C:WindowsSysWOW64setup

2021-03-13 21:16 – 2019-12-07 10:14 – 000000000 ____D C:WindowsSysWOW64oobe

2021-03-13 21:16 – 2019-12-07 10:14 – 000000000 ____D C:WindowsSysWOW64Dism

2021-03-13 21:16 – 2019-12-07 10:14 – 000000000 ____D C:Windowssystem32SystemResetPlatform

2021-03-13 21:16 – 2019-12-07 10:14 – 000000000 ____D C:Windowssystem32oobe

2021-03-13 21:16 – 2019-12-07 10:14 – 000000000 ____D C:Windowssystem32Dism

2021-03-13 16:59 – 2021-02-03 16:23 – 000000000 ____D C:UsersTTscoAppDataRoaminggdlauncher_next

2021-03-13 16:59 – 2021-02-03 16:23 – 000000000 ____D C:UsersTTscoAppDataRoaminggdlauncher

2021-03-13 12:58 – 2021-02-03 11:53 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBlackmagic Design

2021-03-13 12:58 – 2021-02-03 11:53 – 000000000 ____D C:Program Files (x86)Blackmagic Design

2021-03-12 16:24 – 2021-03-11 13:57 – 000000000 ____D C:UsersveggiAppDataRoaminginkscape

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-04-2021

Ran by Administrator (11-04-2021 15:43:27)

Running from C:UsersAdministratorDesktop

Windows 10 Pro Version 20H2 19042.870 (X64) (2021-02-03 15:08:01)

Mode de démarrage: normal

==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-17591080-1060373698-219075334-500 – Administrator – Enabled) => C:UsersAdministrator

DefaultAccount (S-1-5-21-17591080-1060373698-219075334-503 – Limited – Disabled)

Guest (S-1-5-21-17591080-1060373698-219075334-501 – Limited – Disabled)

TTsco (S-1-5-21-17591080-1060373698-219075334-1001 – Limited – Enabled) => C:UsersTTsco

veggi (S-1-5-21-17591080-1060373698-219075334-1002 – Administrator – Enabled) => C:Usersveggi

veggi_kmgs1lg (S-1-5-21-17591080-1060373698-219075334-1007 – Limited – Enabled) => C:Usersveggi_kmgs1lg

WDAGUtilityAccount (S-1-5-21-17591080-1060373698-219075334-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ASRRGBLED v1.0.60 (HKLM-x32…ASRock RGB LED_is1) (Version: 1.0.60 – ASRock Inc.)

ASUS DRAM_LIB (HKLM…2F0D3D1A-1B75-4DFC-8C0E-C55C4EAB67F8) (Version: 1.0.22 – ASUS COMPUTER INC.) Hidden

ASUS DRAM_LIB (HKLM-x32…6bd55e2a-f475-4183-b862-1dd70c1ce699) (Version: 1.0.22 – ASUS COMPUTER INC.) Hidden

ASUS GLCKIO2 Driver (HKLM-x32…548dd834-70c5-4426-8065-fbeabdd2bb5d) (Version: 1.0.10 – ASUSTeK Computer Inc.) Hidden

ASUS GLCKIO2 Driver (HKLM-x32…5960FD0F-BB3B-49AF-B175-F77DC91E995A) (Version: 1.0.10 – ASUSTeK Computer Inc.) Hidden

Badlion Client (HKLM…1de14785-dd8c-5cd2-aae8-d4a376f81d78) (Version: 3.1.4 – Badlion)

Blackmagic RAW Common Components (HKLM…FC105F36-D90B-4135-B954-F50CDCFACA3D) (Version: 2.1 – Blackmagic Design)

Blender (HKLM…929E93E-341D-4AE6-9F26-073C67A5D87E) (Version: 2.91.2 – Blender Foundation)

CCleaner (HKLM…CCleaner) (Version: 5.78 – Piriform)

Crossout Launcher 1.0.3.127 (HKUS-1-5-21-17591080-1060373698-219075334-1001…CrossOutLauncher_is1) (Version:  – )

DaVinci Resolve (HKLM…4AED2B1B-1919-4F62-B497-D0A0BE5B9C98) (Version: 17.1.10009 – Blackmagic Design)

DaVinci Resolve Control Panels (HKLM…6CA5153C-F6DB-4495-AC9A-380DEAF9E3D5) (Version: 1.5.2.0 – Blackmagic Design)

DaVinci Resolve Keyboards (HKLM…4F776FB-37A2-4116-84F2-6CF3D731999D) (Version: 1.0.0.0 – Blackmagic Design)

Discord (HKUS-1-5-21-17591080-1060373698-219075334-1001…Discord) (Version: 0.0.309 – Discord Inc.)

Dropbox (HKLM-x32…Dropbox) (Version: 119.4.1772 – Dropbox, Inc.)

Dropbox Update Helper (HKLM-x32…99218A5-A723-43DC-8DB5-6173656A1E94) (Version: 1.3.415.1 – Dropbox, Inc.) Hidden

ENE RGB HAL (HKLM…2914DF72-932B-4DF2-9696-C2821EDA1CA9) (Version: 1.00.09 – Ene Tech.) Hidden

ENE RGB HAL (HKLM-x32…546469ee-3f9d-4fe4-bf1c-893f79cf7327) (Version: 1.00.09 – Ene Tech.) Hidden

ENE_EHD_HAL (HKLM…F56EC5A0-3A93-492E-882A-E036F5897CC7) (Version: 1.00.04 – ENE TECHNOLOGY INC.) Hidden

ENE_EHD_HAL (HKLM-x32…cc33eebd-777b-4177-8cd7-6ab9fd06ceed) (Version: 1.00.04 – ENE TECHNOLOGY INC.) Hidden

Epic Games Launcher (HKLM-x32…FEF3A9BA-A962-4469-AD62-04839D4BB847) (Version: 1.1.298.0 – Epic Games, Inc.)

Epic Games Launcher Prerequisites (x64) (HKLM…F9C5C994-F6B9-4D75-B3E7-AD01B84073E9) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden

Fairlight Audio Accelerator Utility (HKLM…FairlightAudioAccelerator_is1) (Version: 1.0.13 – Blackmagic Design)

GDLauncher 1.0.11 (HKUS-1-5-21-17591080-1060373698-219075334-1001…916a734d-6952-56dd-9bc1-8fe0631126cf) (Version: 1.0.11 – GorillaDevs)

GDLauncher 1.0.11 (HKUS-1-5-21-17591080-1060373698-219075334-1007…916a734d-6952-56dd-9bc1-8fe0631126cf) (Version: 1.0.11 – GorillaDevs)

Google Chrome (HKLM-x32…BDDFDBD-6648-3908-A189-05573CF87137) (Version: 89.0.4389.114 – Google LLC)

HandBrake 1.3.3 (HKLM-x32…HandBrake) (Version: 1.3.3 – )

Heimdal Thor Agent (HKLM-x32…F0E19492-E2A7-4038-969B-9C839491710A) (Version: 2.5.314 – Heimdal Security)

HitFilm Express (HKLM…FA3F2CF4-F236-4076-8284-D75BD6FC7BBD) (Version: 16.0.10807.58344 – FXHOME)

Inkscape (HKLM-x32…Inkscape) (Version: 1.0.2- – Inkscape)

Java 8 Update 291 (64-bit) (HKLM…26A24AE4-039D-4CA4-87B4-2F64180291F0) (Version: 8.0.2910.9 – Oracle Corporation)

KeePass Password Safe 2.47 (HKLM-x32…KeePassPasswordSafe2_is1) (Version: 2.47 – Dominik Reichl)

Launcher Prerequisites (x64) (HKLM-x32…43a03b9c-4770-409c-a999-587b60700b63) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden

Lunar Client (HKUS-1-5-21-17591080-1060373698-219075334-1001…1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 2.6.0 – Moonsworth, LLC)

Lunar Client (HKUS-1-5-21-17591080-1060373698-219075334-1007…1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 2.5.2 – Moonsworth, LLC)

Malwarebytes version 4.3.0.98 (HKLM…35065F43-4BB2-439A-BFF7-0F1014F2E0CD_is1) (Version: 4.3.0.98 – Malwarebytes)

Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 89.0.774.75 – Microsoft Corporation)

Microsoft OneDrive (HKUS-1-5-21-17591080-1060373698-219075334-1001…OneDriveSetup.exe) (Version: 21.052.0314.0001 – Microsoft Corporation)

Microsoft OneDrive (HKUS-1-5-21-17591080-1060373698-219075334-1002…OneDriveSetup.exe) (Version: 21.052.0314.0001 – Microsoft Corporation)

Microsoft OneDrive (HKUS-1-5-21-17591080-1060373698-219075334-1007…OneDriveSetup.exe) (Version: 21.052.0314.0001 – Microsoft Corporation)

Microsoft OneDrive (HKUS-1-5-21-17591080-1060373698-219075334-500…OneDriveSetup.exe) (Version: 21.052.0314.0001 – Microsoft Corporation)

Microsoft Update Health Tools (HKLM…99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A) (Version: 2.75.0.0 – Microsoft Corporation)

Redistribuable Microsoft Visual C ++ 2008 – x64 9.0.30729.6161 (HKLM … 5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4) (Version: 9.0.30729.6161 – Microsoft Corporation)

Redistribuable Microsoft Visual C ++ 2008 – x86 9.0.30729.6161 (HKLM-x32 … 9BE518E6-ECC6-35A9-88E4-87755C07200F) (Version: 9.0.30729.6161 – Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…F0C3E5D1-1ADE-321E-8167-68EF0DE699A5) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C ++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32 … 050d4fc8-5d48-4b8f-8972-47c82c46020f) (Version: 12.0.30501.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.40664 (HKLM-x32…42d26ef-3dbe-4c25-95d3-4c1b11b235a7) (Version: 12.0.40664.0 – Microsoft Corporation)

Microsoft Visual C ++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32 … f65db027-aff3-4070-886a-0d87064aabb1) (Version: 12.0.30501.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.40664 (HKLM-x32…9dff3540-fc85-4ed5-ac84-9e3c7fd8bece) (Version: 12.0.40664.0 – Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.28.29913 (HKLM-x32…855e31d2-9031-46e1-b06d-c9d7777deefb) (Version: 14.28.29913.0 – Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.28.29913 (HKLM-x32…3d1453c-7d5c-479c-afea-8482f406e036) (Version: 14.28.29913.0 – Microsoft Corporation)

Minecraft Launcher (HKLM-x32…911FBC64-4C64-4B8F-A637-B34832638C86) (Version: 1.0.0.0 – Mojang)

MSI Afterburner 4.6.2 (HKLM-x32 … Afterburner) (Version: 4.6.2 – MSI Co., LTD)

Notepad++ (64-bit x64) (HKLM…Notepad++) (Version: 7.9.5 – Notepad++ Team)

OBS Studio (HKLM-x32…OBS Studio) (Version: 26.1.1 – OBS Project)

OKI Network Extension (HKLM-x32…38ADB9A6-798C-11D6-A855-00105A80791C) (Version: 1.00.000 – Okidata)

Revo Uninstaller 2.1.5 (HKLM…A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97_is1) (Version: 2.1.5 – VS Revo Group, Ltd.)

RivaTuner Statistics Server 7.2.3 (HKLM-x32 … RTSS) (Version: 7.2.3 – Unwinder)

Roblox Player for TTsco (HKUS-1-5-21-17591080-1060373698-219075334-1001…roblox-player) (Version:  – Roblox Corporation)

Roblox Studio for TTsco (HKUS-1-5-21-17591080-1060373698-219075334-1001…roblox-studio) (Version:  – Roblox Corporation)

Signal 1.39.6 (HKUS-1-5-21-17591080-1060373698-219075334-1001…7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 1.39.6 – Open Whisper Systems)

SpywareBlaster 6.0 (HKLM-x32…SpywareBlaster_is1) (Version: 6.0.0 – BrightFort LLC)

TreeSize Free V4.4.2 (HKLM-x32…TreeSize Free_is1) (Version: 4.4.2 – JAM Software)

Twitch Studio (HKUS-1-5-21-17591080-1060373698-219075334-1001…DEE70742-F4E9-44CA-B2B9-EE95DCF372B0) (Version: 8.0.0 – Twitch Interactive, Inc.)

VirusTotal Uploader 2.2 (HKLM-x32…VTUploader) (Version:  – )

VLC media player (HKLM…VLC media player) (Version: 3.0.12 – VideoLAN)

WhatsApp (HKUS-1-5-21-17591080-1060373698-219075334-1001…WhatsApp) (Version: 2.2110.12 – WhatsApp)

XnViewMP 0.98.2 (HKLM…XnViewMP_is1) (Version: 0.98.2 – Gougelet Pierre-e)

Zoom (HKUS-1-5-21-17591080-1060373698-219075334-1002…ZoomUMX) (Version: 5.5.2 (12494.0204) – Zoom Video Communications, Inc.)

Packages:

=========

Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-04-11] (Microsoft Studios) [MS Ad]

Your Phone -> C:Program FilesWindowsAppsMicrosoft.YourPhone_1.21022.168.0_x64__8wekyb3d8bbwe [2021-04-11] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [   DropboxExt01] -> FB314ED9-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt02] -> FB314EDF-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt03] -> FB314EE1-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt04] -> FB314EDB-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt05] -> FB314EDA-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt06] -> FB314EDC-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt07] -> FB314EDD-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt08] -> FB314EE0-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt09] -> FB314EE2-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt10] -> FB314EDE-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [00avg] -> 472083B0-C522-11CF-8763-00608CC02F24 =>  -> No File

ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> FB314ED9-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> FB314EDF-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> FB314EE1-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> FB314EDB-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> FB314EDA-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> FB314EDC-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> FB314EDD-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> FB314EE0-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> FB314EE2-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> FB314EDE-A251-47B7-93E1-CDD82E34AF8B => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers1: [ANotepad++64] -> B298D29A-A6ED-11DE-BA8C-A68E55D89593 => C:Program FilesNotepad++NppShell_06.dll [2021-03-22] (Notepad++ -> )

ContextMenuHandlers1: [DropboxExt] -> ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers3: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2021-02-02] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers4: [DropboxExt] -> ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers5: [DropboxExt] -> ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C => C:Program Files (x86)DropboxClientDropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers6: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2021-02-02] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Drivers32: [VIDC.RTV1] => C:Windowssystem32rtvcvfw64.dll [246272 2012-09-28] () [File not signed]

HKLM…Drivers32: [VIDC.RTV1] => C:WindowsSysWOW64rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:UsersAdministratorAppDataRoamingMicrosoftInternet ExplorerQuick LaunchUser PinnedTaskBarMicrosoft Edge (2).lnk -> C:Program Files (x86)MicrosoftEdgeApplicationmsedge.exe (Microsoft Corporation) -> –profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:ProgramDataTEMP:5C321E34 [274]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => ""="Service"

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Java™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C:Program FilesJavajre1.8.0_291binssv.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)

BHO: Java™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C:Program FilesJavajre1.8.0_291binjp2ssv.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…08i.com -> 008i.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…08k.com -> 008k.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…0hq.com -> 00hq.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…190-dialers.com -> 0190-dialers.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…1i.info -> 01i.info

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…2pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…411dd.com -> 0411dd.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…511zfhl.com -> 0511zfhl.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…5p.com -> 05p.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…632qyw.com -> 0632qyw.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…7ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…8nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…93qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…calories.net -> 0calories.net

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…cj.net -> 0cj.net

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…scan.com -> 0scan.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…1-britney-spears-nude.com -> 1-britney-spears-nude.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…1-domains-registrations.com -> 1-domains-registrations.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…1-se.com -> 1-se.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1001…1001movie.com -> 1001movie.com

There are 6091 more sites.

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…08i.com -> 008i.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…08k.com -> 008k.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…0hq.com -> 00hq.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…190-dialers.com -> 0190-dialers.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…1i.info -> 01i.info

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…2pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…411dd.com -> 0411dd.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…511zfhl.com -> 0511zfhl.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…5p.com -> 05p.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…632qyw.com -> 0632qyw.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…7ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…8nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…93qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…calories.net -> 0calories.net

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…cj.net -> 0cj.net

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…scan.com -> 0scan.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…1-britney-spears-nude.com -> 1-britney-spears-nude.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…1-domains-registrations.com -> 1-domains-registrations.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…1-se.com -> 1-se.com

IE restricted site: HKUS-1-5-21-17591080-1060373698-219075334-1002…1001movie.com -> 1001movie.com

There are 6091 more sites.

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 – 2021-04-03 15:47 – 000000824 _____ C:Windowssystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program Files (x86)Common FilesOracleJavajavapath;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;%SYSTEMROOT%System32OpenSSH;C:Program FilesInkscapebin

HKUS-1-5-21-17591080-1060373698-219075334-1001Control PanelDesktop\Wallpaper -> C:UsersTTscoAppDataRoamingMicrosoftWindowsThemesTranscodedWallpaper

HKUS-1-5-21-17591080-1060373698-219075334-1002Control PanelDesktop\Wallpaper -> c:windowswebwallpapertheme1img2.jpg

HKUS-1-5-21-17591080-1060373698-219075334-1007Control PanelDesktop\Wallpaper ->

HKUS-1-5-21-17591080-1060373698-219075334-500Control PanelDesktop\Wallpaper -> C:WindowswebwallpaperWindowsimg0.jpg

DNS Servers: 192.168.1.1

HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKUS-1-5-21-17591080-1060373698-219075334-1002…StartupApprovedRun: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [A7FC950C-8FB5-43B4-8A3C-7154FA03D068] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [BE6DA3B0-2B08-430E-A555-C8EB01E6D9D7] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [EF309704-CD32-4B50-8D2C-DEE4EFD654DB] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [C8DC17A1-C22D-4C20-91F4-11936E4C0155] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [TCP Query User2E54E250-FB59-4C99-994A-8265F4C80D56C:program files (x86)minecraft launcherruntimejre-x64binjavaw.exe] => (Allow) C:program files (x86)minecraft launcherruntimejre-x64binjavaw.exe

FirewallRules: [UDP Query UserE6653488-29C5-4A45-95EC-1810883767ABC:program files (x86)minecraft launcherruntimejre-x64binjavaw.exe] => (Allow) C:program files (x86)minecraft launcherruntimejre-x64binjavaw.exe

FirewallRules: [TCP Query User388F2BD7-4F97-41A1-9D33-9E5766746B14C:usersttsco.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe] => (Allow) C:usersttsco.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe => No File

FirewallRules: [UDP Query UserFAAF987E-29EC-40F8-8276-D5984B2B410CC:usersttsco.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe] => (Allow) C:usersttsco.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe => No File

FirewallRules: [713CA86E-3786-4FAA-97F8-22CB5744DF8F] => (Allow) C:Program FilesBlueStacksHD-Player.exe => No File

FirewallRules: [TCP Query UserAC5B9C0C-5668-4D2A-AF03-4BB23EDAF54EC:program filesblackmagic designdavinci resolvedpdecoder.exe] => (Allow) C:program filesblackmagic designdavinci resolvedpdecoder.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [UDP Query User63E0D25A-6BE1-4E95-A661-90F97D7EE98BC:program filesblackmagic designdavinci resolvedpdecoder.exe] => (Allow) C:program filesblackmagic designdavinci resolvedpdecoder.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [TCP Query User4C9DC454-A556-48FA-8B5D-C7C150E2DA59C:program filesblackmagic designdavinci resolveresolve.exe] => (Allow) C:program filesblackmagic designdavinci resolveresolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)

FirewallRules: [UDP Query User92E5D0DD-2A53-4117-89C7-F5C4BAFA0424C:program filesblackmagic designdavinci resolveresolve.exe] => (Allow) C:program filesblackmagic designdavinci resolveresolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)

FirewallRules: [TCP Query User3928CDF8-0E66-423F-A901-55EE7CDEF24DC:program filesblackmagic designdavinci resolvefuscript.exe] => (Allow) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)

FirewallRules: [UDP Query User0BEA2EDE-31CE-493D-A0AA-7823D049FE78C:program filesblackmagic designdavinci resolvefuscript.exe] => (Allow) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)

FirewallRules: [TCP Query User0055ED2A-7FD5-413F-B613-31591E4C9C4DC:usersttscoappdataroaminggdlauncher_nextjava8u242-b08binjava.exe] => (Block) C:usersttscoappdataroaminggdlauncher_nextjava8u242-b08binjava.exe

FirewallRules: [UDP Query User13C3AF92-38A9-40C1-B9F5-FE18F827EEC1C:usersttscoappdataroaminggdlauncher_nextjava8u242-b08binjava.exe] => (Block) C:usersttscoappdataroaminggdlauncher_nextjava8u242-b08binjava.exe

FirewallRules: [TCP Query User9CE3AE16-1535-40A8-B894-EB26D51586C9C:usersttscoappdatalocalcrossoutlauncher.exe] => (Block) C:usersttscoappdatalocalcrossoutlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [UDP Query User1FB7A5CD-0CAF-4041-82F9-EE35269B9E5FC:usersttscoappdatalocalcrossoutlauncher.exe] => (Block) C:usersttscoappdatalocalcrossoutlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [TCP Query UserA5077F98-AF7B-4F78-B680-F0A46A876492C:usersttscoappdatalocalcrossoutlauncher.exe] => (Block) C:usersttscoappdatalocalcrossoutlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [UDP Query User2BBFE0AD-CFC5-4335-AFD1-8CA9A6FBE488C:usersttscoappdatalocalcrossoutlauncher.exe] => (Block) C:usersttscoappdatalocalcrossoutlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [TCP Query UserD4DB3681-1558-4866-995F-5EDD1D35CABCC:program filesblackmagic designdavinci resolvefuscript.exe] => (Allow) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)

FirewallRules: [UDP Query UserB8175875-1C59-4A90-BE69-87C9E53ACA02C:program filesblackmagic designdavinci resolvefuscript.exe] => (Allow) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)

FirewallRules: [TCP Query User0500ADB4-2836-4D21-971C-F81A7D0DA1A4C:usersttsco.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe] => (Block) C:usersttsco.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe => No File

FirewallRules: [UDP Query User1A2338E8-0911-4D16-8D35-03FDA578177DC:usersttsco.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe] => (Block) C:usersttsco.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe => No File

FirewallRules: [TCP Query User1A7C8842-D3F2-4898-8CBC-831BDE3E7259C:usersttscoappdataroaminggdlauncher_nextjava8u242-b08binjava.exe] => (Block) C:usersttscoappdataroaminggdlauncher_nextjava8u242-b08binjava.exe

FirewallRules: [UDP Query UserD26E62D9-2741-43A7-BD11-E22C42027A32C:usersttscoappdataroaminggdlauncher_nextjava8u242-b08binjava.exe] => (Block) C:usersttscoappdataroaminggdlauncher_nextjava8u242-b08binjava.exe

FirewallRules: [9DF4024F-6629-493B-AD24-E912D6ADB439] => (Allow) LPort=57127

FirewallRules: [467C5EEF-D1BE-48AA-B209-786014F52AD7] => (Allow) LPort=57127

FirewallRules: [7E6CF091-7A30-4883-8DD1-86ABCB77C614] => (Allow) LPort=57127

FirewallRules: [A4921A50-DB95-4E58-A40B-7E63401460AD] => (Allow) LPort=57127

FirewallRules: [TCP Query User04BF89B0-2753-442F-948B-D924EC28966CC:program files (x86)minecraft launcherruntimejre-x64binjavaw.exe] => (Block) C:program files (x86)minecraft launcherruntimejre-x64binjavaw.exe

FirewallRules: [UDP Query UserD6E24BD9-C426-40C5-99C3-304B02CBDF99C:program files (x86)minecraft launcherruntimejre-x64binjavaw.exe] => (Block) C:program files (x86)minecraft launcherruntimejre-x64binjavaw.exe

FirewallRules: [E3E82CA1-7323-4F34-828C-644C9304C72C] => (Allow) C:UsersveggiAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

FirewallRules: [7ACB56EC-37BB-44A8-842A-97386ADFEDF3] => (Allow) C:UsersveggiAppDataRoamingZoombinairhost.exe => No File

FirewallRules: [02972E20-ED5C-4BD8-A725-4EC8E914B596] => (Allow) C:UsersveggiAppDataRoamingZoombinairhost.exe => No File

FirewallRules: [TCP Query User65F739B0-8968-4C18-9E6B-C0F6BE742C2EC:usersveggi_kmgs1lg.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe] => (Block) C:usersveggi_kmgs1lg.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe

FirewallRules: [UDP Query User87332718-0EE8-45C5-87F8-C039067EE767C:usersveggi_kmgs1lg.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe] => (Block) C:usersveggi_kmgs1lg.lunarclientjrezulu8.50.0.53-ca-fx-jre8.0.275-win_x64binjavaw.exe

FirewallRules: [TCP Query User3D5C6F0B-5CC3-466C-B633-F94DA22AE836C:usersveggi_kmgs1lgappdataroaminggdlauncher_nextjava8u242-b08binjava.exe] => (Block) C:usersveggi_kmgs1lgappdataroaminggdlauncher_nextjava8u242-b08binjava.exe

FirewallRules: [UDP Query User51A27B54-FEC0-4D49-A885-F9CB2402386DC:usersveggi_kmgs1lgappdataroaminggdlauncher_nextjava8u242-b08binjava.exe] => (Block) C:usersveggi_kmgs1lgappdataroaminggdlauncher_nextjava8u242-b08binjava.exe

FirewallRules: [TCP Query User3F992A3A-E075-416E-9CA9-FDBAED10F7DAC:programdatabadlionclientjre1.8.0_202binjavaw.exe] => (Block) C:programdatabadlionclientjre1.8.0_202binjavaw.exe

FirewallRules: [UDP Query User6A79C452-B99C-4A4E-B4A1-6A0A388831ADC:programdatabadlionclientjre1.8.0_202binjavaw.exe] => (Block) C:programdatabadlionclientjre1.8.0_202binjavaw.exe

FirewallRules: [TCP Query User62A87909-F03C-4C2A-9292-37DF35CC2249C:usersttscodownloadsfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe] => (Block) C:usersttscodownloadsfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [UDP Query UserD4488828-CC8D-499E-9AFA-363107668205C:usersttscodownloadsfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe] => (Block) C:usersttscodownloadsfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [TCP Query User640FE5D2-D808-47FE-AE73-5F1FC3FD81ADC:program files (x86)minecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe] => (Block) C:program files (x86)minecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe

FirewallRules: [UDP Query UserA1B3C0F0-968B-48FE-9BD5-796CFE337C05C:program files (x86)minecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe] => (Block) C:program files (x86)minecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe

FirewallRules: [TCP Query UserDB9DC0E7-03A1-4869-90B0-18D6BFCC92C3C:program files (x86)blackmagic designdavinci control panelssetup utilitydavinci control panels setup.exe] => (Allow) C:program files (x86)blackmagic designdavinci control panelssetup utilitydavinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)

FirewallRules: [UDP Query UserC14BA3D2-8B99-4C9F-8525-4EC80EA72CEDC:program files (x86)blackmagic designdavinci control panelssetup utilitydavinci control panels setup.exe] => (Allow) C:program files (x86)blackmagic designdavinci control panelssetup utilitydavinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)

FirewallRules: [8DAA2C00-9382-412B-B2FE-F692D66A43CF] => (Allow) C:Program Files (x86)DropboxClientDropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

FirewallRules: [AED4FB33-1429-4A9F-BCEB-A36EF999827E] => (Allow) C:Program FilesGoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

FirewallRules: [145718F9-7E5B-41D5-8B60-B90AB7ED21F4] => (Allow) C:Program FilesBlackmagic DesignDaVinci ResolveResolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)

FirewallRules: [E0450A16-DC35-4505-B4E1-F5CA452BF342] => (Allow) C:Program FilesBlackmagic DesignDaVinci Resolvebmdpaneld.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [2DA6B0A6-6D4A-4CD6-8014-7EDF04F8FAE6] => (Allow) C:Program FilesBlackmagic DesignDaVinci ResolveDaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [10643A8D-9FF0-4A9D-A636-A29A5742AA38] => (Allow) C:Program FilesBlackmagic DesignDaVinci ResolveJLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [528C0350-31FB-4DE5-992F-BC3C300C6FD5] => (Allow) C:Program FilesBlackmagic DesignDaVinci ResolveEuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [135060AC-F8E8-4844-B537-443B555FA501] => (Allow) C:Program FilesBlackmagic DesignDaVinci ResolveTangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [BC5DBED9-25DC-4596-857F-B96BBC36C3E0] => (Allow) C:Program FilesBlackmagic DesignDaVinci ResolveElementsPanelDaemon.exe => No File

FirewallRules: [AB9621B3-59CD-4E5B-8849-2FA235811F2C] => (Allow) C:Program FilesBlackmagic DesignDaVinci Resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)

FirewallRules: [BE66F791-701F-4B29-BEFE-B7FE751C39E1] => (Allow) C:Program FilesBlackmagic DesignDaVinci ResolveDPDecoder.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [4D230EAB-07E8-4619-9790-4C71A45496B4] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [52B8DFAC-B654-43A4-A9C3-A31311DC35AD] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [69447E61-A6F0-4E34-823A-9641A8DA7AF9] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [9F26D7C7-4363-4DFE-B4BF-15EF72297CF7] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [DFFA6E04-DA58-486B-9A7F-C16DED54234F] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [1DF1A818-6FF4-473C-98B1-CD8F857058ED] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [11880FC0-A94C-4325-BB49-090BF7BCB840] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [E1CBA3A3-011E-4C3D-8F32-B5E7351EBBFC] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [TCP Query UserDCF9EE75-6827-4EA8-B9E6-56304E452BE6C:usersttsco.lunarclientjrezulu8.52.0.23-ca-fx-jre8.0.282-win_x64binjavaw.exe] => (Block) C:usersttsco.lunarclientjrezulu8.52.0.23-ca-fx-jre8.0.282-win_x64binjavaw.exe

FirewallRules: [UDP Query UserCC2FD0E8-339F-4A4B-B291-E56A233F5D9CC:usersttsco.lunarclientjrezulu8.52.0.23-ca-fx-jre8.0.282-win_x64binjavaw.exe] => (Block) C:usersttsco.lunarclientjrezulu8.52.0.23-ca-fx-jre8.0.282-win_x64binjavaw.exe

FirewallRules: [TCP Query User8CCBB77D-42A2-4144-B7EE-93984A0313DAC:usersttscoappdataroamingtwitch studiobintwitchstudioagent.exe] => (Block) C:usersttscoappdataroamingtwitch studiobintwitchstudioagent.exe (Twitch Interactive, Inc. -> )

FirewallRules: [UDP Query User5E7456AD-EC5A-4046-A7E7-9E18EE53791CC:usersttscoappdataroamingtwitch studiobintwitchstudioagent.exe] => (Block) C:usersttscoappdataroamingtwitch studiobintwitchstudioagent.exe (Twitch Interactive, Inc. -> )

FirewallRules: [TCP Query User414926AA-9370-494B-AE7D-A4A1C9FB6B93C:program fileslghublghub_agent.exe] => (Allow) C:program fileslghublghub_agent.exe => No File

FirewallRules: [UDP Query UserD7D43921-1645-4B25-AF0C-6FE3CFA239DBC:program fileslghublghub_agent.exe] => (Allow) C:program fileslghublghub_agent.exe => No File

FirewallRules: [TCP Query User965602F1-5358-464F-B8F3-15F275A4E459C:program fileslghublghub_agent.exe] => (Block) C:program fileslghublghub_agent.exe => No File

FirewallRules: [UDP Query UserCB0F156C-77DC-4A2C-957C-5B92FD918854C:program fileslghublghub_agent.exe] => (Block) C:program fileslghublghub_agent.exe => No File

FirewallRules: [AD93B198-C4F7-45B9-819E-C40F6A01F5DE] => (Allow) C:UsersveggiAppDataLocalTempHouseCalltmasenmapnmap.exe => No File

FirewallRules: [TCP Query User55E1D18D-54DB-4C14-AD61-ACF4F2380B63C:program filesblackmagic designdavinci resolvedavincipaneldaemon.exe] => (Block) C:program filesblackmagic designdavinci resolvedavincipaneldaemon.exe (Blackmagic Design Pty Ltd -> )

FirewallRules: [UDP Query User1A675A10-DCDC-4954-B4AE-DC9312C755E1C:program filesblackmagic designdavinci resolvedavincipaneldaemon.exe] => (Block) C:program filesblackmagic designdavinci resolvedavincipaneldaemon.exe (Blackmagic Design Pty Ltd -> )

==================== Restore Points =========================

09-04-2021 08:30:25 Scheduled Checkpoint

11-04-2021 10:50:39 Windows Modules Installer

==================== Faulty Device Manager Devices ============

Name: PCI Device

Description: PCI Device

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: PCI Device

Description: PCI Device

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: PCI Encryption/Decryption Controller

Description: PCI Encryption/Decryption Controller

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: ========================

Erreurs d'application:

===================

Error: (04/11/2021 03:41:28 PM) (Source: VSS) (EventID: 8193) (User: )

Description: Volume Shadow Copy Service error: Unexpected error calling routine QueryFullProcessImageNameW.  hr = 0x8007001f, A device attached to the system is not functioning.

.

Operation:

Executing Asynchronous Operation

Context:

Current State: DoSnapshotSet

Error: (04/11/2021 03:41:19 PM) (Source: VSS) (EventID: 8194) (User: )

Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.

.

This is often caused by incorrect security settings in either the writer or requestor process.

Operation:

Gathering Writer Data

Context:

Writer Class Id: e8132975-6f93-4464-a53e-1050253ae220

Writer Name: System Writer

Writer Instance ID: ea6ebfe2-4c79-4330-958f-66c932a26d6e

Error: (04/11/2021 03:26:16 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: RemoteFXvGPUDisablement.exe, version: 10.0.19041.388, time stamp: 0x80d1bfff

Faulting module name: KERNELBASE.dll, version: 10.0.19041.804, time stamp: 0x0e9c5eae

Exception code: 0xe0434352

Fault offset: 0x000000000002d759

Faulting process id: 0x784

Faulting application start time: 0x01d72ede9c78c895

Faulting application path: C:WindowsSystem32RemoteFXvGPUDisablement.exe

Faulting module path: C:WindowsSystem32KERNELBASE.dll

Report Id: c3a70161-5a49-4748-9a1d-f292562f1956

Nom complet du package défaillant:

ID d'application relatif au package défaillant:

Error: (04/11/2021 03:26:16 PM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Application: RemoteFXvGPUDisablement.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: System.Runtime.InteropServices.SEHException

at System.Management.Automation.Runspaces.PSSnapInHelpers.GetAssemblyTypes(Assembly assembly, String name)

at System.Management.Automation.Runspaces.PSSnapInHelpers.AnalyzeModuleAssemblyWithReflection(Assembly assembly, String name, PSSnapInInfo psSnapInInfo, PSModuleInfo moduleInfo, Boolean isModuleLoad, Dictionary`2& cmdlets, Dictionary`2& aliases, Dictionary`2& providers, String helpFile, Type& randomCmdletToCheckLinkDemand, Type& randomProviderToCheckLinkDemand)

at System.Management.Automation.Runspaces.PSSnapInHelpers.AnalyzePSSnapInAssembly(Assembly assembly, String name, PSSnapInInfo psSnapInInfo, PSModuleInfo moduleInfo, Boolean isModuleLoad, Dictionary`2& cmdlets, Dictionary`2& aliases, Dictionary`2& providers, String& helpFile)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.AnalyzeSnapinDomainHelper()

at System.AppDomain.DoCallBack(System.CrossAppDomainDelegate)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.GetCmdletsFromBinaryModuleImplementation(System.String, ManifestProcessingFlags, System.Version ByRef)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.LoadBinaryModule(System.Management.Automation.PSModuleInfo, Boolean, System.String, System.String, System.Reflection.Assembly, System.String, System.Management.Automation.SessionState, ImportModuleOptions, ManifestProcessingFlags, System.String, Boolean, Boolean, Boolean ByRef, System.String, Boolean)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.LoadModule(System.Management.Automation.PSModuleInfo, System.String, System.String, System.String, System.Management.Automation.SessionState, System.Object, ImportModuleOptions ByRef, ManifestProcessingFlags, Boolean ByRef, Boolean ByRef)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.LoadUsingExtensions(System.Management.Automation.PSModuleInfo, System.String, System.String, System.String, System.String, System.String, System.Management.Automation.SessionState, ImportModuleOptions, ManifestProcessingFlags, Boolean ByRef, Boolean ByRef)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.LoadModuleNamedInManifest(System.Management.Automation.PSModuleInfo, Microsoft.PowerShell.Commands.ModuleSpecification, System.String, Boolean, System.String, System.Management.Automation.SessionState, ImportModuleOptions, ManifestProcessingFlags, Boolean, Boolean, System.Object, Boolean ByRef, System.String, System.Nullable`1)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.LoadModuleManifest(System.String, System.Management.Automation.ExternalScriptInfo, System.Collections.Hashtable, System.Collections.Hashtable, ManifestProcessingFlags, System.Version, System.Version, System.Version, System.Nullable`1, ImportModuleOptions ByRef, Boolean ByRef)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.CreateModuleInfoForGetModule(System.String, Boolean)

at Microsoft.PowerShell.Commands.ModuleCmdletBase+d__86.MoveNext()

at System.Collections.Generic.List`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].InsertRange(Int32, System.Collections.Generic.IEnumerable`1)

at Microsoft.PowerShell.Commands.ModuleCmdletBase.GetModule(System.String[], Boolean, Boolean)

at Microsoft.PowerShell.Commands.GetModuleCommand.GetAvailableLocallyModules(System.String[], System.Collections.Generic.IDictionary`2, Boolean)

at Microsoft.PowerShell.Commands.GetModuleCommand.ProcessRecord()

at System.Management.Automation.CommandProcessor.ProcessRecord()

at System.Management.Automation.CommandProcessorBase.DoExecute()

at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object)

at System.Management.Automation.Runspaces.LocalPipeline.InvokeHelper()

at System.Management.Automation.Runspaces.LocalPipeline.InvokeThreadProc()

at System.Management.Automation.Runspaces.LocalPipeline.StartPipelineExecution()

at System.Management.Automation.Runspaces.PipelineBase.CoreInvoke(System.Collections.IEnumerable, Boolean)

at System.Management.Automation.Runspaces.PipelineBase.Invoke(System.Collections.IEnumerable)

at System.Management.Automation.PowerShell+Worker.ConstructPipelineAndDoWork(System.Management.Automation.Runspaces.Runspace, Boolean)

at System.Management.Automation.PowerShell.CoreInvokeHelper[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Management.Automation.PSDataCollection`1, System.Management.Automation.PSDataCollection`1, System.Management.Automation.PSInvocationSettings)

at System.Management.Automation.PowerShell.CoreInvoke[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Management.Automation.PSDataCollection`1, System.Management.Automation.PSDataCollection`1, System.Management.Automation.PSInvocationSettings)

at System.Management.Automation.PowerShell.Invoke(System.Collections.IEnumerable, System.Management.Automation.PSInvocationSettings)

at System.Management.Automation.AnalysisCache.CallGetModuleDashList(System.Management.Automation.ExecutionContext, System.String)

at System.Management.Automation.AnalysisCache.AnalyzeTheOldWay(System.String, System.Management.Automation.ExecutionContext, System.DateTime)

at System.Management.Automation.AnalysisCache.AnalyzeManifestModule(System.String, System.Management.Automation.ExecutionContext, System.DateTime, Boolean)

at System.Management.Automation.AnalysisCache.GetExportedCommands(System.String, Boolean, System.Management.Automation.ExecutionContext)

at System.Management.Automation.CommandDiscovery.TryModuleAutoDiscovery(System.String, System.Management.Automation.ExecutionContext, System.String, System.Management.Automation.CommandOrigin, System.Management.Automation.SearchResolutionOptions, System.Management.Automation.CommandTypes, System.Exception ByRef)

at System.Management.Automation.CommandDiscovery.LookupCommandInfo(System.String, System.Management.Automation.CommandTypes, System.Management.Automation.SearchResolutionOptions, System.Management.Automation.CommandOrigin, System.Management.Automation.ExecutionContext)

at System.Management.Automation.CommandDiscovery.LookupCommandProcessor(System.String, System.Management.Automation.CommandOrigin, System.Nullable`1)

at System.Management.Automation.Runspaces.Command.CreateCommandProcessor(System.Management.Automation.ExecutionContext, System.Management.Automation.CommandFactory, Boolean, System.Management.Automation.CommandOrigin)

at System.Management.Automation.Runspaces.LocalPipeline.CreatePipelineProcessor()

at System.Management.Automation.Runspaces.LocalPipeline.InvokeHelper()

at System.Management.Automation.Runspaces.LocalPipeline.InvokeThreadProc()

at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)

at System.Threading.ThreadHelper.ThreadStart()

Error: (04/11/2021 11:45:47 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)

Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (04/11/2021 11:39:47 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)

Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (04/11/2021 11:37:47 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)

Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (04/11/2021 11:10:25 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: YourPhone.exe, version: 1.21022.168.0, time stamp: 0x6058f19a

Faulting module name: KERNELBASE.dll, version: 10.0.19041.804, time stamp: 0x0e9c5eae

Exception code: 0x00001007

Décalage de défaut: 0x000000000010bd5c

Faulting process id: 0x21e8

Faulting application start time: 0x01d72ebae2317804

Faulting application path: C:Program FilesWindowsAppsMicrosoft.YourPhone_1.21022.168.0_x64__8wekyb3d8bbweYourPhone.exe

Faulting module path: C:WindowsSystem32KERNELBASE.dll

Report Id: de816413-7b22-4241-a31b-3ca8c84ba4a4

Faulting package full name: Microsoft.YourPhone_1.21022.168.0_x64__8wekyb3d8bbwe

Faulting package-relative application ID: App

Erreurs système:

=============

Error: (04/11/2021 03:41:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Windows Search service failed to start due to the following error:

The service did not start due to a logon failure.

Error: (04/11/2021 03:41:55 PM) (Source: Service Control Manager) (EventID: 7038) (User: )

Description: The WSearch service was unable to log on as NT AUTHORITYSYSTEM with the currently configured password due to the following error:

The request is not supported.

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (04/11/2021 03:41:52 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2AS07G)

Description: The server 9BA05972-F6A8-11CF-A442-00A0C90A8F39 did not register with DCOM within the required timeout.

Error: (04/11/2021 03:41:52 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: The server 338B40F9-9D68-4B53-A793-6B9AA0C5F63B did not register with DCOM within the required timeout.

Error: (04/11/2021 03:41:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Modules Installer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (04/11/2021 03:41:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (04/11/2021 03:41:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Heimdal Update Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (04/11/2021 03:41:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Heimdal Uptime Checker service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 3000 milliseconds: Restart the service.

Windows Defender:

================

Date: 2021-04-11 11:25:00

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Full Scan

Date: 2021-04-09 08:30:44

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2021-04-07 08:10:07

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2021-04-02 10:13:08

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2021-03-31 08:17:09

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2021-04-11 15:08:04

La description:

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version:

Previous security intelligence Version: 1.335.613.0

Update Source: Microsoft Update Server

Security intelligence Type: AntiVirus

Update Type: Full

Current Engine Version:

Previous Engine Version: 1.1.18000.5

Error code: 0x8007043c

Error description: This service cannot be started in Safe Mode

Date: 2021-04-11 14:58:03

La description:

Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.

Feature: On Access

Error Code: 0x8007043c

Error description: This service cannot be started in Safe Mode

Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2021-04-11 14:46:20

La description:

Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.

Feature: On Access

Error Code: 0x8007043c

Error description: This service cannot be started in Safe Mode

Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2021-04-11 11:37:57

La description:

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version:

Previous security intelligence Version: 1.335.613.0

Update Source: Microsoft Update Server

Security intelligence Type: AntiVirus

Update Type: Full

Current Engine Version:

Previous Engine Version: 1.1.18000.5

Error code: 0x8007043c

Error description: This service cannot be started in Safe Mode

Date: 2021-04-11 11:27:56

La description:

Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.

Feature: On Access

Error Code: 0x8007043c

Error description: This service cannot be started in Safe Mode

Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P4.20 06/18/2020

Motherboard: ASRock B450 Pro4

Processor: AMD Ryzen 5 3600 6-Core Processor

Percentage of memory in use: 20%

Total physical RAM: 16315.33 MB

Available physical RAM: 12974.71 MB

Total Virtual: 35771.33 MB

Available Virtual: 30970.42 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.16 GB) (Free:289.05 GB) NTFS

Drive d: (UDISK) (Removable) (Total:28.96 GB) (Free:21.55 GB) FAT32

\?Volume7978b2c2-2aac-47c7-9b26-8a41825b48b2 () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS

\?Volume42954e81-53bf-487a-bf59-6ad444ab4193 () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================

Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================

Disk: 1 (MBR Code: Windows 7/8/10) (Size: 29 GB) (Disk ID: 2B422623)

Partition 1: (Active) – (Size=29 GB) – (Type=0C)

==================== End of Addition.txt =======================

Fix result of Farbar Recovery Scan Tool (x64) Version: 10-04-2021

Ran by Administrator (11-04-2021 15:41:18) Run:2

Running from C:UsersAdministratorDesktop

Loaded Profiles: TTsco & veggi & veggi_kmgs1lg & Administrator

Mode de démarrage: normal

==============================================

fixlist content:

*****************

start

CreateRestorePoint:

CloseProcesses:

CMD: netsh int ip reset

CMD: ipconfig /flushDNS

CMD: "%WINDIR%SYSTEM32lodctr.exe" /R

CMD: "%WINDIR%SysWOW64lodctr.exe" /R

CMD: "C:WindowsSYSTEM32lodctr.exe" /R

CMD: "C:WindowsSysWOW64lodctr.exe" /R

EmptyTemp:

End

*****************

Restore point was successfully created.

Processes closed successfully.

========= netsh int ip reset =========

Resetting Compartment Forwarding, OK!

Resetting Compartment, OK!

Resetting Control Protocol, OK!

Resetting Echo Sequence Request, OK!

Resetting Global, OK!

Resetting Interface, OK!

Resetting Anycast Address, OK!

Resetting Multicast Address, OK!

Resetting Unicast Address, OK!

Resetting Neighbor, OK!

Resetting Path, OK!

Resetting Potential, OK!

Resetting Prefix Policy, OK!

Resetting Proxy Neighbor, OK!

Resetting Route, OK!

Resetting Site Prefix, OK!

Resetting Subinterface, OK!

Resetting Wakeup Pattern, OK!

Resetting Resolve Neighbor, OK!

Resetting , OK!

Resetting , OK!

Resetting , OK!

Resetting , OK!

Resetting , failed.

Access is denied.

Resetting , OK!

Resetting , OK!

Resetting , OK!

Resetting , OK!

Resetting , OK!

Resetting , OK!

Resetting , OK!

Restart the computer to complete this action.

========= End of CMD: =========

========= ipconfig /flushDNS =========

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========

========= "%WINDIR%SYSTEM32lodctr.exe" /R =========

Info: Successfully rebuilt performance counter setting from system backup store

========= End of CMD: =========

========= "%WINDIR%SysWOW64lodctr.exe" /R =========

Info: Successfully rebuilt performance counter setting from system backup store

========= End of CMD: =========

========= "C:WindowsSYSTEM32lodctr.exe" /R =========

Info: Successfully rebuilt performance counter setting from system backup store

========= End of CMD: =========

========= "C:WindowsSysWOW64lodctr.exe" /R =========

Info: Successfully rebuilt performance counter setting from system backup store

========= End of CMD: =========

=========== EmptyTemp: ==========

BITS transfer queue => 9199616 B

DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14738984 B

Java, Flash, Steam htmlcache => 0 B

Windows/system/drivers => 1200 B

Edge => 0 B

Chrome => 0 B

Firefox => 0 B

Opera => 0 B

Temp, IE cache, history, cookies, recent:

Default => 0 B

ProgramData => 0 B

Public => 0 B

systemprofile => 0 B

systemprofile32 => 0 B

LocalService => 0 B

NetworkService => 1288 B

TTsco => 863792781 B

veggi => 1124822718 B

veggi_kmgs1lg => 1172827875 B

Administrator => 1230138673 B

RecycleBin => 0 B

EmptyTemp: => 4.1 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 15:41:41 ====

Click to rate this post!
[Total: 0 Average: 0]

Commentaires

Laisser un commentaire

Votre commentaire sera révisé par les administrateurs si besoin.