Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2021
Exécuté par JOE (administrateur) sur JOE-PC (PACKARD BELL BV IMEDIA X9651) (27-08-2021 00:45:14)
Exécuté depuis C:\Users\JOE\Desktop
Profils chargés: JOE
Platform: Windows 10 Pro Version 2004 19041.572 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Wondershare\Wondershare dr.fone\Addins\Transfer\ElevationService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Alcohol Soft -> Alcohol Soft Development Team) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\EBCClient.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Lexmark International, Inc. -> ) C:\Windows\System32\lxeacoms.exe
(Lexmark International, Inc. -> ) C:\Windows\System32\lxeecoms.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2009.23741.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2008.2.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10_64.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe
(StarWind Software) [Fichier non signé] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(wondershare) [Fichier non signé] C:\Program Files (x86)\Wondershare\Wondershare dr.fone\WsidService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [Nero BackItUp] => C:\Program Files (x86)\Nero\Nero 2020\Nero BackItUp\BackItUp.exe [1156376 2019-07-26] (Nero AG -> Nero AG)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (Canon Inc. -> CANON INC.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5468672 2020-11-25] (Tonec Inc.) [Fichier non signé]
HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35144320 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [266336 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\Lexmark Pro700 Series Print Processor: C:\Windows\System32\spool\prtprocs\x64\lxeedrpp.dll [189440 2009-11-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\Lexmark S300-S400 Series Print Processor: C:\Windows\System32\spool\prtprocs\x64\lxeadrpp.dll [189440 2009-11-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\LMUD1O4C: C:\Windows\System32\spool\prtprocs\x64\LMUD1O4C.DLL [283152 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\Windows\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series XPS: C:\Windows\system32\CNMXLMBU.DLL [394240 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2013-01-24] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Nitro PDF Port 13 Monitor: C:\Windows\system32\NxPrinterMonitor13.dll [241416 2019-09-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PCL hpz3lw72: C:\Windows\system32\hpz3lw72.dll [55392 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Pro700 Series Port: C:\Windows\system32\lxeelmpm.DLL [892416 2009-12-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\S300-S400 Series Port: C:\Windows\system32\lxealmpm.DLL [892416 2009-12-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-17] (Google LLC -> Google LLC)
IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll
IFEO\SppExtComObj.Exe: [VerifierDlls] SppExtComObjHook.dll
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2223A2B2-A99F-402E-9DC0-261E08E99747} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [673720 2021-08-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {25076B4A-A33E-46AF-A796-42E69C9C3BA7} - System32\Tasks\VIDAL Menu => C:\Program Files (x86)\Vidal Menu\VIDALMenu.exe [347472 2021-07-08] (VIDAL France -> )
Task: {28D14A0F-CC00-4EAC-B48A-06E852E14B18} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2323928 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {2AC4BDFD-3909-47A9-89AE-525B84772902} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139096 2021-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DBBA333-9CD3-4A56-9860-E4A5779102CF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {418D7DA8-10D9-46CC-A72C-250F626DC0C0} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {44FDEEB0-17C0-49AD-B158-BDE857C3FD42} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4660EBD1-CDF1-40CA-A476-A73E345CC592} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {475BEF93-B814-49E1-83A1-44127017674E} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32704 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {49E0E7B4-F79F-411F-8C4B-05D7B02EEE14} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-01] (Google Inc -> Google LLC)
Task: {7E13D5D6-1EAE-411A-8A1E-6A6064E41EEE} - System32\Tasks\PinnacleStudio22Notifier => C:\Program Files\Pinnacle\Studio 22\programs\PinnacleNotifierWrapper.exe [17504 2019-06-19] (Corel Corporation -> Pinnacle)
Task: {7F1A81BC-6914-49C4-A845-ACBB6C8C3ECC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858696 2021-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {885685B0-CBA1-47D1-911E-EED426963989} - System32\Tasks\CCleanerSkipUAC - JOE => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8CBE49A0-C2BD-45B0-8C76-6787E0D2A02C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053728 2021-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {9360BDF7-1580-416D-9C57-035001EB17F5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {9F9EEF90-8991-4E65-B7E3-ADCD301787A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A775A09B-32C2-449D-A99D-EBA4C75E2542} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053728 2021-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA24975E-6823-4A7E-8CFB-AB7BBD473D24} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {AAFE5770-538D-4287-B0E6-919A2FA0E8BC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-01] (Google Inc -> Google LLC)
Task: {B222EA0E-FA54-45AC-88F5-D46E8F51BEB5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-16] (Piriform Software Ltd -> Piriform)
Task: {B8FB43D5-EA30-4B0B-9CC1-3B813B98B1E3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139096 2021-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE4503AF-E78B-4272-8C66-7ACC832DDB35} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {C13D082F-356F-4736-9D72-8024AF203777} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {C4751BA1-38B0-4366-8ECF-820645B9FCCD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D11E244D-F9BD-4512-8EF5-A2BE964CFBAE} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D593BBEA-5DDF-4920-858F-9B22DD3F379C} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [7071000 2019-08-29] (Nero AG -> Nero AG)
Task: {DBD5223A-8653-47F7-8F20-6F1D9C076EDA} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E258A87D-8313-4DFC-95A4-F4F7C77B8122} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {E313529B-F2DC-468B-B668-BB441EF9720D} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3A9C37F-B62E-478C-8465-945EB92C53C9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858696 2021-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA8D43FE-6A4C-49D4-A572-3F75AF24C972} - System32\Tasks\PinnacleStudioUpdater => C:\Program Files\Pinnacle\Studio 22\programs\PSNotification.exe [635976 2019-02-20] (Corel Corporation -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d5068129-34c6-41fc-93b1-ecef4470239f}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{d5068129-34c6-41fc-93b1-ecef4470239f}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\JOE\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-27]
Edge Extension: (IDM Integration Module) - C:\Users\JOE\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2020-12-06]
Edge Extension: (IDM Integration Module) - C:\Users\JOE\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-11-17]
Edge HKU\S-1-5-21-1771672942-87226366-737989149-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2020-11-25]
Edge HKU\S-1-5-21-1771672942-87226366-737989149-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-11-25]
FireFox:
========
FF DefaultProfile: fb6xwz4l.default
FF ProfilePath: C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\fb6xwz4l.default [2021-08-25]
FF user.js: detected! => C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\fb6xwz4l.default\user.js [2021-07-20]
FF ProfilePath: C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526 [2021-08-27]
FF Homepage: Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526 -> hxxps://ww3.yggtorrent.si/|hxxps://www.zt-za.net/
FF Extension: (Gestionnaire de téléchargements (S3)) - C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526\Extensions\s3download@statusbar.xpi [2021-08-26]
FF Extension: (Screenshot) - C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526\Extensions\{905b5cd2-56e0-4eba-9de7-1ab109a2a705}.xpi [2021-08-26]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-08-26]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2020-11-14]
FF HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\JOE\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\JOE\AppData\Roaming\IDM\idmmzcc5 [2019-12-17] [] [non signé]
FF HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default [2021-08-27]
CHR StartupUrls: Default -> "hxxps://www3.yggtorrent.pe/","hxxps://www.zt-za.net/"
CHR Extension: (Google Traduction) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-25]
CHR Extension: (Slides) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-01]
CHR Extension: (Docs) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-01]
CHR Extension: (Google Drive) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02]
CHR Extension: (YouTube) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-01]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-08-26]
CHR Extension: (Adobe Acrobat) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-07]
CHR Extension: (Screengrab!) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fccdiabakoglkihagkjmaomipdeegbpk [2019-10-20]
CHR Extension: (EditThisCookie) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg [2020-12-07]
CHR Extension: (Google Docs hors connexion) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-29]
CHR Extension: (IDM Integration Module) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2021-03-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-31]
CHR Profile: C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-27]
CHR Extension: (d8yI+Hf7rX) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Guest Profile\Extensions\cplmhgkoncimmpbbojcciadekaibpjod [2020-10-31]
CHR Profile: C:\Users\JOE\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-27]
CHR Extension: (d8yI+Hf7rX) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\cplmhgkoncimmpbbojcciadekaibpjod [2020-10-31]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-11-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-11-25]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
R2 AxVirtualAHCISrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe [105888 2019-06-12] (Alcohol Soft -> Alcohol Soft Development Team)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9165176 2021-08-20] (Microsoft Corporation -> Microsoft Corporation)
R2 DFWSIDService; C:\Program Files (x86)\Wondershare\Wondershare dr.fone\WsidService.exe [1051136 2021-05-27] (wondershare) [Fichier non signé]
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40016 2018-12-17] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
R2 EBC Client; C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\EBCClient.exe [93264 2018-12-17] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R2 ElevationService; C:\Program Files (x86)\Wondershare\Wondershare dr.fone\Addins\Transfer\ElevationService.exe [913408 2021-01-20] () [Fichier non signé]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Fichier non signé]
R2 lxea_device; C:\WINDOWS\system32\lxeacoms.exe [1052328 2010-04-14] (Lexmark International, Inc. -> )
R2 lxee_device; C:\WINDOWS\system32\lxeecoms.exe [1052328 2010-04-14] (Lexmark International, Inc. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7497336 2021-08-26] (Malwarebytes Inc -> Malwarebytes)
S4 NeroBackItUpBackgroundService2021; C:\Program Files (x86)\Nero\Nero 2020\Nero BackItUp\NBService.exe [287000 2019-07-26] (Nero AG -> Nero AG)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 Start10; C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe [220440 2017-04-12] (Stardock Corporation -> Stardock Software, Inc)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13257000 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262880 2021-06-04] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ampa; C:\Windows\system32\ampa.sys [19568 2015-11-10] (ChengDu AoMei Tech Co., Ltd -> ) [Fichier non signé]
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 DCamUSBNovatek; C:\WINDOWS\System32\Drivers\nvtcam.sys [2754432 2011-07-07] (Microsoft Windows Hardware Compatibility Publisher -> NTK)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [161288 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [73448 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [53504 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [22784 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [341760 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [32384 2018-03-14] (Sony Mobile Communications AB -> Sony Mobile Communications)
S3 guillflt; C:\WINDOWS\System32\drivers\guillflt.sys [65024 2009-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Guillemot Corp S.A.)
S3 hxctlflt; C:\WINDOWS\System32\Drivers\hxctlflt.sys [111104 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Guillemot Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-08-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-08-26] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [68528 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-08-26] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [149424 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 RTL8023x64; C:\WINDOWS\System32\drivers\Rtnic64.sys [51712 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [207344 2021-05-21] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [168968 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [213216 2018-11-08] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [223000 2018-11-08] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-07] (Microsoft Windows -> Microsoft Corporation)
R3 WUDFWpdComp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [315392 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-27 00:45 - 2021-08-27 00:49 - 000033644 _____ C:\Users\JOE\Desktop\FRST.txt
2021-08-27 00:41 - 2021-08-27 00:41 - 000391400 _____ C:\Users\JOE\Documents\cc_20210827_004126.reg
2021-08-26 22:50 - 2021-08-27 00:46 - 000000000 ____D C:\Users\JOE\Desktop\Premier SCAN FRST
2021-08-26 22:46 - 2021-08-26 22:46 - 000077793 _____ C:\Users\JOE\Downloads\screengrab-0.96.3-fx.xpi
2021-08-26 22:45 - 2021-08-26 22:45 - 000000000 ____D C:\Users\JOE\AppData\Local\mbam
2021-08-26 22:44 - 2021-08-26 22:44 - 000068528 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000149424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000002003 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-08-26 22:43 - 2021-08-26 22:43 - 000001991 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-08-26 22:42 - 2021-08-26 22:42 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-08-26 22:42 - 2021-08-26 22:42 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-08-26 22:42 - 2021-08-26 22:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-08-26 22:36 - 2021-08-26 22:36 - 000000000 ____D C:\Program Files\Malwarebytes
2021-08-26 22:33 - 2021-08-26 22:33 - 002120496 _____ (Malwarebytes) C:\Users\JOE\Downloads\MBSetup-119967.119967-consumer.exe
2021-08-26 22:17 - 2021-08-26 22:17 - 000000000 ____D C:\Users\JOE\Desktop\Anciennes données de Firefox
2021-08-26 22:16 - 2021-08-26 22:17 - 000000095 _____ C:\Users\JOE\Desktop\Nouveau document texte.txt
2021-08-26 00:56 - 2021-08-27 00:48 - 000000000 ____D C:\FRST
2021-08-26 00:55 - 2021-08-26 00:56 - 002300928 _____ (Farbar) C:\Users\JOE\Desktop\FRST64.exe
2021-08-25 22:45 - 2021-08-25 22:45 - 000002532 _____ C:\RakhniDecryptor.1.27.0.0_25.08.2021_22.45.21_log.txt
2021-08-25 22:45 - 2021-08-25 22:45 - 000002058 _____ C:\RakhniDecryptor.1.27.0.0_25.08.2021_22.45.11_log.txt
2021-08-25 19:59 - 2021-08-25 19:59 - 000000000 ____D C:\ProgramData\EaseUS
2021-08-25 19:58 - 2021-08-25 19:58 - 000000000 ____D C:\ProgramData\SystemAcCrux
2021-08-25 19:58 - 2018-10-08 17:17 - 000341760 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EuFdDisk.sys
2021-08-25 19:58 - 2018-10-08 17:17 - 000073448 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\eubakup.sys
2021-08-25 19:58 - 2018-10-08 17:17 - 000053504 _____ C:\WINDOWS\system32\Drivers\EUBKMON.sys
2021-08-25 19:58 - 2018-10-08 17:17 - 000022784 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\eudskacs.sys
2021-08-25 19:57 - 2021-08-25 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup 12.0
2021-08-25 19:52 - 2021-08-25 19:52 - 000000000 ____D C:\Program Files (x86)\EaseUS
2021-08-25 19:52 - 2018-12-17 03:14 - 000026192 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\fbnative.exe
2021-08-25 12:55 - 2021-08-25 12:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-08-25 12:29 - 2021-08-25 12:35 - 000003130 _____ C:\RakhniDecryptor.1.27.0.0_25.08.2021_12.29.35_log.txt
2021-08-25 12:05 - 2021-08-25 12:05 - 000000000 ____D C:\Users\JOE\AppData\Local\RCS_LT
2021-08-25 11:57 - 2021-08-25 11:58 - 000002660 _____ C:\RakhniDecryptor.1.27.0.0_25.08.2021_11.57.50_log.txt
2021-08-25 11:46 - 2021-08-26 13:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-08-25 11:24 - 2021-08-25 11:24 - 000002878 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - JOE
2021-08-25 01:05 - 1999-11-12 05:11 - 000183808 _____ C:\WINDOWS\SysWOW64\BDEADMIN.CPL
2021-08-25 01:05 - 1999-01-20 05:01 - 000210032 _____ C:\WINDOWS\SysWOW64\DBCLIENT.DLL
2021-08-24 22:49 - 2021-08-24 22:49 - 000916735 _____ (SQLite Development Team) C:\Users\JOE\AppData\LocalLow\sqlite3.dll
2021-08-24 22:34 - 2021-08-26 13:08 - 000000000 ____D C:\Users\JOE\.Vidal
2021-08-24 22:34 - 2021-08-24 22:34 - 000003840 _____ C:\WINDOWS\system32\Tasks\VIDAL Menu
2021-08-24 22:34 - 2021-08-24 22:34 - 000002029 _____ C:\Users\Public\Desktop\VIDAL Expert.lnk
2021-08-24 22:34 - 2021-08-24 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIDAL Menu
2021-08-24 22:34 - 2021-08-24 22:34 - 000000000 ____D C:\Program Files (x86)\Vidal Menu
2021-08-24 22:33 - 2021-08-24 22:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIDAL Expert
2021-08-24 22:33 - 2021-07-08 12:42 - 000073728 _____ C:\WINDOWS\SysWOW64\vidalhelper.dll
2021-08-24 22:31 - 2021-08-24 22:43 - 000000000 ____D C:\Program Files (x86)\Vidal Expert
2021-08-20 15:02 - 2021-08-20 15:02 - 000062935 _____ C:\Users\JOE\Desktop\Formulaire_Reclamation_Bancaire.pdf.payfast290.849-11F-13D
2021-07-30 13:16 - 2021-07-30 13:17 - 000468738 _____ C:\Users\JOE\Documents\IMG_20210730_0001.pdf
2021-07-28 16:50 - 2021-07-28 16:51 - 000001831 _____ C:\Users\JOE\Desktop\Nouveau document texte.txt.payfast290.849-11F-13D
2021-07-28 16:44 - 2021-07-28 16:44 - 000000000 ____D C:\Users\JOE\AppData\Roaming\com.tomtom.hc.controller.main.H2CApplication
2021-07-28 15:17 - 2021-07-28 15:17 - 000000000 ____D C:\ProgramData\TomTom
2021-07-28 15:16 - 2021-08-24 23:32 - 000000000 ____D C:\Users\JOE\AppData\Local\TomTomUpgrade
2021-07-28 15:16 - 2021-07-28 15:16 - 000000000 ____D C:\Users\JOE\TomTomUpgrade
2021-07-28 15:16 - 2021-07-28 15:16 - 000000000 ____D C:\Users\JOE\Documents\TomTomUpgrade
2021-07-28 15:16 - 2021-07-28 15:16 - 000000000 ____D C:\Users\JOE\AppData\Roaming\TomTomUpgrade
2021-07-28 15:15 - 2021-07-28 15:15 - 000000000 ____D C:\Users\JOE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TomTom Intl
2021-07-28 15:13 - 2021-07-28 15:13 - 000000000 ____D C:\Users\JOE\AppData\Roaming\H2CU_VCR
2021-07-28 00:26 - 2021-07-28 00:26 - 071635470 _____ C:\Users\JOE\Desktop\Patrick Jaulent invité de l'émission -Le défi de la vérité-.mp4.payfast290.849-11F-13D
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-27 00:43 - 2019-09-01 23:30 - 000000000 ____D C:\ProgramData\Mozilla
2021-08-27 00:42 - 2019-09-01 23:31 - 000000000 ____D C:\Users\JOE\AppData\LocalLow\Mozilla
2021-08-27 00:41 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-27 00:39 - 2019-09-02 12:21 - 000000000 ____D C:\Users\JOE\AppData\Roaming\IDM
2021-08-27 00:39 - 2019-09-02 00:47 - 000000000 ____D C:\Users\JOE\AppData\Roaming\TeamViewer
2021-08-27 00:38 - 2020-07-29 12:59 - 000000000 ____D C:\Users\JOE\AppData\Local\CrashDumps
2021-08-27 00:37 - 2019-09-08 15:42 - 000000000 ____D C:\Program Files\CCleaner
2021-08-26 23:54 - 2019-09-01 22:52 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-26 23:33 - 2019-11-27 00:15 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2021-08-26 22:42 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-08-26 13:33 - 2019-09-05 20:23 - 000000000 ____D C:\Users\JOE\Desktop\Données FIREFOX
2021-08-26 13:03 - 2021-05-05 22:37 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-08-26 13:03 - 2020-09-07 21:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-26 13:03 - 2020-09-07 20:40 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-26 13:03 - 2019-09-02 00:36 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-26 13:03 - 2019-09-01 23:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-08-26 13:02 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-08-26 13:01 - 2019-09-02 12:21 - 000000000 ____D C:\Users\JOE\AppData\Roaming\DMCache
2021-08-25 23:15 - 2021-03-27 22:15 - 000000000 ____D C:\Program Files\Defraggler
2021-08-25 22:54 - 2019-09-02 12:21 - 000000000 ____D C:\Users\JOE\Downloads\Compressed
2021-08-25 22:19 - 2019-10-04 22:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-08-25 21:33 - 2020-09-07 13:42 - 000000000 ____D C:\Users\JOE
2021-08-25 21:20 - 2020-03-11 01:34 - 000000000 ____D C:\TEMP
2021-08-25 21:19 - 2021-07-10 21:19 - 000000000 ____D C:\Users\JOE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool
2021-08-25 12:54 - 2019-09-01 23:30 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-08-25 11:24 - 2020-09-07 21:10 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-08-25 02:19 - 2019-09-08 01:04 - 000000000 ____D C:\Users\JOE\AppData\Roaming\HpUpdate
2021-08-25 02:09 - 2020-11-01 21:25 - 000000822 _____ C:\DelFix.txt
2021-08-25 02:09 - 2020-11-01 18:12 - 000000000 ____D C:\Users\JOE\AppData\Roaming\ZHP
2021-08-25 01:08 - 2020-11-01 18:03 - 000013030 _____ C:\PDOXUSRS.NET
2021-08-25 00:34 - 2021-05-09 00:30 - 000002190 _____ C:\Users\JOE\Desktop\Combat Reloaded.lnk
2021-08-25 00:34 - 2020-09-02 10:05 - 000000926 _____ C:\Users\JOE\Desktop\M1.lnk
2021-08-25 00:34 - 2020-08-27 10:54 - 000000919 _____ C:\Users\JOE\Desktop\VirtualDJ 2021.lnk
2021-08-25 00:34 - 2020-04-13 01:47 - 000001600 _____ C:\Users\JOE\Desktop\WhatsApp.lnk
2021-08-25 00:34 - 2020-03-09 02:05 - 000001125 _____ C:\Users\JOE\Desktop\MEGAsync.lnk
2021-08-25 00:34 - 2019-09-05 21:10 - 000001373 _____ C:\Users\JOE\Desktop\éteindre.lnk
2021-08-24 23:35 - 2021-07-10 13:16 - 000000000 ____D C:\Users\JOE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sony Mobile
2021-08-24 23:35 - 2021-07-10 13:15 - 000000000 ____D C:\Users\JOE\AppData\Local\Sony Mobile
2021-08-24 23:34 - 2019-09-10 23:06 - 000000000 ____D C:\ProgramData\Package Cache
2021-08-24 23:14 - 2021-07-08 17:02 - 000000000 ____D C:\Users\JOE\Desktop\DOCUMENTS MR BRICOLAGE
2021-08-24 23:14 - 2019-10-18 21:34 - 000000000 ____D C:\Users\JOE\Desktop\CHALLIER
2021-08-24 23:14 - 2019-09-05 21:10 - 000000000 ____D C:\Users\JOE\Desktop\BANQUE
2021-08-24 23:13 - 2020-09-07 07:20 - 000000000 ___HD C:\$WinREAgent
2021-08-24 23:09 - 2020-09-07 20:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-24 23:06 - 2019-09-05 21:13 - 000000000 ____D C:\Console Windows 8.{ED7BA470-8E54-465E-825C-99712043E01C}
2021-08-24 23:05 - 2019-09-01 22:48 - 000000000 ____D C:\Users\JOE\AppData\Local\VirtualStore
2021-08-24 22:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-08-24 14:03 - 2019-09-05 10:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-08-21 18:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-21 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-21 18:03 - 2020-06-17 00:31 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-21 18:03 - 2020-06-17 00:31 - 000002273 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-08-19 21:00 - 2019-10-04 20:20 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-08-16 06:56 - 2020-09-07 21:10 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-16 06:56 - 2020-09-07 21:10 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-14 08:41 - 2019-10-10 21:42 - 000000000 ____D C:\Users\JOE\Downloads\FILMS
2021-08-06 01:14 - 2021-07-26 21:04 - 000066343 _____ C:\Users\JOE\Desktop\Cage Cochons-d'Inde.jpg.payfast290.849-11F-13D
2021-08-05 23:45 - 2021-01-02 13:40 - 000559595 _____ C:\Users\JOE\Desktop\dette daurios.xlsx.payfast290.849-11F-13D
2021-08-04 21:49 - 2020-09-07 21:10 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-04 21:49 - 2020-09-07 21:10 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-30 07:48 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-07-28 16:55 - 2020-09-07 20:40 - 000564992 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-28 16:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-28 00:27 - 2019-09-02 12:21 - 000000000 ____D C:\Users\JOE\Downloads\Video
2021-07-28 00:01 - 2021-05-05 23:01 - 000000000 ____D C:\WINDOWS\Minidump
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par JOE (administrateur) sur JOE-PC (PACKARD BELL BV IMEDIA X9651) (27-08-2021 00:45:14)
Exécuté depuis C:\Users\JOE\Desktop
Profils chargés: JOE
Platform: Windows 10 Pro Version 2004 19041.572 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Wondershare\Wondershare dr.fone\Addins\Transfer\ElevationService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Alcohol Soft -> Alcohol Soft Development Team) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\EBCClient.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Lexmark International, Inc. -> ) C:\Windows\System32\lxeacoms.exe
(Lexmark International, Inc. -> ) C:\Windows\System32\lxeecoms.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2009.23741.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2008.2.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10_64.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe
(StarWind Software) [Fichier non signé] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(wondershare) [Fichier non signé] C:\Program Files (x86)\Wondershare\Wondershare dr.fone\WsidService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [Nero BackItUp] => C:\Program Files (x86)\Nero\Nero 2020\Nero BackItUp\BackItUp.exe [1156376 2019-07-26] (Nero AG -> Nero AG)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (Canon Inc. -> CANON INC.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5468672 2020-11-25] (Tonec Inc.) [Fichier non signé]
HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35144320 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [266336 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\Lexmark Pro700 Series Print Processor: C:\Windows\System32\spool\prtprocs\x64\lxeedrpp.dll [189440 2009-11-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\Lexmark S300-S400 Series Print Processor: C:\Windows\System32\spool\prtprocs\x64\lxeadrpp.dll [189440 2009-11-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\LMUD1O4C: C:\Windows\System32\spool\prtprocs\x64\LMUD1O4C.DLL [283152 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\Windows\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series XPS: C:\Windows\system32\CNMXLMBU.DLL [394240 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2013-01-24] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Nitro PDF Port 13 Monitor: C:\Windows\system32\NxPrinterMonitor13.dll [241416 2019-09-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PCL hpz3lw72: C:\Windows\system32\hpz3lw72.dll [55392 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Pro700 Series Port: C:\Windows\system32\lxeelmpm.DLL [892416 2009-12-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\S300-S400 Series Port: C:\Windows\system32\lxealmpm.DLL [892416 2009-12-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-17] (Google LLC -> Google LLC)
IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll
IFEO\SppExtComObj.Exe: [VerifierDlls] SppExtComObjHook.dll
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2223A2B2-A99F-402E-9DC0-261E08E99747} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [673720 2021-08-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {25076B4A-A33E-46AF-A796-42E69C9C3BA7} - System32\Tasks\VIDAL Menu => C:\Program Files (x86)\Vidal Menu\VIDALMenu.exe [347472 2021-07-08] (VIDAL France -> )
Task: {28D14A0F-CC00-4EAC-B48A-06E852E14B18} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2323928 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {2AC4BDFD-3909-47A9-89AE-525B84772902} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139096 2021-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DBBA333-9CD3-4A56-9860-E4A5779102CF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {418D7DA8-10D9-46CC-A72C-250F626DC0C0} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {44FDEEB0-17C0-49AD-B158-BDE857C3FD42} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4660EBD1-CDF1-40CA-A476-A73E345CC592} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {475BEF93-B814-49E1-83A1-44127017674E} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32704 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {49E0E7B4-F79F-411F-8C4B-05D7B02EEE14} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-01] (Google Inc -> Google LLC)
Task: {7E13D5D6-1EAE-411A-8A1E-6A6064E41EEE} - System32\Tasks\PinnacleStudio22Notifier => C:\Program Files\Pinnacle\Studio 22\programs\PinnacleNotifierWrapper.exe [17504 2019-06-19] (Corel Corporation -> Pinnacle)
Task: {7F1A81BC-6914-49C4-A845-ACBB6C8C3ECC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858696 2021-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {885685B0-CBA1-47D1-911E-EED426963989} - System32\Tasks\CCleanerSkipUAC - JOE => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8CBE49A0-C2BD-45B0-8C76-6787E0D2A02C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053728 2021-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {9360BDF7-1580-416D-9C57-035001EB17F5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {9F9EEF90-8991-4E65-B7E3-ADCD301787A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A775A09B-32C2-449D-A99D-EBA4C75E2542} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053728 2021-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA24975E-6823-4A7E-8CFB-AB7BBD473D24} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {AAFE5770-538D-4287-B0E6-919A2FA0E8BC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-01] (Google Inc -> Google LLC)
Task: {B222EA0E-FA54-45AC-88F5-D46E8F51BEB5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-16] (Piriform Software Ltd -> Piriform)
Task: {B8FB43D5-EA30-4B0B-9CC1-3B813B98B1E3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139096 2021-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE4503AF-E78B-4272-8C66-7ACC832DDB35} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {C13D082F-356F-4736-9D72-8024AF203777} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {C4751BA1-38B0-4366-8ECF-820645B9FCCD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D11E244D-F9BD-4512-8EF5-A2BE964CFBAE} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D593BBEA-5DDF-4920-858F-9B22DD3F379C} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [7071000 2019-08-29] (Nero AG -> Nero AG)
Task: {DBD5223A-8653-47F7-8F20-6F1D9C076EDA} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E258A87D-8313-4DFC-95A4-F4F7C77B8122} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {E313529B-F2DC-468B-B668-BB441EF9720D} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3A9C37F-B62E-478C-8465-945EB92C53C9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858696 2021-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA8D43FE-6A4C-49D4-A572-3F75AF24C972} - System32\Tasks\PinnacleStudioUpdater => C:\Program Files\Pinnacle\Studio 22\programs\PSNotification.exe [635976 2019-02-20] (Corel Corporation -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d5068129-34c6-41fc-93b1-ecef4470239f}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{d5068129-34c6-41fc-93b1-ecef4470239f}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\JOE\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-27]
Edge Extension: (IDM Integration Module) - C:\Users\JOE\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2020-12-06]
Edge Extension: (IDM Integration Module) - C:\Users\JOE\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-11-17]
Edge HKU\S-1-5-21-1771672942-87226366-737989149-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2020-11-25]
Edge HKU\S-1-5-21-1771672942-87226366-737989149-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-11-25]
FireFox:
========
FF DefaultProfile: fb6xwz4l.default
FF ProfilePath: C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\fb6xwz4l.default [2021-08-25]
FF user.js: detected! => C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\fb6xwz4l.default\user.js [2021-07-20]
FF ProfilePath: C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526 [2021-08-27]
FF Homepage: Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526 -> hxxps://ww3.yggtorrent.si/|hxxps://www.zt-za.net/
FF Extension: (Gestionnaire de téléchargements (S3)) - C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526\Extensions\s3download@statusbar.xpi [2021-08-26]
FF Extension: (Screenshot) - C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526\Extensions\{905b5cd2-56e0-4eba-9de7-1ab109a2a705}.xpi [2021-08-26]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\JOE\AppData\Roaming\Mozilla\Firefox\Profiles\jyilmwry.default-release-1630009050526\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-08-26]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2020-11-14]
FF HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\JOE\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\JOE\AppData\Roaming\IDM\idmmzcc5 [2019-12-17] [] [non signé]
FF HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default [2021-08-27]
CHR StartupUrls: Default -> "hxxps://www3.yggtorrent.pe/","hxxps://www.zt-za.net/"
CHR Extension: (Google Traduction) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-25]
CHR Extension: (Slides) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-01]
CHR Extension: (Docs) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-01]
CHR Extension: (Google Drive) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02]
CHR Extension: (YouTube) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-01]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-08-26]
CHR Extension: (Adobe Acrobat) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-07]
CHR Extension: (Screengrab!) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fccdiabakoglkihagkjmaomipdeegbpk [2019-10-20]
CHR Extension: (EditThisCookie) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg [2020-12-07]
CHR Extension: (Google Docs hors connexion) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-29]
CHR Extension: (IDM Integration Module) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2021-03-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-31]
CHR Profile: C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-27]
CHR Extension: (d8yI+Hf7rX) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\Guest Profile\Extensions\cplmhgkoncimmpbbojcciadekaibpjod [2020-10-31]
CHR Profile: C:\Users\JOE\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-27]
CHR Extension: (d8yI+Hf7rX) - C:\Users\JOE\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\cplmhgkoncimmpbbojcciadekaibpjod [2020-10-31]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-11-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-11-25]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
R2 AxVirtualAHCISrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe [105888 2019-06-12] (Alcohol Soft -> Alcohol Soft Development Team)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9165176 2021-08-20] (Microsoft Corporation -> Microsoft Corporation)
R2 DFWSIDService; C:\Program Files (x86)\Wondershare\Wondershare dr.fone\WsidService.exe [1051136 2021-05-27] (wondershare) [Fichier non signé]
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40016 2018-12-17] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
R2 EBC Client; C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\EBCClient.exe [93264 2018-12-17] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R2 ElevationService; C:\Program Files (x86)\Wondershare\Wondershare dr.fone\Addins\Transfer\ElevationService.exe [913408 2021-01-20] () [Fichier non signé]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Fichier non signé]
R2 lxea_device; C:\WINDOWS\system32\lxeacoms.exe [1052328 2010-04-14] (Lexmark International, Inc. -> )
R2 lxee_device; C:\WINDOWS\system32\lxeecoms.exe [1052328 2010-04-14] (Lexmark International, Inc. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7497336 2021-08-26] (Malwarebytes Inc -> Malwarebytes)
S4 NeroBackItUpBackgroundService2021; C:\Program Files (x86)\Nero\Nero 2020\Nero BackItUp\NBService.exe [287000 2019-07-26] (Nero AG -> Nero AG)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 Start10; C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe [220440 2017-04-12] (Stardock Corporation -> Stardock Software, Inc)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13257000 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262880 2021-06-04] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ampa; C:\Windows\system32\ampa.sys [19568 2015-11-10] (ChengDu AoMei Tech Co., Ltd -> ) [Fichier non signé]
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 DCamUSBNovatek; C:\WINDOWS\System32\Drivers\nvtcam.sys [2754432 2011-07-07] (Microsoft Windows Hardware Compatibility Publisher -> NTK)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [161288 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [73448 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [53504 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [22784 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [341760 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [32384 2018-03-14] (Sony Mobile Communications AB -> Sony Mobile Communications)
S3 guillflt; C:\WINDOWS\System32\drivers\guillflt.sys [65024 2009-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Guillemot Corp S.A.)
S3 hxctlflt; C:\WINDOWS\System32\Drivers\hxctlflt.sys [111104 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Guillemot Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-08-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-08-26] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [68528 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-08-26] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [149424 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 RTL8023x64; C:\WINDOWS\System32\drivers\Rtnic64.sys [51712 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [207344 2021-05-21] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [168968 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [213216 2018-11-08] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [223000 2018-11-08] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-07] (Microsoft Windows -> Microsoft Corporation)
R3 WUDFWpdComp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [315392 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-27 00:45 - 2021-08-27 00:49 - 000033644 _____ C:\Users\JOE\Desktop\FRST.txt
2021-08-27 00:41 - 2021-08-27 00:41 - 000391400 _____ C:\Users\JOE\Documents\cc_20210827_004126.reg
2021-08-26 22:50 - 2021-08-27 00:46 - 000000000 ____D C:\Users\JOE\Desktop\Premier SCAN FRST
2021-08-26 22:46 - 2021-08-26 22:46 - 000077793 _____ C:\Users\JOE\Downloads\screengrab-0.96.3-fx.xpi
2021-08-26 22:45 - 2021-08-26 22:45 - 000000000 ____D C:\Users\JOE\AppData\Local\mbam
2021-08-26 22:44 - 2021-08-26 22:44 - 000068528 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000149424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-08-26 22:43 - 2021-08-26 22:43 - 000002003 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-08-26 22:43 - 2021-08-26 22:43 - 000001991 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-08-26 22:42 - 2021-08-26 22:42 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-08-26 22:42 - 2021-08-26 22:42 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-08-26 22:42 - 2021-08-26 22:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-08-26 22:36 - 2021-08-26 22:36 - 000000000 ____D C:\Program Files\Malwarebytes
2021-08-26 22:33 - 2021-08-26 22:33 - 002120496 _____ (Malwarebytes) C:\Users\JOE\Downloads\MBSetup-119967.119967-consumer.exe
2021-08-26 22:17 - 2021-08-26 22:17 - 000000000 ____D C:\Users\JOE\Desktop\Anciennes données de Firefox
2021-08-26 22:16 - 2021-08-26 22:17 - 000000095 _____ C:\Users\JOE\Desktop\Nouveau document texte.txt
2021-08-26 00:56 - 2021-08-27 00:48 - 000000000 ____D C:\FRST
2021-08-26 00:55 - 2021-08-26 00:56 - 002300928 _____ (Farbar) C:\Users\JOE\Desktop\FRST64.exe
2021-08-25 22:45 - 2021-08-25 22:45 - 000002532 _____ C:\RakhniDecryptor.1.27.0.0_25.08.2021_22.45.21_log.txt
2021-08-25 22:45 - 2021-08-25 22:45 - 000002058 _____ C:\RakhniDecryptor.1.27.0.0_25.08.2021_22.45.11_log.txt
2021-08-25 19:59 - 2021-08-25 19:59 - 000000000 ____D C:\ProgramData\EaseUS
2021-08-25 19:58 - 2021-08-25 19:58 - 000000000 ____D C:\ProgramData\SystemAcCrux
2021-08-25 19:58 - 2018-10-08 17:17 - 000341760 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EuFdDisk.sys
2021-08-25 19:58 - 2018-10-08 17:17 - 000073448 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\eubakup.sys
2021-08-25 19:58 - 2018-10-08 17:17 - 000053504 _____ C:\WINDOWS\system32\Drivers\EUBKMON.sys
2021-08-25 19:58 - 2018-10-08 17:17 - 000022784 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\eudskacs.sys
2021-08-25 19:57 - 2021-08-25 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup 12.0
2021-08-25 19:52 - 2021-08-25 19:52 - 000000000 ____D C:\Program Files (x86)\EaseUS
2021-08-25 19:52 - 2018-12-17 03:14 - 000026192 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\fbnative.exe
2021-08-25 12:55 - 2021-08-25 12:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-08-25 12:29 - 2021-08-25 12:35 - 000003130 _____ C:\RakhniDecryptor.1.27.0.0_25.08.2021_12.29.35_log.txt
2021-08-25 12:05 - 2021-08-25 12:05 - 000000000 ____D C:\Users\JOE\AppData\Local\RCS_LT
2021-08-25 11:57 - 2021-08-25 11:58 - 000002660 _____ C:\RakhniDecryptor.1.27.0.0_25.08.2021_11.57.50_log.txt
2021-08-25 11:46 - 2021-08-26 13:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-08-25 11:24 - 2021-08-25 11:24 - 000002878 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - JOE
2021-08-25 01:05 - 1999-11-12 05:11 - 000183808 _____ C:\WINDOWS\SysWOW64\BDEADMIN.CPL
2021-08-25 01:05 - 1999-01-20 05:01 - 000210032 _____ C:\WINDOWS\SysWOW64\DBCLIENT.DLL
2021-08-24 22:49 - 2021-08-24 22:49 - 000916735 _____ (SQLite Development Team) C:\Users\JOE\AppData\LocalLow\sqlite3.dll
2021-08-24 22:34 - 2021-08-26 13:08 - 000000000 ____D C:\Users\JOE\.Vidal
2021-08-24 22:34 - 2021-08-24 22:34 - 000003840 _____ C:\WINDOWS\system32\Tasks\VIDAL Menu
2021-08-24 22:34 - 2021-08-24 22:34 - 000002029 _____ C:\Users\Public\Desktop\VIDAL Expert.lnk
2021-08-24 22:34 - 2021-08-24 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIDAL Menu
2021-08-24 22:34 - 2021-08-24 22:34 - 000000000 ____D C:\Program Files (x86)\Vidal Menu
2021-08-24 22:33 - 2021-08-24 22:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIDAL Expert
2021-08-24 22:33 - 2021-07-08 12:42 - 000073728 _____ C:\WINDOWS\SysWOW64\vidalhelper.dll
2021-08-24 22:31 - 2021-08-24 22:43 - 000000000 ____D C:\Program Files (x86)\Vidal Expert
2021-08-20 15:02 - 2021-08-20 15:02 - 000062935 _____ C:\Users\JOE\Desktop\Formulaire_Reclamation_Bancaire.pdf.payfast290.849-11F-13D
2021-07-30 13:16 - 2021-07-30 13:17 - 000468738 _____ C:\Users\JOE\Documents\IMG_20210730_0001.pdf
2021-07-28 16:50 - 2021-07-28 16:51 - 000001831 _____ C:\Users\JOE\Desktop\Nouveau document texte.txt.payfast290.849-11F-13D
2021-07-28 16:44 - 2021-07-28 16:44 - 000000000 ____D C:\Users\JOE\AppData\Roaming\com.tomtom.hc.controller.main.H2CApplication
2021-07-28 15:17 - 2021-07-28 15:17 - 000000000 ____D C:\ProgramData\TomTom
2021-07-28 15:16 - 2021-08-24 23:32 - 000000000 ____D C:\Users\JOE\AppData\Local\TomTomUpgrade
2021-07-28 15:16 - 2021-07-28 15:16 - 000000000 ____D C:\Users\JOE\TomTomUpgrade
2021-07-28 15:16 - 2021-07-28 15:16 - 000000000 ____D C:\Users\JOE\Documents\TomTomUpgrade
2021-07-28 15:16 - 2021-07-28 15:16 - 000000000 ____D C:\Users\JOE\AppData\Roaming\TomTomUpgrade
2021-07-28 15:15 - 2021-07-28 15:15 - 000000000 ____D C:\Users\JOE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TomTom Intl
2021-07-28 15:13 - 2021-07-28 15:13 - 000000000 ____D C:\Users\JOE\AppData\Roaming\H2CU_VCR
2021-07-28 00:26 - 2021-07-28 00:26 - 071635470 _____ C:\Users\JOE\Desktop\Patrick Jaulent invité de l'émission -Le défi de la vérité-.mp4.payfast290.849-11F-13D
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-27 00:43 - 2019-09-01 23:30 - 000000000 ____D C:\ProgramData\Mozilla
2021-08-27 00:42 - 2019-09-01 23:31 - 000000000 ____D C:\Users\JOE\AppData\LocalLow\Mozilla
2021-08-27 00:41 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-27 00:39 - 2019-09-02 12:21 - 000000000 ____D C:\Users\JOE\AppData\Roaming\IDM
2021-08-27 00:39 - 2019-09-02 00:47 - 000000000 ____D C:\Users\JOE\AppData\Roaming\TeamViewer
2021-08-27 00:38 - 2020-07-29 12:59 - 000000000 ____D C:\Users\JOE\AppData\Local\CrashDumps
2021-08-27 00:37 - 2019-09-08 15:42 - 000000000 ____D C:\Program Files\CCleaner
2021-08-26 23:54 - 2019-09-01 22:52 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-26 23:33 - 2019-11-27 00:15 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2021-08-26 22:42 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-08-26 13:33 - 2019-09-05 20:23 - 000000000 ____D C:\Users\JOE\Desktop\Données FIREFOX
2021-08-26 13:03 - 2021-05-05 22:37 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-08-26 13:03 - 2020-09-07 21:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-26 13:03 - 2020-09-07 20:40 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-26 13:03 - 2019-09-02 00:36 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-26 13:03 - 2019-09-01 23:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-08-26 13:02 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-08-26 13:01 - 2019-09-02 12:21 - 000000000 ____D C:\Users\JOE\AppData\Roaming\DMCache
2021-08-25 23:15 - 2021-03-27 22:15 - 000000000 ____D C:\Program Files\Defraggler
2021-08-25 22:54 - 2019-09-02 12:21 - 000000000 ____D C:\Users\JOE\Downloads\Compressed
2021-08-25 22:19 - 2019-10-04 22:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-08-25 21:33 - 2020-09-07 13:42 - 000000000 ____D C:\Users\JOE
2021-08-25 21:20 - 2020-03-11 01:34 - 000000000 ____D C:\TEMP
2021-08-25 21:19 - 2021-07-10 21:19 - 000000000 ____D C:\Users\JOE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool
2021-08-25 12:54 - 2019-09-01 23:30 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-08-25 11:24 - 2020-09-07 21:10 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-08-25 02:19 - 2019-09-08 01:04 - 000000000 ____D C:\Users\JOE\AppData\Roaming\HpUpdate
2021-08-25 02:09 - 2020-11-01 21:25 - 000000822 _____ C:\DelFix.txt
2021-08-25 02:09 - 2020-11-01 18:12 - 000000000 ____D C:\Users\JOE\AppData\Roaming\ZHP
2021-08-25 01:08 - 2020-11-01 18:03 - 000013030 _____ C:\PDOXUSRS.NET
2021-08-25 00:34 - 2021-05-09 00:30 - 000002190 _____ C:\Users\JOE\Desktop\Combat Reloaded.lnk
2021-08-25 00:34 - 2020-09-02 10:05 - 000000926 _____ C:\Users\JOE\Desktop\M1.lnk
2021-08-25 00:34 - 2020-08-27 10:54 - 000000919 _____ C:\Users\JOE\Desktop\VirtualDJ 2021.lnk
2021-08-25 00:34 - 2020-04-13 01:47 - 000001600 _____ C:\Users\JOE\Desktop\WhatsApp.lnk
2021-08-25 00:34 - 2020-03-09 02:05 - 000001125 _____ C:\Users\JOE\Desktop\MEGAsync.lnk
2021-08-25 00:34 - 2019-09-05 21:10 - 000001373 _____ C:\Users\JOE\Desktop\éteindre.lnk
2021-08-24 23:35 - 2021-07-10 13:16 - 000000000 ____D C:\Users\JOE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sony Mobile
2021-08-24 23:35 - 2021-07-10 13:15 - 000000000 ____D C:\Users\JOE\AppData\Local\Sony Mobile
2021-08-24 23:34 - 2019-09-10 23:06 - 000000000 ____D C:\ProgramData\Package Cache
2021-08-24 23:14 - 2021-07-08 17:02 - 000000000 ____D C:\Users\JOE\Desktop\DOCUMENTS MR BRICOLAGE
2021-08-24 23:14 - 2019-10-18 21:34 - 000000000 ____D C:\Users\JOE\Desktop\CHALLIER
2021-08-24 23:14 - 2019-09-05 21:10 - 000000000 ____D C:\Users\JOE\Desktop\BANQUE
2021-08-24 23:13 - 2020-09-07 07:20 - 000000000 ___HD C:\$WinREAgent
2021-08-24 23:09 - 2020-09-07 20:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-24 23:06 - 2019-09-05 21:13 - 000000000 ____D C:\Console Windows 8.{ED7BA470-8E54-465E-825C-99712043E01C}
2021-08-24 23:05 - 2019-09-01 22:48 - 000000000 ____D C:\Users\JOE\AppData\Local\VirtualStore
2021-08-24 22:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-08-24 14:03 - 2019-09-05 10:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-08-21 18:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-21 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-21 18:03 - 2020-06-17 00:31 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-21 18:03 - 2020-06-17 00:31 - 000002273 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-08-19 21:00 - 2019-10-04 20:20 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-08-16 06:56 - 2020-09-07 21:10 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-16 06:56 - 2020-09-07 21:10 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-14 08:41 - 2019-10-10 21:42 - 000000000 ____D C:\Users\JOE\Downloads\FILMS
2021-08-06 01:14 - 2021-07-26 21:04 - 000066343 _____ C:\Users\JOE\Desktop\Cage Cochons-d'Inde.jpg.payfast290.849-11F-13D
2021-08-05 23:45 - 2021-01-02 13:40 - 000559595 _____ C:\Users\JOE\Desktop\dette daurios.xlsx.payfast290.849-11F-13D
2021-08-04 21:49 - 2020-09-07 21:10 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-04 21:49 - 2020-09-07 21:10 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-30 07:48 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-07-28 16:55 - 2020-09-07 20:40 - 000564992 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-28 16:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-28 00:27 - 2019-09-02 12:21 - 000000000 ____D C:\Users\JOE\Downloads\Video
2021-07-28 00:01 - 2021-05-05 23:01 - 000000000 ____D C:\WINDOWS\Minidump
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================