Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-01-2022
Exécuté par Alex (administrateur) sur SQUIRREL (Acer Aspire ES1-731) (04-02-2022 21:32:53)
Exécuté depuis E:\
Profils chargés: Alex
Plate-forme: Windows 10 Home Version 20H2 19042.1348 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe <2>
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer Incorporated -> Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Cole Williams Software Limited -> ) C:\Windows\SysWOW64\Codecs\TrayMenu.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1371_none_7e1bd7147c8285b0\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572536 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [91488 2017-09-28] (Acer Incorporated -> )
HKLM-x32\...\Run: [isa] => C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240 2015-02-26] () [Fichier non signé]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365160 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [gtarcade] => C:\Users\aaren\AppData\Local\Gtarcade\app\gtarcade.exe [5519464 2021-11-01] (YOUZU (SINGAPORE) PTE. LTD. -> )
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3424032 2020-10-29] (Valve -> Valve Corporation)
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [Discord] => C:\Users\aaren\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKLM\...\Windows x64\Print Processors\Canon TS3100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDR.DLL [482816 2017-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3100 series: C:\WINDOWS\system32\CNMLMDR.DLL [1302016 2017-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-25] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-11-16]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine\Vpn.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk [2020-02-20]
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\Codecs\TrayMenu.exe (Cole Williams Software Limited -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C12E5C4-8FE8-4A4A-BA82-D17D978A3B8A} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65824 2017-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {0E6A7F76-674E-4067-9A96-2D975AF76E6C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-07] (Google Inc -> Google Inc.)
Task: {18EC40DA-B7AB-48BE-837B-2E4C21F8EBF6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-07] (Google Inc -> Google Inc.)
Task: {2B4DAA92-5479-419D-83AC-698BF07A67DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {30CA5E3A-A5C7-4A41-AB41-C7ADBC845B4B} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {320104F5-82DF-48CC-B834-666E8F88AB35} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe /from_scheduler:1 (Pas de fichier)
Task: {3EC06744-A091-4FE0-A7B3-51520C81759D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42F431AF-5058-4001-998B-0C6CCE215648} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {43318335-4096-43B7-AFDD-A282589E0AF7} - System32\Tasks\CCleanerSkipUAC - Alex => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4E53AF93-0F08-4BCE-A1E8-A9808C389146} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2574080 2015-05-07] (Acer Incorporated -> Acer)
Task: {52D4E9DE-6F30-4A8C-9566-E4383359A396} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-09] (Adobe Inc. -> Adobe)
Task: {57712F72-6AC0-4776-A2AD-8F9A2E55F786} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {58FAD178-B627-4D43-8380-0D02C36B8BA4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-08-01] (Adobe Inc. -> Adobe)
Task: {6556C400-EFAF-43F6-B84F-7965EA93D34A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {6EA11548-20FF-4DF8-85EC-66D131941DEA} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [384256 2015-05-14] (Acer Incorporated -> Acer Incorporated)
Task: {748C56D9-D949-423A-BAD8-FA08023868C5} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472928 2015-07-09] (Acer Incorporated -> Acer Incorporated)
Task: {91F9D2B6-9405-4B55-8297-BF24C7AD5C78} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [40288 2015-07-10] (Acer Incorporated -> )
Task: {963D0548-1350-439C-91DB-3B3E394E6CEE} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2858336 2015-07-10] (Acer Incorporated -> )
Task: {A894052C-387B-440D-BE30-30F3FFA49ADC} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe (Pas de fichier)
Task: {ACC5D73D-8FEA-4BC5-A605-BD744F912230} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B304A86B-C862-4788-B077-FBBC0FF809F7} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [379232 2015-07-09] (Acer Incorporated -> Acer Incorporated)
Task: {BB516457-5BE9-47D9-85CC-B58AF39314FC} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2017-09-28] (Acer Incorporated -> )
Task: {C3640946-FADB-44EA-A021-44F4DFA1B392} - System32\Tasks\Opera scheduled Autoupdate 1562614795 => C:\Users\aaren\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-01-26] (Opera Software AS -> Opera Software)
Task: {C3936C84-550D-49D0-AD95-40D0E8AB0FEC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (Pas de fichier)
Task: {C3A2F19F-1972-49ED-B7F7-4A3BCF7CB3FA} - System32\Tasks\App Explorer => C:\Users\aaren\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7417512 2019-08-27] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {CD6F702C-470B-4241-8589-E1071B89BA8F} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4580704 2015-07-10] (Acer Incorporated -> )
Task: {FDE8572A-4179-4336-9E85-71544169C8B4} - System32\Tasks\Avast SecureLine VPN Update => c:\program files\avast software\secureline\vpnupdate.exe (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2ccb9a30-785c-4db9-917b-fec0579eed60}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a6b783dd-64c5-4379-8d56-9d8fd0bf051e}: [NameServer] 208.67.222.222,1.1.1.1
Tcpip\..\Interfaces\{a6b783dd-64c5-4379-8d56-9d8fd0bf051e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\aaren\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-03]
FireFox:
========
FF DefaultProfile: sj159wq8.default
FF ProfilePath: C:\Users\aaren\AppData\Roaming\Mozilla\Firefox\Profiles\sj159wq8.default [2022-02-04]
FF Homepage: Mozilla\Firefox\Profiles\sj159wq8.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT171003&iDate=2020-02-12 08:45:24&bName=&bitmask=0600
FF Extension: (Français Language Pack) - C:\Users\aaren\AppData\Roaming\Mozilla\Firefox\Profiles\sj159wq8.default\Extensions\langpack-fr@firefox.mozilla.org [2018-07-06] []
FF Extension: (Mozilla Partner Defaults) - C:\Users\aaren\AppData\Roaming\Mozilla\Firefox\Profiles\sj159wq8.default\Extensions\partnerdefaults@mozilla.com [2018-07-06] []
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2018-07-07] []
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2018-07-07] []
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-09-26]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-08-01] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-08-01] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-01] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-01] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] (WildTangent Inc -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\yoc1okjabfr.js [2020-02-12] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\yoc1okjabfr.cfg [2020-02-12] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-05]
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-02-04]
CHR Notifications: Profile 1 -> hxxps://africam.pushengage.com; hxxps://captcharesolving-universe.com; hxxps://www.habbocity.me; hxxps://www.pinterest.fr
CHR HomePage: Profile 1 -> hxxp://google.com/
CHR StartupUrls: Profile 1 -> "hxxp://google.fr/"
CHR Extension: (Slides) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-07]
CHR Extension: (Clipboard History Pro: best productivity tool) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajiejmhbejpdgkkigpddefnjmgcbkenk [2022-01-27]
CHR Extension: (Docs) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-07]
CHR Extension: (Google Drive) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-07]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-12]
CHR Extension: (Sheets) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-07]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-01-22]
CHR Extension: (Screen Shader | Smart Screen Tinting) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fmlboobidmkelggdainpknloccojpppi [2021-01-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-19]
CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2022-02-02]
CHR Extension: (WhatFont) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2019-05-27]
CHR Extension: (Battery Info) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jchnojkeefjdioodimacimfiefjdbpag [2019-07-11]
CHR Extension: (Hoxx VPN Proxy) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nbcojefnccbanplpoffopkoepjmhgdgh [2022-01-10]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oofgbpoabipfcfjapgnbbjjaenockbdp [2022-01-14]
CHR Extension: (Gmail) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-09-05]
CHR Extension: (Slides) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-16]
CHR Extension: (Docs) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-16]
CHR Extension: (Google Drive) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-16]
CHR Extension: (YouTube) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-16]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-08-16]
CHR Extension: (Sheets) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-16]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-08-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-16]
CHR Extension: (Avast Online Security) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-08-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-16]
CHR Extension: (Gmail) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-16]
CHR Extension: (Chrome Media Router) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-16]
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4 [2022-02-03]
CHR Extension: (Slides) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-28]
CHR Extension: (Docs) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-28]
CHR Extension: (Google Drive) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-28]
CHR Extension: (YouTube) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-28]
CHR Extension: (Sheets) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-28]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-01-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-28]
CHR Extension: (Gmail) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-28]
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-03]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
Opera:
=======
OPR Profile: C:\Users\aaren\AppData\Roaming\Opera Software\Opera Stable [2022-02-03]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\aaren\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-29]
StartMenuInternet: (HKU\S-1-5-21-2601134039-1748975330-2539622870-1001) OperaStable - "C:\Users\aaren\AppData\Local\Programs\Opera\Launcher.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated -> Acer Incorporated)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated -> Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent Inc -> WildTangent)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240 2015-02-26] () [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-02-26] () [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-19] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905472 2019-09-26] (McAfee, LLC -> McAfee, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2522424 2020-11-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476288 2020-11-02] (Electronic Arts, Inc. -> Electronic Arts)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [398176 2015-07-09] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400 2015-07-09] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (Acer Incorporated -> acer)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [29272 2020-02-12] (LAVASOFT SOFTWARE CANADA INC -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\NisSrv.exe [2909208 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MsMpEng.exe [128376 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-07-24] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-08-12] (Malwarebytes Inc -> Malwarebytes)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2018-12-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [89320 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsld98428e7; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9EC9289A-B807-4464-94DB-F405FC819A36}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-04 21:31 - 2022-02-04 21:36 - 000000000 ____D C:\FRST
2022-02-04 11:10 - 2022-02-04 11:10 - 000000000 ___HD C:\$WinREAgent
2022-01-28 19:51 - 2022-01-28 19:52 - 000183756 _____ C:\Users\aaren\Downloads\Cruella (2021).mp4
2022-01-21 16:51 - 2022-01-21 16:51 - 000572733 _____ C:\Users\aaren\Documents\IMG_20220121_0001.pdf
2022-01-09 12:22 - 2022-01-09 12:22 - 000836827 _____ C:\Users\aaren\Documents\IMG_20220109_0013.pdf
2022-01-09 12:21 - 2022-01-09 12:21 - 000877962 _____ C:\Users\aaren\Documents\IMG_20220109_0012.pdf
2022-01-09 12:20 - 2022-01-09 12:20 - 000983963 _____ C:\Users\aaren\Documents\IMG_20220109_0011.pdf
2022-01-09 12:19 - 2022-01-09 12:19 - 001020599 _____ C:\Users\aaren\Documents\IMG_20220109_0010.pdf
2022-01-09 12:19 - 2022-01-09 12:19 - 000999656 _____ C:\Users\aaren\Documents\IMG_20220109_0009.pdf
2022-01-09 12:18 - 2022-01-09 12:18 - 000918832 _____ C:\Users\aaren\Documents\IMG_20220109_0008.pdf
2022-01-09 12:17 - 2022-01-09 12:17 - 000987668 _____ C:\Users\aaren\Documents\IMG_20220109_0007.pdf
2022-01-09 12:16 - 2022-01-09 12:16 - 000840208 _____ C:\Users\aaren\Documents\IMG_20220109_0006.pdf
2022-01-09 12:15 - 2022-01-09 12:15 - 000899319 _____ C:\Users\aaren\Documents\IMG_20220109_0005.pdf
2022-01-09 12:13 - 2022-01-09 12:13 - 000865546 _____ C:\Users\aaren\Documents\IMG_20220109_0004.pdf
2022-01-09 12:12 - 2022-01-09 12:12 - 000909057 _____ C:\Users\aaren\Documents\IMG_20220109_0003.pdf
2022-01-09 12:11 - 2022-01-09 12:11 - 000870168 _____ C:\Users\aaren\Documents\IMG_20220109_0002.pdf
2022-01-09 12:09 - 2022-01-09 12:09 - 000796454 _____ C:\Users\aaren\Documents\IMG_20220109_0001.pdf
2022-01-06 21:39 - 2022-01-06 21:39 - 001994455 _____ C:\Users\aaren\Downloads\LIVRET-ACTIVITE-PHYSIQUE-SENIOR_WEB (1).pdf
2022-01-06 21:38 - 2022-01-06 21:38 - 001276130 _____ C:\Users\aaren\Downloads\25-Gym-douce-a-la-maison.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-04 21:44 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-04 21:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-04 21:24 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-04 21:22 - 2018-07-06 16:17 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-04 21:15 - 2018-09-02 20:36 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-04 21:04 - 2021-03-28 22:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-04 18:12 - 2018-07-08 12:57 - 000000000 ____D C:\Program Files\CCleaner
2022-02-04 17:57 - 2018-08-08 18:40 - 000000000 ____D C:\Users\aaren\Downloads\Dossiers téléchargement
2022-02-04 12:59 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-04 11:40 - 2021-10-30 17:54 - 000000000 ____D C:\Users\aaren\AppData\LocalLow\IGDump
2022-02-04 11:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-02-04 10:54 - 2018-07-06 15:29 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-02-04 10:53 - 2021-03-29 15:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-04 10:53 - 2021-03-28 22:46 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-03 21:21 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-03 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-02 11:12 - 2021-03-29 15:18 - 000004184 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1562614795
2022-02-02 11:12 - 2019-07-08 20:39 - 000001413 _____ C:\Users\aaren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-01-29 18:08 - 2020-06-20 08:17 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-28 19:52 - 2018-07-27 19:03 - 000000000 ____D C:\Users\aaren\AppData\Roaming\vlc
2022-01-27 10:54 - 2021-12-12 17:56 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2601134039-1748975330-2539622870-1001
2022-01-27 10:54 - 2021-03-29 15:18 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2601134039-1748975330-2539622870-1001
2022-01-27 10:54 - 2021-03-28 22:57 - 000002425 _____ C:\Users\aaren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-26 18:11 - 2021-03-29 15:18 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-01-25 21:30 - 2021-04-13 15:00 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7241f4de128c7
2022-01-25 21:30 - 2021-03-29 15:18 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-23 10:55 - 2018-09-15 20:42 - 000000000 ____D C:\Users\aaren\AppData\Roaming\discord
2022-01-23 10:42 - 2021-07-03 21:14 - 000000000 ____D C:\Users\aaren\AppData\Local\Discord
2022-01-21 17:17 - 2021-03-29 15:18 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 17:17 - 2021-03-29 15:18 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-19 17:22 - 2021-03-28 22:57 - 000000000 ____D C:\Users\aaren
2022-01-13 22:18 - 2021-03-29 15:18 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-01-13 22:16 - 2018-08-21 14:28 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-01-12 18:05 - 2018-07-06 21:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-12 17:41 - 2018-07-06 21:45 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2021-10-30 18:30 - 2021-10-30 09:49 - 000000188 _____ () C:\Users\aaren\AppData\Local\config.ini
2020-01-30 18:05 - 2020-02-28 15:19 - 000003836 _____ () C:\Users\aaren\AppData\Local\PlariumPlay.log
2019-10-17 21:21 - 2019-10-17 21:21 - 000010926 _____ () C:\Users\aaren\AppData\Local\recently-used.xbel
2020-06-02 10:22 - 2020-06-02 10:22 - 000000017 _____ () C:\Users\aaren\AppData\Local\resmon.resmoncfg
2021-10-30 18:30 - 2021-10-30 09:46 - 000000255 _____ () C:\Users\aaren\AppData\Local\ucore.dat
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Alex (administrateur) sur SQUIRREL (Acer Aspire ES1-731) (04-02-2022 21:32:53)
Exécuté depuis E:\
Profils chargés: Alex
Plate-forme: Windows 10 Home Version 20H2 19042.1348 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe <2>
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer Incorporated -> Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Cole Williams Software Limited -> ) C:\Windows\SysWOW64\Codecs\TrayMenu.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1371_none_7e1bd7147c8285b0\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572536 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [91488 2017-09-28] (Acer Incorporated -> )
HKLM-x32\...\Run: [isa] => C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240 2015-02-26] () [Fichier non signé]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365160 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [gtarcade] => C:\Users\aaren\AppData\Local\Gtarcade\app\gtarcade.exe [5519464 2021-11-01] (YOUZU (SINGAPORE) PTE. LTD. -> )
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3424032 2020-10-29] (Valve -> Valve Corporation)
HKU\S-1-5-21-2601134039-1748975330-2539622870-1001\...\Run: [Discord] => C:\Users\aaren\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKLM\...\Windows x64\Print Processors\Canon TS3100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDR.DLL [482816 2017-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3100 series: C:\WINDOWS\system32\CNMLMDR.DLL [1302016 2017-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-25] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-11-16]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine\Vpn.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk [2020-02-20]
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\Codecs\TrayMenu.exe (Cole Williams Software Limited -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C12E5C4-8FE8-4A4A-BA82-D17D978A3B8A} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65824 2017-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {0E6A7F76-674E-4067-9A96-2D975AF76E6C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-07] (Google Inc -> Google Inc.)
Task: {18EC40DA-B7AB-48BE-837B-2E4C21F8EBF6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-07] (Google Inc -> Google Inc.)
Task: {2B4DAA92-5479-419D-83AC-698BF07A67DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {30CA5E3A-A5C7-4A41-AB41-C7ADBC845B4B} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {320104F5-82DF-48CC-B834-666E8F88AB35} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe /from_scheduler:1 (Pas de fichier)
Task: {3EC06744-A091-4FE0-A7B3-51520C81759D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42F431AF-5058-4001-998B-0C6CCE215648} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {43318335-4096-43B7-AFDD-A282589E0AF7} - System32\Tasks\CCleanerSkipUAC - Alex => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4E53AF93-0F08-4BCE-A1E8-A9808C389146} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2574080 2015-05-07] (Acer Incorporated -> Acer)
Task: {52D4E9DE-6F30-4A8C-9566-E4383359A396} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-09] (Adobe Inc. -> Adobe)
Task: {57712F72-6AC0-4776-A2AD-8F9A2E55F786} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {58FAD178-B627-4D43-8380-0D02C36B8BA4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-08-01] (Adobe Inc. -> Adobe)
Task: {6556C400-EFAF-43F6-B84F-7965EA93D34A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {6EA11548-20FF-4DF8-85EC-66D131941DEA} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [384256 2015-05-14] (Acer Incorporated -> Acer Incorporated)
Task: {748C56D9-D949-423A-BAD8-FA08023868C5} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472928 2015-07-09] (Acer Incorporated -> Acer Incorporated)
Task: {91F9D2B6-9405-4B55-8297-BF24C7AD5C78} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [40288 2015-07-10] (Acer Incorporated -> )
Task: {963D0548-1350-439C-91DB-3B3E394E6CEE} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2858336 2015-07-10] (Acer Incorporated -> )
Task: {A894052C-387B-440D-BE30-30F3FFA49ADC} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe (Pas de fichier)
Task: {ACC5D73D-8FEA-4BC5-A605-BD744F912230} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B304A86B-C862-4788-B077-FBBC0FF809F7} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [379232 2015-07-09] (Acer Incorporated -> Acer Incorporated)
Task: {BB516457-5BE9-47D9-85CC-B58AF39314FC} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2017-09-28] (Acer Incorporated -> )
Task: {C3640946-FADB-44EA-A021-44F4DFA1B392} - System32\Tasks\Opera scheduled Autoupdate 1562614795 => C:\Users\aaren\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-01-26] (Opera Software AS -> Opera Software)
Task: {C3936C84-550D-49D0-AD95-40D0E8AB0FEC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (Pas de fichier)
Task: {C3A2F19F-1972-49ED-B7F7-4A3BCF7CB3FA} - System32\Tasks\App Explorer => C:\Users\aaren\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7417512 2019-08-27] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {CD6F702C-470B-4241-8589-E1071B89BA8F} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4580704 2015-07-10] (Acer Incorporated -> )
Task: {FDE8572A-4179-4336-9E85-71544169C8B4} - System32\Tasks\Avast SecureLine VPN Update => c:\program files\avast software\secureline\vpnupdate.exe (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2ccb9a30-785c-4db9-917b-fec0579eed60}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a6b783dd-64c5-4379-8d56-9d8fd0bf051e}: [NameServer] 208.67.222.222,1.1.1.1
Tcpip\..\Interfaces\{a6b783dd-64c5-4379-8d56-9d8fd0bf051e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\aaren\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-03]
FireFox:
========
FF DefaultProfile: sj159wq8.default
FF ProfilePath: C:\Users\aaren\AppData\Roaming\Mozilla\Firefox\Profiles\sj159wq8.default [2022-02-04]
FF Homepage: Mozilla\Firefox\Profiles\sj159wq8.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT171003&iDate=2020-02-12 08:45:24&bName=&bitmask=0600
FF Extension: (Français Language Pack) - C:\Users\aaren\AppData\Roaming\Mozilla\Firefox\Profiles\sj159wq8.default\Extensions\langpack-fr@firefox.mozilla.org [2018-07-06] []
FF Extension: (Mozilla Partner Defaults) - C:\Users\aaren\AppData\Roaming\Mozilla\Firefox\Profiles\sj159wq8.default\Extensions\partnerdefaults@mozilla.com [2018-07-06] []
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2018-07-07] []
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2018-07-07] []
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-09-26]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-08-01] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-08-01] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-01] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-01] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] (WildTangent Inc -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\yoc1okjabfr.js [2020-02-12] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\yoc1okjabfr.cfg [2020-02-12] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-05]
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-02-04]
CHR Notifications: Profile 1 -> hxxps://africam.pushengage.com; hxxps://captcharesolving-universe.com; hxxps://www.habbocity.me; hxxps://www.pinterest.fr
CHR HomePage: Profile 1 -> hxxp://google.com/
CHR StartupUrls: Profile 1 -> "hxxp://google.fr/"
CHR Extension: (Slides) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-07]
CHR Extension: (Clipboard History Pro: best productivity tool) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajiejmhbejpdgkkigpddefnjmgcbkenk [2022-01-27]
CHR Extension: (Docs) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-07]
CHR Extension: (Google Drive) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-07]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-12]
CHR Extension: (Sheets) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-07]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-01-22]
CHR Extension: (Screen Shader | Smart Screen Tinting) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fmlboobidmkelggdainpknloccojpppi [2021-01-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-19]
CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2022-02-02]
CHR Extension: (WhatFont) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2019-05-27]
CHR Extension: (Battery Info) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jchnojkeefjdioodimacimfiefjdbpag [2019-07-11]
CHR Extension: (Hoxx VPN Proxy) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nbcojefnccbanplpoffopkoepjmhgdgh [2022-01-10]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oofgbpoabipfcfjapgnbbjjaenockbdp [2022-01-14]
CHR Extension: (Gmail) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-09-05]
CHR Extension: (Slides) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-16]
CHR Extension: (Docs) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-16]
CHR Extension: (Google Drive) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-16]
CHR Extension: (YouTube) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-16]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-08-16]
CHR Extension: (Sheets) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-16]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-08-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-16]
CHR Extension: (Avast Online Security) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-08-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-16]
CHR Extension: (Gmail) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-16]
CHR Extension: (Chrome Media Router) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-16]
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4 [2022-02-03]
CHR Extension: (Slides) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-28]
CHR Extension: (Docs) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-28]
CHR Extension: (Google Drive) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-28]
CHR Extension: (YouTube) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-28]
CHR Extension: (Sheets) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-28]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-01-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-28]
CHR Extension: (Gmail) - C:\Users\aaren\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-28]
CHR Profile: C:\Users\aaren\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-03]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
Opera:
=======
OPR Profile: C:\Users\aaren\AppData\Roaming\Opera Software\Opera Stable [2022-02-03]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\aaren\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-29]
StartMenuInternet: (HKU\S-1-5-21-2601134039-1748975330-2539622870-1001) OperaStable - "C:\Users\aaren\AppData\Local\Programs\Opera\Launcher.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated -> Acer Incorporated)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated -> Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent Inc -> WildTangent)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240 2015-02-26] () [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-02-26] () [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-19] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905472 2019-09-26] (McAfee, LLC -> McAfee, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2522424 2020-11-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476288 2020-11-02] (Electronic Arts, Inc. -> Electronic Arts)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [398176 2015-07-09] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400 2015-07-09] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (Acer Incorporated -> acer)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [29272 2020-02-12] (LAVASOFT SOFTWARE CANADA INC -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\NisSrv.exe [2909208 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MsMpEng.exe [128376 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-07-24] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-08-12] (Malwarebytes Inc -> Malwarebytes)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2018-12-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [89320 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsld98428e7; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9EC9289A-B807-4464-94DB-F405FC819A36}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-04 21:31 - 2022-02-04 21:36 - 000000000 ____D C:\FRST
2022-02-04 11:10 - 2022-02-04 11:10 - 000000000 ___HD C:\$WinREAgent
2022-01-28 19:51 - 2022-01-28 19:52 - 000183756 _____ C:\Users\aaren\Downloads\Cruella (2021).mp4
2022-01-21 16:51 - 2022-01-21 16:51 - 000572733 _____ C:\Users\aaren\Documents\IMG_20220121_0001.pdf
2022-01-09 12:22 - 2022-01-09 12:22 - 000836827 _____ C:\Users\aaren\Documents\IMG_20220109_0013.pdf
2022-01-09 12:21 - 2022-01-09 12:21 - 000877962 _____ C:\Users\aaren\Documents\IMG_20220109_0012.pdf
2022-01-09 12:20 - 2022-01-09 12:20 - 000983963 _____ C:\Users\aaren\Documents\IMG_20220109_0011.pdf
2022-01-09 12:19 - 2022-01-09 12:19 - 001020599 _____ C:\Users\aaren\Documents\IMG_20220109_0010.pdf
2022-01-09 12:19 - 2022-01-09 12:19 - 000999656 _____ C:\Users\aaren\Documents\IMG_20220109_0009.pdf
2022-01-09 12:18 - 2022-01-09 12:18 - 000918832 _____ C:\Users\aaren\Documents\IMG_20220109_0008.pdf
2022-01-09 12:17 - 2022-01-09 12:17 - 000987668 _____ C:\Users\aaren\Documents\IMG_20220109_0007.pdf
2022-01-09 12:16 - 2022-01-09 12:16 - 000840208 _____ C:\Users\aaren\Documents\IMG_20220109_0006.pdf
2022-01-09 12:15 - 2022-01-09 12:15 - 000899319 _____ C:\Users\aaren\Documents\IMG_20220109_0005.pdf
2022-01-09 12:13 - 2022-01-09 12:13 - 000865546 _____ C:\Users\aaren\Documents\IMG_20220109_0004.pdf
2022-01-09 12:12 - 2022-01-09 12:12 - 000909057 _____ C:\Users\aaren\Documents\IMG_20220109_0003.pdf
2022-01-09 12:11 - 2022-01-09 12:11 - 000870168 _____ C:\Users\aaren\Documents\IMG_20220109_0002.pdf
2022-01-09 12:09 - 2022-01-09 12:09 - 000796454 _____ C:\Users\aaren\Documents\IMG_20220109_0001.pdf
2022-01-06 21:39 - 2022-01-06 21:39 - 001994455 _____ C:\Users\aaren\Downloads\LIVRET-ACTIVITE-PHYSIQUE-SENIOR_WEB (1).pdf
2022-01-06 21:38 - 2022-01-06 21:38 - 001276130 _____ C:\Users\aaren\Downloads\25-Gym-douce-a-la-maison.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-04 21:44 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-04 21:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-04 21:24 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-04 21:22 - 2018-07-06 16:17 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-04 21:15 - 2018-09-02 20:36 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-04 21:04 - 2021-03-28 22:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-04 18:12 - 2018-07-08 12:57 - 000000000 ____D C:\Program Files\CCleaner
2022-02-04 17:57 - 2018-08-08 18:40 - 000000000 ____D C:\Users\aaren\Downloads\Dossiers téléchargement
2022-02-04 12:59 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-04 11:40 - 2021-10-30 17:54 - 000000000 ____D C:\Users\aaren\AppData\LocalLow\IGDump
2022-02-04 11:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-02-04 10:54 - 2018-07-06 15:29 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-02-04 10:53 - 2021-03-29 15:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-04 10:53 - 2021-03-28 22:46 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-03 21:21 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-03 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-02 11:12 - 2021-03-29 15:18 - 000004184 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1562614795
2022-02-02 11:12 - 2019-07-08 20:39 - 000001413 _____ C:\Users\aaren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-01-29 18:08 - 2020-06-20 08:17 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-28 19:52 - 2018-07-27 19:03 - 000000000 ____D C:\Users\aaren\AppData\Roaming\vlc
2022-01-27 10:54 - 2021-12-12 17:56 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2601134039-1748975330-2539622870-1001
2022-01-27 10:54 - 2021-03-29 15:18 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2601134039-1748975330-2539622870-1001
2022-01-27 10:54 - 2021-03-28 22:57 - 000002425 _____ C:\Users\aaren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-26 18:11 - 2021-03-29 15:18 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-01-25 21:30 - 2021-04-13 15:00 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7241f4de128c7
2022-01-25 21:30 - 2021-03-29 15:18 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-23 10:55 - 2018-09-15 20:42 - 000000000 ____D C:\Users\aaren\AppData\Roaming\discord
2022-01-23 10:42 - 2021-07-03 21:14 - 000000000 ____D C:\Users\aaren\AppData\Local\Discord
2022-01-21 17:17 - 2021-03-29 15:18 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 17:17 - 2021-03-29 15:18 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-19 17:22 - 2021-03-28 22:57 - 000000000 ____D C:\Users\aaren
2022-01-13 22:18 - 2021-03-29 15:18 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-01-13 22:16 - 2018-08-21 14:28 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-01-12 18:05 - 2018-07-06 21:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-12 17:41 - 2018-07-06 21:45 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2021-10-30 18:30 - 2021-10-30 09:49 - 000000188 _____ () C:\Users\aaren\AppData\Local\config.ini
2020-01-30 18:05 - 2020-02-28 15:19 - 000003836 _____ () C:\Users\aaren\AppData\Local\PlariumPlay.log
2019-10-17 21:21 - 2019-10-17 21:21 - 000010926 _____ () C:\Users\aaren\AppData\Local\recently-used.xbel
2020-06-02 10:22 - 2020-06-02 10:22 - 000000017 _____ () C:\Users\aaren\AppData\Local\resmon.resmoncfg
2021-10-30 18:30 - 2021-10-30 09:46 - 000000255 _____ () C:\Users\aaren\AppData\Local\ucore.dat
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================