Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-03-2023
Exécuté par ocean (administrateur) sur LAPTOP-G1IEG48T (HUAWEI KPL-W0X) (08-03-2023 18:47:32)
Exécuté depuis C:\Users\ocean\Downloads
Profils chargés: ocean
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2604 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(C:\Program Files\Huawei\PCManager\MateBookService.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe
(C:\Users\ocean\AppData\Roaming\uTorrent Web\utweb.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\ocean\AppData\Roaming\uTorrent Web\helper\helper.exe
(DriverStore\FileRepository\u0335410.inf_amd64_8673f154b4eb3d39\B335408\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0335410.inf_amd64_8673f154b4eb3d39\B335408\atieclxx.exe
(explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\ocean\AppData\Roaming\uTorrent Web\utweb.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <45>
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0335410.inf_amd64_8673f154b4eb3d39\B335408\atiesrxx.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files\Huawei\PCManager\MateBookService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) C:\Windows\System32\RPC\OSD\osdservice.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> Microsoft) C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe <2>
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe [1203952 2020-11-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PenTablet] => C:\Program Files\Pentablet\PenTablet.exe [1103480 2022-09-26] (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5204968 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [Discord] => C:\Users\ocean\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [Freedom] => C:\Program Files (x86)\Freedom\FreedomBlocker.exe [2107384 2022-11-08] (Eighty Percent Solutions Corporation -> Freedom.to)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [MicrosoftEdgeAutoLaunch_F2D1DCF0BEE8FE97991AE4FC5C4C92D8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-03-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [utweb] => C:\Users\ocean\AppData\Roaming\uTorrent Web\utweb.exe [6415008 2022-11-16] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-02-28] (Google LLC -> Google LLC)
Startup: C:\Users\ocean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2022-09-13]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05D256D8-83D5-48E2-AD3E-E3EBF3B30DEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-05] (Google LLC -> Google LLC)
Task: {1F5771FC-E525-4C88-8183-A16B5FC572F4} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168840 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {20F7B730-1594-4F8F-9F5C-324D1558D57D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {2C1D9D5B-E3D4-465D-AFE9-6B9E6F9C261F} - System32\Tasks\Bemehohun\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\TERUSO~1\BEMEHO~1.EXE /Ruhates (Pas de fichier) <==== ATTENTION
Task: {30CCD86A-3D2B-4718-AC91-AD343CBF0E3F} - System32\Tasks\Sogugociko\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\FUGOFA~1\SOGUGO~1.EXE /Kolosute (Pas de fichier) <==== ATTENTION
Task: {36E4E472-DD70-45E5-945C-9B9D882F1CA5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {3ADE5F70-DB51-4521-89C6-4BD30DB599BD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A73D659-8A8B-4AB8-8D6B-6E272D248827} - System32\Tasks\Seroponupo\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\LIFOLE~1\SEROPO~1.EXE /Dogohat (Pas de fichier) <==== ATTENTION
Task: {5DE66D4C-8799-478D-8BAB-A397799D3569} - System32\Tasks\Gobipahig\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\REREKE~1\GOBIPA~1.EXE /Luden (Pas de fichier) <==== ATTENTION
Task: {77818905-E697-4C95-BE90-FBBE0596B4D5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7FCFA3B0-B832-4FCB-898C-AEFB1319FF79} - System32\Tasks\Gosamoteda\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\Megapefo\GOSAMO~1.EXE /Donem (Pas de fichier)
Task: {83BF83C3-BD0C-4552-A050-A7BF447F6A26} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5629064 2021-11-23] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {8CD8EDE5-19A8-44AF-B43D-0A864D055449} - System32\Tasks\Foradanek\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\DAGUHA~1\FORADA~1.EXE /Lefep (Pas de fichier) <==== ATTENTION
Task: {8DDDB241-EE73-4862-8FA0-2EAD1597E5DF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {93BDAC91-4E9B-4699-AD4F-5DC701476358} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [716704 2023-03-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {98FB4FF1-42FA-43EA-B49F-A83893162766} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [5363552 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {9C47BBD6-2A82-40E1-8A93-F75EDAAE3B78} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-1805141066-1808928112-2897253760-1001 => MessengerHelper.exe --lassie (Pas de fichier)
Task: {A85A049D-C754-4224-9F7D-D9C896F8C48E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-11-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {AFB2C3E6-1426-4D10-BFA7-C95B4C178F71} - System32\Tasks\Balenafek\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\Nelofo\BALENA~1.EXE /Madalabar (Pas de fichier)
Task: {B7A6D397-D6C9-4910-BCBA-B3A5CAC78A0A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CDAAF05D-AA68-4D21-8837-B5EFF1663E86} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2023-03-01] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {D23B4571-5233-41E4-9895-F4B2EAD1A01A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-05] (Google LLC -> Google LLC)
Task: {D5683767-C412-4264-B069-9090D032A661} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [995768 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {DAAE5A44-BF11-4C2A-B392-5E7285EC93E2} - System32\Tasks\{0B2C26A9-FA2F-407B-8828-51CBC81ED24D} => C:\Users\ocean\AppData\Local\DUHAGO~1\POSOHU~1.EXE /Pare (Pas de fichier) <==== ATTENTION
Task: {DC583845-6F54-427A-91F9-81C37CE3D255} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1A11CF8-1FBA-48C0-BA77-88675DE43864} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-11-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {ECE73020-14E6-4204-A5F5-D8EDDF520EE8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F226722E-3B24-4E83-9223-0D6A1FFE601A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6093928 2021-12-20] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {FEFBED3B-8978-4054-839F-1D79A89D780D} - System32\Tasks\Freedom => C:\Program Files (x86)\Freedom\FreedomBlocker.exe [2107384 2022-11-08] (Eighty Percent Solutions Corporation -> Freedom.to)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\{0B2C26A9-FA2F-407B-8828-51CBC81ED24D}.job => C:\Users\ocean\AppData\Local\DUHAGO~1\POSOHU~1.EXE <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{694c3268-977e-4558-ad48-b8e0c13eda10}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{af3c5510-fbc4-40a1-8003-cf9f60122d57}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c325f14b-61c0-4d90-be4b-300738af5c51}: [DhcpNameServer] 40.40.1.12
Tcpip\..\Interfaces\{fdb6b0cb-f588-4f38-93d6-e42bac2aa030}: [DhcpNameServer] 192.168.43.1
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-1805141066-1808928112-2897253760-1001 -> hxxp://www.recherche-fr.com/
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\ocean\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-07]
Edge Notifications: Default -> hxxps://www.instagram.com
FireFox:
========
FF DefaultProfile: u8arao9u.default
FF ProfilePath: C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\u8arao9u.default [2020-04-05]
FF Homepage: Mozilla\Firefox\Profiles\u8arao9u.default -> hxxp://www.bing.com/search?FORM=INCOH1&PC=IC04&PTAG=ICO-6ed088ded64f7c60
FF SearchPlugin: C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\u8arao9u.default\searchplugins\cerirame.xml [2020-04-05]
FF ProfilePath: C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136 [2023-03-08]
FF Homepage: Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136 -> hxxps://www.google.com
FF NewTab: Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136 -> hxxp://www.bing.com/?pc=COS2&ptag=D082519-N0600A915F698E57&form=CONMHP&conlogo=CT3335818
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-02-11]
FF SearchPlugin: C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136\searchplugins\cerirame.xml [2020-04-05]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default [2023-03-07]
CHR Notifications: Default -> hxxps://allostreaming.co; hxxps://anglais-pdf.com; hxxps://gw.lightinthebox.com; hxxps://particuliers.engie.fr; hxxps://www.castorama.fr; hxxps://www.cpasmal.net; hxxps://www.facebook.com; hxxps://www.kiabi.com; hxxps://www.laredoute.fr; hxxps://www.netflix.com; hxxps://www.qare.fr; hxxps://www.stream-complet.biz; hxxps://www.youtube.com
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> McAfee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Safe Torrent Scanner) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-08-18]
CHR Extension: (Multi AdBlock) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiofbifbbjhkehhbflmacddfepjbdekh [2021-05-06]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-02-10]
CHR Extension: (News Feed Eradicator) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjcldmjmjhkklehbacihaiopjklihlgg [2022-11-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-30]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-02-10]
CHR Extension: (Coupert - Codes Promo Automatiques & Cashback) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidniedemcgceagapgdekdbmanojomk [2023-02-10]
CHR Extension: (AD&POP Block) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\mknlngfeicgfpljigaaeohppjdiaalid [2021-03-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-17]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8686928 2020-09-13] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12512256 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
S2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [271272 2018-05-16] (Dolby Laboratories, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-09-13] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [288192 2018-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 Huawei_OSDServer; C:\WINDOWS\System32\RPC\OSD\osdservice.exe [624152 2019-01-08] (Huawei Technologies Co., Ltd. -> )
R2 LCD_Service; C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe [24560 2019-01-14] (Huawei Technologies Co., Ltd. -> Microsoft)
R2 MBAMainService; C:\Program Files\Huawei\PCManager\MateBookService.exe [1077576 2019-01-14] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9002208 2023-03-07] (Malwarebytes Inc. -> Malwarebytes)
S2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [856472 2023-03-07] (McAfee, LLC -> McAfee, LLC)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2023-02-07] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2023-02-07] (Electronic Arts, Inc. -> Electronic Arts)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2782080 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4605312 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3092344 2020-09-30] (BattlEye Innovations e.K. -> )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 hanvonugeemfilter; C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys [9728 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Huawei; C:\WINDOWS\System32\drivers\osd_driver.sys [60544 2019-01-08] (Huawei Technologies Co., Ltd. -> )
R3 hwnetstat; C:\Program Files\Huawei\PCManager\WFPDriver.sys [32144 2019-01-14] (Huawei Technologies Co., Ltd. -> )
R2 HwOs2ECx64; C:\Program Files\Huawei\PCManager\HwOs2EC10x64.sys [49656 2019-01-14] (Huawei Technologies Co., Ltd. -> Huawei)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-03-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-01-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-01-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
U0 Spybot3ELAM; C:\WINDOWS\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
R3 WDTDrv; C:\WINDOWS\System32\Drivers\WDTDrv.sys [27048 2018-02-27] (Huawei Technologies Co., Ltd. -> Huawei Device)
R3 XPPenTablet; C:\WINDOWS\System32\drivers\XPPenTablet.sys [10752 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-08 18:46 - 2023-03-08 18:48 - 000026101 _____ C:\Users\ocean\Downloads\FRST.txt
2023-03-08 18:46 - 2023-03-08 18:47 - 000000000 ____D C:\FRST
2023-03-08 18:45 - 2023-03-08 18:45 - 002378752 _____ (Farbar) C:\Users\ocean\Downloads\FRST64.exe
2023-03-07 20:38 - 2023-03-08 15:19 - 000000000 ____D C:\Users\ocean\AppData\Roaming\ZHP
2023-03-07 20:38 - 2023-03-07 20:38 - 000000000 ____D C:\Users\ocean\AppData\Local\ZHP
2023-03-07 20:37 - 2023-03-07 20:37 - 003513544 _____ (Nicolas Coolman) C:\Users\ocean\Downloads\ZHPSuite.exe
2023-03-07 20:34 - 2023-03-07 20:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2023-03-07 19:55 - 2023-03-08 18:45 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2023-03-07 19:55 - 2023-03-07 19:57 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2023-03-07 19:55 - 2023-03-07 19:55 - 000001471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2023-03-07 19:55 - 2023-03-07 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2023-03-07 19:55 - 2018-02-06 18:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2023-03-07 19:54 - 2023-03-07 19:54 - 065427184 _____ (Safer-Networking Ltd. ) C:\Users\ocean\Downloads\spybotsd-2.9.82.0.exe
2023-03-07 19:50 - 2023-03-07 19:50 - 000000000 ____D C:\Users\ocean\AppData\Local\Safer-Networking Ltd
2023-03-07 19:50 - 2023-03-07 19:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot Identity Monitor
2023-03-07 19:50 - 2023-03-07 19:50 - 000000000 ____D C:\Program Files (x86)\Safer-Networking Ltd
2023-03-07 19:48 - 2023-03-07 19:48 - 008584992 _____ (Safer-Networking Ltd. ) C:\Users\ocean\Downloads\spybot-search-and-destroy-3-4-0-0.exe
2023-03-07 13:00 - 2023-03-07 13:00 - 000155851 _____ C:\Users\ocean\Downloads\FicheReflexe_Piratage_Particuliers.pdf
2023-03-01 15:17 - 2023-03-07 12:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-02-27 20:35 - 2023-02-27 20:35 - 000793263 _____ C:\Users\ocean\Downloads\faq_travailleurs_sociaux.pdf
2023-02-26 15:11 - 2023-02-26 15:11 - 000343880 _____ C:\Users\ocean\Downloads\Règlement Court Métrage 2023.pdf
2023-02-26 12:25 - 2023-02-26 12:25 - 000254942 _____ C:\Users\ocean\Downloads\Hitlerautheatre.pdf
2023-02-22 15:59 - 2023-02-22 15:59 - 000641286 _____ C:\Users\ocean\Downloads\RNA-CarteSolidaire-FlyerA5-Charte TER-091122V2.pdf
2023-02-22 11:58 - 2023-02-22 11:58 - 000081182 _____ C:\Users\ocean\Downloads\MCC Licence Cinéma 22.pdf
2023-02-16 01:02 - 2023-02-16 01:02 - 000000000 ___HD C:\$WinREAgent
2023-02-15 20:16 - 2023-02-15 20:16 - 000000000 ____D C:\Users\ocean\Downloads\eMule
2023-02-15 20:16 - 2023-02-15 20:16 - 000000000 ____D C:\ProgramData\eMule
2023-02-15 20:15 - 2023-02-15 20:15 - 000000000 ____D C:\Users\ocean\AppData\Local\eMule
2023-02-15 20:15 - 2023-02-15 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMule
2023-02-15 20:15 - 2023-02-15 20:15 - 000000000 ____D C:\Program Files (x86)\eMule
2023-02-15 20:14 - 2023-02-15 20:14 - 003389035 _____ C:\Users\ocean\Downloads\emule_emule_0.50a_francais_10876.exe
2023-02-15 19:58 - 2023-02-15 19:59 - 000000000 ____D C:\Users\ocean\Downloads\trainspotting_202007
2023-02-15 19:58 - 2023-02-15 19:58 - 000022165 _____ C:\Users\ocean\Downloads\trainspotting_202007_archive.torrent
2023-02-14 11:35 - 2023-02-14 11:35 - 002897108 _____ C:\Users\ocean\Downloads\wetransfer_1-jpg_2023-02-14_1023.zip
2023-02-12 11:21 - 2023-02-12 11:21 - 000128215 _____ C:\Users\ocean\Downloads\RACINE_BRITANNICUS II.pdf
2023-02-12 11:17 - 2023-02-12 11:17 - 000315468 _____ C:\Users\ocean\Downloads\Shakespeare-Richard_III.pdf
2023-02-10 20:16 - 2023-02-10 20:19 - 000000000 ____D C:\Users\ocean\AppData\Local\Avast Software
2023-02-10 19:45 - 2023-02-10 19:52 - 000000000 ____D C:\Users\ocean\Downloads\Flashdance (1983) [1080p] [BluRay] [5.1] [YTS.MX]
2023-02-10 19:44 - 2023-03-08 18:46 - 000000000 ____D C:\Users\ocean\AppData\Roaming\uTorrent Web
2023-02-10 19:44 - 2023-02-10 20:19 - 000000000 ____D C:\ProgramData\Avast Software
2023-02-10 19:44 - 2023-02-10 19:45 - 000000000 ____D C:\Program Files\McAfee
2023-02-10 19:44 - 2023-02-10 19:44 - 000001872 _____ C:\Users\ocean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2023-02-10 19:44 - 2023-02-10 19:44 - 000000000 ____D C:\ProgramData\McAfee
2023-02-10 19:42 - 2023-02-10 19:42 - 001788464 _____ ( ) C:\Users\ocean\Downloads\utweb_installer(1).exe
2023-02-10 19:41 - 2023-02-10 19:41 - 001788464 _____ ( ) C:\Users\ocean\Downloads\utweb_installer.exe
2023-02-10 19:40 - 2023-02-10 19:40 - 000072301 _____ C:\Users\ocean\Downloads\Flashdance (1983) [1080p] [BluRay] [5.1] [YTS.MX].torrent
2023-02-10 19:39 - 2023-02-10 19:39 - 000028851 _____ C:\Users\ocean\Downloads\[ zetorrents.ch ] Flashdance FRENCH DVDRIP x264 1983.torrent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-08 18:46 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-03-08 18:43 - 2021-04-14 23:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-08 18:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-08 18:29 - 2020-09-05 14:15 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-08 16:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-08 16:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-08 16:28 - 2019-08-24 22:54 - 000000000 ____D C:\Users\ocean\AppData\Local\CrashDumps
2023-03-08 16:28 - 2019-05-13 02:19 - 000000000 ____D C:\Users\ocean\AppData\Local\D3DSCache
2023-03-08 16:24 - 2019-05-13 02:23 - 000000000 ____D C:\Users\ocean\AppData\LocalLow\Mozilla
2023-03-08 16:22 - 2019-08-25 16:16 - 000000000 ____D C:\Users\ocean\AppData\Local\BitTorrentHelper
2023-03-08 16:22 - 2019-05-13 01:38 - 000000000 ____D C:\ProgramData\HwSynergy
2023-03-08 15:06 - 2021-06-17 14:31 - 000000000 ____D C:\Program Files\Microsoft Office
2023-03-08 15:05 - 2021-04-14 23:34 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4084E7C5-DE28-489F-AF67-E81D7DF7B03C}
2023-03-08 15:05 - 2021-04-14 23:34 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-03-08 15:05 - 2021-04-14 23:34 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-03-07 20:38 - 2019-08-25 16:16 - 000000000 ____D C:\Users\ocean\AppData\Roaming\HwSynergy
2023-03-07 20:05 - 2020-10-23 23:29 - 000000000 ____D C:\Users\ocean\AppData\Local\ElevatedDiagnostics
2023-03-07 12:31 - 2021-09-12 17:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-03-07 12:31 - 2019-05-13 02:23 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-03-07 12:31 - 2019-05-13 02:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-03-07 12:28 - 2021-01-11 02:25 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-01 15:53 - 2021-04-14 23:27 - 000000000 ____D C:\Users\ocean
2023-03-01 14:52 - 2022-12-08 23:32 - 000000000 ____D C:\Users\ocean\AppData\Local\Freedom.to
2023-02-28 19:28 - 2021-04-14 23:33 - 001801762 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-28 19:28 - 2019-12-07 15:49 - 000809580 _____ C:\WINDOWS\system32\perfh00C.dat
2023-02-28 19:28 - 2019-12-07 15:49 - 000154982 _____ C:\WINDOWS\system32\perfc00C.dat
2023-02-28 19:21 - 2021-06-13 23:08 - 000008192 ___SH C:\DumpStack.log.tmp
2023-02-28 19:21 - 2021-04-14 23:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-28 10:00 - 2020-09-05 14:16 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-02-24 22:05 - 2019-05-13 02:19 - 000000000 ____D C:\Users\ocean\AppData\Local\Packages
2023-02-16 01:39 - 2021-04-14 23:26 - 000440040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-02-16 01:38 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-02-16 01:14 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-16 01:10 - 2021-04-14 23:31 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-02-15 17:39 - 2019-02-15 23:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-02-14 21:00 - 2019-08-25 16:25 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-02-14 21:00 - 2019-08-25 16:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-02-10 20:19 - 2020-04-21 05:05 - 000000310 _____ C:\WINDOWS\Tasks\{0B2C26A9-FA2F-407B-8828-51CBC81ED24D}.job
2023-02-10 20:10 - 2020-09-11 16:45 - 000000000 ____D C:\Users\ocean\AppData\Roaming\vlc
2023-02-10 20:09 - 2022-12-08 23:32 - 000003200 _____ C:\WINDOWS\system32\Tasks\Freedom
2023-02-10 20:09 - 2021-04-14 23:34 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-02-10 20:09 - 2021-04-14 23:34 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-02-10 20:09 - 2021-04-14 23:34 - 000002708 _____ C:\WINDOWS\system32\Tasks\{0B2C26A9-FA2F-407B-8828-51CBC81ED24D}
2023-02-10 20:09 - 2021-04-14 23:34 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2023-02-10 20:09 - 2021-04-14 23:34 - 000002116 _____ C:\WINDOWS\system32\Tasks\StartDVR
2023-02-10 19:45 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-02-09 21:14 - 2019-08-24 23:32 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Fichiers à la racine de certains dossiers ========
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Becakecepu
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Beraneludor
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Cocopatobe
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Cofuca
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Debogopota
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Fakafe
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Fugakelem
2020-04-21 05:02 - 2020-04-21 05:02 - 000282927 _____ () C:\Users\ocean\AppData\Roaming\Gacadirohop
2020-05-01 00:09 - 2020-05-01 00:09 - 000201948 _____ () C:\Users\ocean\AppData\Roaming\Gecakicerub
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Gedim
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Gigemenahur
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Hakorunom
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Kelihera
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Kihonesadar
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Labihorod
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Moralor
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Nopebehoga
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Nopegopa
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Pilelusum
2020-05-09 06:09 - 2020-05-09 06:09 - 000344535 _____ () C:\Users\ocean\AppData\Roaming\Podubudih
2020-06-18 19:57 - 2020-06-18 19:57 - 000275037 _____ () C:\Users\ocean\AppData\Roaming\Recotirihege
2020-05-17 23:24 - 2020-05-17 23:24 - 000179783 _____ () C:\Users\ocean\AppData\Roaming\Rekosoponomi
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Rocanobupoci
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Sabalacupo
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Sakabe
2020-05-27 12:46 - 2020-05-27 12:46 - 000364062 _____ () C:\Users\ocean\AppData\Roaming\Siludeto
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Toperinahem
2020-04-07 23:11 - 2020-06-18 19:57 - 000000384 _____ () C:\Users\ocean\AppData\Roaming\WB.CFG
2023-01-15 18:35 - 2023-01-15 18:35 - 000012412 _____ () C:\Users\ocean\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par ocean (administrateur) sur LAPTOP-G1IEG48T (HUAWEI KPL-W0X) (08-03-2023 18:47:32)
Exécuté depuis C:\Users\ocean\Downloads
Profils chargés: ocean
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2604 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(C:\Program Files\Huawei\PCManager\MateBookService.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe
(C:\Users\ocean\AppData\Roaming\uTorrent Web\utweb.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\ocean\AppData\Roaming\uTorrent Web\helper\helper.exe
(DriverStore\FileRepository\u0335410.inf_amd64_8673f154b4eb3d39\B335408\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0335410.inf_amd64_8673f154b4eb3d39\B335408\atieclxx.exe
(explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\ocean\AppData\Roaming\uTorrent Web\utweb.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <45>
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0335410.inf_amd64_8673f154b4eb3d39\B335408\atiesrxx.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files\Huawei\PCManager\MateBookService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) C:\Windows\System32\RPC\OSD\osdservice.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> Microsoft) C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe <2>
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe [1203952 2020-11-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PenTablet] => C:\Program Files\Pentablet\PenTablet.exe [1103480 2022-09-26] (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5204968 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [Discord] => C:\Users\ocean\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [Freedom] => C:\Program Files (x86)\Freedom\FreedomBlocker.exe [2107384 2022-11-08] (Eighty Percent Solutions Corporation -> Freedom.to)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [MicrosoftEdgeAutoLaunch_F2D1DCF0BEE8FE97991AE4FC5C4C92D8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-03-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1805141066-1808928112-2897253760-1001\...\Run: [utweb] => C:\Users\ocean\AppData\Roaming\uTorrent Web\utweb.exe [6415008 2022-11-16] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-02-28] (Google LLC -> Google LLC)
Startup: C:\Users\ocean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2022-09-13]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05D256D8-83D5-48E2-AD3E-E3EBF3B30DEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-05] (Google LLC -> Google LLC)
Task: {1F5771FC-E525-4C88-8183-A16B5FC572F4} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168840 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {20F7B730-1594-4F8F-9F5C-324D1558D57D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {2C1D9D5B-E3D4-465D-AFE9-6B9E6F9C261F} - System32\Tasks\Bemehohun\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\TERUSO~1\BEMEHO~1.EXE /Ruhates (Pas de fichier) <==== ATTENTION
Task: {30CCD86A-3D2B-4718-AC91-AD343CBF0E3F} - System32\Tasks\Sogugociko\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\FUGOFA~1\SOGUGO~1.EXE /Kolosute (Pas de fichier) <==== ATTENTION
Task: {36E4E472-DD70-45E5-945C-9B9D882F1CA5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {3ADE5F70-DB51-4521-89C6-4BD30DB599BD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A73D659-8A8B-4AB8-8D6B-6E272D248827} - System32\Tasks\Seroponupo\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\LIFOLE~1\SEROPO~1.EXE /Dogohat (Pas de fichier) <==== ATTENTION
Task: {5DE66D4C-8799-478D-8BAB-A397799D3569} - System32\Tasks\Gobipahig\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\REREKE~1\GOBIPA~1.EXE /Luden (Pas de fichier) <==== ATTENTION
Task: {77818905-E697-4C95-BE90-FBBE0596B4D5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7FCFA3B0-B832-4FCB-898C-AEFB1319FF79} - System32\Tasks\Gosamoteda\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\Megapefo\GOSAMO~1.EXE /Donem (Pas de fichier)
Task: {83BF83C3-BD0C-4552-A050-A7BF447F6A26} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5629064 2021-11-23] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {8CD8EDE5-19A8-44AF-B43D-0A864D055449} - System32\Tasks\Foradanek\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\DAGUHA~1\FORADA~1.EXE /Lefep (Pas de fichier) <==== ATTENTION
Task: {8DDDB241-EE73-4862-8FA0-2EAD1597E5DF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {93BDAC91-4E9B-4699-AD4F-5DC701476358} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [716704 2023-03-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {98FB4FF1-42FA-43EA-B49F-A83893162766} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [5363552 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {9C47BBD6-2A82-40E1-8A93-F75EDAAE3B78} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-1805141066-1808928112-2897253760-1001 => MessengerHelper.exe --lassie (Pas de fichier)
Task: {A85A049D-C754-4224-9F7D-D9C896F8C48E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-11-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {AFB2C3E6-1426-4D10-BFA7-C95B4C178F71} - System32\Tasks\Balenafek\{3E6C7DCE-1EEA-3DDF-6B52-32D482AC1DDF} => C:\Users\ocean\AppData\Local\Nelofo\BALENA~1.EXE /Madalabar (Pas de fichier)
Task: {B7A6D397-D6C9-4910-BCBA-B3A5CAC78A0A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CDAAF05D-AA68-4D21-8837-B5EFF1663E86} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2023-03-01] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {D23B4571-5233-41E4-9895-F4B2EAD1A01A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-05] (Google LLC -> Google LLC)
Task: {D5683767-C412-4264-B069-9090D032A661} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [995768 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {DAAE5A44-BF11-4C2A-B392-5E7285EC93E2} - System32\Tasks\{0B2C26A9-FA2F-407B-8828-51CBC81ED24D} => C:\Users\ocean\AppData\Local\DUHAGO~1\POSOHU~1.EXE /Pare (Pas de fichier) <==== ATTENTION
Task: {DC583845-6F54-427A-91F9-81C37CE3D255} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1A11CF8-1FBA-48C0-BA77-88675DE43864} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-11-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {ECE73020-14E6-4204-A5F5-D8EDDF520EE8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F226722E-3B24-4E83-9223-0D6A1FFE601A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6093928 2021-12-20] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {FEFBED3B-8978-4054-839F-1D79A89D780D} - System32\Tasks\Freedom => C:\Program Files (x86)\Freedom\FreedomBlocker.exe [2107384 2022-11-08] (Eighty Percent Solutions Corporation -> Freedom.to)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\{0B2C26A9-FA2F-407B-8828-51CBC81ED24D}.job => C:\Users\ocean\AppData\Local\DUHAGO~1\POSOHU~1.EXE <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{694c3268-977e-4558-ad48-b8e0c13eda10}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{af3c5510-fbc4-40a1-8003-cf9f60122d57}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c325f14b-61c0-4d90-be4b-300738af5c51}: [DhcpNameServer] 40.40.1.12
Tcpip\..\Interfaces\{fdb6b0cb-f588-4f38-93d6-e42bac2aa030}: [DhcpNameServer] 192.168.43.1
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-1805141066-1808928112-2897253760-1001 -> hxxp://www.recherche-fr.com/
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\ocean\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-07]
Edge Notifications: Default -> hxxps://www.instagram.com
FireFox:
========
FF DefaultProfile: u8arao9u.default
FF ProfilePath: C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\u8arao9u.default [2020-04-05]
FF Homepage: Mozilla\Firefox\Profiles\u8arao9u.default -> hxxp://www.bing.com/search?FORM=INCOH1&PC=IC04&PTAG=ICO-6ed088ded64f7c60
FF SearchPlugin: C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\u8arao9u.default\searchplugins\cerirame.xml [2020-04-05]
FF ProfilePath: C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136 [2023-03-08]
FF Homepage: Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136 -> hxxps://www.google.com
FF NewTab: Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136 -> hxxp://www.bing.com/?pc=COS2&ptag=D082519-N0600A915F698E57&form=CONMHP&conlogo=CT3335818
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-02-11]
FF SearchPlugin: C:\Users\ocean\AppData\Roaming\Mozilla\Firefox\Profiles\8x5p5swi.default-release-1566685716136\searchplugins\cerirame.xml [2020-04-05]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default [2023-03-07]
CHR Notifications: Default -> hxxps://allostreaming.co; hxxps://anglais-pdf.com; hxxps://gw.lightinthebox.com; hxxps://particuliers.engie.fr; hxxps://www.castorama.fr; hxxps://www.cpasmal.net; hxxps://www.facebook.com; hxxps://www.kiabi.com; hxxps://www.laredoute.fr; hxxps://www.netflix.com; hxxps://www.qare.fr; hxxps://www.stream-complet.biz; hxxps://www.youtube.com
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> McAfee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Safe Torrent Scanner) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-08-18]
CHR Extension: (Multi AdBlock) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiofbifbbjhkehhbflmacddfepjbdekh [2021-05-06]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-02-10]
CHR Extension: (News Feed Eradicator) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjcldmjmjhkklehbacihaiopjklihlgg [2022-11-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-30]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-02-10]
CHR Extension: (Coupert - Codes Promo Automatiques & Cashback) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidniedemcgceagapgdekdbmanojomk [2023-02-10]
CHR Extension: (AD&POP Block) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\mknlngfeicgfpljigaaeohppjdiaalid [2021-03-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ocean\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-17]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8686928 2020-09-13] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12512256 2023-03-07] (Microsoft Corporation -> Microsoft Corporation)
S2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [271272 2018-05-16] (Dolby Laboratories, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-09-13] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [288192 2018-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 Huawei_OSDServer; C:\WINDOWS\System32\RPC\OSD\osdservice.exe [624152 2019-01-08] (Huawei Technologies Co., Ltd. -> )
R2 LCD_Service; C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe [24560 2019-01-14] (Huawei Technologies Co., Ltd. -> Microsoft)
R2 MBAMainService; C:\Program Files\Huawei\PCManager\MateBookService.exe [1077576 2019-01-14] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9002208 2023-03-07] (Malwarebytes Inc. -> Malwarebytes)
S2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [856472 2023-03-07] (McAfee, LLC -> McAfee, LLC)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2023-02-07] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2023-02-07] (Electronic Arts, Inc. -> Electronic Arts)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2782080 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4605312 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3092344 2020-09-30] (BattlEye Innovations e.K. -> )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 hanvonugeemfilter; C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys [9728 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Huawei; C:\WINDOWS\System32\drivers\osd_driver.sys [60544 2019-01-08] (Huawei Technologies Co., Ltd. -> )
R3 hwnetstat; C:\Program Files\Huawei\PCManager\WFPDriver.sys [32144 2019-01-14] (Huawei Technologies Co., Ltd. -> )
R2 HwOs2ECx64; C:\Program Files\Huawei\PCManager\HwOs2EC10x64.sys [49656 2019-01-14] (Huawei Technologies Co., Ltd. -> Huawei)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-03-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-01-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-01-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
U0 Spybot3ELAM; C:\WINDOWS\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
R3 WDTDrv; C:\WINDOWS\System32\Drivers\WDTDrv.sys [27048 2018-02-27] (Huawei Technologies Co., Ltd. -> Huawei Device)
R3 XPPenTablet; C:\WINDOWS\System32\drivers\XPPenTablet.sys [10752 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-08 18:46 - 2023-03-08 18:48 - 000026101 _____ C:\Users\ocean\Downloads\FRST.txt
2023-03-08 18:46 - 2023-03-08 18:47 - 000000000 ____D C:\FRST
2023-03-08 18:45 - 2023-03-08 18:45 - 002378752 _____ (Farbar) C:\Users\ocean\Downloads\FRST64.exe
2023-03-07 20:38 - 2023-03-08 15:19 - 000000000 ____D C:\Users\ocean\AppData\Roaming\ZHP
2023-03-07 20:38 - 2023-03-07 20:38 - 000000000 ____D C:\Users\ocean\AppData\Local\ZHP
2023-03-07 20:37 - 2023-03-07 20:37 - 003513544 _____ (Nicolas Coolman) C:\Users\ocean\Downloads\ZHPSuite.exe
2023-03-07 20:34 - 2023-03-07 20:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2023-03-07 19:55 - 2023-03-08 18:45 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2023-03-07 19:55 - 2023-03-07 19:57 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2023-03-07 19:55 - 2023-03-07 19:55 - 000001471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2023-03-07 19:55 - 2023-03-07 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2023-03-07 19:55 - 2018-02-06 18:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2023-03-07 19:54 - 2023-03-07 19:54 - 065427184 _____ (Safer-Networking Ltd. ) C:\Users\ocean\Downloads\spybotsd-2.9.82.0.exe
2023-03-07 19:50 - 2023-03-07 19:50 - 000000000 ____D C:\Users\ocean\AppData\Local\Safer-Networking Ltd
2023-03-07 19:50 - 2023-03-07 19:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot Identity Monitor
2023-03-07 19:50 - 2023-03-07 19:50 - 000000000 ____D C:\Program Files (x86)\Safer-Networking Ltd
2023-03-07 19:48 - 2023-03-07 19:48 - 008584992 _____ (Safer-Networking Ltd. ) C:\Users\ocean\Downloads\spybot-search-and-destroy-3-4-0-0.exe
2023-03-07 13:00 - 2023-03-07 13:00 - 000155851 _____ C:\Users\ocean\Downloads\FicheReflexe_Piratage_Particuliers.pdf
2023-03-01 15:17 - 2023-03-07 12:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-02-27 20:35 - 2023-02-27 20:35 - 000793263 _____ C:\Users\ocean\Downloads\faq_travailleurs_sociaux.pdf
2023-02-26 15:11 - 2023-02-26 15:11 - 000343880 _____ C:\Users\ocean\Downloads\Règlement Court Métrage 2023.pdf
2023-02-26 12:25 - 2023-02-26 12:25 - 000254942 _____ C:\Users\ocean\Downloads\Hitlerautheatre.pdf
2023-02-22 15:59 - 2023-02-22 15:59 - 000641286 _____ C:\Users\ocean\Downloads\RNA-CarteSolidaire-FlyerA5-Charte TER-091122V2.pdf
2023-02-22 11:58 - 2023-02-22 11:58 - 000081182 _____ C:\Users\ocean\Downloads\MCC Licence Cinéma 22.pdf
2023-02-16 01:02 - 2023-02-16 01:02 - 000000000 ___HD C:\$WinREAgent
2023-02-15 20:16 - 2023-02-15 20:16 - 000000000 ____D C:\Users\ocean\Downloads\eMule
2023-02-15 20:16 - 2023-02-15 20:16 - 000000000 ____D C:\ProgramData\eMule
2023-02-15 20:15 - 2023-02-15 20:15 - 000000000 ____D C:\Users\ocean\AppData\Local\eMule
2023-02-15 20:15 - 2023-02-15 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMule
2023-02-15 20:15 - 2023-02-15 20:15 - 000000000 ____D C:\Program Files (x86)\eMule
2023-02-15 20:14 - 2023-02-15 20:14 - 003389035 _____ C:\Users\ocean\Downloads\emule_emule_0.50a_francais_10876.exe
2023-02-15 19:58 - 2023-02-15 19:59 - 000000000 ____D C:\Users\ocean\Downloads\trainspotting_202007
2023-02-15 19:58 - 2023-02-15 19:58 - 000022165 _____ C:\Users\ocean\Downloads\trainspotting_202007_archive.torrent
2023-02-14 11:35 - 2023-02-14 11:35 - 002897108 _____ C:\Users\ocean\Downloads\wetransfer_1-jpg_2023-02-14_1023.zip
2023-02-12 11:21 - 2023-02-12 11:21 - 000128215 _____ C:\Users\ocean\Downloads\RACINE_BRITANNICUS II.pdf
2023-02-12 11:17 - 2023-02-12 11:17 - 000315468 _____ C:\Users\ocean\Downloads\Shakespeare-Richard_III.pdf
2023-02-10 20:16 - 2023-02-10 20:19 - 000000000 ____D C:\Users\ocean\AppData\Local\Avast Software
2023-02-10 19:45 - 2023-02-10 19:52 - 000000000 ____D C:\Users\ocean\Downloads\Flashdance (1983) [1080p] [BluRay] [5.1] [YTS.MX]
2023-02-10 19:44 - 2023-03-08 18:46 - 000000000 ____D C:\Users\ocean\AppData\Roaming\uTorrent Web
2023-02-10 19:44 - 2023-02-10 20:19 - 000000000 ____D C:\ProgramData\Avast Software
2023-02-10 19:44 - 2023-02-10 19:45 - 000000000 ____D C:\Program Files\McAfee
2023-02-10 19:44 - 2023-02-10 19:44 - 000001872 _____ C:\Users\ocean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2023-02-10 19:44 - 2023-02-10 19:44 - 000000000 ____D C:\ProgramData\McAfee
2023-02-10 19:42 - 2023-02-10 19:42 - 001788464 _____ ( ) C:\Users\ocean\Downloads\utweb_installer(1).exe
2023-02-10 19:41 - 2023-02-10 19:41 - 001788464 _____ ( ) C:\Users\ocean\Downloads\utweb_installer.exe
2023-02-10 19:40 - 2023-02-10 19:40 - 000072301 _____ C:\Users\ocean\Downloads\Flashdance (1983) [1080p] [BluRay] [5.1] [YTS.MX].torrent
2023-02-10 19:39 - 2023-02-10 19:39 - 000028851 _____ C:\Users\ocean\Downloads\[ zetorrents.ch ] Flashdance FRENCH DVDRIP x264 1983.torrent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-08 18:46 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-03-08 18:43 - 2021-04-14 23:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-08 18:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-08 18:29 - 2020-09-05 14:15 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-08 16:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-08 16:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-08 16:28 - 2019-08-24 22:54 - 000000000 ____D C:\Users\ocean\AppData\Local\CrashDumps
2023-03-08 16:28 - 2019-05-13 02:19 - 000000000 ____D C:\Users\ocean\AppData\Local\D3DSCache
2023-03-08 16:24 - 2019-05-13 02:23 - 000000000 ____D C:\Users\ocean\AppData\LocalLow\Mozilla
2023-03-08 16:22 - 2019-08-25 16:16 - 000000000 ____D C:\Users\ocean\AppData\Local\BitTorrentHelper
2023-03-08 16:22 - 2019-05-13 01:38 - 000000000 ____D C:\ProgramData\HwSynergy
2023-03-08 15:06 - 2021-06-17 14:31 - 000000000 ____D C:\Program Files\Microsoft Office
2023-03-08 15:05 - 2021-04-14 23:34 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4084E7C5-DE28-489F-AF67-E81D7DF7B03C}
2023-03-08 15:05 - 2021-04-14 23:34 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-03-08 15:05 - 2021-04-14 23:34 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-03-07 20:38 - 2019-08-25 16:16 - 000000000 ____D C:\Users\ocean\AppData\Roaming\HwSynergy
2023-03-07 20:05 - 2020-10-23 23:29 - 000000000 ____D C:\Users\ocean\AppData\Local\ElevatedDiagnostics
2023-03-07 12:31 - 2021-09-12 17:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-03-07 12:31 - 2019-05-13 02:23 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-03-07 12:31 - 2019-05-13 02:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-03-07 12:28 - 2021-01-11 02:25 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-01 15:53 - 2021-04-14 23:27 - 000000000 ____D C:\Users\ocean
2023-03-01 14:52 - 2022-12-08 23:32 - 000000000 ____D C:\Users\ocean\AppData\Local\Freedom.to
2023-02-28 19:28 - 2021-04-14 23:33 - 001801762 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-28 19:28 - 2019-12-07 15:49 - 000809580 _____ C:\WINDOWS\system32\perfh00C.dat
2023-02-28 19:28 - 2019-12-07 15:49 - 000154982 _____ C:\WINDOWS\system32\perfc00C.dat
2023-02-28 19:21 - 2021-06-13 23:08 - 000008192 ___SH C:\DumpStack.log.tmp
2023-02-28 19:21 - 2021-04-14 23:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-28 10:00 - 2020-09-05 14:16 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-02-24 22:05 - 2019-05-13 02:19 - 000000000 ____D C:\Users\ocean\AppData\Local\Packages
2023-02-16 01:39 - 2021-04-14 23:26 - 000440040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-02-16 01:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-02-16 01:38 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-02-16 01:14 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-16 01:10 - 2021-04-14 23:31 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-02-15 17:39 - 2019-02-15 23:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-02-14 21:00 - 2019-08-25 16:25 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-02-14 21:00 - 2019-08-25 16:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-02-10 20:19 - 2020-04-21 05:05 - 000000310 _____ C:\WINDOWS\Tasks\{0B2C26A9-FA2F-407B-8828-51CBC81ED24D}.job
2023-02-10 20:10 - 2020-09-11 16:45 - 000000000 ____D C:\Users\ocean\AppData\Roaming\vlc
2023-02-10 20:09 - 2022-12-08 23:32 - 000003200 _____ C:\WINDOWS\system32\Tasks\Freedom
2023-02-10 20:09 - 2021-04-14 23:34 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-02-10 20:09 - 2021-04-14 23:34 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-02-10 20:09 - 2021-04-14 23:34 - 000002708 _____ C:\WINDOWS\system32\Tasks\{0B2C26A9-FA2F-407B-8828-51CBC81ED24D}
2023-02-10 20:09 - 2021-04-14 23:34 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2023-02-10 20:09 - 2021-04-14 23:34 - 000002116 _____ C:\WINDOWS\system32\Tasks\StartDVR
2023-02-10 19:45 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-02-09 21:14 - 2019-08-24 23:32 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Fichiers à la racine de certains dossiers ========
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Becakecepu
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Beraneludor
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Cocopatobe
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Cofuca
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Debogopota
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Fakafe
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Fugakelem
2020-04-21 05:02 - 2020-04-21 05:02 - 000282927 _____ () C:\Users\ocean\AppData\Roaming\Gacadirohop
2020-05-01 00:09 - 2020-05-01 00:09 - 000201948 _____ () C:\Users\ocean\AppData\Roaming\Gecakicerub
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Gedim
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Gigemenahur
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Hakorunom
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Kelihera
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Kihonesadar
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Labihorod
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Moralor
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Nopebehoga
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Nopegopa
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Pilelusum
2020-05-09 06:09 - 2020-05-09 06:09 - 000344535 _____ () C:\Users\ocean\AppData\Roaming\Podubudih
2020-06-18 19:57 - 2020-06-18 19:57 - 000275037 _____ () C:\Users\ocean\AppData\Roaming\Recotirihege
2020-05-17 23:24 - 2020-05-17 23:24 - 000179783 _____ () C:\Users\ocean\AppData\Roaming\Rekosoponomi
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Rocanobupoci
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Sabalacupo
2020-06-04 13:29 - 2020-06-04 13:29 - 000283538 _____ () C:\Users\ocean\AppData\Roaming\Sakabe
2020-05-27 12:46 - 2020-05-27 12:46 - 000364062 _____ () C:\Users\ocean\AppData\Roaming\Siludeto
2020-05-27 12:46 - 2020-05-27 12:46 - 000314799 _____ () C:\Users\ocean\AppData\Roaming\Toperinahem
2020-04-07 23:11 - 2020-06-18 19:57 - 000000384 _____ () C:\Users\ocean\AppData\Roaming\WB.CFG
2023-01-15 18:35 - 2023-01-15 18:35 - 000012412 _____ () C:\Users\ocean\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================