Publicité
Publicité
Format du document : text/plain
Prévisualisation
Start::
EmptyPrefetch
EmptyClsid
EmptyFlash
EmptyTemp
FirewallRaz
ShortcutFix
Ifeofix
Proxyfix
HostFix
sysrestore
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR =>.SUP.Orphan
HKLM\Software\Wow6432Node\Classes\CLSID\{B41DB860-64E4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR =>.SUP.Orphan
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\WinRAR =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Icebrave\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\FileSyncConfig.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Icebrave\AppData\Local\Microsoft\OneDrive\21.220.1024.0005\FileSyncConfig.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:G:\UTIL\Windows 10 Tweaks.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:G:\Downloads\Winrar 3.80 pro\WRP3.80\winrar380pro.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Icebrave\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\FFSetup5.16.0.0.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23102.126.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Microsoft Office\root\Office16\MSPUB.EXE =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Desktop\adwcleaner.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\videoeditorpro_installer.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\video-editor-setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Easy2Boot_v2.19\Make_E2B.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Desktop\kprm_2.15.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:D:\UTIL\Virtual Box\VirtualBox-7.0.14-161095-Win.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:D:\UTIL\geek\geek.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Icebrave\AppData\Local\Temp\geek64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WinRAR\Uninstall.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\PremierOpinion\pmropn.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\winrar-6-24.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Malwarebytes\Anti-Malware\malwarebytes_assistant.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\SpyHunter-5.15-112-15769-Installer.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Desktop\VPX5setup\VPX5setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Desktop\ZHPCleaner-2019.exe =>.SUP.Orphan.Compatibility
[597E4E45CBC115BBA6402602E89CBF45] [01/04/2019] (.Oracle America, Inc..) - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.
[597E4E45CBC115BBA6402602E89CBF45] [02/02/2024] (.Oracle America, Inc..) - C:\Program Files\Java\jre1.8.0_212\bin\jp2ssv.dll =>.Oracle America, Inc.
[597E4E45CBC115BBA6402602E89CBF45] [02/02/2024] (.Oracle America, Inc..) - C:\Program Files\Java\jre1.8.0_212\bin\ssv.dll =>.Oracle America, Inc.
[MD5.E60529C328904D4A7F7D1AE578AB4E7C] [WIS][2024/02/02 18:07:14] (.Oracle Corporation - Java SE Runtime Environment 8 Update 212.) -- C:\Windows\Installer\e93e3.msi [66740224] =>.Oracle Corporation
[MD5.8F535D8B7B6D6E7BCC809460E4D345FC] [WIS][2024/02/02 18:07:54] (.Oracle Corporation - Java Auto Updater.) -- C:\Windows\Installer\e93e8.msi [782336] =>.Oracle Corporation
[MD5.A43094261ACA8B2946C905DF39727314] [WIS][2024/02/02 18:08:00] (.Oracle Corporation - Java SE Runtime Environment 8 Update 212.) -- C:\Windows\Installer\e93ed.msi [76582912] =>.Oracle Corporation
O90 - PUC: "F60730A4A66673047777F5728467D401" [HKLM] . (.Java Auto Updater.) =>.Sun Microsystems
O90 - PUC: "4EA42A62D9304AC4784BF2238120210F" [HKLM] . (.Java 8 Update 212.) -- C:\Program Files (x86)\Java\jre1.8.0_212\\bin\javaws.exe =>.Sun Microsystems
O90 - PUC: "4EA42A62D9304AC4784BF2468120210F" [HKLM] . (.Java 8 Update 212 (64-bit).) -- C:\Program Files\Java\jre1.8.0_212\\bin\javaws.exe =>.Sun Microsystems
O87 - FAEL: "{9FE0F32E-A8C7-48C0-9075-4E7AD8E2A571}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{DA0B23D6-8268-47C0-8471-F5640D116636}" [In-None-P17-TRUE] .(...) -- C:\Users\Icebrave\AppData\Local\Programs\Opera\106.0.4998.66\opera.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{44E7348A-F048-4702-A585-357A04421555}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.144\msedgewebview2.exe [Unsigned] (.not file.) =>.SUP.Orphan
O108 - CMH2: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O108 - CMH4: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bcac.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bcce.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bd2d.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bd7d.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bdbe.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be0e.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be10.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be22.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be33.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be35.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be47.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be49.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be6a.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be8b.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be9d.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68beed.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68beef.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bf20.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bf41.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efa7b.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efa9c.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efa9e.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efab0.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efac1.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efad3.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efad5.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efae6.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efae8.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc04.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc15.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc27.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc39.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc5a.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc6b.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc7d.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc8f.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efca0.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efcc2.tmp
O43 - CFD: 28/01/2024 - [] D -- C:\Users\Icebrave\Desktop\SpyHunter 5.16.6.327
O43 - CFD: 26/01/2024 - [0] D -- C:\Users\Icebrave\AppData\Roaming\Lavasoft =>.Lavasoft
O43 - CFD: 02/02/2024 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 26/01/2024 - [0] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 26/01/2024 - [] D -- C:\ProgramData\AVG =>.AVG Software
O43 - CFD: 26/01/2024 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft =>.Lavasoft
O43 - CFD: 02/02/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 26/01/2024 - [0] D -- C:\Program Files (x86)\Lavasoft =>.Lavasoft
O43 - CFD: 02/02/2024 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 27/01/2024 - [0] D -- \Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 02/02/2024 - [] D -- \Program Files\Java =>.Oracle
O42 - Logiciel: Java 8 Update 212 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180212F0} [Unsigned] =>.Oracle Corporation
O42 - Logiciel: Java 8 Update 212 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180212F0} [Unsigned] =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} [Unsigned] =>.Oracle Corporation (Hidden)
O40 - ASIC: Microsoft Edge [64Bits] - {9459C573-B17A-45AE-9F64-1857B5D58CEE} . (...) -- C:\Program Files (x86)\Microsoft\Edge\Application\121.0.2277.83\Installer\setup.exe (.not file.) =>.SUP.Various
HKU\S-1-5-21-702104581-954937399-490591429-1002\SOFTWARE\Lavasoft =>.Lavasoft
HKU\.DEFAULT\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\WOW6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\WOW6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\WOW6432Node\AVG =>.AVG Software
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\AVG =>.AVG Software
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AVGUI.exe =>.AVG Software
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_212\bin\ssv.dll =>.Oracle America, Inc.®
[MD5.4C3832FBE84B8CE63D8E3AB7D76F9983] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe [301856] [PID.6776] =>.Google LLC®
[MD5.DAE993327723122C9288504A62E9F082] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe [402208] [PID.6764] =>.Google LLC®
[MD5.C50362C4F38BBE7283921D840A0941B3] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456] [PID.7440] =>.Oracle America, Inc.®
O4 - HKUS\S-1-5-21-702104581-954937399-490591429-1002\..\Run: [faka] . (.Oracle Corporation - Java Platform SE binary.) -- C:\Users\Icebrave\AppData\Roaming\kdbaf\faka.exe [Unsigned] =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
SR - Boot [26/01/2024] [ 21480] MbamElam (MbamElam) . (.Malwarebytes.) - C:\Windows\System32\DRIVERS\MbamElam.sys =>.Microsoft®
SS - Demand [00/00/0000] [ 0] Malwarebytes Service (MBAMService) . (...) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (.not file.) [Unsigned] =>.Malwarebytes
SR - Demand [26/01/2024] [ 239576] MBAMSwissArmy (MBAMSwissArmy) . (.Malwarebytes.) - C:\Windows\System32\Drivers\mbamswissarmy.sys =>.Microsoft®
O23 - Service: Serviço Microsoft Edge Update (edgeupdate) (edgeupdate) . (...) - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (.not file.)
End::
EmptyPrefetch
EmptyClsid
EmptyFlash
EmptyTemp
FirewallRaz
ShortcutFix
Ifeofix
Proxyfix
HostFix
sysrestore
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR =>.SUP.Orphan
HKLM\Software\Wow6432Node\Classes\CLSID\{B41DB860-64E4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR =>.SUP.Orphan
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\WinRAR =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Icebrave\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\FileSyncConfig.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Icebrave\AppData\Local\Microsoft\OneDrive\21.220.1024.0005\FileSyncConfig.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:G:\UTIL\Windows 10 Tweaks.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:G:\Downloads\Winrar 3.80 pro\WRP3.80\winrar380pro.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Icebrave\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\FFSetup5.16.0.0.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23102.126.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Microsoft Office\root\Office16\MSPUB.EXE =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Desktop\adwcleaner.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\videoeditorpro_installer.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\video-editor-setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Easy2Boot_v2.19\Make_E2B.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Desktop\kprm_2.15.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:D:\UTIL\Virtual Box\VirtualBox-7.0.14-161095-Win.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:D:\UTIL\geek\geek.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Icebrave\AppData\Local\Temp\geek64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WinRAR\Uninstall.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\PremierOpinion\pmropn.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\winrar-6-24.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Malwarebytes\Anti-Malware\malwarebytes_assistant.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Downloads\SpyHunter-5.15-112-15769-Installer.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Desktop\VPX5setup\VPX5setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Net\Desktop\ZHPCleaner-2019.exe =>.SUP.Orphan.Compatibility
[597E4E45CBC115BBA6402602E89CBF45] [01/04/2019] (.Oracle America, Inc..) - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.
[597E4E45CBC115BBA6402602E89CBF45] [02/02/2024] (.Oracle America, Inc..) - C:\Program Files\Java\jre1.8.0_212\bin\jp2ssv.dll =>.Oracle America, Inc.
[597E4E45CBC115BBA6402602E89CBF45] [02/02/2024] (.Oracle America, Inc..) - C:\Program Files\Java\jre1.8.0_212\bin\ssv.dll =>.Oracle America, Inc.
[MD5.E60529C328904D4A7F7D1AE578AB4E7C] [WIS][2024/02/02 18:07:14] (.Oracle Corporation - Java SE Runtime Environment 8 Update 212.) -- C:\Windows\Installer\e93e3.msi [66740224] =>.Oracle Corporation
[MD5.8F535D8B7B6D6E7BCC809460E4D345FC] [WIS][2024/02/02 18:07:54] (.Oracle Corporation - Java Auto Updater.) -- C:\Windows\Installer\e93e8.msi [782336] =>.Oracle Corporation
[MD5.A43094261ACA8B2946C905DF39727314] [WIS][2024/02/02 18:08:00] (.Oracle Corporation - Java SE Runtime Environment 8 Update 212.) -- C:\Windows\Installer\e93ed.msi [76582912] =>.Oracle Corporation
O90 - PUC: "F60730A4A66673047777F5728467D401" [HKLM] . (.Java Auto Updater.) =>.Sun Microsystems
O90 - PUC: "4EA42A62D9304AC4784BF2238120210F" [HKLM] . (.Java 8 Update 212.) -- C:\Program Files (x86)\Java\jre1.8.0_212\\bin\javaws.exe =>.Sun Microsystems
O90 - PUC: "4EA42A62D9304AC4784BF2468120210F" [HKLM] . (.Java 8 Update 212 (64-bit).) -- C:\Program Files\Java\jre1.8.0_212\\bin\javaws.exe =>.Sun Microsystems
O87 - FAEL: "{9FE0F32E-A8C7-48C0-9075-4E7AD8E2A571}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{DA0B23D6-8268-47C0-8471-F5640D116636}" [In-None-P17-TRUE] .(...) -- C:\Users\Icebrave\AppData\Local\Programs\Opera\106.0.4998.66\opera.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{44E7348A-F048-4702-A585-357A04421555}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.144\msedgewebview2.exe [Unsigned] (.not file.) =>.SUP.Orphan
O108 - CMH2: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O108 - CMH4: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bcac.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bcce.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bd2d.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bd7d.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bdbe.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be0e.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be10.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be22.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be33.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be35.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be47.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be49.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be6a.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be8b.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68be9d.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68beed.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68beef.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bf20.tmp
O43 - CFD: 03/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-171c-a38-68bf41.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efa7b.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efa9c.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efa9e.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efab0.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efac1.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efad3.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efad5.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efae6.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efae8.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc04.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc15.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc27.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc39.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc5a.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc6b.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc7d.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efc8f.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efca0.tmp
O43 - CFD: 02/02/2024 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\tw-1e04-1ec8-2efcc2.tmp
O43 - CFD: 28/01/2024 - [] D -- C:\Users\Icebrave\Desktop\SpyHunter 5.16.6.327
O43 - CFD: 26/01/2024 - [0] D -- C:\Users\Icebrave\AppData\Roaming\Lavasoft =>.Lavasoft
O43 - CFD: 02/02/2024 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 26/01/2024 - [0] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 26/01/2024 - [] D -- C:\ProgramData\AVG =>.AVG Software
O43 - CFD: 26/01/2024 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft =>.Lavasoft
O43 - CFD: 02/02/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 26/01/2024 - [0] D -- C:\Program Files (x86)\Lavasoft =>.Lavasoft
O43 - CFD: 02/02/2024 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 27/01/2024 - [0] D -- \Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 02/02/2024 - [] D -- \Program Files\Java =>.Oracle
O42 - Logiciel: Java 8 Update 212 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180212F0} [Unsigned] =>.Oracle Corporation
O42 - Logiciel: Java 8 Update 212 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180212F0} [Unsigned] =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} [Unsigned] =>.Oracle Corporation (Hidden)
O40 - ASIC: Microsoft Edge [64Bits] - {9459C573-B17A-45AE-9F64-1857B5D58CEE} . (...) -- C:\Program Files (x86)\Microsoft\Edge\Application\121.0.2277.83\Installer\setup.exe (.not file.) =>.SUP.Various
HKU\S-1-5-21-702104581-954937399-490591429-1002\SOFTWARE\Lavasoft =>.Lavasoft
HKU\.DEFAULT\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\WOW6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\WOW6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\WOW6432Node\AVG =>.AVG Software
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\AVG =>.AVG Software
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AVGUI.exe =>.AVG Software
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_212\bin\ssv.dll =>.Oracle America, Inc.®
[MD5.4C3832FBE84B8CE63D8E3AB7D76F9983] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe [301856] [PID.6776] =>.Google LLC®
[MD5.DAE993327723122C9288504A62E9F082] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe [402208] [PID.6764] =>.Google LLC®
[MD5.C50362C4F38BBE7283921D840A0941B3] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456] [PID.7440] =>.Oracle America, Inc.®
O4 - HKUS\S-1-5-21-702104581-954937399-490591429-1002\..\Run: [faka] . (.Oracle Corporation - Java Platform SE binary.) -- C:\Users\Icebrave\AppData\Roaming\kdbaf\faka.exe [Unsigned] =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
SR - Boot [26/01/2024] [ 21480] MbamElam (MbamElam) . (.Malwarebytes.) - C:\Windows\System32\DRIVERS\MbamElam.sys =>.Microsoft®
SS - Demand [00/00/0000] [ 0] Malwarebytes Service (MBAMService) . (...) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (.not file.) [Unsigned] =>.Malwarebytes
SR - Demand [26/01/2024] [ 239576] MBAMSwissArmy (MBAMSwissArmy) . (.Malwarebytes.) - C:\Windows\System32\Drivers\mbamswissarmy.sys =>.Microsoft®
O23 - Service: Serviço Microsoft Edge Update (edgeupdate) (edgeupdate) . (...) - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (.not file.)
End::