Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-12-2020 Exécuté par Mr_GT (administrateur) sur DESKTOP-RUT1CQG (10-12-2020 19:17:40) Exécuté depuis C:\Users\Mr_GT\Desktop Profils chargés: Mr_GT Platform: Windows 10 Pro Version 2004 19041.685 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Windows\SysWOW64\ASGT.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated -> ) D:\Logiciels\Photosphop\Adobe Photoshop CC 2019\Required\Plug-ins\Spaces\Adobe Spaces Helper.exe <3> (Adobe Systems Incorporated -> Adobe Systems Incorporated) [Fichier non signé] D:\Logiciels\Photosphop\Adobe Photoshop CC 2019\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) D:\Logiciels\Photosphop\Adobe Photoshop CC 2019\Required\CEP\CEPHtmlEngine\CEPHtmlEngine.exe <6> (Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Advanced Micro Devices, Inc. -> ) C:\Program Files\Common Files\ATI Technologies\DSEManager.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atiesrxx.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Mr_GT\AppData\Roaming\uTorrent\helper\helper.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Mr_GT\AppData\Roaming\uTorrent\updates\3.5.5_45838\utorrentie.exe <2> (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Mr_GT\AppData\Roaming\uTorrent\uTorrent.exe (Discord Inc. -> Discord Inc.) C:\Users\Mr_GT\AppData\Local\Discord\app-0.0.307\Discord.exe <3> (Electronic Arts, Inc. -> ) D:\Jeux\Origin\QtWebEngineProcess.exe <2> (Electronic Arts, Inc. -> Electronic Arts) D:\Jeux\Origin\Origin.exe (Electronic Arts, Inc. -> Electronic Arts) D:\Jeux\Origin\OriginWebHelperService.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) D:\Logiciels\Evernote\EvernoteClipper.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <72> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (Intel(R) Intel Network Drivers -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe (Malwarebytes Inc -> Malwarebytes) D:\Logiciels\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) D:\Logiciels\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Mr_GT\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <11> (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Mr_GT\Desktop\ZHPSuite.exe (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Node.js Foundation -> Node.js) C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (Node.js Foundation -> Node.js) D:\Logiciels\Photosphop\Adobe Photoshop CC 2019\node.exe (Open Source Developer, Pierre Noguès -> Apache Software Foundation) C:\Program Files (x86)\serposcope\bin\serposcope-service.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Shenzhen Jia Xing Investment Co., Ltd. -> AimerSoft) C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6> (TeamViewer GmbH -> TeamViewer Germany GmbH) D:\Logiciels\TeamViewer\TeamViewer_Service.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) D:\Jeux\Steam\steam.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9274304 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2138272 2016-10-08] (Shenzhen Jia Xing Investment Co., Ltd. -> AimerSoft) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [Discord] => C:\Users\Mr_GT\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [HoldemManager.Server] => C:\Users\Mr_GT\AppData\Roaming\Max Value Software\Holdem Manager\3.0\HoldemManager.Server.lnk [533 2018-03-04] () [Fichier non signé] HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [Steam] => D:\Jeux\Steam\steam.exe [3421984 2020-12-07] (Valve -> Valve Corporation) HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016568 2020-12-02] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [Battle.net] => D:\Jeux\Battle.net\Battle.net.exe [1136104 2020-05-28] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [EADM] => D:\Jeux\Origin\Origin.exe [3137808 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [uTorrent] => C:\Users\Mr_GT\AppData\Roaming\uTorrent\uTorrent.exe [2113240 2020-11-24] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7882328 2019-09-06] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft) HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Mr_GT\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-11-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [54944 2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-02] (Google LLC -> Google LLC) Startup: C:\Users\Mr_GT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2020-06-11] ShortcutTarget: EvernoteClipper.lnk -> D:\Logiciels\Evernote\EvernoteClipper.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) Startup: C:\Users\Mr_GT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\serposcope-manager.lnk [2020-05-21] ShortcutTarget: serposcope-manager.lnk -> C:\Program Files (x86)\serposcope\bin\serposcopew.exe (Open Source Developer, Pierre Noguès -> Apache Software Foundation) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0B0AC2AC-A6E8-4B8C-BC75-98281425C152} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [895080 2020-10-28] (Bitdefender SRL -> Bitdefender) Task: {100EA919-9BE9-413A-A17A-80E98E4F7552} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {2758EE25-B867-42F2-A845-41FD12E55C1B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe Task: {28D0AB7A-EB0A-4271-A66A-1B58A097B5F8} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software) Task: {2C02CBC1-DD9A-455B-ACC3-040F5E152124} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [Fichier non signé] Task: {3197A7FB-504A-4FF3-8269-F46B9A89277F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.) Task: {522CC6CE-F88A-49B3-BE29-01427AA24F32} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [615120 2020-11-23] (Mozilla Corporation -> Mozilla Foundation) Task: {547A376A-71B1-4471-A609-85B1D3800849} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2017-12-14] (Google Inc -> Google Inc.) Task: {5CC25D6B-71CA-4272-8ED3-E94F8380B8AD} - System32\Tasks\ROCCAT DEVICE SERVICE => D:\Logiciels\Roccat Suora\ROCCAT Swarm\ROCCAT_dev_service.exe Task: {6E31A1D2-F09B-4397-A54C-61CE1E229CB4} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {6F864C85-C1EB-48D6-9A5A-08230E3CA277} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {74D6E2ED-BB22-45D0-83E0-E4BE0210A518} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {8C8D0A53-399E-4119-94CC-C35888775CDD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2017-12-14] (Google Inc -> Google Inc.) Task: {9510ECE9-DDAD-4D0A-82EC-8E77C6910B81} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1723392 2019-07-26] () [Fichier non signé] Task: {98F0A7B3-AB0A-49E3-932F-574FD2322798} - System32\Tasks\CCleanerSkipUAC => D:\Logiciels\Ccleaner\CCleaner.exe Task: {BCC22DA0-25C9-4FFA-A271-79E6DDD239E6} - System32\Tasks\G2MUpdateTask-S-1-5-21-3351771493-749409139-3151566472-1001 => C:\Users\Mr_GT\AppData\Local\GoToMeeting\18962\g2mupdate.exe [31320 2020-10-23] (LogMeIn, Inc. -> LogMeIn, Inc.) Task: {E9BC5147-7B9B-4161-B28B-D3DD75D3267A} - System32\Tasks\G2MUploadTask-S-1-5-21-3351771493-749409139-3151566472-1001 => C:\Users\Mr_GT\AppData\Local\GoToMeeting\18962\g2mupload.exe [31320 2020-10-23] (LogMeIn, Inc. -> LogMeIn, Inc.) Task: {FD94A456-B27A-4492-8FAF-BF0DA6A85F31} - System32\Tasks\CCleaner Update => D:\Logiciels\Ccleaner\CCUpdate.exe Task: {FEF504F6-A478-4B18-A492-9DBD57E35F4F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [Fichier non signé] (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3351771493-749409139-3151566472-1001.job => C:\Users\Mr_GT\AppData\Local\GoToMeeting\18962\g2mupdate.exe Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3351771493-749409139-3151566472-1001.job => C:\Users\Mr_GT\AppData\Local\GoToMeeting\18962\g2mupload.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2 Tcpip\..\Interfaces\{36c782bc-b08a-4b7d-81b2-0c7d35f22b2e}: [DhcpNameServer] 89.2.0.1 89.2.0.2 Tcpip\..\Interfaces\{fef1ff37-d6df-4096-a79e-7ef82e263ad4}: [DhcpNameServer] 192.168.42.129 Edge: ====== Edge DefaultProfile: Default Edge Profile: C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-10] Edge Extension: (Google SERP counter) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfiijneafemhklkccnjijmcniffmiode [2020-07-12] Edge Extension: (ColorZilla) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2020-07-12] Edge Extension: (Shoptimate : comparateur de prix instantané) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bibdombdcdbbnfdjkaajfgnfhlapibde [2020-07-12] Edge Extension: (Pushbullet) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2020-07-12] Edge Extension: (Alexa Traffic Rank) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cknebhggccemgcnbidipinkifmmegdel [2020-07-12] Edge Extension: (Image Downloader) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2020-07-12] Edge Extension: (Alitools assistant shopping) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eenflijjbchafephdplkdmeenekabdfb [2020-10-30] Edge Extension: (Facebook Pixel Helper) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2020-10-02] Edge Extension: (Word Counter Plus) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fpjegfbcdijjfkceenlfoehpcakfgldj [2020-07-12] Edge Extension: (SEO Minion) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\giihipjfimkajhlcilipnjeohabimjhi [2020-10-09] Edge Extension: (Wappalyzer) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2020-12-10] Edge Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2020-12-07] Edge Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-11-11] Edge Extension: (WhatFont) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2020-07-12] Edge Extension: (Aliexpress Search by image) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jkcacbjiofjgbnaknoojjboeiinempoa [2020-07-12] Edge Extension: (AliExpress: Search similar products) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\joghfdanngcpobcbmdapcemgbjphihag [2020-10-30] Edge Extension: (Commerce Inspector) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kefmekfmfacbdefimlancoccpocmgmpb [2020-07-12] Edge Extension: (IGRAAL - Cashback & codes promo) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2020-11-23] Edge Extension: (Alt Text Tester) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\koldhcllpbdfcdpfpbldbicbgddglodk [2020-07-12] Edge Extension: (Linkclump) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2020-07-29] Edge Extension: (Easy AliExpress Video Finder) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lkcandoekjlnkipbdffedlobpoldojli [2020-07-12] Edge Extension: (Evernote Web Clipper) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llhcnbijpnechllogkacbcjmkcgjbjfi [2020-11-11] Edge Extension: (Extension Google Keep pour Chrome) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2020-12-03] Edge Extension: (DSers - AliExpress.com Product Importer) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mmanaflgaempokjfbeeabkadnkoidjam [2020-12-10] Edge Extension: (Ali Hunter - AliExpress Product Tracker) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mpajidobdpdigheplhpfggmeldjcpgfh [2020-11-18] Edge Extension: (AliSave | Télécharger les images & videos AliExpress) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nbhfcmbdimdbbclfngkjfmgmjhnkjocl [2020-12-03] Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2020-11-25] Edge Extension: (Mailtrack pour Gmail: Email tracking) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2020-12-10] Edge Extension: (Save Image As PNG) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nkokmeaibnajheohncaamjggkanfbphi [2020-07-12] Edge Extension: (Ubersuggest) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nmpgaoofmjlimabncmnmnopjabbflegf [2020-12-03] Edge Extension: (Correcteur de texte — LanguageTool) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2020-12-07] Edge Extension: (Downloader for Instagram) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\olkpikmlhoaojbbmmpejnimiglejmboe [2020-12-03] Edge Extension: (Easy AliExpress Image Downloader) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\onbhkdnjgomhlomaoijdmkkoakapbchb [2020-07-12] Edge Extension: (Reverso - Traduction, dictionnaire) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\onhiacboedfinnofagfgoaanfedhmfab [2020-07-12] Edge Extension: (Majestic Backlink Analyzer) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pnmjaflneibolacpepklokkjnakmikmg [2020-07-12] Edge Extension: (Word Count) - C:\Users\Mr_GT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pnngehidikgomgfjbpffonkeimgbpjlh [2020-07-12] FireFox: ======== FF DefaultProfile: y355bifu.default FF ProfilePath: C:\Users\Mr_GT\AppData\Roaming\Mozilla\Firefox\Profiles\y355bifu.default [2020-12-10] FF Homepage: Mozilla\Firefox\Profiles\y355bifu.default -> hxxps://www.malwarebytes.org/restorebrowser/ FF Notifications: Mozilla\Firefox\Profiles\y355bifu.default -> hxxps://downloader.la; hxxps://www.facebook.com FF Extension: (Avast Online Security) - C:\Users\Mr_GT\AppData\Roaming\Mozilla\Firefox\Profiles\y355bifu.default\Extensions\wrc@avast.com.xpi [2020-06-20] FF Extension: (Historique des prix sur 6 mois, produits similaires, recherche d'article par image, évaluations du vendeur.) - C:\Users\Mr_GT\AppData\Roaming\Mozilla\Firefox\Profiles\y355bifu.default\Extensions\{019f5290-6afb-4863-bc31-87cc0b6adb25}.xpi [2020-10-30] FF Extension: (Flash and Video Download) - C:\Users\Mr_GT\AppData\Roaming\Mozilla\Firefox\Profiles\y355bifu.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}.xpi [2018-05-18] FF Extension: (IGRAAL - Cashback & codes promo) - C:\Users\Mr_GT\AppData\Roaming\Mozilla\Firefox\Profiles\y355bifu.default\Extensions\{dbac9680-d559-4cd4-9765-059879e8c467}.xpi [2020-12-10] FF Extension: (Télécharge les images et vidéos des produits AliExpress en un clic!) - C:\Users\Mr_GT\AppData\Roaming\Mozilla\Firefox\Profiles\y355bifu.default\Extensions\{ddf5273a-f9df-4415-9dd9-034ce0b59098}.xpi [2020-04-02] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-12-14] [] FF Plugin: @videolan.org/vlc,version=3.0.6 -> D:\Logiciels\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> D:\Logiciels\Nouveau dossier\bin\dtplugin\npDeployJava1.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> D:\Logiciels\Nouveau dossier\bin\plugin2\npjp2.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-03-15] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office16\NPSPWRAP.DLL [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> D:\Logiciels\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> D:\Logiciels\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-11-19] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\bd_js_config.js [2020-04-10] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\bd_config.cfg [2020-04-10] <==== ATTENTION Chrome: ======= CHR Profile: C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default [2020-12-10] CHR Notifications: Default -> hxxps://adatelierdeco.com; hxxps://app.slack.com; hxxps://boosterapps.com; hxxps://forums.futura-sciences.com; hxxps://fr.aliexpress.com; hxxps://gempages.net; hxxps://outilstactiques.fr; hxxps://store.dji.com; hxxps://teams.microsoft.com; hxxps://web.whatsapp.com; hxxps://www.alibaba.com; hxxps://www.bloggif.com; hxxps://www.dealabs.com; hxxps://www.elegantthemes.com; hxxps://www.facebook.com; hxxps://www.fnac.com; hxxps://www.instagram.com; hxxps://www.joom.com; hxxps://www.laredoute.fr; hxxps://www.netflix.com; hxxps://www.parents.fr; hxxps://www.ruroc.com; hxxps://www.spotern.com; hxxps://www.stilyoapps.com; hxxps://www.winamax.fr; hxxps://www.zone-telechargement.al CHR Session Restore: Default -> est activé. CHR Extension: (Recherche de prix par image pour Alibaba) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aadbahhifnekkkcbapdfandpimaoacmj [2020-11-28] CHR Extension: (Slides) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-14] CHR Extension: (Docs) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-14] CHR Extension: (Google Drive) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23] CHR Extension: (Google SERP counter) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfiijneafemhklkccnjijmcniffmiode [2020-05-08] CHR Extension: (ColorZilla) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2019-06-29] CHR Extension: (YouTube) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-14] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-11-17] CHR Extension: (Alitools assistant shopping) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\eenflijjbchafephdplkdmeenekabdfb [2020-10-30] CHR Extension: (Facebook Pixel Helper) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2020-10-02] CHR Extension: (Le bloc - notes en ligne) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\fefodpegbocmidnfphgggnjcicipaibk [2020-11-10] CHR Extension: (Sheets) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-14] CHR Extension: (Google Docs hors connexion) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-14] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-11-20] CHR Extension: (SEO Minion) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\giihipjfimkajhlcilipnjeohabimjhi [2020-10-09] CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2020-12-10] CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-11-10] CHR Extension: (WhatFont) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2019-06-19] CHR Extension: (Aliexpress Search by image) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkcacbjiofjgbnaknoojjboeiinempoa [2020-05-31] CHR Extension: (IGRAAL - Cashback & codes promo) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2020-11-23] CHR Extension: (DSers - AliExpress.com Product Importer) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmanaflgaempokjfbeeabkadnkoidjam [2020-12-10] CHR Extension: (Ali Hunter - AliExpress Product Tracker) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpajidobdpdigheplhpfggmeldjcpgfh [2020-11-18] CHR Extension: (AliSave | Télécharger les images & videos AliExpress) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbhfcmbdimdbbclfngkjfmgmjhnkjocl [2020-11-28] CHR Extension: (Mailtrack pour Gmail: Email tracking) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2020-12-10] CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2020-12-04] CHR Extension: (Save Image As PNG) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkokmeaibnajheohncaamjggkanfbphi [2019-10-26] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04] CHR Extension: (Ubersuggest) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmpgaoofmjlimabncmnmnopjabbflegf [2020-11-28] CHR Extension: (Correcteur de texte — LanguageTool) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2020-12-04] CHR Extension: (Downloader for Instagram) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\olkpikmlhoaojbbmmpejnimiglejmboe [2020-12-02] CHR Extension: (Evernote Web Clipper) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2020-12-10] CHR Extension: (Gmail) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Extension: (Chrome Media Router) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-25] CHR Extension: (Majestic Backlink Analyzer) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnmjaflneibolacpepklokkjnakmikmg [2020-05-04] CHR Extension: (Word Count) - C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnngehidikgomgfjbpffonkeimgbpjlh [2019-10-25] CHR Profile: C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-22] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [Fichier non signé] R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2500144 2020-04-10] (Bitdefender SRL -> Bitdefender) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8553552 2020-03-18] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2018-06-29] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] R2 MBAMService; D:\Logiciels\Anti-Malware\mbamservice.exe [6933272 2020-03-15] (Malwarebytes Inc -> Malwarebytes) S3 Origin Client Service; D:\Jeux\Origin\OriginClientService.exe [2475312 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; D:\Jeux\Origin\OriginWebHelperService.exe [3393848 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1355768 2020-10-28] (Bitdefender SRL -> Bitdefender) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5197552 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 serposcope; C:\Program Files (x86)\serposcope\bin\serposcope-service.exe [87880 2016-01-07] (Open Source Developer, Pierre Noguès -> Apache Software Foundation) R2 TeamViewer; D:\Logiciels\TeamViewer\TeamViewer_Service.exe [12097024 2019-11-06] (TeamViewer GmbH -> TeamViewer Germany GmbH) R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [242024 2020-12-08] (Bitdefender SRL -> Bitdefender) R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [581792 2020-12-08] (Bitdefender SRL -> Bitdefender) R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [242024 2020-12-08] (Bitdefender SRL -> Bitdefender) R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28760 2019-09-06] (LAVASOFT SOFTWARE CANADA INC -> ) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [66888 2017-10-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] (ASUSTeK Computer Inc. -> ) R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [2638328 2020-12-08] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [802976 2020-12-08] (Bitdefender SRL -> Bitdefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-04-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-12-14] (Disc Soft Ltd -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-12-14] (Disc Soft Ltd -> Disc Soft Ltd) S3 edrsensor; C:\WINDOWS\System32\DRIVERS\edrsensor.sys [309120 2020-02-24] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) R1 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [481936 2020-12-08] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-09-07] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-06-04] (Malwarebytes Inc -> Malwarebytes) R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-01-02] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R1 RsProxy; C:\Windows\system32\drivers\RsProxy.sys [15976 2017-12-19] (Realtek Semiconductor Corp -> ) R2 trufos; C:\WINDOWS\System32\drivers\trufos.sys [640760 2020-10-02] (Bitdefender SRL -> Bitdefender) R0 vlflt; C:\WINDOWS\System32\DRIVERS\vlflt.sys [386800 2020-12-08] (Bitdefender SRL -> Bitdefender) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WsAudio_Device; C:\WINDOWS\system32\drivers\VirtualAudio.sys [48424 2018-01-19] (Wondershare Technology Co.,Ltd -> Wondershare) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-12-10 19:17 - 2020-12-10 19:19 - 000038386 _____ C:\Users\Mr_GT\Desktop\FRST.txt 2020-12-10 19:17 - 2020-12-10 19:18 - 000000000 ____D C:\FRST 2020-12-10 19:16 - 2020-12-10 19:16 - 000591775 _____ C:\Users\Mr_GT\Desktop\ZHPDiag.txt 2020-12-10 19:10 - 2020-12-10 19:10 - 002288640 _____ (Farbar) C:\Users\Mr_GT\Desktop\FRST64.exe 2020-12-10 19:07 - 2020-12-10 19:07 - 003477888 _____ (Nicolas Coolman) C:\Users\Mr_GT\Desktop\ZHPSuite.exe 2020-12-10 19:07 - 2020-12-10 19:07 - 000000865 _____ C:\Users\Mr_GT\Desktop\ZHPSuite.lnk 2020-12-10 16:43 - 2020-12-10 16:43 - 000106375 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-12-10T164352.666.pdf 2020-12-10 16:35 - 2020-12-10 16:35 - 000104971 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-12-10T163558.134.pdf 2020-12-10 16:30 - 2020-12-10 16:30 - 000104443 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-12-10T163044.640.pdf 2020-12-10 16:22 - 2020-12-10 16:22 - 000105535 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-12-10T162211.180.pdf 2020-12-10 11:42 - 2020-12-10 11:42 - 000049234 _____ C:\Users\Mr_GT\Downloads\RIB - Boursorama (1).pdf 2020-12-10 11:24 - 2020-12-10 11:24 - 000107012 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-12-10T112439.795.pdf 2020-12-10 11:19 - 2020-12-10 11:19 - 000104906 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-12-10T111916.355.pdf 2020-12-10 11:16 - 2020-12-10 11:16 - 000104906 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-12-10T111627.428.pdf 2020-12-10 00:51 - 2020-12-10 00:51 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2020-12-09 11:26 - 2020-12-09 11:28 - 000090037 _____ C:\Users\Mr_GT\Downloads\Image Première.jpeg 2020-12-09 11:09 - 2020-12-09 11:09 - 000000000 ____D C:\Users\Mr_GT\AppData\Roaming\MAGIX Computer Products Intl. Co 2020-12-09 06:36 - 2020-12-09 06:36 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-12-09 06:36 - 2020-12-09 06:36 - 000014848 _____ C:\WINDOWS\system32\hnsproxy.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-12-09 06:35 - 2020-12-09 06:35 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-12-09 06:35 - 2020-12-09 06:35 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-12-09 06:35 - 2020-12-09 06:35 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2020-12-09 06:35 - 2020-12-09 06:35 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl 2020-12-09 06:35 - 2020-12-09 06:35 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl 2020-12-09 06:35 - 2020-12-09 06:35 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2020-12-09 06:35 - 2020-12-09 06:35 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2020-12-09 06:35 - 2020-12-09 06:35 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2020-12-09 06:35 - 2020-12-09 06:35 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2020-12-09 06:35 - 2020-12-09 06:35 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe 2020-12-09 06:35 - 2020-12-09 06:35 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt 2020-12-08 20:04 - 2020-12-08 20:05 - 000000000 ____D C:\Users\Mr_GT\Desktop\Bannière Noel 2020 2020-12-08 20:01 - 2020-12-09 11:29 - 000000000 ____D C:\Users\Mr_GT\Desktop\Video Collection Trott's Art 2020-12-08 16:32 - 2020-12-08 16:32 - 002638328 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys 2020-12-08 16:32 - 2020-12-08 16:32 - 000802976 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci.sys 2020-12-08 16:32 - 2020-12-08 16:32 - 000481936 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\gemma.sys 2020-12-08 16:32 - 2020-12-08 16:32 - 000386800 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\vlflt.sys 2020-12-08 13:07 - 2020-12-08 13:07 - 000000103 _____ C:\WINDOWS\MSUTIL.INI 2020-12-08 13:07 - 2020-12-08 13:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX 2020-12-08 13:07 - 2020-12-08 13:07 - 000000000 ____D C:\ProgramData\GenArts 2020-12-08 13:07 - 2020-12-08 13:07 - 000000000 ____D C:\Program Files\Common Files\OFX 2020-12-08 13:07 - 2020-12-08 13:07 - 000000000 ____D C:\Program Files (x86)\GenArts 2020-12-08 13:07 - 2010-02-04 07:58 - 000584376 _____ (Intel Corporation) C:\WINDOWS\system32\libiomp5md.dll 2020-12-08 13:07 - 2010-02-04 07:40 - 000575672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libiomp5md.dll 2020-12-08 13:06 - 2020-12-08 13:06 - 000000000 ____D C:\Users\Mr_GT\Downloads\Sapphire Plugins By Safted 2020-12-08 11:21 - 2020-12-08 11:21 - 000212432 _____ C:\Users\Mr_GT\Downloads\Rx Savagez - Two Step.mp3.sfk 2020-12-08 11:04 - 2020-12-08 11:04 - 000023360 _____ C:\Users\Mr_GT\Desktop\video pub clignotant.mp4.sfk 2020-12-07 20:04 - 2020-12-07 20:04 - 000002227 _____ C:\Users\Mr_GT\Desktop\Discord.lnk 2020-12-02 13:38 - 2020-12-02 13:41 - 000000000 ____D C:\Users\Mr_GT\Desktop\Bannière carte cadeau 2020-12-02 13:03 - 2020-12-02 13:03 - 000152944 _____ C:\Users\Mr_GT\Downloads\xiaomi-m365-noir-et-blanc.webp 2020-12-02 11:25 - 2020-12-02 11:53 - 000000000 ____D C:\Users\Mr_GT\Desktop\Cartes Cadeaux Trot'Secure 2020-12-01 11:47 - 2020-12-01 11:47 - 000150798 _____ C:\Users\Mr_GT\Downloads\scale_1200.webp 2020-11-30 16:42 - 2020-11-30 16:42 - 000478168 _____ C:\Users\Mr_GT\Downloads\14485904.webp 2020-11-30 16:01 - 2020-11-30 16:01 - 000060450 _____ C:\Users\Mr_GT\Downloads\HTB1DbgtcBGw3KVjSZFDq6xWEpXaH.webp 2020-11-30 16:00 - 2020-11-30 16:00 - 000043206 _____ C:\Users\Mr_GT\Downloads\2020-Kaabo-Mantis-Pro-10-pouces-double-moteur-e-scooter-2000W-LG-batterie-60V-24-5Ah.webp 2020-11-30 15:48 - 2020-11-30 15:48 - 000031360 _____ C:\Users\Mr_GT\Downloads\Kaabo-WolfWarriorFront_1080x.webp 2020-11-30 15:47 - 2020-11-30 15:47 - 000047124 _____ C:\Users\Mr_GT\Downloads\Kaabo-Wolf-Warrior-11-Electric-Scooter-Rear_800x_5b8559fe-b253-43e9-81e9-7dd0b5c29b33.webp 2020-11-30 15:26 - 2020-11-30 15:26 - 000737057 _____ C:\Users\Mr_GT\Downloads\Eqi3EkT.jpeg 2020-11-30 15:26 - 2020-11-30 15:26 - 000485857 _____ C:\Users\Mr_GT\Downloads\xNKMD6P.jpeg 2020-11-30 15:21 - 2020-11-30 15:21 - 000100042 _____ C:\Users\Mr_GT\Downloads\Janobike-trottinette-lectrique-T85-trottinette-lectrique-tout-terrain-60v-6000w-double-entra-nement-avec-frein-disque.jpg_Q90.jpg_.webp 2020-11-30 12:59 - 2020-11-30 12:59 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b0487d79d699 2020-11-29 17:12 - 2020-11-29 17:12 - 000107579 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-29T171204.828.pdf 2020-11-29 16:42 - 2020-11-29 16:42 - 000106416 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-29T164234.332.pdf 2020-11-28 12:49 - 2020-11-28 12:49 - 000194083 _____ C:\Users\Mr_GT\Downloads\feuille de soins M.DALL O.pdf 2020-11-28 12:48 - 2020-11-28 12:48 - 000216567 _____ C:\Users\Mr_GT\Downloads\WhatsApp Image 2020-11-28 at 12.47.39.jpeg 2020-11-27 13:02 - 2020-11-27 13:02 - 002786385 _____ C:\Users\Mr_GT\Downloads\Catalogue Hydrodipping.pdf 2020-11-27 12:04 - 2020-11-27 12:04 - 000323293 _____ C:\Users\Mr_GT\Downloads\Copie de Design sans titre.zip 2020-11-26 19:38 - 2020-11-26 19:38 - 000000000 ____D C:\Users\Mr_GT\Downloads\kanit 2020-11-26 19:37 - 2020-11-26 19:37 - 001228961 _____ C:\Users\Mr_GT\Downloads\kanit.zip 2020-11-26 15:44 - 2020-11-26 15:44 - 000047689 _____ C:\Users\Mr_GT\Downloads\WhatsApp Image 2020-11-25 at 19.2d9.41.jpeg 2020-11-26 15:24 - 2020-11-26 15:24 - 000023084 _____ C:\Users\Mr_GT\Downloads\WhatsApp Image 2020-11-25 at 19.29.41.jpeg 2020-11-25 18:02 - 2020-11-25 18:02 - 000000000 ____D C:\Users\Mr_GT\Downloads\DECK SPEEDWAY 5 2020-11-25 13:16 - 2020-11-27 18:43 - 000000587 _____ C:\Users\Mr_GT\Desktop\Mot Clef Deck Trottinette.txt 2020-11-24 21:18 - 2020-11-24 21:18 - 000000000 ____D C:\Users\Mr_GT\Downloads\cracked-sliced-text-effect 2020-11-24 11:56 - 2020-11-24 11:56 - 000076887 _____ C:\Users\Mr_GT\Downloads\deck-trottinette-electrique-trotddts-art.jpeg 2020-11-24 09:51 - 2020-11-24 09:51 - 000068203 _____ C:\Users\Mr_GT\Downloads\deck-trottinette-electrique-trotts-art.jpeg 2020-11-24 02:34 - 2020-11-24 02:34 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2020-11-24 02:34 - 2020-11-24 02:34 - 000002144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-11-23 20:20 - 2020-12-07 22:08 - 000006562 _____ C:\Users\Mr_GT\Desktop\Prix Deck.txt 2020-11-23 12:22 - 2020-11-23 12:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2020-11-21 16:07 - 2020-11-21 16:07 - 000040925 _____ C:\Users\Mr_GT\Downloads\facture_11354120201104.pdf 2020-11-21 15:49 - 2020-11-21 15:49 - 002778737 _____ C:\Users\Mr_GT\Downloads\vosTimbres (26).pdf 2020-11-20 16:31 - 2020-11-20 16:31 - 002347251 _____ C:\Users\Mr_GT\Downloads\video-1605884382.mp4 2020-11-20 14:49 - 2020-11-20 14:49 - 000104768 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-20T144950.537.pdf 2020-11-20 14:39 - 2020-11-20 14:39 - 000107510 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-20T143941.466.pdf 2020-11-19 16:36 - 2020-11-19 16:36 - 000107695 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-19T163627.916.pdf 2020-11-19 16:23 - 2020-11-19 16:23 - 000116894 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-19T162309.108.pdf 2020-11-19 12:38 - 2020-11-19 12:38 - 000106329 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-19T123843.333.pdf 2020-11-18 16:45 - 2020-11-18 16:45 - 000139475 _____ C:\Users\Mr_GT\Downloads\WhatsApp Image 2020-11-18 at 16.40.40.jpeg 2020-11-18 16:45 - 2020-11-18 16:45 - 000126293 _____ C:\Users\Mr_GT\Downloads\WhatsApp Image 2020-11-18 at 16.40.40 (1).jpeg 2020-11-18 16:45 - 2020-11-18 16:45 - 000123274 _____ C:\Users\Mr_GT\Downloads\WhatsApp Image 2020-11-18 at 16.40.41.jpeg 2020-11-18 16:11 - 2020-11-18 16:11 - 000088262 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-18T161100.932.pdf 2020-11-18 11:36 - 2020-11-18 11:36 - 000089718 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-18T113640.866.pdf 2020-11-18 11:21 - 2020-11-18 11:21 - 000087846 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-18T112123.272.pdf 2020-11-18 11:21 - 2020-11-18 11:21 - 000087846 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-18T112103.726.pdf 2020-11-17 21:38 - 2020-11-30 15:12 - 000000624 _____ C:\Users\Mr_GT\Desktop\Commandes Aliexpress.txt 2020-11-17 21:18 - 2020-11-17 21:18 - 000087348 _____ C:\ProgramData\agent.update.1605644270.bdinstall.v2.bin 2020-11-17 10:07 - 2020-11-17 10:07 - 000037081 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed (9).zip 2020-11-16 23:21 - 2020-11-16 23:21 - 000342423 _____ C:\Users\Mr_GT\Downloads\Prix Deck Trott'Arts.zip 2020-11-16 11:35 - 2020-11-16 11:35 - 000107341 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-16T113510.692.pdf 2020-11-16 11:25 - 2020-11-16 11:25 - 000104975 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-16T112546.721.pdf 2020-11-16 11:12 - 2020-11-16 11:12 - 000104875 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-16T111228.853.pdf 2020-11-15 12:29 - 2020-11-22 12:07 - 000000371 _____ C:\Users\Mr_GT\Desktop\Pense bete Trott Arts.txt 2020-11-14 20:33 - 2020-11-14 20:33 - 000039828 _____ C:\Users\Mr_GT\Downloads\vosTimbres (25).pdf 2020-11-14 20:33 - 2020-11-14 20:33 - 000039828 _____ C:\Users\Mr_GT\Downloads\vosTimbres (24).pdf 2020-11-14 18:51 - 2020-11-14 18:51 - 000064038 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed (8).zip 2020-11-14 18:44 - 2020-11-14 18:44 - 000035170 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed (7).zip 2020-11-13 11:52 - 2020-11-13 11:52 - 000039830 _____ C:\Users\Mr_GT\Downloads\vosTimbres (23).pdf 2020-11-13 11:47 - 2020-11-13 11:47 - 000105086 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-13T114744.966.pdf 2020-11-13 10:44 - 2020-11-13 10:44 - 000396573 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-13T104402.329.pdf 2020-11-12 14:47 - 2020-11-12 14:47 - 000054474 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed (6).zip 2020-11-12 14:46 - 2020-11-12 14:48 - 000000000 ____D C:\Users\Mr_GT\Desktop\Pneu Trottinette Électrique Valve Courbée 10 2020-11-12 13:41 - 2020-11-12 13:41 - 000093311 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed (5).zip 2020-11-12 12:46 - 2020-11-12 12:46 - 000013084 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed (3).zip 2020-11-12 12:37 - 2020-11-12 12:37 - 000024563 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed (2).zip 2020-11-12 12:27 - 2020-11-12 12:27 - 000024304 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed (1).zip 2020-11-12 04:08 - 2020-11-12 04:08 - 000002364 _____ C:\Users\Mr_GT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2020-11-12 04:08 - 2020-11-12 04:08 - 000002356 _____ C:\Users\Mr_GT\Desktop\Microsoft Teams.lnk 2020-11-12 04:08 - 2020-11-12 04:08 - 000000000 ____D C:\Users\Mr_GT\AppData\Roaming\Teams 2020-11-11 20:45 - 2020-11-11 20:45 - 000337089 _____ C:\Users\Mr_GT\Downloads\iloveimg-compressed.zip 2020-11-11 20:37 - 2020-11-11 20:37 - 000401678 _____ C:\Users\Mr_GT\Downloads\large (3).zip 2020-11-11 20:00 - 2020-11-11 20:00 - 000000000 ____D C:\Users\Mr_GT\AppData\LocalLow\Temp 2020-11-11 19:59 - 2020-11-11 19:59 - 000000000 ____D C:\WINDOWS\PCHEALTH 2020-11-11 18:33 - 2020-11-11 18:33 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe 2020-11-11 18:32 - 2020-11-11 18:32 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2020-11-11 15:04 - 2020-11-11 15:04 - 000106975 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-11T150435.004.pdf 2020-11-11 14:41 - 2020-11-11 14:41 - 000106708 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-11T144147.173.pdf 2020-11-11 14:32 - 2020-11-11 14:32 - 000106940 _____ C:\Users\Mr_GT\Downloads\Bordereaux-affranchissement - 2020-11-11T143252.124.pdf 2020-11-10 16:59 - 2020-12-10 00:52 - 000000000 ____D C:\Users\Mr_GT\AppData\LocalLow\uTorrent ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-12-10 19:19 - 2019-07-23 09:48 - 000000000 ____D C:\Users\Mr_GT\AppData\Roaming\uTorrent 2020-12-10 19:19 - 2019-03-12 01:10 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free 2020-12-10 19:16 - 2019-05-12 14:54 - 000000000 ____D C:\Users\Mr_GT\AppData\Roaming\ZHP 2020-12-10 19:12 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-12-10 19:07 - 2019-05-12 14:54 - 000000000 ____D C:\Users\Mr_GT\AppData\Local\ZHP 2020-12-10 18:12 - 2018-07-06 07:55 - 000000000 ____D C:\Users\Mr_GT\AppData\Local\D3DSCache 2020-12-10 17:46 - 2020-11-01 13:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-12-10 14:41 - 2020-11-01 13:16 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A16C129F-8F0E-47B4-A61D-784367458F40} 2020-12-10 01:02 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2020-12-10 00:58 - 2020-11-01 13:18 - 001771910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-12-10 00:58 - 2019-12-07 15:50 - 000792000 _____ C:\WINDOWS\system32\perfh00C.dat 2020-12-10 00:58 - 2019-12-07 15:50 - 000150166 _____ C:\WINDOWS\system32\perfc00C.dat 2020-12-10 00:53 - 2019-01-23 01:59 - 000000000 ____D C:\Users\Mr_GT\AppData\Local\Origin 2020-12-10 00:53 - 2018-03-13 21:06 - 000000000 ____D C:\ProgramData\Origin 2020-12-10 00:52 - 2019-03-30 18:34 - 000000000 ____D C:\Users\Mr_GT\AppData\Local\BitTorrentHelper 2020-12-10 00:52 - 2019-03-07 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2020-12-10 00:52 - 2018-05-18 01:33 - 000000000 ____D C:\Users\Mr_GT\AppData\LocalLow\Mozilla 2020-12-10 00:52 - 2017-12-14 16:22 - 000000000 ___RD C:\Users\Mr_GT\OneDrive 2020-12-10 00:51 - 2020-11-01 13:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-12-10 00:51 - 2020-11-01 13:09 - 000543048 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-12-10 00:51 - 2020-05-21 12:03 - 000000000 ____D C:\ProgramData\serposcope 2020-12-10 00:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-12-10 00:51 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-12-10 00:51 - 2018-01-16 00:55 - 000000448 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2020-12-10 00:50 - 2020-11-01 12:58 - 000000000 ____D C:\Program Files\Hyper-V 2020-12-10 00:50 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2020-12-10 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-12-10 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2020-12-10 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-12-10 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-12-10 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2020-12-10 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-12-10 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2020-12-10 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2020-12-10 00:49 - 2020-11-01 13:10 - 000000000 ____D C:\Users\Mr_GT 2020-12-10 00:49 - 2018-01-06 23:50 - 000000000 ____D C:\Users\Mr_GT\AppData\Roaming\discord 2020-12-09 21:15 - 2017-12-17 21:53 - 000000000 ____D C:\Users\Mr_GT\AppData\Roaming\vlc 2020-12-09 20:22 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2020-12-09 06:37 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-12-09 03:35 - 2020-07-12 09:51 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-12-09 03:35 - 2020-07-12 09:51 - 000002265 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2020-12-08 20:03 - 2020-10-25 11:30 - 000000000 ____D C:\Users\Mr_GT\Desktop\Collection Trott'Art 2020-12-08 11:31 - 2019-08-05 17:41 - 000000000 ____D C:\Users\Mr_GT\AppData\Roaming\VEGAS 2020-12-08 11:00 - 2020-01-01 16:11 - 000001453 _____ C:\Users\Mr_GT\Desktop\Note-Drop.txt 2020-12-07 20:04 - 2020-06-05 13:41 - 000002233 _____ C:\Users\Mr_GT\Desktop\Discord - Copie.lnk 2020-12-07 20:04 - 2018-01-06 23:50 - 000000000 ____D C:\Users\Mr_GT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-12-07 20:04 - 2018-01-06 23:50 - 000000000 ____D C:\Users\Mr_GT\AppData\Local\Discord 2020-12-06 14:58 - 2018-01-16 00:50 - 000000000 ____D C:\Users\Mr_GT\AppData\Local\Packages 2020-12-04 20:01 - 2019-12-07 10:03 - 000065536 _____ C:\WINDOWS\system32\config\ELAM 2020-12-03 23:12 - 2020-11-01 13:16 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-12-03 23:12 - 2020-11-01 13:16 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-12-03 06:00 - 2020-10-09 23:59 - 000000000 ___DC C:\WINDOWS\Panther 2020-11-30 20:08 - 2019-06-22 18:04 - 000000000 ____D C:\Users\Mr_GT\Desktop\A-Trot'Secure dropshipping 2020-11-30 12:59 - 2020-11-01 13:16 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-11-25 12:46 - 2018-05-18 01:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-11-25 12:46 - 2017-12-14 16:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2020-11-23 12:22 - 2018-05-18 01:31 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-11-17 21:18 - 2019-03-12 01:08 - 000000000 ____D C:\Program Files\Bitdefender Agent 2020-11-14 12:28 - 2020-11-07 14:34 - 000002297 _____ C:\Users\Mr_GT\Desktop\Microsoft Edge - Copie.lnk 2020-11-14 12:28 - 2020-11-07 14:24 - 000002297 _____ C:\Users\Mr_GT\Desktop\Microsoft Edge.lnk 2020-11-14 10:03 - 2017-12-14 19:55 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-11-14 10:00 - 2017-12-14 19:55 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-11-12 00:05 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-11-12 00:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-11-12 00:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2020-11-12 00:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2020-11-12 00:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-11-12 00:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-11-11 18:32 - 2020-11-01 13:09 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll ==================== Fichiers à la racine de certains dossiers ======== 2018-03-04 02:28 - 2018-03-04 02:28 - 000003384 _____ () C:\Users\Mr_GT\AppData\Roaming\Microsoft\83b968be-efe4-4a91-894a-ec489147e1aa 2019-09-01 20:51 - 2019-11-19 01:16 - 000001456 _____ () C:\Users\Mr_GT\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs 2019-03-05 13:23 - 2019-03-05 13:23 - 000000000 _____ () C:\Users\Mr_GT\AppData\Local\{3DF96896-912A-4CDC-9DF4-4BE9A8A28414} ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================