Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-11-2021 02 Exécuté par Geredit (administrateur) sur DESKTOP-FQPBFIJ (MSI MS-7823) (08-11-2021 18:31:30) Exécuté depuis C:\Users\Geredit\Downloads Profils chargés: Geredit Plate-forme: Microsoft Windows 10 Professionnel Version 21H1 19043.1320 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\iPSNotifier.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (DivX, LLC -> ) C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe (George Jopling) [Fichier non signé] C:\Program Files (x86)\Caps Lock\Caps Lock.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (Jiangmen Ruili Software Co., Ltd. -> Rene.E Laboratory) C:\Program Files (x86)\Rene.E Laboratory\Becca\x64\bcservice.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <34> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Microsoft) [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe (Microsoft) [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Nero 2019\Nero BackItUp\BackItUp.exe (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Nero 2019\Nero BackItUp\NBService.exe (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Transfer\Transfer.exe (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Orange -> Orange) C:\Users\Geredit\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe (Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe (Realtek Semiconductor Corp. -> Realtek) C:\Program Files\Realtek\WifiAutoInstall\WifiAutoInstallSrv.exe (Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe (Sonic Solutions -> ) C:\Program Files (x86)\Roxio 2012\5.0\CPMonitor.exe (Sonic Solutions -> ) C:\Program Files (x86)\Roxio 2012\Roxio Burn\RoxioBurnLauncher.exe (Sonic Solutions -> ) C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe (Sonic Solutions -> ) C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [Nero BackItUp] => C:\Program Files (x86)\Nero\Nero 2019\Nero BackItup\BackItUp.exe [1170712 2018-08-07] (Nero AG -> Nero AG) HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxWatchTray13.exe [293360 2011-07-13] (Sonic Solutions -> Rovi Corporation) HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1230704 2011-03-21] (DivX, LLC -> ) HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [324976 2010-05-21] (Flexera Software, Inc. -> Flexera Software, Inc.) HKLM-x32\...\Run: [CPMonitor] => C:\Program Files (x86)\Roxio 2012\5.0\CPMonitor.exe [84464 2011-07-08] (Sonic Solutions -> ) HKLM-x32\...\Run: [Desktop Disc Tool] => C:\Program Files (x86)\Roxio 2012\Roxio Burn\RoxioBurnLauncher.exe [506352 2011-06-12] (Sonic Solutions -> ) HKLM-x32\...\Run: [DriveSpan] => C:\Program Files (x86)\Nero\Transfer\Transfer.exe [138520 2018-08-29] (Nero AG -> Nero AG) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2017-04-05] (Brother Industries, Ltd.) [Fichier non signé] HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [Fichier non signé] HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581952 2017-04-05] (Brother Industries, Ltd.) [Fichier non signé] HKLM-x32\...\Run: [M17A] => C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [86128 2020-03-27] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM-x32\...\Run: [Settings] => C:\Users\Geredit\AppData\Roaming\Settings\Settings.exe [12765678 2021-11-03] (Settings software) [Fichier non signé] HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe /background /setautostart (Pas de fichier) HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe /background /setautostart (Pas de fichier) HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-21-1588780585-2048273974-1313509939-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340216 2021-11-05] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1588780585-2048273974-1313509939-1001\...\Run: [] => [X] HKU\S-1-5-21-1588780585-2048273974-1313509939-1001\...\Run: [MicrosoftEdgeAutoLaunch_5C2EB5DA1E7235B826EB536FD4125979] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKU\S-1-5-21-1588780585-2048273974-1313509939-1001\...\MountPoints2: {448bcba2-750c-11eb-ae2f-d8cb8a1da9e5} - "I:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1588780585-2048273974-1313509939-1001\...\MountPoints2: {4e3567a0-d6a5-11eb-ae91-d8cb8a1da9e5} - "H:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1588780585-2048273974-1313509939-1001\...\MountPoints2: {8525a7f9-26ac-11eb-ad66-806e6f6e6963} - "F:\start.exe" HKU\S-1-5-21-1588780585-2048273974-1313509939-1001\...\MountPoints2: {f433fee1-2446-11ec-aee4-d8cb8a1da9e5} - "H:\WifiAutoInstallSetup.exe" HKU\S-1-5-21-1588780585-2048273974-1313509939-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-03] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2020-11-15] ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Caps Lock.lnk [2021-09-07] ShortcutTarget: Caps Lock.lnk -> C:\Program Files (x86)\Caps Lock\Caps Lock.exe (George Jopling) [Fichier non signé] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iPSNotifier.lnk [2021-06-17] ShortcutTarget: iPSNotifier.lnk -> C:\Program Files (x86)\Brother\iPrint&Scan\iPSNotifier.exe (Brother Industries, Ltd.) [Fichier non signé] HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {01393B36-15C7-4712-97E7-080A26586938} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [7018264 2018-07-18] (Nero AG -> Nero AG) Task: {01732B89-3E00-4A56-8284-8D27E101B8E8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23966488 2018-09-08] (Microsoft Corporation -> Microsoft Corporation) Task: {1ED676FF-4399-4CC4-BB56-A7A55D5D36CD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {20593BA3-94C2-4E70-96CD-A3D30F244923} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3C2E6596-F01A-4877-A644-870F314411DF} - System32\Tasks\AdvancedWindowsManager #4 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe -v 113 -t 8080 (Pas de fichier) <==== ATTENTION Task: {3F397CBE-F444-438B-9EB8-BABD88310FEA} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3978624 2021-11-05] (Microsoft Corporation -> Microsoft Corporation) Task: {6BACEE45-53D3-4FD8-BBB3-F08EBD109A3E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {6D7CB128-4264-4329-AB21-85CFF0BC8EB4} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1527064 2021-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {7E7E06A9-E0A9-4FBA-B215-198A6106CCE3} - System32\Tasks\Opera scheduled assistant Autoupdate 1607262767 => C:\Users\Geredit\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Geredit\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {9663D198-E5F8-47EC-836A-4BBED6B18C2F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-14] (Google LLC -> Google LLC) Task: {A9C1ACFA-2C40-4777-91E1-088EFE5B57C8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2417448 2021-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {AA89FC4B-54EC-4566-9CF6-7D93C00E4EAF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B52C6945-6EAA-4D9F-B009-6DC7BA776357} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Geredit\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1971400 2021-08-23] (Orange -> Orange) Task: {B8D07AAF-31F1-4BB2-AE7F-2CC5D9968B95} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1527064 2021-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {BDB0496F-1E26-4D8E-8B40-093026E6E5E8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-14] (Google LLC -> Google LLC) Task: {C535A170-22F2-4E5C-B3BB-8A997FA2602A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2417448 2021-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {C71C2FC1-1404-46B1-BC44-2952AFC61035} - System32\Tasks\AdvancedWindowsManager #5 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe -v 114 -t 8080 (Pas de fichier) <==== ATTENTION Task: {CD5D016F-8DBC-4587-8C37-3B646D524514} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [87120 2021-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {DA70653F-60AF-4397-B91F-0DF8A12ACF84} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Pas de fichier) Task: {E985E875-D34C-48AD-8457-1DBAF6EDE1FA} - System32\Tasks\AdvancedWindowsManager #6 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe -v 115 -t 8080 (Pas de fichier) <==== ATTENTION Task: {F42F2BF0-D1F6-4ECC-9282-BECDC0CE7C2D} - System32\Tasks\Opera scheduled Autoupdate 1607262729 => C:\Users\Geredit\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) Task: {F552AB8D-E506-446E-8E0B-816479C3F8BF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23966488 2018-09-08] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{764abba0-9cd0-484a-9540-df4e731efa83}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{90f86e8f-d53d-4b09-a5cf-b1a597c2aa78}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\Geredit\Downloads Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\Geredit\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-08] Edge DownloadDir: Default -> C:\Users\Geredit\Downloads Edge Notifications: Default -> hxxps://1.press-to-allow.com; hxxps://20ae85m9rg6p28n270.amaso.xyz; hxxps://5b5335m4pbgy9bl116.amaso.xyz; hxxps://betaengine.org; hxxps://bomero.net; hxxps://brop1.com; hxxps://centralheat.me; hxxps://cu27t-evo29lution.xyz; hxxps://folowme.biz; hxxps://investmentstar.org; hxxps://mykiger.com; hxxps://news-capiki.cc; hxxps://news-fupesa.cc; hxxps://o2mzv.live-gossip.online; hxxps://rencontres-en-ligne.com; hxxps://romancedating.top; hxxps://secure-access-6f458vc5mqnqni44ea.gate20.xyz; hxxps://singleandhorny.net; hxxps://stopovirus.clicforum.fr; hxxps://success-news.org; hxxps://theresults.info; hxxps://tik-ttok.net; hxxps://to5s.biz; hxxps://tubetria.mobi; hxxps://voyeurhit.tube; hxxps://wantsapp.fun; hxxps://wp.aliexpress.com; hxxps://www.auto-doc.fr; hxxps://www.auto-selection.com; hxxps://www.facebook.com; hxxps://www.mister-auto.com; hxxps://www.motherfuckerxxx.com; hxxps://www.pornjk.com; hxxps://www.redwap.me; hxxps://www.tnaflix.com; hxxps://www.vrpornlinks.net; hxxps://www1.push-news.org; hxxps://youjizz.sex Edge HomePage: Default -> hxxps://www.orange.fr/portail Edge StartupUrls: Default -> "hxxp://www.orange.fr/portail" Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Geredit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-11-07] Edge Extension: (Choix messagerie) - C:\Users\Geredit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jdcedcgflnejpkadhnfhokhkanpelaob [2021-02-15] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 FF Extension: (