Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021 Exécuté par Anthony (administrateur) sur DESKTOP-HL6D1TG (LENOVO 80X4) (21-11-2021 16:51:35) Exécuté depuis C:\Users\jeann\OneDrive\Bureau Profils chargés: Anthony Plate-forme: Microsoft Windows 10 Professionnel Version 21H1 19043.1348 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe () [Fichier non signé] C:\Program Files\Atomic Alarm Clock\timeserv.exe (Audible Inc) C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.67.0_x64__xns73kv1ymhp2\AudibleRT.WindowsPhone.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Datpol Janusz Siemienowicz -> ) C:\Program Files (x86)\SpyShelter Free\SpyShelter.exe (Datpol Janusz Siemienowicz -> Datpol) C:\Program Files (x86)\SpyShelter Free\SpyShelterSrv.exe (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Druide informatique inc. -> Druide informatique inc.) C:\Program Files\Druide\Antidote 11\Application\Bin64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.) C:\Program Files\Druide\Connectix 11\Application\Bin64\AgentConnectix.exe (F.lux Software LLC -> f.lux Software LLC) C:\Users\jeann\AppData\Local\FluxSoftware\Flux\flux.exe (Firebit OU -> Rainmeter) G:\APP@PORT\Rainmeter\Rainmeter.exe (Google LLC -> ) C:\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18> (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe <7> (Henry++) [Fichier non signé] C:\Program Files\simplewall\simplewall.exe (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_540f2c3a00626c78\igfxCUIService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_540f2c3a00626c78\igfxEM.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c20bc7fe4fb9b481\OneApp.IGCC.WinService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6c531da99dfd5830\IntelCpHDCPSvc.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6c531da99dfd5830\IntelCpHeciSvc.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_5d10f2aad7f84bec\LMS.exe (Last.fm Limited -> Last.fm) [Fichier non signé] C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe (Mega Limited -> Mega Limited) C:\Users\jeann\AppData\Local\MEGAsync\MEGAsync.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Etudes\Microsoft Encarta 2009 - Études DVD\EDICT.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) [Fichier non signé] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21> (NoVirusThanks Company Srl -> NoVirusThanks Company Srl) C:\OSArmorDevSvc\OSArmorDevSvc.exe (NoVirusThanks Company Srl -> NoVirusThanks Company Srl) C:\OSArmorDevSvc\OSArmorDevUI.exe (Open-Shell) [Fichier non signé] C:\Program Files\Open-Shell\StartMenu.exe (Piotr Pawlowski) [Fichier non signé] C:\Program Files (x86)\foobar2000\foobar2000.exe (Piriform Ltd -> Piriform Ltd) C:\Users\jeann\OneDrive\Bureau\AppPortable\PortableApps\Speccy 1.32.740_Portable\Speccy64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (SafeNet, Inc. -> SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe (SafeNet, Inc.) [Fichier non signé] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (ShareX Team) [Fichier non signé] C:\Program Files\ShareX\ShareX.exe (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe <6> (Synology Inc. -> ) C:\Program Files (x86)\Synology\CloudStationBackup\bin\vss-service-x64.exe (Synology Inc. -> ) C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMMsgHost.exe (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe (Watchtower Bible and Tract Society of New York) C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_12.5.47.0_x64__5rz59y55nfz3e\JWLibrary.exe (WATCHTOWER BIBLE AND TRACT SOCIETY OF NEW YORK, INC. -> Watch Tower Bible and Tract Society of Pennsylvania.) C:\Program Files (x86)\Watchtower\Watchtower Library\F\wtlibrary.exe (WireGuard LLC -> WireGuard LLC) C:\Program Files\WireGuard\wireguard.exe <3> (Zemana Ltd. -> Zemana Ltd.) C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677488 2020-04-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617584 2020-04-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617584 2020-04-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-20] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [216576 2020-09-26] (Open-Shell) [Fichier non signé] HKLM\...\Run: [SpyShelter] => C:\Program Files (x86)\SpyShelter Free\SpyShelter.exe [3218320 2021-04-12] (Datpol Janusz Siemienowicz -> ) HKLM\...\Run: [AgentConnectix64] => C:\Program Files\Druide\Connectix 11\Application\Bin64\AgentConnectix.exe [3330048 2021-10-18] (Druide informatique inc. -> Druide informatique inc.) HKLM-x32\...\Run: [ZALFree] => C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe [8980016 2015-11-05] (Zemana Ltd. -> Zemana Ltd.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8807712 2021-11-18] (Dropbox, Inc -> Dropbox, Inc.) HKLM\...\Policies\Explorer: [NoAutorun] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [Zoom] => C:\Users\jeann\AppData\Roaming\Zoom\bin\Zoom.exe [267560 2021-11-15] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5667752 2021-10-29] (Tonec Inc. -> Tonec Inc.) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [AtomicAlarmClock6] => C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [5321728 2016-08-09] () [Fichier non signé] HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [L09FXLRD_6332031] => C:\Program Files (x86)\Microsoft Etudes\Microsoft Encarta 2009 - Études DVD\EDICT.EXE [351000 2008-05-28] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [f.lux] => C:\Users\jeann\AppData\Local\FluxSoftware\Flux\flux.exe [1469968 2020-06-17] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [Ghostpress] => "C:\Users\jeann\Downloads\Compressed\Ghostpress_2\Ghostpress.exe" -autostart (Pas de fichier) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [EZBlocker 2] => G:\LOGICIELS\128\EZBlocker2_v2.1.4.0\EZBlocker2.exe (Pas de fichier) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [EZBlocker3] => C:\Users\jeann\OneDrive\Bureau\AppPortable\EZBlocker3.exe [1396224 2021-06-26] (OpenByte) [Fichier non signé] HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [EZBlocker] => C:\Users\jeann\OneDrive\Bureau\AppPortable\EZBlocker.exe [1356288 2021-11-09] (Eric Zhang) [Fichier non signé] HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [Speccy] => C:\Users\jeann\OneDrive\Bureau\AppPortable\PortableApps\Speccy 1.32.740_Portable\Speccy64.exe [7117464 2018-05-02] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [Amazon Photos] => C:\Users\jeann\AppData\Local\Amazon Drive\AmazonPhotos.exe [10303688 2021-08-12] (Amazon.com Services LLC -> Amazon.com Inc.) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [408976 2021-09-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [simplewall] => C:\Program Files\simplewall\simplewall.exe [749056 2021-11-14] (Henry++) [Fichier non signé] HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267944 2021-11-19] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Policies\Explorer: [NoAutorun] 1 HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-15] (Google LLC -> Google LLC) AppInit_DLLs: C:\PROGRA~2\KEYCRY~1\KEYCRY~4.DLL => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll [95712 2015-11-05] (Zemana Ltd. -> Zemana Ltd.) AppInit_DLLs-x32: C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt32(1).dll [86936 2015-11-05] (Zemana Ltd. -> Zemana Ltd.) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AntiLogger Free.lnk [2021-06-08] ShortcutTarget: AntiLogger Free.lnk -> C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe (Zemana Ltd. -> Zemana Ltd.) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2021-09-17] () <==== ATTENTION [zéro octet Fichier/Dossier] Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DnsAngel.exe - Raccourci.lnk [2021-11-09] ShortcutTarget: DnsAngel.exe - Raccourci.lnk -> C:\Users\jeann\OneDrive\Bureau\AppPortable\DnsAngel\DnsAngel.exe (Sordum Software -> www.sordum.org) [Fichier non signé] Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EZBlocker.lnk [2021-05-18] ShortcutTarget: EZBlocker.lnk -> C:\Users\jeann\OneDrive\Bureau\AppPortable\EZBlocker.exe (Eric Zhang) [Fichier non signé] Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Hard Disk Sentinel.lnk [2021-11-14] ShortcutTarget: Hard Disk Sentinel.lnk -> C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe (Janos Mathe -> H.D.S. Hungary) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2021-01-02] ShortcutTarget: MEGAsync.lnk -> C:\Users\jeann\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainlendar2.lnk [2021-06-05] ShortcutTarget: Rainlendar2.lnk -> C:\Program Files\Rainlendar2\Rainlendar2.exe () [Fichier non signé] Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.exe - Raccourci.lnk [2020-12-15] ShortcutTarget: Rainmeter.exe - Raccourci.lnk -> G:\APP@PORT\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2021-09-12] ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [Fichier non signé] Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar152.lnk [2021-11-21] ShortcutTarget: Sidebar152.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [Fichier non signé] Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spotify.lnk [2021-05-20] ShortcutTarget: Spotify.lnk -> (Pas de fichier) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SpyShelter Free.lnk [2021-11-09] ShortcutTarget: SpyShelter Free.lnk -> C:\Program Files (x86)\SpyShelter Free\SpyShelter.exe (Datpol Janusz Siemienowicz -> ) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station Backup.lnk [2021-11-21] ShortcutTarget: Synology Cloud Station Backup.lnk -> C:\Program Files (x86)\Synology\CloudStationBackup\bin\launcher.exe (Synology Inc. -> Synology Inc.) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2021-11-21] ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WireGuard.lnk [2021-06-06] ShortcutTarget: WireGuard.lnk -> C:\Program Files\WireGuard\wireguard.exe (WireGuard LLC -> WireGuard LLC) Startup: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Zoom.lnk [2021-11-09] ShortcutTarget: Zoom.lnk -> C:\Users\jeann\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {14AC07DD-4192-499E-A235-01943B2110A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2DB681AD-EE12-40C4-AA52-655CB2AAD20F} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d9e1b48a-11a1-4ada-a821-18124d92d356 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {2FFEA4E1-D6EC-459F-B5DB-D8F9E2C083AF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6e7715c0-217d-4388-9163-c833e553d64d => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {3C6BEBF3-6D94-4D4E-B45D-8DFB4379F09C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {47EBB213-8CAE-4EF8-93E6-9632F36DA64B} - System32\Tasks\Ghostpress_SkipUAC_AD40D5EE99961C136B56C6F1B4E1DBC6 => C:\Users\jeann\Downloads\Compressed\Ghostpress_2\Ghostpress.exe (Pas de fichier) Task: {4BDDDC1B-85EB-4F1B-8D8B-52FD9A70760A} - System32\Tasks\CCleaner Update => G:\APP@PORT\ccsetup574_2\CCUpdate.exe [684976 2021-08-16] (Piriform Software Ltd -> Piriform) Task: {4E7BC0C4-749C-4375-BB53-38BFE48D16F1} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2882408 2021-09-17] (Microsoft Corporation -> Microsoft Corporation) Task: {56CB179F-FE5C-4187-9F0C-C24DAC828402} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1020524199-3411935137-1089394653-1001 => C:\Users\jeann\AppData\Local\MEGAsync\MEGAupdater.exe [1820848 2021-07-14] (Mega Limited -> Mega Limited) Task: {665E2D06-3F2D-424E-8C28-FE039AD9285A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {67D58B1E-4B0A-4163-B344-3C8DF71E4C11} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-03] (Dropbox, Inc -> Dropbox, Inc.) Task: {6BE8A52A-ADB3-4CDE-9F84-C4EFC7291A3D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-03] (Dropbox, Inc -> Dropbox, Inc.) Task: {72B23D4B-9589-4F52-9A52-EF879F26BD90} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5ed76435-3a45-473c-b7ce-f1e63c3852fd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {7C7A2218-01F3-4988-B283-EEAE0E170160} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> ) Task: {7F1F95CA-61FC-4619-821D-D08C0F81A0E0} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {8A2C0E68-8B11-4F05-AA9D-19C2F99699B7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2020-11-16] (Google Inc -> Google Inc.) Task: {92BD9162-65D5-4C95-A3B2-C28FB860583D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6242232 2021-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {96439372-6F6E-4C1A-911A-6F23C38E052E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108888 2021-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {99B118E1-D6C3-4759-B1CD-6334E80F98EC} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> ) Task: {AA6BBD86-7B0B-4D8F-A1F0-778CBDB7D602} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [63728 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {AAE69247-9447-4560-9E8D-2D43703AB704} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {BBCDFF23-661C-40AD-A1A5-4B3075FFC74B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {BEBB306A-5884-4F7B-B279-4A88B2443565} - System32\Tasks\CCleanerSkipUAC - Anthony => G:\APP@PORT\ccsetup574_2\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {C4D9B2C6-F013-446C-B5E2-E5B3512126E4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CAF19473-BEC7-4A02-9FCA-9FA4C30C0A58} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [682936 2021-11-17] (Mozilla Corporation -> Mozilla Foundation) Task: {CE874288-1BF6-45B2-B3C2-1ECCBA201FB2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108888 2021-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {CEA989F7-6129-4434-89E0-0B5F57146E41} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {D1403515-8536-4F75-BBD5-DB218AFAF788} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {EB97EA64-431C-4568-BC55-F07501107925} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2020-11-16] (Google Inc -> Google Inc.) Task: {EC80F6E0-EB66-42B9-B3A2-726F09F2BC9A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\22ececbe-da95-438d-b64e-073f8108eb39 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {EF30E4A1-C30B-4C3A-A9E6-19C1D5D751B2} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.) Task: {F5745922-9C31-496D-8710-F640FE27F3BE} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Task: {F78A70D7-D14A-430C-BCCF-18310E2C336A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a082a909-8f8a-49da-b21d-1f101bf86d83 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) Task: {F9088B03-33DC-4982-9D29-4E783E03D82A} - System32\Tasks\CCleanerSkipUAC => G:\APP@PORT\ccsetup574_2\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {FF0AAD78-1D32-44EE-985A-3A83F3A6E82F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6242232 2021-11-13] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\..\Interfaces\{400f204b-33d7-4a8f-90bd-5bc5863f28cc}: [NameServer] 77.88.8.7,77.88.8.3 Tcpip\..\Interfaces\{400f204b-33d7-4a8f-90bd-5bc5863f28cc}: [DhcpNameServer] 192.0.2.42 Tcpip\..\Interfaces\{42f86c66-2cdf-4ac1-b56a-9409111ac148}: [NameServer] 77.88.8.7,77.88.8.3 Tcpip\..\Interfaces\{5121d836-9bb2-4015-8d30-c1a8236649d2}: [NameServer] 77.88.8.7,77.88.8.3,192.168.0.254 Tcpip\..\Interfaces\{5121d836-9bb2-4015-8d30-c1a8236649d2}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{915c5314-3801-4a6c-ae78-246bd2dda90b}: [NameServer] 77.88.8.7,77.88.8.3 Tcpip\..\Interfaces\{b793319f-18c1-4e9a-be03-b01006e38981}: [NameServer] 77.88.8.7,77.88.8.3 Edge: ======= Edge Profile: C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-14] Edge Session Restore: Default -> est activé. Edge Extension: (LastPass: Free Password Manager) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-11-12] Edge Extension: (HTTPS partout) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fchjpkplmbeeeaaogdbhjbgbknjobohb [2021-08-13] Edge Extension: (Trace - Online Tracking Protection) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fhjjfbdhmjpcdckdoglijoahcdhndeco [2020-11-26] Edge Extension: (Canvas Fingerprint Defender) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\giglaifdfkimffokoomllcpmdjeomckf [2020-12-29] Edge Extension: (Correcteur de texte — LanguageTool) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hfjadhjooeceemgojogkhlppanjkbobc [2021-11-03] Edge Extension: (Country Flags & IP Whois) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hmkmedgmocnmelekbdpogdpednpfjdne [2021-09-10] Edge Extension: (WOT pour la sécurité des sites Web et une navigation sûre) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iiclaphjclecagpkkaacljnpcppnoibi [2021-08-20] Edge Extension: (Tampermonkey) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iikmkjmpaadaobahmlepeloendndfphd [2021-05-25] Edge Extension: (Bitwarden) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2021-11-03] Edge Extension: (Privacy Settings) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kcjdbackodicgebbpjlnfofddafkhdkj [2020-11-17] Edge Extension: (h264ify) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ldjamdlpbjpcfagnckgipdjiamhdcnbd [2020-11-17] Edge Extension: (IDM Integration Module) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2021-10-26] Edge Extension: (Pas de nom) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2021-11-12] Edge Extension: (Privacy Badger) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mkejgcgkdlddbggjhhflekkondicpnop [2021-08-25] Edge Extension: (uBlock Origin) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-10-22] Edge Extension: (Download Manager) - C:\Users\jeann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\phalbpghhjknlmomkmimbamfceiddlic [2021-01-28] Edge HKLM\...\Edge\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm] Edge HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2021-10-29] Edge HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [lmbopdiikkamfphhgcckcjhojnokgfeo] FireFox: ======== FF DefaultProfile: uzk2fkkq.default FF ProfilePath: C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\uzk2fkkq.default [2021-09-24] FF ProfilePath: C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release [2021-11-21] FF NetworkProxy: Mozilla\Firefox\Profiles\wjxh9p90.default-release -> type", 4 FF Session Restore: Mozilla\Firefox\Profiles\wjxh9p90.default-release -> est activé. FF Notifications: Mozilla\Firefox\Profiles\wjxh9p90.default-release -> hxxps://www.excel-downloads.com; hxxps://mail.protonmail.com; hxxps://drive.google.com; hxxps://www.rustica.fr; hxxps://keepa.com FF Extension: (Facebook Container) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\@contain-facebook.xpi [2021-08-03] FF Extension: (Firefox Multi-Account Containers) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\@testpilot-containers.xpi [2021-11-03] FF Extension: (Keepa - Amazon Price Tracker) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\amptra@keepa.com.xpi [2021-09-19] FF Extension: (Antidote) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\antidote_uni11_firefox@druide.com.xpi [2021-10-18] FF Extension: (Extension Application Guard) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\ApplicationGuardRel@microsoft.com.xpi [2020-11-16] FF Extension: (Checker Plus for Gmail) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\checkerplusforgmail@jasonsavard.com.xpi [2021-11-12] FF Extension: (Enhancer for YouTube™) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2021-11-09] FF Extension: (Free Download Manager) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\fdm_ffext2@freedownloadmanager.org.xpi [2021-10-16] FF Extension: (ShareX) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\firefox@getsharex.com.xpi [2020-12-13] FF Extension: (Tampermonkey) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\firefox@tampermonkey.net.xpi [2021-05-06] FF Extension: (SimilarWeb - Traffic Rank & Website Analysis) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\FirefoxAddon@similarWeb.com.xpi [2020-11-16] FF Extension: (Forecastfox (fix version)) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\forecastfox@s3_fix_version.xpi [2020-11-24] FF Extension: (FoxyProxy Standard) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\foxyproxy@eric.h.jung.xpi [2020-11-16] FF Extension: (Dictionnaire français) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org.xpi [2020-11-16] FF Extension: (HTTPS partout) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\https-everywhere@eff.org.xpi [2021-07-14] FF Extension: (To Google Translate) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-22] FF Extension: (Dark Background and Light Text) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\jid1-QoFqdK4qzUfGWQ@jetpack.xpi [2021-02-09] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2021-10-01] FF Extension: (KeePassXC-Browser) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\keepassxc-browser@keepassxc.org.xpi [2021-11-17] FF Extension: (Better Netflix) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\konstantin.mueller@km.de.xpi [2021-10-31] FF Extension: (Français Language Pack) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\langpack-fr@firefox.mozilla.org.xpi [2021-11-02] FF Extension: (Correcteur de texte — LanguageTool) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\languagetool-webextension@languagetool.org.xpi [2021-11-16] FF Extension: (IDM Integration Module) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2021-03-06] FF Extension: (LastPass: Free Password Manager) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\support@lastpass.com.xpi [2021-09-24] FF Extension: (Pas de nom) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\support@shoptimate.com.xpi [2020-11-16] FF Extension: (Tab Suspender) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\tabsuspender@michalewiczpiotr.xpi [2020-11-16] FF Extension: (Capital Koala) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\toolbar@capitalkoala.com.xpi [2021-11-08] FF Extension: (TrafficLight) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\trafficlight@bitdefender.com.xpi [2021-04-27] FF Extension: (Pas de nom) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\tranquility@ushnisha.com.xpi [2021-08-24] FF Extension: (uBlock Origin) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-10-23] FF Extension: (Privacy Possum) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\woop-NoopscooPsnSXQ@jetpack.xpi [2020-11-16] FF Extension: (Worldwide Radio) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\worldwide@radio.xpi [2021-09-13] FF Extension: (Adblock pour Youtube™) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{0ac04bdb-d698-452f-8048-bcef1a3f4b0d}.xpi [2020-11-23] FF Extension: (Eagle - Save images faster than ever) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{228a49ed-af0c-452c-bc77-630f99cb0470}.xpi [2021-07-29] FF Extension: (Malwarebytes Browser Guard) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-11-11] FF Extension: (Porn Out) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{2bc4e3b1-d07a-4967-b460-3c66b8870319}.xpi [2021-10-27] FF Extension: (IMDb ratings on Netflix) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{42cf14ff-cc44-49dd-bad4-333b0e69d4e0}.xpi [2020-11-16] FF Extension: (Bitwarden) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2021-10-28] FF Extension: (Film scores for Netflix) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{6babe29b-f164-4a56-8081-06f939062cdb}.xpi [2021-07-14] FF Extension: (Trace - Online Tracking Protection) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{6ff498ff-a3b6-4891-a614-12a825d4efcf}.xpi [2021-06-30] FF Extension: (Country Flags & IP Whois) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{802a552e-13d1-4683-a40a-1e5325fba4bb}.xpi [2021-09-04] FF Extension: (enhanced-h264ify) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{9a41dee2-b924-4161-a971-7fb35c053a4a}.xpi [2020-11-16] FF Extension: (WOT pour la sécurité des sites Web et une navigation sûre) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}.xpi [2021-11-15] FF Extension: (Matte Black (Red)) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2021-10-06] FF Extension: (NoteFlix) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{bd4be575-d5f1-4b24-9ec4-b7adea506dc8}.xpi [2021-01-16] FF Extension: (Temporary Containers) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{c607c8df-14a7-4f28-894f-29e8722976af}.xpi [2021-02-08] FF Extension: (Scamdoc) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{cb048bf7-9a75-425a-b0b1-ea755e94ce6c}.xpi [2021-06-01] FF Extension: (Metastream Remote) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{da2b93f0-35d5-461e-9bc7-6ba10aef1af4}.xpi [2020-11-16] FF Extension: (Netflix 1080p) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{f18f0257-10ad-4ff7-b51e-6895edeccfc8}.xpi [2021-10-19] FF Extension: (Nano Defender for Firefox) - C:\Users\jeann\AppData\Roaming\Mozilla\Firefox\Profiles\wjxh9p90.default-release\Extensions\{fcf60470-b210-4c17-969e-9ae01491071e}.xpi [2020-11-16] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-12-29] [non signé] FF HKLM-x32\...\Firefox\Extensions: [eagleget_ffext@eagleget.com] - G:\APP@PORT\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => non trouvé(e) FF HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2021-03-05] FF HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Firefox\Extensions: [eagleget_ffext@eagleget.com] - G:\APP@PORT\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => non trouvé(e) FF HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\jeann\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\jeann\AppData\Roaming\IDM\idmmzcc5 [2020-11-16] [] [non signé] FF HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [] FF HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\SeaMonkey\Extensions: [eagleget_ffext@eagleget.com] - G:\APP@PORT\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => non trouvé(e) FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.13 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.15 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin HKU\S-1-5-21-1020524199-3411935137-1089394653-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR Profile: C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default [2021-11-21] CHR Notifications: Default -> hxxps://fr.qaz.wiki; hxxps://mail.tutanota.com; hxxps://nerestezpasseul.forumactif.org; hxxps://www.conrad.fr; hxxps://www.maxisciences.com; hxxps://www.rustica.fr CHR HomePage: Default -> hxxps://duckduckgo.com/?q= CHR StartupUrls: Default -> "hxxp://iron-start.com/","hxxps://www.google.fr/","about:blank" CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}&t=ironbrowser CHR DefaultSearchKeyword: Default -> duck CHR Session Restore: Default -> est activé. CHR Extension: (Slides) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-16] CHR Extension: (Générateur de code QR) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\afpbjjgbdimpioenaedcjgkaigggcdpp [2021-02-17] CHR Extension: (Free Download Manager) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2021-10-20] CHR Extension: (NoteFlix) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahoplkcmcgpbkimjhncpnnllgikapjoj [2021-01-20] CHR Extension: (h264ify) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aleakchihdccplidncghkekgioiakgal [2020-11-16] CHR Extension: (Docs) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-16] CHR Extension: (Google Drive) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-16] CHR Extension: (Weather Avenue) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\baampgkagbmhnlhleemfbpecfjpakffj [2020-11-16] CHR Extension: (Authenticator) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhghoamapcdpbohphigoooaddinpkbai [2021-11-12] CHR Extension: (WOT pour la sécurité des sites Web et une navigation sûre) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2021-11-21] CHR Extension: (Shoptimate : comparateur de prix instantané) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\bibdombdcdbbnfdjkaajfgnfhlapibde [2020-11-16] CHR Extension: (YouTube) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-16] CHR Extension: (Netcraft Extension) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmejphbfclcpmpohkggcjeibfilpamia [2021-07-21] CHR Extension: ('Improve YouTube!' (Video & YouTube Tools)🎧) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnomihfieiccainjcjblhegjgglakjdd [2021-11-21] CHR Extension: (TrafficLight) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2021-05-12] CHR Extension: (uBlock Origin) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-10-20] CHR Extension: (Tampermonkey) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2021-05-25] CHR Extension: (NoScript) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\doojmbjmlfjjnbmnoijecmcbfeoakpjm [2021-08-03] CHR Extension: (Session Buddy) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2020-11-16] CHR Extension: (Chrome Connectivity Diagnostics) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\eemlkeanncmjljgehlbplemhmdmalhdc [2020-11-16] CHR Extension: (VT4Browsers) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\efbjojhplkelaegfbieplglfidafgoka [2021-03-11] CHR Extension: (Box) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2020-11-16] CHR Extension: (Google Apps Script) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\eoieeedlomnegifmaghhjnghhmcldobl [2020-11-16] CHR Extension: (Sheets) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-16] CHR Extension: (Alerte Bons Plans eBuyClub) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjjddemkcndmbbeeibicagaobbijjgmm [2021-05-20] CHR Extension: (WebRTC Control) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjkmabmdepjfammlpliljpnbhleegehm [2021-07-16] CHR Extension: (Full Screen Weather) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2020-11-16] CHR Extension: (SmartAdblock) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\fofomggefchbeiemhdhacdojbefmkhfb [2021-03-11] CHR Extension: (Scamdoc) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\fojbeoliffkbkfgaehkoeeihphibcjdk [2021-06-01] CHR Extension: (IBA Opt-out (by Google)) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2020-11-16] CHR Extension: (HTTPS partout) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-07-16] CHR Extension: (Google Docs hors connexion) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-20] CHR Extension: (Vanilla Cookie Manager) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\gieohaicffldbmiilohhggbidhephnjj [2020-11-16] CHR Extension: (Netflix™ Extended) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjcgfkhgpaccjpjokgpekpgpphgaanej [2021-11-07] CHR Extension: (OneNote Web Clipper) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2021-10-15] CHR Extension: (TweetDeck by Twitter) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2020-11-16] CHR Extension: (LastPass: Free Password Manager) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-11-21] CHR Extension: (Piggy - Codes Promo Automatiques et du cashback!) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfapbcheiepjppjbnkphkmegjlipojba [2021-11-14] CHR Extension: (PDF Mergy - Merge PDF files) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2020-11-16] CHR Extension: (Web Scrobbler) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm [2021-10-29] CHR Extension: (Checker Plus for Google Calendar™) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkhggnncdpfibdhinjiegagmopldibha [2021-11-07] CHR Extension: (Malware & URL Scanner) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianpniapgjchiheejeipopldaanbjicd [2020-11-16] CHR Extension: (Social Fixer for Facebook) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifmhoabcaeehkljcfclfiieohkohdgbb [2021-11-12] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-11-21] CHR Extension: (CanvasFingerprintBlock) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmjngkmngdcdpmgmiebdmfbkcecdndc [2020-11-16] CHR Extension: (Porn Blocker) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjldnifikfcmahncbamfcglceiegbje [2021-10-27] CHR Extension: (Emsisoft Browser Security) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfofijpkapingknllefalncmbiienkab [2021-06-04] CHR Extension: (Unseen for Facebook) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiomcgpfgkeefipihnplhadgdoollmap [2020-11-16] CHR Extension: (Tabs limiter with queue) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\kaamkonbephafcojgajnbgbdgbgbboap [2020-11-16] CHR Extension: (Mailvelope) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\kajibbejlbohfaggdiogboambcijhkke [2021-05-13] CHR Extension: (Grammarly for Chrome) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-11-14] CHR Extension: (WebRTC Leak Prevent Toggle) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\kignegkkmknfpincglcjggfbgghpamim [2020-11-16] CHR Extension: (IP Whois & Flags Chrome & Websites Rating) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmdfbacgombndnllogoijhnggalgmkon [2020-11-16] CHR Extension: (Hootsuite) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\kneloppijbcidgidihgdjnooihjcdbij [2020-11-16] CHR Extension: (Decentraleyes) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldpochfccmkkmhdbclfhpagapcfdljkj [2021-09-08] CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2021-10-20] CHR Extension: (Antidote) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2021-10-29] CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-09-11] CHR Extension: (Extension Application Guard) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfjnknhkkiafjajicegabkbimfhplplj [2020-11-16] CHR Extension: (Office) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-04-21] CHR Extension: (Mailtrack pour Gmail: Email tracking) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2021-11-21] CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2021-10-08] CHR Extension: (OneDrive) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2020-11-16] CHR Extension: (IDM Integration Module) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2021-10-20] CHR Extension: (Trace - Online Tracking Protection) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\njkmjblmcfiobddjgebnoeldkjcplfjb [2021-06-04] CHR Extension: (ShareX) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlkoigbdolhchiicbonbihbphgamnaoc [2020-12-13] CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2021-11-21] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03] CHR Extension: (Visionneuse Google Documents PDF/PowerPoint (par Google)) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn [2020-11-16] CHR Extension: (Bitwarden) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2021-10-29] CHR Extension: (WebRTC Network Limiter) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\npeicpdbkakmehahjeeohfdhnlpdklia [2020-11-16] CHR Extension: (KeePassXC-Browser) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\oboonakemofpalcgghocfoadofidjkkk [2021-11-21] CHR Extension: (Checker Plus for Gmail™) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2021-11-12] CHR Extension: (ScriptSafe) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf [2020-11-16] CHR Extension: (Correcteur de texte — LanguageTool) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2021-11-07] CHR Extension: (Click&Clean App) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2020-11-16] CHR Extension: (Weather Underground) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej [2020-11-16] CHR Extension: (Gmail) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-16] CHR Extension: (RSS Feed Reader) - C:\Users\jeann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2021-09-01] CHR HKLM\...\Chrome\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm] CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - G:\APP@PORT\EagleGet\addon\eagleget_cext@eagleget.com.crx CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2021-10-29] CHR HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmbopdiikkamfphhgcckcjhojnokgfeo] CHR HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2021-10-29] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2021-10-29] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AtomicAlarmClock; C:\Program Files\Atomic Alarm Clock\timeserv.exe [2007040 2013-04-24] () [Fichier non signé] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) R2 Cloud Station Backup VSS Service x64; C:\Program Files (x86)\Synology\CloudStationBackup\bin\vss-service-x64.exe [359384 2020-04-28] (Synology Inc. -> ) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-03] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-03] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-11-18] (Dropbox, Inc -> Dropbox, Inc.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4816272 2021-09-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) R2 Everything; C:\Program Files\Everything\Everything.exe [2261600 2021-05-12] (voidtools -> voidtools) S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\FileSyncHelper.exe [2233704 2021-09-17] (Microsoft Corporation -> Microsoft Corporation) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7789240 2021-10-01] (Malwarebytes Inc -> Malwarebytes) S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\OneDriveUpdaterService.exe [2602368 2021-09-17] (Microsoft Corporation -> Microsoft Corporation) R2 OSArmorDevSvc; C:\OSArmorDevSvc\OSArmorDevSvc.exe [3857024 2019-03-24] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [376832 2013-01-09] (SafeNet, Inc.) [Fichier non signé] R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc) R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc.) S3 SpsTestService; C:\Users\jeann\AppData\Local\TestConApp.exe [53760 2021-06-14] () [Fichier non signé] R2 SpyShelterSrv; C:\Program Files (x86)\SpyShelter Free\SpyShelterSrv.exe [57232 2021-04-12] (Datpol Janusz Siemienowicz -> Datpol) R2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [371672 2020-05-08] (Synology Inc. -> ) S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746736 2021-10-18] (Oracle Corporation -> Oracle Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WireGuardManager; C:\Program Files\WireGuard\wireguard.exe [8582856 2021-11-08] (WireGuard LLC -> WireGuard LLC) R2 WireGuardTunnel$Sypqys_FR; C:\Program Files\WireGuard\wireguard.exe [8582856 2021-11-08] (WireGuard LLC -> WireGuard LLC) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [284672 2021-04-13] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider) R1 cbfsfilter2017; C:\WINDOWS\system32\drivers\cbfsfilter2017.sys [360680 2020-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.) R1 cbfsprocess2017; C:\WINDOWS\system32\drivers\cbfsprocess2017.sys [62480 2019-11-29] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.) R3 cpuz143; C:\Users\jeann\AppData\Local\Temp\cpuz143\cpuz143_x64.sys [48952 2021-11-21] (CPUID -> CPUID) <==== ATTENTION S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2020-09-28] (Power Technology -> Windows (R) Win 7 DDK provider) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2021-09-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2021-09-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-08-26] (Google LLC -> Google, Inc.) R3 keycrypt; C:\WINDOWS\System32\DRIVERS\KeyCrypt64.sys [143904 2015-11-05] (Zemana Ltd. -> Zemana Ltd.) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-25] (Malwarebytes Inc -> Malwarebytes) U5 osadevprotect; C:\WINDOWS\system32\drivers\osadevprotect.sys [25440 2021-11-21] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl) U5 OSArmorDevDrv; C:\WINDOWS\system32\drivers\OSArmorDevDrv.sys [26576 2021-11-21] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl) R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [347224 2021-05-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [937464 2021-05-05] (Realtek Semiconductor Corp. -> Realtek Corporation) R2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.) R1 Spyshelter; C:\Program Files (x86)\SpyShelter Free\SpyShelter.sys [1079248 2021-04-12] (Datpol Janusz Siemienowicz -> SpyShelter) R2 SpyshelterFw; C:\Program Files (x86)\SpyShelter Free\SpyshelterWFP.sys [71120 2021-04-07] (Datpol Janusz Siemienowicz -> SpyShelter) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2019-10-15] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 tapmullvad0901; C:\WINDOWS\System32\drivers\tapmullvad0901.sys [39616 2020-11-17] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 VBoxMouse; C:\Windows\SysWOW64\DRIVERS\VBoxMouse.sys [63488 2010-12-11] (Oracle Corporation) [Fichier non signé] R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [239664 2021-10-18] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249568 2021-10-18] (Oracle Corporation -> Oracle Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation) R3 WireGuard; C:\WINDOWS\system32\DRIVERS\wireguard.sys [489368 2021-10-20] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-21 16:51 - 2021-11-21 16:52 - 000000000 ____D C:\FRST 2021-11-21 15:43 - 2021-11-21 16:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NoVirusThanks 2021-11-21 15:43 - 2021-11-21 15:48 - 000000000 ____D C:\OSArmorDevSvc 2021-11-21 14:31 - 2021-11-21 14:31 - 000000000 ____D C:\Users\jeann\AppData\Local\RomStation 2021-11-21 14:29 - 2021-11-21 14:29 - 000000000 ____D C:\Users\jeann\AppData\Local\Steam 2021-11-21 14:26 - 2021-11-21 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2021-11-21 14:25 - 2021-11-21 14:33 - 000000000 ____D C:\Program Files (x86)\Steam 2021-11-21 14:17 - 2021-11-21 14:17 - 000000000 ____D C:\Users\jeann\AppData\Roaming\kmp64 2021-11-19 11:41 - 2021-11-19 11:41 - 000145118 _____ C:\Users\jeann\Downloads\site internet.pdf 2021-11-19 11:41 - 2021-11-19 11:41 - 000097801 _____ C:\Users\jeann\Downloads\carte de visite.pdf 2021-11-19 09:44 - 2021-11-19 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-11-18 19:01 - 2021-11-18 19:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2021-11-18 19:01 - 2021-11-18 19:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2021-11-18 19:01 - 2021-11-18 19:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2021-11-18 19:01 - 2021-11-18 19:01 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2021-11-18 18:10 - 2021-11-18 18:10 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-11-17 17:24 - 2021-11-17 17:28 - 000005782 _____ C:\PureRa.txt 2021-11-17 17:24 - 2021-11-17 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2021-11-17 17:23 - 2021-11-17 17:23 - 000000000 ____D C:\Program Files\Microsoft Silverlight 2021-11-17 17:23 - 2021-11-17 17:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2021-11-15 17:45 - 2021-11-15 17:45 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2021-11-14 16:23 - 2021-11-21 15:46 - 000000000 ____D C:\Users\jeann\AppData\Roaming\OnionShare 2021-11-14 16:22 - 2021-11-14 16:22 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OnionShare 2021-11-14 16:01 - 2021-11-14 16:04 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Portmaster 2021-11-14 15:47 - 2021-11-14 15:47 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\simplewall 2021-11-14 15:47 - 2021-11-14 15:47 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Henry++ 2021-11-14 15:47 - 2021-11-14 15:47 - 000000000 ____D C:\Program Files\simplewall 2021-11-14 11:56 - 2021-11-14 11:56 - 060566238 _____ C:\Users\jeann\Downloads\nwt_07_Jg_F.mp3.zip 2021-11-12 15:57 - 2021-11-12 15:57 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-11-12 15:57 - 2021-11-12 15:57 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-12 15:57 - 2021-11-12 15:57 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-11-12 15:56 - 2021-11-12 15:56 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-11-12 15:32 - 2021-11-12 15:32 - 000000000 ___HD C:\$WinREAgent 2021-11-12 12:01 - 2021-11-12 12:01 - 000567161 _____ C:\Users\jeann\Downloads\Dropbox - Programme Réunions Mardi - Simplify your life.htm 2021-11-10 02:32 - 2021-11-10 02:14 - 000942408 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2021-11-10 02:32 - 2021-11-10 02:14 - 000703208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2021-11-10 02:32 - 2021-11-10 02:14 - 000497512 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2021-11-10 02:32 - 2021-11-10 02:14 - 000431336 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 027888040 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 020630440 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 001861760 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-11-10 02:32 - 2021-11-10 02:13 - 001861760 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-11-10 02:32 - 2021-11-10 02:13 - 001441424 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-11-10 02:32 - 2021-11-10 02:13 - 001441424 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-11-10 02:32 - 2021-11-10 02:13 - 001107056 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 001107056 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000960624 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000960624 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000499096 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000450456 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000369560 _____ C:\WINDOWS\system32\ze_loader.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000361896 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000140176 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000039032 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2021-11-10 02:32 - 2021-11-10 02:13 - 000036400 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2021-11-10 02:32 - 2021-11-10 02:12 - 000304208 _____ C:\WINDOWS\system32\ControlLib.dll 2021-11-08 17:53 - 2021-11-08 17:53 - 000015643 _____ C:\Users\jeann\Downloads\Activation V1.xlsm 2021-11-05 17:28 - 2021-10-16 08:50 - 000236954 _____ C:\Users\jeann\Downloads\Rubriques de la Partie 2.pdf 2021-11-05 17:28 - 2021-10-16 08:50 - 000213880 _____ C:\Users\jeann\Downloads\Rubriques de la Partie 1.pdf 2021-11-05 17:28 - 2021-10-16 08:50 - 000209807 _____ C:\Users\jeann\Downloads\Rubriques de la Partie 4.pdf 2021-11-05 17:28 - 2021-10-16 08:50 - 000207818 _____ C:\Users\jeann\Downloads\Rubriques de la Partie 3.pdf 2021-11-05 16:18 - 2021-11-05 16:22 - 000000000 ____D C:\ProgramData\Macrium 2021-11-05 16:18 - 2021-11-05 16:18 - 000000000 ____D C:\Users\jeann\Downloads\Macrium 2021-11-01 17:15 - 2021-11-01 17:15 - 000011302 _____ C:\Users\jeann\Downloads\Emplois du temps PA PP.xlsx 2021-11-01 16:48 - 2021-11-01 16:55 - 000261032 _____ C:\Users\jeann\Downloads\t.antho66-Anthony T.htm 2021-11-01 16:47 - 2021-11-01 16:48 - 000000000 ____D C:\Users\jeann\Downloads\t.antho66-Anthony T_fichiers 2021-11-01 11:38 - 2021-11-01 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent 2021-10-29 21:02 - 2018-12-20 00:05 - 000229296 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys 2021-10-27 11:42 - 2021-10-27 11:42 - 000000000 ____D C:\Users\jeann\AppData\Local\Patch_My_PC,_LLC 2021-10-27 09:48 - 2021-10-27 09:48 - 613643727 _____ C:\Users\jeann\Downloads\Big Pharma, labos tout-puissants - Regarder le documentaire complet.mp4 2021-10-26 12:51 - 2021-10-26 12:51 - 000000188 ____H C:\WINDOWS\system32\WUL185PO.bin 2021-10-26 12:51 - 2021-10-26 12:51 - 000000188 ____H C:\WINDOWS\A728E1Z5.bin 2021-10-26 12:43 - 2021-10-26 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote 2021-10-26 12:43 - 2021-10-26 12:45 - 000000000 ____D C:\Program Files\Druide 2021-10-26 12:38 - 2021-10-26 12:38 - 000000000 ____D C:\Users\jeann\Downloads\Antidote_11.1_F_10_Installation 2021-10-24 13:05 - 2021-10-24 13:05 - 000042014 _____ C:\Users\jeann\Downloads\d647fc9b-c19b-4530-b703-8037d5d9e8be.webp 2021-10-22 18:01 - 2018-12-20 00:05 - 000229296 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\SET2B9D.tmp ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-21 16:55 - 2020-11-16 21:02 - 000000000 ____D C:\Users\jeann\AppData\Roaming\DMCache 2021-11-21 16:53 - 2020-11-16 20:20 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-21 16:51 - 2021-04-08 13:23 - 000000000 ____D C:\Users\jeann\AppData\Local\OpenShell 2021-11-21 16:47 - 2020-11-16 20:24 - 000000000 ____D C:\Users\jeann\AppData\Roaming\foobar2000 2021-11-21 16:47 - 2020-11-16 19:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-11-21 16:38 - 2020-11-16 19:39 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-21 16:38 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-21 16:34 - 2020-11-16 19:39 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-21 16:33 - 2020-11-16 20:06 - 001761484 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-11-21 16:33 - 2020-11-16 19:41 - 000775786 _____ C:\WINDOWS\system32\perfh00C.dat 2021-11-21 16:33 - 2020-11-16 19:41 - 000144898 _____ C:\WINDOWS\system32\perfc00C.dat 2021-11-21 16:33 - 2020-11-16 19:37 - 000000000 ____D C:\WINDOWS\INF 2021-11-21 16:31 - 2020-11-16 20:13 - 000000000 ____D C:\Users\jeann\AppData\Local\Sidebar7 2021-11-21 16:29 - 2020-11-16 20:36 - 000000000 ____D C:\Users\jeann\AppData\Local\D3DSCache 2021-11-21 16:29 - 2020-11-16 20:29 - 000000000 ____D C:\ProgramData\Mozilla 2021-11-21 16:28 - 2021-01-20 17:10 - 000000000 ____D C:\Users\jeann\AppData\Roaming\SpyShelter 2021-11-21 16:27 - 2021-05-13 12:37 - 000000000 ____D C:\Intel 2021-11-21 16:27 - 2020-12-14 10:57 - 000000000 ____D C:\Users\jeann\AppData\LocalLow\Mozilla 2021-11-21 16:27 - 2020-11-16 20:19 - 000026576 _____ (NoVirusThanks Company Srl) C:\WINDOWS\system32\Drivers\OSArmorDevDrv.sys 2021-11-21 16:27 - 2020-11-16 20:19 - 000025440 _____ (NoVirusThanks Company Srl) C:\WINDOWS\system32\Drivers\osadevprotect.sys 2021-11-21 16:27 - 2020-11-16 19:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-11-21 16:27 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\ServiceState 2021-11-21 16:27 - 2020-06-29 20:50 - 000008192 ___SH C:\DumpStack.log.tmp 2021-11-21 16:26 - 2020-11-16 20:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-11-21 16:26 - 2020-11-16 20:13 - 000000000 ____D C:\Users\jeann\AppData\Roaming\WhatsApp 2021-11-21 16:26 - 2020-11-16 19:57 - 000000000 ____D C:\Users\jeann 2021-11-21 16:26 - 2020-11-16 19:33 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-11-21 16:26 - 2020-08-11 14:37 - 000000000 ____D C:\Users\jeann\Documents\ShareX 2021-11-21 16:23 - 2020-11-16 20:19 - 000000000 ____D C:\Program Files\NoVirusThanks 2021-11-21 16:21 - 2020-11-16 20:24 - 000000000 ____D C:\Users\jeann\AppData\Local\Last.fm 2021-11-21 16:06 - 2020-11-16 23:32 - 000000000 ____D C:\Users\jeann\AppData\Local\CrashDumps 2021-11-21 15:59 - 2020-11-28 12:32 - 000000000 ____D C:\Program Files (x86)\Intel 2021-11-21 15:57 - 2020-06-27 19:22 - 000000000 ____D C:\Users\jeann\Downloads\Compressed 2021-11-21 15:44 - 2020-12-30 15:49 - 000000000 ____D C:\Users\jeann\AppData\Roaming\obs-studio 2021-11-21 15:39 - 2021-05-25 15:29 - 000000000 ____D C:\Users\jeann\AppData\Local\SynologyDrive 2021-11-21 15:39 - 2021-05-25 15:29 - 000000000 ____D C:\Users\jeann\AppData\Local\CloudStationBackup 2021-11-21 15:39 - 2021-02-05 18:07 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Authy Desktop 2021-11-21 15:38 - 2021-05-30 13:12 - 000000000 ___RD C:\Users\jeann\SynologyDrive 2021-11-21 15:38 - 2021-05-30 13:12 - 000000000 ___RD C:\Users\jeann\Shared with me 2021-11-21 15:38 - 2020-11-28 12:49 - 000000000 ____D C:\Users\jeann\AppData\Roaming\vlc 2021-11-21 15:22 - 2020-06-27 20:13 - 000000000 ____D C:\Users\jeann\.rainlendar2 2021-11-21 14:31 - 2020-11-26 10:36 - 000000000 ____D C:\Users\jeann\AppData\Local\JxBrowser 2021-11-21 14:28 - 2021-05-18 16:13 - 000000000 ____D C:\Users\jeann\AppData\Local\Everything 2021-11-21 14:27 - 2021-05-18 15:55 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Everything 2021-11-20 14:45 - 2020-11-16 20:08 - 000000000 ____D C:\ProgramData\Packages 2021-11-20 14:35 - 2021-10-08 15:28 - 000000000 ____D C:\Users\jeann\Downloads\dvp Kriss img 2021-11-20 14:10 - 2020-06-27 19:22 - 000000000 ____D C:\Users\jeann\Downloads\Video 2021-11-19 09:56 - 2020-11-16 20:08 - 000000000 ____D C:\Users\jeann\AppData\Local\Packages 2021-11-19 09:45 - 2021-05-26 15:30 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-11-19 09:38 - 2021-10-17 10:39 - 000000000 ____D C:\Users\jeann\AppData\Local\WhatsApp 2021-11-18 18:10 - 2020-11-16 20:29 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-11-18 18:10 - 2020-11-16 20:29 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-11-18 12:59 - 2020-11-20 18:01 - 000000000 ____D C:\Users\jeann\AppData\Roaming\AnyDesk 2021-11-18 05:34 - 2020-11-16 19:55 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-11-18 05:34 - 2020-11-16 19:55 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-11-17 17:20 - 2021-01-10 13:37 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Signal 2021-11-17 17:20 - 2020-11-27 14:06 - 000000000 ____D C:\ProgramData\VirtualBox 2021-11-17 17:20 - 2020-06-27 19:02 - 000000000 ____D C:\Users\jeann\.VirtualBox 2021-11-15 19:46 - 2020-11-16 20:37 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-11-15 17:45 - 2020-11-16 20:16 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Zoom 2021-11-14 16:02 - 2021-06-05 20:07 - 000004208 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-11-14 15:58 - 2021-09-17 13:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-11-14 09:44 - 2020-11-22 16:44 - 000001104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2021-11-14 09:44 - 2020-11-22 16:44 - 000000000 ____D C:\Users\jeann\AppData\Roaming\Notepad++ 2021-11-14 09:37 - 2020-11-16 19:55 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-12 16:26 - 2020-11-16 20:08 - 000000000 ____D C:\Users\jeann\AppData\Local\Intel 2021-11-12 16:23 - 2021-05-26 15:30 - 000001220 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2021-11-12 16:23 - 2021-05-26 15:30 - 000001216 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2021-11-12 16:23 - 2021-05-14 07:44 - 000445504 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ___SD C:\WINDOWS\system32\AppV 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\SystemResources 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\system32\setup 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-11-12 16:22 - 2020-11-16 19:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-11-12 16:22 - 2020-11-16 19:33 - 000000000 ____D C:\WINDOWS\servicing 2021-11-12 16:02 - 2020-11-16 19:33 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-12 15:30 - 2020-11-26 17:26 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-11-12 15:17 - 2020-11-26 17:26 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-11-12 15:06 - 2021-05-29 10:00 - 000000000 ____D C:\Users\jeann\Documents\MEGAsync Downloads 2021-11-10 11:49 - 2021-02-15 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 2021-11-10 11:49 - 2021-02-15 19:47 - 000000000 ____D C:\Program Files\MPC-HC 2021-11-10 09:59 - 2021-05-21 11:48 - 000000000 ____D C:\Program Files\dotnet 2021-11-10 09:59 - 2020-11-16 20:22 - 000000000 ____D C:\ProgramData\Package Cache 2021-11-10 09:55 - 2021-05-26 15:30 - 000004178 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2021-11-10 09:55 - 2021-05-26 15:30 - 000003946 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2021-11-09 12:36 - 2021-09-22 10:42 - 012530445 _____ C:\Users\jeann\YogaDNS Log.txt 2021-11-09 10:52 - 2020-12-02 14:59 - 000001074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk 2021-11-09 10:52 - 2020-12-02 14:59 - 000000000 ____D C:\Program Files\WireGuard 2021-11-07 22:36 - 2021-06-16 23:28 - 000109296 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\WudfUpdate_02000.dll 2021-11-07 22:36 - 2021-06-16 23:28 - 000063728 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.InfInstaller.exe 2021-11-07 22:36 - 2020-11-16 19:53 - 000109296 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.CoInstaller.dll 2021-11-07 22:36 - 2020-07-31 23:36 - 000429952 _____ (Lenovo Group Limited) C:\WINDOWS\system32\iMDriverHelper.dll 2021-11-03 09:09 - 2020-11-16 19:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-11-02 12:17 - 2020-11-16 21:01 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager 2021-11-02 12:16 - 2020-11-16 21:02 - 000000000 ____D C:\Users\jeann\AppData\Roaming\IDM 2021-10-28 07:53 - 2021-09-11 12:38 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2021-10-26 12:43 - 2021-09-20 12:56 - 000000000 ____D C:\Program Files (x86)\Druide 2021-10-23 13:26 - 2020-11-16 20:22 - 000000000 ____D C:\Program Files\Rainlendar2 ==================== Fichiers à la racine de certains dossiers ======== 2021-11-21 16:55 - 2021-11-21 16:55 - 000003638 _____ () C:\Users\jeann\AppData\Roaming\context.ico 2020-12-04 15:29 - 2020-12-04 15:29 - 000000390 _____ () C:\Users\jeann\AppData\Roaming\COVID-19 Monitor_Settings.ini 2021-06-14 15:50 - 2021-06-14 15:50 - 000053760 _____ () C:\Users\jeann\AppData\Local\TestConApp.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================