Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-02-2022 01 Exécuté par leodi (administrateur) sur TOF (ASUSTeK COMPUTER INC. K30AD_M31AD_M51AD) (17-02-2022 16:23:32) Exécuté depuis C:\Users\leodi\Desktop Profils chargés: leodi Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.527 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Sticky Password\stpass.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spUIAManager.exe (C:\Program Files\Mozilla Firefox\firefox.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spNMHost.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe (explorer.exe ->) (Esumsoft -> Esumsoft) C:\Program Files (x86)\POP Peeper\POPPeeper.exe (explorer.exe ->) (FastStone Soft) [Fichier non signé] C:\Program Files (x86)\FastStone Capture\FSCapture.exe (explorer.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\stpass.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) () [Fichier non signé] C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\...\Run: [StickyPassword] => C:\Program Files (x86)\Sticky Password\stpass.exe [64528 2021-08-05] (Lamantine Software a.s. -> Lamantine Software a.s.) HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\...\Run: [POP Peeper] => C:\Program Files (x86)\POP Peeper\POPPeeper.exe [2273872 2014-12-11] (Esumsoft -> Esumsoft) HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\...\Run: [Speech Recognition] => C:\Windows\Speech\Common\sapisvr.exe [36864 2021-06-05] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\...\Run: [EPLTarget\P0000000000000002] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINOE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\leodi\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKLM\...\Print\Monitors\EPSON XP-620 Series 64MonitorBE: C:\Windows\system32\E_YLMBNOE.DLL [179712 2013-12-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-17] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\98.1.35.103\Installer\chrmstp.exe [2022-02-17] (Brave Software, Inc. -> Brave Software, Inc.) BootExecute: autocheck autochk * ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {12256E71-298C-42B4-8EE0-3A76F0534C13} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1640700224 => C:\Users\leodi\AppData\Local\Programs\Opera GX\launcher.exe [2270416 2022-02-01] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\leodi\AppData\Local\Programs\Opera GX\assistant" $(Arg0) Task: {24FCD0A6-79A9-457B-B182-1707CCF1E78A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2FF6C994-876C-40C7-BB94-6412270C8536} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NoUACCheck Task: {34A84720-8C52-47A0-9FE1-FE6B150B77FC} - System32\Tasks\UsbFix Monitor => C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe [1235968 2021-10-06] () [Fichier non signé] Task: {42F46740-37EC-40CF-9208-B211354B8D85} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4074344 2021-12-12] (Microsoft Corporation -> Microsoft Corporation) Task: {45D695E0-1372-4AB8-B2A9-EC6EFD0331CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4BCAE56C-D94F-426A-9E29-A385B435BCE7} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {521C5E3B-F449-429D-9545-11D8BD724FA1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {52D5390E-1B06-4636-8162-1B98B2C7BBF5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {54CC7334-B34F-4335-8104-635DEB8BB640} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-18] (Google LLC -> Google LLC) Task: {68440F3E-42C3-4F01-AA43-449D84F053B0} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-12-30] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {6B6E99E7-6067-450E-8B1F-22D1FCABA3E6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {81888546-F18F-4B75-A164-9C643334A5F5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {893E1CFB-D407-46FF-A50F-E6F336E65ADC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1639732260-3847979084-2518324577-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4074344 2021-12-12] (Microsoft Corporation -> Microsoft Corporation) Task: {93F8A4E6-0968-4229-8070-C2F7EE28D20E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {983F0177-923F-4BB7-9E1F-087149B63264} - System32\Tasks\Opera GX scheduled Autoupdate 1638640088 => C:\Users\leodi\AppData\Local\Programs\Opera GX\launcher.exe [2270416 2022-02-01] (Opera Software AS -> Opera Software) Task: {A923CA4D-FE25-457A-8044-4D75073DAADC} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-12-30] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {ABE16713-D9A3-4C87-8C5A-E44699ACEB3E} - System32\Tasks\EPSON XP-620 Series Update {7D0BB797-82BE-4E59-9B68-C8814E2F3A30} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNOE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {B6B2A23F-0B6D-444D-8832-CA05553C42E6} - System32\Tasks\Cybertron\Privacy Eraser\SkipUAC_leodi => C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser64.exe [8355680 2022-02-16] (Shenzhen Saiboen Software Technology Co., Ltd. -> Cybertron Software, Co., Ltd.) Task: {C3D32B33-E526-4659-9A47-F247A2CBDF1C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C62B9534-9F38-4DE1-92DB-6FC82ACF1182} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CB412026-802D-4F80-B40E-CECD165BF106} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D8DDEC4E-2A83-4E2B-96E5-F93C8561B833} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DED52C8A-7457-4229-BBBA-82E1A369C06A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-18] (Google LLC -> Google LLC) Task: {E6CD469B-B11F-4D6D-B50A-76FF87C0D568} - System32\Tasks\EPSON XP-620 Series Update {1F69E75B-DBAC-45A6-8232-13318B09ADD7} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNOE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {EB5E0F8F-ABF1-45B7-8F4A-40F26FDF0B0B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {FAA87A59-7431-44FB-8F32-46750DD5E897} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {FB5D7215-7B4E-4934-BD8D-04EC5E4773BE} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FFD078E7-2513-43EF-8DB0-32A8C0736602} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-14] (NVIDIA Corporation -> NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\EPSON XP-620 Series Update {1F69E75B-DBAC-45A6-8232-13318B09ADD7}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNOE.EXE:/EXE:{1F69E75B-DBAC-45A6-8232-13318B09ADD7} /F:UpdateWORKGROUP\TOF$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\Windows\Tasks\EPSON XP-620 Series Update {7D0BB797-82BE-4E59-9B68-C8814E2F3A30}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNOE.EXE:/EXE:{7D0BB797-82BE-4E59-9B68-C8814E2F3A30} /F:UpdateWORKGROUP\TOF$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{a76ff887-2bd4-4aec-8ae1-c5fd2b7c0ed5}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\leodi\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-05] Edge DownloadDir: Default -> C:\Users\leodi\Desktop Edge StartupUrls: Default -> "hxxps://www.google.fr/" Edge Extension: (uBlock Origin) - C:\Users\leodi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-12-03] Edge Extension: (I don't care about cookies) - C:\Users\leodi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2021-12-03] Edge Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\leodi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbipmfkjgjhibkepepeneigpkfeikikp [2021-10-18] Edge Extension: (IDM Integration Module) - C:\Users\leodi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2021-10-22] Edge Extension: (AdBlocker Ultimate) - C:\Users\leodi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2021-12-08] Edge HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2022-01-25] FireFox: ======== FF ProfilePath: C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly [2022-02-17] FF DownloadDir: C:\Users\Christophe\Bureau FF Homepage: Mozilla\Firefox\Profiles\elk0wntq.default-nightly -> hxxps://www.google.com/ FF Extension: (AdGuard AdBlocker) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\adguardadblocker@adguard.com.xpi [2021-06-03] FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\firefox@ghostery.com.xpi [2021-07-20] FF Extension: (Notifier for Gmail™) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2021-07-20] FF Extension: (I don't care about cookies) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2021-08-24] FF Extension: (visitedlinkenabler) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\jid1-yDnsmkBoiRtgNA@jetpack.xpi [2021-06-03] FF Extension: (Correcteur de texte — LanguageTool) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\languagetool-webextension@languagetool.org.xpi [2021-08-24] FF Extension: (IDM Integration Module) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2021-06-03] FF Extension: (Traduire les pages Web) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2021-08-24] FF Extension: (CMYK-Magenta) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\{ab826a41-6e0a-4e8a-aaa0-2e8b72af43a1}.xpi [2021-06-03] FF Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\elk0wntq.default-nightly\Extensions\{ecb80162-dfbd-4d91-a8da-17b35ba4707a}.xpi [2021-06-03] FF ProfilePath: C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release [2022-02-17] FF Homepage: Mozilla\Firefox\Profiles\85tcla24.default-release -> hxxps://www.google.fr/ FF Extension: (AdGuard AdBlocker) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\adguardadblocker@adguard.com.xpi [2021-08-26] FF Extension: (MerciApp — Correcteur orthographique) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\ffwebextension@merciappcom.xpi [2021-06-28] FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\firefox@ghostery.com.xpi [2021-06-29] FF Extension: (Notifier for Gmail™) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2021-09-18] FF Extension: (I don't care about cookies) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2021-09-20] FF Extension: (visitedlinkenabler) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\jid1-yDnsmkBoiRtgNA@jetpack.xpi [2021-05-25] FF Extension: (Correcteur de texte — LanguageTool) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\languagetool-webextension@languagetool.org.xpi [2021-09-21] FF Extension: (IDM Integration Module) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2021-05-25] FF Extension: (GMX.com MailCheck) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\toolbar@gmx.com.xpi [2021-08-06] FF Extension: (uBlock Origin) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-10-05] FF Extension: (Traduire les pages Web) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2021-09-15] FF Extension: (black_horo) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{19b1fc45-ead9-4f50-8309-395e4f139354}.xpi [2021-05-25] FF Extension: (Gamer TIme) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{3afd3680-7dda-4412-be2c-1494d8162531}.xpi [2021-09-10] FF Extension: (Vaporwave Feels) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{411ddac1-2778-4e03-be0b-abe6fc2ff52a}.xpi [2021-06-02] FF Extension: (Désactivation de Google Analytics) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2021-07-11] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%] FF Extension: (Green Waves of Light by MaDonna) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{8534b12c-426f-4344-88f0-e05833874b48}.xpi [2021-08-08] FF Extension: (No Transition) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{8b5fde66-c64d-4a33-99f1-c7c94138d67e}.xpi [2021-06-08] FF Extension: (Absolute Right Click) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{9350bc42-47fb-4598-ae0f-825e3dd9ceba}.xpi [2021-09-04] FF Extension: (CMYK-Magenta) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{ab826a41-6e0a-4e8a-aaa0-2e8b72af43a1}.xpi [2021-06-02] FF Extension: (Firefox B) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{ac40163c-8804-4dad-90fc-e25ebd6e9a57}.xpi [2021-06-08] FF Extension: (Auto Cookie Optout) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{d967193f-41e8-4cc7-8811-3278a9f62ad4}.xpi [2021-09-27] FF Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\85tcla24.default-release\Extensions\{ecb80162-dfbd-4d91-a8da-17b35ba4707a}.xpi [2021-05-25] FF ProfilePath: C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe [2022-02-17] FF Homepage: Mozilla\Firefox\Profiles\p827kuqx.Christophe -> moz-extension://b2b96b1f-ca77-43d2-9903-8405e0e196c2/index.html FF Notifications: Mozilla\Firefox\Profiles\p827kuqx.Christophe -> hxxps://mail.infomaniak.com FF HomepageOverride: Mozilla\Firefox\Profiles\p827kuqx.Christophe -> Enabled: {ac143a20-4b61-4c81-abdd-4bff77032972} FF NewTabOverride: Mozilla\Firefox\Profiles\p827kuqx.Christophe -> Enabled: {ac143a20-4b61-4c81-abdd-4bff77032972} FF NewTabOverride: Mozilla\Firefox\Profiles\p827kuqx.Christophe -> Enabled: simple-translate@sienori FF Extension: (AdBlocker Ultimate) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\adblockultimate@adblockultimate.net.xpi [2021-12-10] FF Extension: (AdGuard AdBlocker) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\adguardadblocker@adguard.com.xpi [2021-12-16] FF Extension: (Notifier for Gmail™) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2021-10-17] FF Extension: (To Google Translate) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-11-22] FF Extension: (I don't care about cookies) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2022-02-17] FF Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\jid1-TMndP6cdKgxLcQ@jetpack.xpi [2021-12-14] FF Extension: (Translation Comparison) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\kicpmhgmcajloefloefojbfdmenhmhjf@chrome-store-foxified-unsigned.xpi [2021-12-14] FF Extension: (Correcteur orthographique & grammatical — LanguageTool) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\languagetool-webextension@languagetool.org.xpi [2022-02-17] FF Extension: (IDM Integration Module) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2022-02-17] FF Extension: (Simple Translate) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\simple-translate@sienori.xpi [2021-10-22] FF Extension: (Traduire les pages Web) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2021-09-17] FF Extension: (Watermelon Surge) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{0ad3f4fd-59cf-4a55-9ded-68261e219d6c}.xpi [2021-09-06] FF Extension: (black_horo) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{19b1fc45-ead9-4f50-8309-395e4f139354}.xpi [2021-05-26] FF Extension: (Allow Right-Click) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{278b0ae0-da9d-4cc6-be81-5aa7f3202672}.xpi [2022-02-17] FF Extension: (Foxkeh Rules The World) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{7d7f4953-7e13-433c-aa01-652950ba55eb}.xpi [2021-09-08] FF Extension: (African Heat) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{84241115-0cc0-4794-be6e-654715867435}.xpi [2021-08-13] FF Extension: (Absolute Right Click) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{9350bc42-47fb-4598-ae0f-825e3dd9ceba}.xpi [2021-12-14] FF Extension: (ImTranslator: Traducteur, Dictionnaire, Voix) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2021-12-20] FF Extension: (CMYK-Magenta) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{ab826a41-6e0a-4e8a-aaa0-2e8b72af43a1}.xpi [2021-08-10] FF Extension: (Mue) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{ac143a20-4b61-4c81-abdd-4bff77032972}.xpi [2022-01-05] FF Extension: (puits bleu d'infini) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{b3994f5b-c557-4b30-b0e1-1db9098f690e}.xpi [2021-09-06] FF Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\leodi\AppData\Roaming\Mozilla\Firefox\Profiles\p827kuqx.Christophe\Extensions\{ecb80162-dfbd-4d91-a8da-17b35ba4707a}.xpi [2021-11-20] FF HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\leodi\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\leodi\AppData\Roaming\IDM\idmmzcc5 [2021-10-18] [] [non signé] FF HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [] FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-02-09] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-02-09] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-02-09] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-02-09] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\S-1-5-21-1639732260-3847979084-2518324577-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-02-09] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR Profile: C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default [2022-02-17] CHR DownloadDir: C:\Users\Christophe\Bureau CHR Notifications: Default -> hxxps://mail.google.com CHR HomePage: Default -> hxxps://www.google.fr/ CHR NewTab: Default -> Not-active:"chrome-extension://llaficoajjainaijghjlofdfmbjpebpa/newtab.html", Not-active:"chrome-extension://ejbjamhkdedinncaeiackcdehpccoejm/pages/newtab.html" CHR DefaultSearchURL: Default -> {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion} CHR DefaultSearchKeyword: Default -> google CHR Extension: (AdGuard AdBlocker) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2021-12-29] CHR Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2021-11-28] CHR Extension: (Allow right click - simple copy(Autoriser le clic droit - copie simple)) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cinnaghekiafnplijmadmifnoaecefdd [2021-12-15] CHR Extension: (Speed Dial) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbjamhkdedinncaeiackcdehpccoejm [2021-12-21] CHR Extension: (I don't care about cookies) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2022-02-17] CHR Extension: (Absolute Enable Right Click & Copy) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2021-12-14] CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2021-12-21] CHR Extension: (IDM Integration Module) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2022-02-17] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\leodi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-18] CHR Profile: C:\Users\leodi\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-17] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-01-25] CHR HKU\S-1-5-21-1639732260-3847979084-2518324577-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-01-25] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-01-25] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-1639732260-3847979084-2518324577-1001) Opera GXStable - "C:\Users\leodi\AppData\Local\Programs\Opera GX\Launcher.exe" Brave: ======= BRA Profile: C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-02-17] BRA DownloadDir: C:\Users\leodi\Desktop BRA StartupUrls: Default -> "hxxps://www.google.fr/" BRA DefaultSearchKeyword: Default -> :g BRA Extension: (Google Traduction) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-12-30] BRA Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2021-12-30] BRA Extension: (uBlock Origin) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-12-30] BRA Extension: (I don't care about cookies) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2021-12-30] BRA Extension: (IDM Integration Module) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2021-12-30] BRA Extension: (Brave Local Data Files Updater) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-12-30] BRA Extension: (Brave NTP background images) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2021-12-30] BRA Extension: (Wallet Data Files Updater) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2021-12-30] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-12-30] BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2021-12-30] BRA Extension: (Brave SpeedReader Updater) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-12-30] BRA Extension: (Brave NTP sponsored images) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-12-30] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\leodi\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-12-30] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-12-30] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-12-30] (Brave Software, Inc. -> BraveSoftware Inc.) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncHelper.exe [3280760 2021-12-12] (Microsoft Corporation -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.230.1107.0004\OneDriveUpdaterService.exe [3737976 2021-12-12] (Microsoft Corporation -> Microsoft Corporation) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14770472 2021-09-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-17] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-17] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 Hsp; C:\Windows\System32\drivers\Hsp.sys [110904 2022-02-17] (Microsoft Windows -> Microsoft Corporation) R3 NVHDA; C:\Windows\system32\drivers\nvhda64v.sys [129960 2021-09-14] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2022-02-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [438520 2022-02-17] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-17] (Microsoft Windows -> Microsoft Corporation) S3 WiseHDInfo; C:\Windows\WiseHDInfo64.dll [33864 2021-12-24] (Beijing Lang Xingda Network Technology Co., Ltd -> wisecleaner.com) S3 MpKsl80c7eccf; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{28F0294F-2C2B-4EFB-9E87-ECFA379F4794}\MpKslDrv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-02-17 16:23 - 2022-02-17 16:26 - 000038975 _____ C:\Users\leodi\Desktop\FRST.txt 2022-02-17 16:22 - 2022-02-17 16:23 - 000001747 _____ C:\Users\leodi\Desktop\moi.txt 2022-02-17 14:03 - 2022-02-17 14:03 - 000000111 _____ C:\Users\leodi\Desktop\P.txt 2022-02-17 12:02 - 2022-02-17 12:02 - 000000000 ____D C:\Program Files (x86)\FFMPEG Core Files 2022-02-17 12:02 - 2022-02-17 12:02 - 000000000 ____D C:\Program Files (x86)\DirectVobSub 2022-02-17 12:02 - 2022-02-17 12:02 - 000000000 ____D C:\Program Files (x86)\DCoder Image Source 2022-02-17 11:25 - 2022-02-17 11:28 - 000000000 ____D C:\Users\leodi\Desktop\Copie clé 128 2022-02-17 10:34 - 2022-02-17 16:25 - 000000000 ____D C:\FRST 2022-02-17 10:29 - 2022-02-17 12:23 - 000001960 _____ C:\Users\Public\Desktop\UsbFix Anti-Malware.lnk 2022-02-17 10:29 - 2022-02-17 10:29 - 000003268 _____ C:\Windows\system32\Tasks\UsbFix Monitor 2022-02-17 10:29 - 2022-02-17 10:29 - 000000000 ____D C:\Program Files (x86)\UsbFix 2022-02-17 10:25 - 2022-02-17 10:25 - 002312192 _____ (Farbar) C:\Users\leodi\Desktop\FRST64.exe 2022-02-17 09:58 - 2022-02-17 10:24 - 000000000 ____D C:\Users\leodi\Desktop\Copie cle 1 2022-02-17 09:04 - 2022-02-17 09:04 - 000000000 ____D C:\Windows\system32\HealthAttestationClient 2022-02-17 08:48 - 2022-02-17 08:48 - 000523776 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-02-17 08:48 - 2022-02-17 08:48 - 000464384 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-02-17 08:48 - 2022-02-17 08:48 - 000311296 _____ C:\Windows\system32\EsclScan.dll 2022-02-17 08:48 - 2022-02-17 08:48 - 000247808 _____ C:\Windows\SysWOW64\pku2u.dll 2022-02-17 08:48 - 2022-02-17 08:48 - 000188416 _____ C:\Windows\system32\EsclProtocol.dll 2022-02-17 08:48 - 2022-02-17 08:48 - 000015024 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-02-17 08:47 - 2022-02-17 08:47 - 000339968 _____ C:\Windows\system32\pku2u.dll 2022-02-17 08:47 - 2022-02-17 08:47 - 000077824 _____ C:\Windows\system32\APMonUI.dll 2022-02-17 08:45 - 2022-02-17 08:45 - 000339968 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-02-17 08:45 - 2022-02-17 08:45 - 000210432 _____ C:\Windows\system32\CloudIdWxhExtension.dll 2022-02-17 08:31 - 2022-02-17 08:37 - 000000000 ___HD C:\$WinREAgent 2022-02-17 07:34 - 2022-02-17 15:20 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-02-17 07:33 - 2022-02-17 08:10 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-02-17 07:14 - 2022-02-17 15:15 - 000012288 ___SH C:\DumpStack.log.tmp 2022-01-25 11:42 - 2018-12-20 01:05 - 000229296 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-02-17 16:27 - 2021-10-18 13:29 - 000000000 ____D C:\Program Files (x86)\Google 2022-02-17 16:23 - 2021-10-19 06:41 - 000000000 ____D C:\Users\leodi\Desktop\Divers 2022-02-17 16:22 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-02-17 15:23 - 2021-10-17 20:28 - 000000000 ____D C:\ProgramData\NVIDIA 2022-02-17 15:19 - 2021-10-17 18:28 - 000000000 ____D C:\Users\leodi\AppData\LocalLow\Mozilla 2022-02-17 15:16 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SystemTemp 2022-02-17 15:15 - 2021-10-22 17:36 - 000000000 ____D C:\Program Files\TeamViewer 2022-02-17 15:15 - 2021-10-17 16:42 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-02-17 15:14 - 2021-10-18 07:47 - 000000000 ____D C:\Users\leodi\AppData\Roaming\DMCache 2022-02-17 15:14 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\AppReadiness 2022-02-17 15:14 - 2021-06-05 13:01 - 000524288 _____ C:\Windows\system32\config\BBI 2022-02-17 15:13 - 2021-10-17 18:00 - 000000000 ____D C:\Users\leodi\AppData\Local\Packages 2022-02-17 15:12 - 2021-10-17 18:01 - 000000000 ____D C:\ProgramData\Packages 2022-02-17 15:12 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps 2022-02-17 12:27 - 2021-10-18 07:47 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager 2022-02-17 12:27 - 2021-10-17 16:41 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-02-17 12:25 - 2021-10-18 07:47 - 000000000 ____D C:\Users\leodi\AppData\Roaming\IDM 2022-02-17 12:25 - 2021-06-05 13:09 - 000000000 ____D C:\Windows\INF 2022-02-17 12:24 - 2021-10-18 13:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Privacy Eraser 2022-02-17 12:22 - 2021-10-18 15:04 - 000000000 ____D C:\Users\leodi\Documents\Magazine TV 2022-02-17 12:17 - 2021-10-18 10:41 - 000000000 ____D C:\ProgramData\Zoom Player 2022-02-17 12:16 - 2021-10-18 10:41 - 000000000 ____D C:\Program Files (x86)\Zoom Player 2022-02-17 12:02 - 2021-10-18 10:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter 2022-02-17 12:02 - 2021-10-18 10:43 - 000000000 ____D C:\Program Files (x86)\AC3Filter 2022-02-17 12:02 - 2021-10-18 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters 2022-02-17 12:02 - 2021-10-18 10:41 - 000000000 ____D C:\Program Files (x86)\LAV Filters 2022-02-17 11:52 - 2021-10-18 13:30 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-02-17 10:35 - 2021-06-05 13:10 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2022-02-17 09:43 - 2021-11-24 18:52 - 000003632 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask 2022-02-17 09:43 - 2021-11-23 10:10 - 000000000 ____D C:\Users\leodi\AppData\Roaming\ExplorerPatcher 2022-02-17 09:43 - 2021-11-20 14:41 - 000000000 ____D C:\Program Files\ExplorerPatcher 2022-02-17 09:43 - 2021-11-10 07:51 - 000489984 _____ (VALINET Solutions SRL) C:\Windows\dxgi.dll 2022-02-17 09:40 - 2021-10-28 12:49 - 000000000 ____D C:\Users\leodi\AppData\Local\ElevatedDiagnostics 2022-02-17 09:37 - 2021-06-05 13:01 - 000000000 ____D C:\Windows\CbsTemp 2022-02-17 09:32 - 2021-10-23 04:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerShell 2022-02-17 09:30 - 2021-10-17 20:29 - 000000000 ____D C:\ProgramData\Package Cache 2022-02-17 09:21 - 2021-10-17 18:10 - 000000000 ____D C:\Windows\system32\MRT 2022-02-17 09:21 - 2021-10-17 18:08 - 149611728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-02-17 09:16 - 2021-10-18 04:17 - 000000000 ____D C:\Users\leodi\AppData\Local\CrashDumps 2022-02-17 09:13 - 2021-10-17 17:34 - 001709664 _____ C:\Windows\system32\PerfStringBackup.INI 2022-02-17 09:13 - 2021-06-05 19:14 - 000769848 _____ C:\Windows\system32\perfh00C.dat 2022-02-17 09:13 - 2021-06-05 19:14 - 000148146 _____ C:\Windows\system32\perfc00C.dat 2022-02-17 09:08 - 2021-10-17 16:41 - 000486432 _____ C:\Windows\system32\FNTCACHE.DAT 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SysWOW64\setup 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SystemResources 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\setup 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\oobe 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\Dism 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\appraiser 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-02-17 09:04 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\bcastdvr 2022-02-17 09:04 - 2021-06-05 13:01 - 000000000 ____D C:\Windows\servicing 2022-02-17 08:45 - 2021-10-17 16:45 - 003101696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-02-17 08:30 - 2021-12-04 18:48 - 000004172 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1638640088 2022-02-17 08:30 - 2021-12-04 18:48 - 000001471 _____ C:\Users\leodi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk 2022-02-17 08:10 - 2021-10-17 18:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-02-17 08:07 - 2021-10-17 16:42 - 000000000 ____D C:\Windows\system32\Drivers\wd 2022-02-17 08:05 - 2021-10-17 16:46 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-02-17 07:40 - 2021-10-18 09:17 - 000000000 ____D C:\Users\leodi\Documents\Boite a Outils 2022-02-17 07:34 - 2021-10-17 18:26 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-02-17 07:34 - 2021-10-17 18:26 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-02-17 07:31 - 2021-12-30 15:02 - 000002362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2022-02-17 07:29 - 2021-11-08 11:33 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-02-17 07:27 - 2021-10-17 16:45 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-02-17 07:27 - 2021-10-17 16:45 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-02-17 07:22 - 2021-10-18 13:29 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-02-17 07:22 - 2021-10-18 13:29 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-02-17 07:20 - 2021-10-18 17:21 - 000000000 ____D C:\Users\leodi\AppData\Roaming\POP Peeper 2022-02-17 07:16 - 2021-10-18 04:04 - 000000000 ____D C:\Users\leodi\AppData\Local\NVIDIA Corporation ==================== Fichiers à la racine de certains dossiers ======== 2021-11-27 15:00 - 2021-11-27 15:00 - 000000012 _____ () C:\Users\leodi\AppData\Roaming\2457fe3357cbf1220231e8917326f70f 2021-12-26 10:10 - 2021-12-26 10:10 - 000000703 _____ () C:\Users\leodi\AppData\Roaming\pdfCodec.dll 2021-11-15 11:32 - 2021-12-07 20:26 - 000007598 _____ () C:\Users\leodi\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================