Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-06-2021
Exécuté par patri (administrateur) sur LAPTOP-NSMBIR9O (ASUSTeK COMPUTER INC. VivoBook_ASUS Laptop X409UA) (29-06-2021 21:48:01)
Exécuté depuis C:\Users\patri\Downloads
Profils chargés: patri
Platform: Windows 10 Home Version 20H2 19042.1052 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

( 312 33412423423 4234) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\patri\AppData\Local\Temp\b67c9bd46f\nrbux.exe <2>
() [Fichier non signé] C:\Windows\Temp\gA076.tmp.exe
() [Fichier non signé] C:\Windows\Temp\sppsvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSLinkRemote\AsusLinkRemote.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSLinkNear\AsusLinkNear.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSLinkNear\AsusLinkNearExt.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSOptimization\AsusOptimization.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSOptimization\AsusOptimizationStartupTask.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSOptimization\AsusOSD.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSoftwareManager\AsusSoftwareManager.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\AppManager\CAMTray.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe
(CyberLink Corp. -> CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Heidi Computers Ltd -> ) [Fichier non signé] C:\Windows\PublicGaming\appsetup.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_db704b106aae3892\ICEsoundService64.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3325.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3325.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_31a8dbbf39dcdc3b\jhi_service.exe
(Intel(R) pGFX -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_12bdb8127c4c0458\OneApp.IGCC.WinService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_b2a136cee25b9cb8\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_b2a136cee25b9cb8\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6baa580979143c3f\RstMwService.exe
(James Crook -> DearMob, Inc.) [Fichier non signé] C:\Windows\PublicGaming\prun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3>
(Orange -> Orange) C:\Users\patri\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIUAE.EXE
(Spotify AB -> ) [Fichier non signé] C:\ProgramData\Data\cmdwin.exe
(Spotify AB -> www.xmrig.com) [Fichier non signé] C:\ProgramData\Systemd\taskmges.exe
(Stimulsoft) [Fichier non signé] C:\Users\patri\AppData\Roaming\Stimulsoft\MySql Graphics Manager\guimanager.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => [X]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => [X]
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [669664 2019-10-02] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [894944 2019-10-02] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1151872 2016-11-18] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [CAMTray] => C:\Program Files (x86)\CyberLink\AppManager\CAMTray.exe [461184 2021-03-24] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [haleng] => C:\Users\patri\AppData\Local\Temp\haleng.ex <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2611424739-2508005720-3032142289-1001\...\Run: [MailNotifier] => C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe [1566208 2020-05-13] (Orange) [Fichier non signé]
HKU\S-1-5-21-2611424739-2508005720-3032142289-1001\...\Run: [EPLTarget\P0000000000000002] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUAE.EXE [416408 2017-05-30] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2611424739-2508005720-3032142289-1001\...\Run: [AnyTransToolHelper] => C:\Program Files (x86)\iMobie\AnyTrans\AnyTransToolHelper.exe
HKU\S-1-5-21-2611424739-2508005720-3032142289-1001\...\Run: [prun] => C:\WINDOWS\PublicGaming\prun.exe [715663104 2021-06-27] (James Crook -> DearMob, Inc.) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-2611424739-2508005720-3032142289-1001\...\Run: [WinFlow] => "C:\ProgramData\WinFlow.exe" <==== ATTENTION
HKU\S-1-5-21-2611424739-2508005720-3032142289-1001\...\Run: [WinHost] => C:\Users\patri\AppData\Roaming\WinHost\WinHoster.exe <==== ATTENTION
HKU\S-1-5-21-2611424739-2508005720-3032142289-1001\...\Run: [AgedPond] => "C:\WINDOWS\rss\csrss.exe" <==== ATTENTION
HKU\S-1-5-21-2611424739-2508005720-3032142289-1001\...\MountPoints2: {81ea0e49-d721-11e9-8ed3-dcf505cc3194} - "E:\setup.exe"
HKLM\...\Print\Monitors\EPSON PC-FAX Driver2 64Monitor: C:\WINDOWS\system32\EFXLM16A.DLL [182784 2019-10-02] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON WF-2860 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBUAE.DLL [184832 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\HP CE11 Status Monitor: C:\WINDOWS\system32\hpinkstsCE11LM.dll [393352 2017-03-20] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-22] (Google LLC -> Google LLC)
Startup: C:\Users\patri\AppData\Local\Temp\b67c9bd46f\\GuiManager.lnk [2021-06-29]
ShortcutTarget: GuiManager.lnk -> C:\Users\patri\AppData\Roaming\Stimulsoft\MySql Graphics Manager\guimanager.exe (Stimulsoft) [Fichier non signé]
Startup: C:\Users\patri\AppData\Local\Temp\b67c9bd46f\\nrbux.exe [2021-06-28] ( 312 33412423423 4234) [Fichier non signé] [Fichier en cours d'utilisation]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0BF33519-7B84-4240-8D29-E8A7EB73F52C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-15] (Google Inc -> Google LLC)
Task: {0CEB4914-5D22-4DEB-9359-D3E9BCF06048} - System32\Tasks\vrseltAn => C:\WINDOWS\system32\rundll32.exe "C:\Program Files (x86)\vrseltAn\vrseltAn.dll",vrseltAn <==== ATTENTION
Task: {132CC1AD-00E5-4EE5-B1B4-00E5BD1E2B27} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1DAA2655-831F-4237-8020-5CCD21AE6012} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(1): Net -> stop "Orange Update Core Service"
Task: {1DAA2655-831F-4237-8020-5CCD21AE6012} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(2): Net -> start "Orange Update Core Service"
Task: {1EFA301C-707F-4239-8991-36D7DE7B9DEA} - System32\Tasks\Smart Clock => C:\Users\patri\AppData\Roaming\Smart Clock\SmartClock.exe
Task: {2574A362-AE57-4BC6-89B4-C8F5D9574D20} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118104 2021-06-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {31814B25-F7A7-49DD-A071-6C9139877282} - System32\Tasks\EPSON WF-2860 Series Update {339A651F-398D-473B-8872-1CDE235A4B2E} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {33EA2E6E-5886-46A6-9256-F5771AA3E1DD} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2320256 2021-03-25] (CyberLink Corp. -> )
Task: {380608AA-7A9A-465A-81FB-99E70C0371AC} - System32\Tasks\Microsoft\Windows\PLA\074C0539-0999-4DA9-9D0D-3D016B62F4E9 => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {42D39D87-4CB1-4C5D-B478-97D469841358} - System32\Tasks\nrbux.exe => C:\Users\patri\AppData\Local\Temp\b67c9bd46f\nrbux.exe [270849 2021-06-28] ( 312 33412423423 4234) [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
Task: {445E0DE0-98D4-4051-82EB-D1F374E91D6C} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2566800 2021-06-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {56AAAEED-F1DB-44A2-A738-80205AEAC6FF} - System32\Tasks\csrss => C:\WINDOWS\rss\csrss.exe <==== ATTENTION
Task: {694A63FD-7104-49CD-88C9-88CA7B180DD6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7BB5FAA4-7ECA-4C10-A952-30D12FE1FE6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {9263A972-B41F-42A3-AFC0-883671E8A6A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-15] (Google Inc -> Google LLC)
Task: {9394F9F5-1414-4B7D-A871-3F98B92E41DD} - System32\Tasks\Microsoft\Windows\UIRibboqp40 => C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe C:\ProgramData\DirectionAccount\UpyatesDitaxle\3H_F122_cltlib.dll
Task: {A55DFE74-7DBD-48B7-8617-7AD6357B343A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118104 2021-06-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8AFDFB5-29A5-4AA5-9228-F1DA96EDAF5A} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSOptimization\AsusHotkeyExec.exe [231984 2021-06-11] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {AD7CCA9A-272B-483A-98E7-018F1C8CF2EE} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1063712 2020-02-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {AD987839-9000-4900-925B-98BDD2EEF97C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B37EF66F-D6E7-46DD-96DE-D523A04F4764} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124896 2021-06-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {C5E18C08-BB54-45DA-A728-1CDC950507B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124896 2021-06-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {CB340925-422A-4E74-8201-831F0B83F7BF} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSoftwareManager\AsusUpdateChecker.exe [756824 2021-06-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {CF2925DB-3E91-4B59-AA73-E821DCE22A22} - System32\Tasks\PowerDirectorStyleAgent => C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe [100736 2021-03-24] (CyberLink Corp. -> CyberLink Corp.)
Task: {D35B8CAE-5974-4C02-8268-A37C575379E8} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\patri\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1935064 2020-11-20] (Orange -> Orange)
Task: {D8196C87-CE34-4141-AA1D-BFFBBB79C010} - System32\Tasks\EPSON WF-2860 Series Update {638BDDB0-CA56-45C9-B7B9-D458C12CCDEA} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {EDE3AF54-BA38-463A-98B6-90B41ACA0680} - System32\Tasks\Firefox Default Browser Agent 7F58795CCE3C60C4 => C:\Users\patri\AppData\Roaming\tfavcwd [342528 2021-06-16] () [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
Task: {F4228C7C-73F4-4726-9416-AF44551138A8} - System32\Tasks\Microsoft\Windows\PLA\AsusLinkNear => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {FDFE2125-C414-45CF-802E-7618B8A84302} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2320256 2021-03-25] (CyberLink Corp. -> )
Task: {FF5B96A2-3A06-43F9-8997-821BE448A522} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Install => C:\Program Files (x86)\Orange Update\install.bat [0 2020-03-12] () <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON WF-2860 Series Update {339A651F-398D-473B-8872-1CDE235A4B2E}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUAE.EXE:/EXE:{339A651F-398D-473B-8872-1CDE235A4B2E} /F:UpdateWORKGROUP\LAPTOP-NSMBIR9O$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON WF-2860 Series Update {638BDDB0-CA56-45C9-B7B9-D458C12CCDEA}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUAE.EXE:/EXE:{638BDDB0-CA56-45C9-B7B9-D458C12CCDEA} /F:UpdateWORKGROUP\LAPTOP-NSMBIR9O$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyServer: [S-1-5-21-2611424739-2508005720-3032142289-1001] => 127.0.0.1:15509
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0eaaf87d-8b0a-42db-9ff9-1c09a0d94b83}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{982dfcd8-8ecc-4998-8f46-9cb2bbc90d5c}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\patri\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-2611424739-2508005720-3032142289-1001 -> hxxps://www.bing.com/search?q=google&FORM=&PC=ASTS&refig=027d258a06f1487cef8e23d00aac33bc
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\patri\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-28]
Edge HomePage: Default -> hxxp://www.cherche.us/
Edge DefaultSearchURL: Default -> hxxps://movix.searchalgo.com/search/?category=web&s=xsds&q={searchTerms}
Edge DefaultSearchKeyword: Default -> mixMovie
Edge DefaultSuggestURL: Default -> hxxps://sug.searchalgo.com/search/index_sg.php?q={searchTerms}
Edge Extension: (FromDocToPDF) - C:\Users\patri\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck [2020-07-15]
Edge Extension: (Barre de Confiance CM-CIC) - C:\Users\patri\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ffjkhaeogkeelkioellpgcebmekedpag [2020-07-15]
Edge Extension: (EasyPDFCombine) - C:\Users\patri\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gpmaefnapfbhjmalebhcplfiepgmmdkf [2020-07-15]
Edge Extension: (Tabs Counter) - C:\Users\patri\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kgdaeidiojbdgmnjnpmklilaodjlkbjp [2020-07-15]
Edge Extension: (mixMovie) - C:\Users\patri\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nlddiojjnkclocngpifciakljgljhdbo [2020-07-15]

FireFox:
========
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default [2021-06-29]
CHR Notifications: Default -> hxxps://forums.commentcamarche.net
CHR HomePage: Default -> orange.fr
CHR StartupUrls: Default -> "chrome://newtab/#","hxxps://www.google.fr/?gfe_rd=cr&ei=FTXbU_3FOsvI8gePkIHAAg","hxxp://www.palikan.com/?f=7&a=plk_ggbg_15_38&cd=2XzuyEtN2Y1L1Qzu0BzzyByCtA0F0E0FyCzz0DyEtA0AtB0FtN0D0Tzu0StCtAyDzztN1L2XzutAtFtCtBtFyDtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2S0EtC0A0E0AtDyE0DtGyCyDtByDtGyE0FyB0BtGzz0EtA0BtG0AyE0F0F0FyDtC0BtC0A0A0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCtCzztD0CyDtB0BtGyEyDzztDtGyEtCzy0DtGzz0CtCtDtGyD0CtDyE0DtCtDzzyDyDyC0E2QtN0A0LzuyE&cr=684567282&ir="
CHR NewTab: Default -> Not-active:"chrome-extension://gpmaefnapfbhjmalebhcplfiepgmmdkf/newtabproduct.html"
CHR DefaultSearchURL: Default -> hxxps://www.ctcodeinfo.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Custom
CHR DefaultSuggestURL: Default -> hxxps://sug.searchalgo.com/search/index_sg.php?q={searchTerms}
CHR Extension: (Slides) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-15]
CHR Extension: (Docs) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-15]
CHR Extension: (Google Drive) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-15]
CHR Extension: (FromDocToPDF) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck [2020-07-20]
CHR Extension: (Custom) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\colgdlijdieibnaccfdcdbpdffofkfeb [2021-06-27]
CHR Extension: (Sheets) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-15]
CHR Extension: (Barre de Confiance CM-CIC) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjkhaeogkeelkioellpgcebmekedpag [2019-09-15]
CHR Extension: (Majuscules Accentuées) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndcenfgdacibjnofbbdndfijggefgmp [2021-06-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (EasyPDFCombine) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpmaefnapfbhjmalebhcplfiepgmmdkf [2020-06-30]
CHR Extension: (Tabs Counter) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdaeidiojbdgmnjnpmklilaodjlkbjp [2019-09-15]
CHR Extension: (mixMovie) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlddiojjnkclocngpifciakljgljhdbo [2020-02-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Orange page d'accueil) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2020-07-30]
CHR Extension: (Gmail) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-26]
CHR Extension: (Chrome Media Router) - C:\Users\patri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-07]
CHR Extension: (USpeedSys) - C:\ProgramData\Xulwbs\Qfwqtmg [2021-06-28]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S2 AppServicea; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceb; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicec; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiced; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicee; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicef; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceg; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceh; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicei; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicej; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicek; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicel; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicem; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicen; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceo; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicep; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceq; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicer; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServices; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicet; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceu; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicev; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicew; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicex; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicey; C:\WINDOWS\system32\2739EF1LDK.tmp [6144 2021-06-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSLinkNear\AsusLinkNear.exe [1283216 2021-06-11] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkNearExt; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSLinkNear\AsusLinkNearExt.exe [142264 2021-06-11] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSLinkRemote\AsusLinkRemote.exe [793688 2021-06-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSOptimization\AsusOptimization.exe [331352 2021-06-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSoftwareManager\AsusSoftwareManager.exe [905288 2021-06-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2566800 2021-06-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [886168 2021-06-11] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-06-23] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-10-05] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S2 Orange Update Core Service; C:\Program Files (x86)\Orange Update\OUService.exe [177384 2020-08-24] (Orange -> Orange)
R2 pubgame-updater; C:\WINDOWS\PublicGaming\appsetup.exe [13365912 2021-06-27] (Heidi Computers Ltd -> ) [Fichier non signé] <==== ATTENTION
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [629120 2021-03-24] (CyberLink Corp. -> CyberLink)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ASUSSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSSystemAnalysis\ASUSSAIO.sys [39056 2021-06-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_28e1c6a7bb6d6b9e\ASUSOptimization\atkwmiacpi64.sys [44704 2021-06-11] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
U5 CertPropSvc; C:\WINDOWS\system32\svchost.exe [57360 2021-03-26] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
U5 SCardSvr; C:\WINDOWS\system32\svchost.exe [57360 2021-03-26] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-06-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425184 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-29 21:48 - 2021-06-29 21:50 - 000035776 _____ C:\Users\patri\Downloads\FRST.txt
2021-06-29 21:47 - 2021-06-29 21:49 - 000000000 ____D C:\FRST
2021-06-29 21:45 - 2021-06-29 21:45 - 002300416 _____ (Farbar) C:\Users\patri\Downloads\FRST64.exe
2021-06-29 20:35 - 2021-06-29 20:35 - 000139886 _____ C:\Users\patri\Desktop\ZHPDiag.txt
2021-06-29 20:33 - 2021-06-29 20:36 - 000000000 ____D C:\AdwCleaner
2021-06-29 20:33 - 2021-06-29 20:33 - 008534696 _____ (Malwarebytes) C:\Users\patri\Downloads\adwcleaner_8.2.exe
2021-06-29 20:21 - 2021-06-29 20:24 - 000000000 ____D C:\Users\patri\AppData\Roaming\ZHP
2021-06-29 20:21 - 2021-06-29 20:21 - 002105344 _____ C:\Users\patri\Downloads\ZHPDiag3.exe
2021-06-29 20:21 - 2021-06-29 20:21 - 000000867 _____ C:\Users\patri\Desktop\ZHPDiag.lnk
2021-06-29 02:22 - 2021-06-29 21:02 - 000000000 ____D C:\ProgramData\Systemd
2021-06-29 02:22 - 2021-06-29 21:02 - 000000000 ____D C:\ProgramData\Data
2021-06-29 02:22 - 2021-06-29 02:22 - 000000000 ____D C:\ProgramData\Microsoft Network
2021-06-28 22:49 - 2021-06-28 22:49 - 000000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\Voisinage réseau
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\Voisinage d'impression
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\Modèles
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\Mes documents
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\Menu Démarrer
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes vidéos
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes images
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Ma musique
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historique
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 ____D C:\Users\DefaultAppPool
2021-06-28 22:49 - 2021-06-28 22:49 - 000000000 ____D C:\ProgramData\f1a6a48e76c1fd
2021-06-28 22:49 - 2019-12-07 11:10 - 000001105 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-28 22:48 - 2021-06-29 20:00 - 000003590 _____ C:\WINDOWS\system32\Tasks\nrbux.exe
2021-06-28 22:48 - 2021-06-28 22:48 - 000000000 ____D C:\Users\patri\AppData\Roaming\Stimulsoft
2021-06-28 22:24 - 2021-06-28 22:24 - 024903680 ____N C:\WINDOWS\system32\config\SYSTEM
2021-06-28 21:45 - 2021-06-28 21:45 - 000000000 ___HD C:\$SysReset
2021-06-28 21:22 - 2021-06-28 21:36 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-06-28 21:21 - 2021-06-28 21:37 - 000000000 ____D C:\WINDOWS\pss
2021-06-28 20:06 - 2021-06-28 20:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-06-28 16:14 - 2021-06-28 16:14 - 000000000 ____D C:\Users\patri\Documents\FeedbackHub
2021-06-28 15:47 - 2021-06-28 15:47 - 000000020 ___SH C:\Users\.NET v4.5\ntuser.ini
2021-06-28 15:47 - 2021-06-28 15:47 - 000000020 ___SH C:\Users\.NET v4.5 Classic\ntuser.ini
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\Voisinage réseau
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\Voisinage d'impression
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\Modèles
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\Mes documents
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\Menu Démarrer
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\Documents\Mes vidéos
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\Documents\Mes images
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\Documents\Ma musique
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5\AppData\Local\Historique
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Voisinage réseau
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Voisinage d'impression
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Modèles
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Mes documents
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Menu Démarrer
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Mes vidéos
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Mes images
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Ma musique
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\AppData\Local\Historique
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 ____D C:\WINDOWS\system32\msmq
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 ____D C:\Users\.NET v4.5 Classic
2021-06-28 15:47 - 2021-06-28 15:47 - 000000000 ____D C:\Users\.NET v4.5
2021-06-28 15:47 - 2019-12-07 11:10 - 000001105 _____ C:\Users\.NET v4.5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-28 15:47 - 2019-12-07 11:10 - 000001105 _____ C:\Users\.NET v4.5 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-28 15:41 - 2021-06-28 15:41 - 001996854 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-06-28 15:40 - 2021-06-28 15:40 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2021-06-28 15:40 - 2021-06-28 15:40 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2021-06-28 15:40 - 2021-06-28 15:40 - 000000000 ____D C:\inetpub
2021-06-28 13:41 - 2021-06-28 13:41 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\packages
2021-06-28 13:39 - 2021-06-28 14:58 - 000000000 ____D C:\Users\defaultuser100000
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\Voisinage réseau
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\Voisinage d'impression
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\Modèles
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\Mes documents
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\Menu Démarrer
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Mes vidéos
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Mes images
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Ma musique
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Historique
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 ____D C:\Users\defaultuser100000\AppData\LocalLow\Intel
2021-06-28 13:39 - 2021-06-28 13:39 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\ConnectedDevicesPlatform
2021-06-28 12:54 - 2021-06-28 14:58 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\Voisinage réseau
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\Voisinage d'impression
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\Modèles
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\Mes documents
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\Menu Démarrer
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\Documents\Mes vidéos
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\Documents\Mes images
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\Documents\Ma musique
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\AppData\Local\Historique
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\AppData\LocalLow\Intel
2021-06-28 12:54 - 2021-06-28 12:54 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O.001\AppData\Local\ConnectedDevicesPlatform
2021-06-28 10:30 - 2021-06-28 14:58 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\Voisinage réseau
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\Voisinage d'impression
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\Modèles
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\Mes documents
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\Menu Démarrer
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\Documents\Mes vidéos
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\Documents\Mes images
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\Documents\Ma musique
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\AppData\Local\Historique
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\AppData\LocalLow\Intel
2021-06-28 10:30 - 2021-06-28 10:30 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O.000\AppData\Local\ConnectedDevicesPlatform
2021-06-28 10:06 - 2021-06-28 14:58 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\Voisinage réseau
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\Voisinage d'impression
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\Modèles
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\Mes documents
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\Menu Démarrer
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\Documents\Mes vidéos
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\Documents\Mes images
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\Documents\Ma musique
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 _SHDL C:\Users\defaultuser1.LAPTOP-NSMBIR9O\AppData\Local\Historique
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O\AppData\LocalLow\Intel
2021-06-28 10:06 - 2021-06-28 10:06 - 000000000 ____D C:\Users\defaultuser1.LAPTOP-NSMBIR9O\AppData\Local\ConnectedDevicesPlatform
2021-06-28 09:58 - 2021-06-28 14:58 - 000000000 ____D C:\Users\defaultuser1
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\Voisinage réseau
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\Voisinage d'impression
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\Modèles
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\Mes documents
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\Menu Démarrer
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\Documents\Mes vidéos
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\Documents\Mes images
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\Documents\Ma musique
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 _SHDL C:\Users\defaultuser1\AppData\Local\Historique
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 ____D C:\Users\defaultuser1\AppData\LocalLow\Intel
2021-06-28 09:58 - 2021-06-28 09:58 - 000000000 ____D C:\Users\defaultuser1\AppData\Local\ConnectedDevicesPlatform
2021-06-28 02:13 - 2021-06-29 03:04 - 000000000 ___HD C:\ProgramData\Xulwbs
2021-06-28 00:31 - 2021-06-28 15:20 - 000000375 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2021-06-28 00:30 - 2021-06-28 00:30 - 000000000 ____D C:\Users\patri\AppData\Roaming\Xwige
2021-06-28 00:09 - 2021-06-28 00:08 - 000005178 _____ C:\Users\patri\Documents\ipconfig.all.txt
2021-06-27 22:49 - 2021-06-28 22:25 - 024903680 _____ C:\WINDOWS\system32\C_32770.NLS
2021-06-27 22:49 - 2021-06-27 22:49 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\2739EF1LDK.tmp
2021-06-27 22:37 - 2021-06-27 22:37 - 000000000 ____D C:\Users\patri\AppData\Roaming\lighteningplayer
2021-06-27 22:37 - 2021-06-27 22:37 - 000000000 _____ C:\Program Files (x86)\temp_files
2021-06-27 22:36 - 2021-06-28 22:25 - 000000290 __RSH C:\ProgramData\ntuser.pol
2021-06-27 22:36 - 2021-06-27 22:36 - 000016794 _____ C:\WINDOWS\system32\Tasks\vrseltAn
2021-06-27 22:36 - 2021-04-11 19:46 - 000000000 ____D C:\Program Files (x86)\vrseltAn
2021-06-27 22:34 - 2021-06-27 22:34 - 000000000 ____D C:\ProgramData\Posse
2021-06-27 22:31 - 2021-06-27 22:31 - 001564823 _____ C:\ProgramData\7593
2021-06-27 22:31 - 2021-06-27 22:31 - 000041746 _____ C:\ProgramData\130576.130576
2021-06-27 22:31 - 2021-06-27 22:31 - 000000000 ____D C:\ProgramData\75
2021-06-27 22:30 - 2021-06-27 22:33 - 000000000 ____D C:\ProgramData\SXUWSW4XXQFXJ6Q0EUC7XHMLY
2021-06-27 22:30 - 2021-06-27 22:30 - 000168464 _____ () C:\Users\patri\AppData\Roaming\4888884.exe
2021-06-27 22:30 - 2021-06-27 22:30 - 000143888 _____ C:\Users\patri\AppData\Roaming\8369392.exe
2021-06-27 22:30 - 2021-06-27 22:30 - 000109072 _____ (Hostig) C:\Users\patri\AppData\Roaming\1067660.exe
2021-06-27 22:20 - 2021-06-27 22:20 - 000003270 _____ C:\WINDOWS\system32\Tasks\csrss
2021-06-27 22:20 - 2021-06-27 22:20 - 000000013 _____ C:\ProgramData\kaosdma.txt
2021-06-27 22:20 - 2021-06-27 22:20 - 000000000 ____D C:\Users\patri\AppData\Roaming\nailedp
2021-06-27 22:20 - 2021-06-27 22:20 - 000000000 ____D C:\ProgramData\regid.1993-06.com.microsoft
2021-06-27 22:19 - 2021-06-27 22:29 - 000000000 ____D C:\ProgramData\Bklngfpngf
2021-06-27 22:19 - 2021-06-27 22:20 - 000000000 ___HD C:\WINDOWS\rss
2021-06-27 22:18 - 2021-06-29 01:49 - 000000000 ____D C:\Users\patri\AppData\LocalLow\nW6mI-7yS1k
2021-06-27 22:18 - 2021-06-27 22:37 - 000000000 ____D C:\Program Files (x86)\lighteningplayer
2021-06-27 22:18 - 2021-06-27 22:35 - 000002118 _____ C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightening Media Player.lnk
2021-06-27 22:18 - 2021-06-27 22:20 - 000000000 ____D C:\Users\patri\AppData\Roaming\Smart Clock
2021-06-27 22:18 - 2021-06-27 22:18 - 001305104 _____ () C:\Users\patri\AppData\Roaming\8959428.exe
2021-06-27 22:18 - 2021-06-27 22:18 - 000319504 _____ (ArMORYAppl) C:\Users\patri\AppData\Roaming\2206606.exe
2021-06-27 22:18 - 2021-06-27 22:18 - 000143888 _____ C:\Users\patri\AppData\Roaming\3453785.exe
2021-06-27 22:18 - 2021-06-27 22:18 - 000003090 _____ C:\WINDOWS\system32\Tasks\Smart Clock
2021-06-27 22:18 - 2021-06-27 22:18 - 000000000 ____D C:\ProgramData\5RE4IB57NV3W4LZOP0W9H26EW
2021-06-27 22:17 - 2021-06-29 20:00 - 000003728 _____ C:\WINDOWS\system32\Tasks\Firefox Default Browser Agent 7F58795CCE3C60C4
2021-06-27 22:17 - 2021-06-27 22:20 - 000000000 ____D C:\ProgramData\1NKY8FMPNO2UW55ICUM7M1T98
2021-06-27 22:17 - 2021-06-27 22:18 - 006727680 ____N C:\WINDOWS\system32\Drivers\R6av688.sys
2021-06-27 22:17 - 2021-06-27 22:17 - 000041196 _____ C:\ProgramData\89692.89692
2021-06-27 22:17 - 2021-06-27 22:17 - 000000000 ____D C:\Program Files (x86)\foler
2021-06-27 22:16 - 2021-06-27 22:32 - 000000000 ____D C:\Program Files (x86)\Browzar
2021-06-27 22:16 - 2021-06-27 22:20 - 000000000 ___HD C:\Users\patri\AppData\Roaming\WinHost
2021-06-27 22:16 - 2021-06-27 22:17 - 000000000 ____D C:\ProgramData\CILG4BQ0I9BV03YTCK6JV5451
2021-06-27 22:16 - 2021-06-27 22:16 - 001564823 _____ C:\ProgramData\7897
2021-06-27 22:16 - 2021-06-27 22:16 - 001564823 _____ C:\ProgramData\7492
2021-06-27 22:16 - 2021-06-27 22:16 - 000168464 _____ () C:\Users\patri\AppData\Roaming\4453241.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000168464 _____ () C:\Users\patri\AppData\Roaming\1720259.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000143888 _____ C:\Users\patri\AppData\Roaming\8847470.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000143888 _____ C:\Users\patri\AppData\Roaming\4216310.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000109072 _____ (Hostig) C:\Users\patri\AppData\Roaming\5951240.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000040682 _____ C:\ProgramData\99816.99816
2021-06-27 22:16 - 2021-06-27 22:16 - 000000000 ____D C:\Users\patri\AppData\Local\Yandex
2021-06-27 22:16 - 2021-06-27 22:16 - 000000000 ____D C:\ProgramData\78
2021-06-27 22:16 - 2021-06-27 22:16 - 000000000 ____D C:\ProgramData\74
2021-06-27 22:16 - 2021-06-27 22:16 - 000000000 ____D C:\Program Files (x86)\Company
2021-06-27 22:15 - 2021-06-27 22:15 - 000000000 ____D C:\Users\patri\AppData\Roaming\Kruvk
2021-06-27 22:14 - 2021-06-27 22:29 - 000000000 ____D C:\WINDOWS\PublicGaming
2021-06-26 16:04 - 2021-06-26 16:04 - 000000000 ___RD C:\Users\patri\Documents\Saved Pictures
2021-06-26 13:41 - 2021-06-26 15:31 - 000000000 ____D C:\Users\patri\Documents\CyberLink
2021-06-23 00:45 - 2021-06-23 00:45 - 000000000 ____D C:\Users\patri\AppData\Roaming\Titler
2021-06-21 21:22 - 2021-06-21 21:22 - 000000000 ____D C:\Users\patri\AppData\Local\Apple Inc
2021-06-21 21:21 - 2021-06-21 21:21 - 000000000 ____D C:\Users\patri\AppData\Local\Apple Computer
2021-06-21 21:17 - 2021-06-21 21:17 - 000000000 ____D C:\ProgramData\Apple Computer
2021-06-21 21:14 - 2021-06-21 21:14 - 000000000 ____D C:\Users\patri\AppData\Local\Apple
2021-06-21 21:14 - 2021-06-21 21:14 - 000000000 ____D C:\ProgramData\Apple
2021-06-21 21:14 - 2021-06-21 21:14 - 000000000 ____D C:\Program Files\Bonjour
2021-06-21 21:14 - 2021-06-21 21:14 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-06-21 21:10 - 2021-06-21 21:25 - 000000000 ____D C:\Users\patri\AppData\Roaming\iMobie
2021-06-21 21:10 - 2021-06-21 21:23 - 000000000 ____D C:\Users\patri\AppData\Local\iMobie_Inc
2021-06-21 21:10 - 2021-06-21 21:22 - 000000000 ____D C:\Users\patri\AppData\Roaming\Apple Computer
2021-06-21 21:10 - 2021-06-21 21:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
2021-06-21 21:07 - 2021-06-26 13:08 - 000000000 ____D C:\Program Files (x86)\iMobie
2021-06-21 21:07 - 2021-06-21 21:07 - 000000000 ____D C:\Users\Public\Thunder Network
2021-06-21 21:07 - 2021-06-21 21:07 - 000000000 ____D C:\ProgramData\Thunder Network
2021-06-21 19:00 - 2021-06-21 19:00 - 000000000 ____D C:\ProgramData\Reprise
2021-06-21 18:32 - 2021-06-21 18:32 - 000000000 ____D C:\Users\patri\AppData\Roaming\BorisFX
2021-06-21 18:30 - 2021-06-21 18:30 - 000002150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Screen Recorder 4.lnk
2021-06-21 18:30 - 2021-06-21 18:30 - 000002138 _____ C:\Users\Public\Desktop\CyberLink Screen Recorder 4.lnk
2021-06-21 18:29 - 2021-06-21 18:29 - 000003288 _____ C:\WINDOWS\system32\Tasks\PowerDirectorStyleAgent
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\Users\patri\AppData\Roaming\proDAD
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\ProgramData\proDAD
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Boris FX Continuum CYBERLINK
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\ProgramData\GenArts
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\ProgramData\BorisFX
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\Program Files\proDAD
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\Program Files\NewBlue
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\Program Files\Common Files\NewBlue
2021-06-21 18:29 - 2021-06-21 18:29 - 000000000 ____D C:\Program Files\BorisFX
2021-06-21 18:29 - 2021-03-24 20:09 - 000607256 _____ (proDAD GmbH) C:\WINDOWS\system32\prodad-codec.dll
2021-06-21 18:29 - 2021-03-24 20:09 - 000376344 _____ (proDAD GmbH) C:\WINDOWS\system32\proDAD-PA-Support.dll
2021-06-21 18:28 - 2021-06-21 18:29 - 000000000 ____D C:\Program Files (x86)\NewBlue
2021-06-21 18:28 - 2021-06-21 18:28 - 000002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 365.lnk
2021-06-21 18:28 - 2021-06-21 18:28 - 000002055 _____ C:\Users\Public\Desktop\CyberLink PowerDirector 365.lnk
2021-06-21 18:15 - 2021-06-21 18:16 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Application Manager.lnk
2021-06-21 18:15 - 2021-06-21 18:16 - 000002294 _____ C:\Users\Public\Desktop\CyberLink Application Manager.lnk
2021-06-21 18:14 - 2021-06-21 18:14 - 025020832 _____ C:\Users\patri\Downloads\CyberLink_Application_Manager_PowerDirector365_APM201207-01.exe
2021-06-21 17:44 - 2021-06-23 00:53 - 000003618 _____ C:\WINDOWS\system32\Tasks\CLToast
2021-06-21 17:44 - 2021-06-23 00:53 - 000003444 _____ C:\WINDOWS\system32\Tasks\CLToastRun
2021-06-21 17:44 - 2021-06-23 00:53 - 000001295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Notification Center.lnk
2021-06-21 17:44 - 2021-06-21 17:44 - 000002155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 365.lnk
2021-06-21 17:44 - 2021-06-21 17:44 - 000002143 _____ C:\Users\Public\Desktop\CyberLink PhotoDirector 365.lnk
2021-06-21 17:43 - 2021-06-23 00:53 - 000000000 ____D C:\Program Files\CyberLink
2021-06-21 17:32 - 2021-06-25 18:23 - 000000000 ____D C:\ProgramData\install_backup
2021-06-21 17:32 - 2021-06-25 18:23 - 000000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2021-06-21 17:32 - 2021-06-23 01:27 - 000000000 ____D C:\Program Files (x86)\CyberLink
2021-06-21 17:30 - 2021-06-21 17:31 - 025020832 _____ C:\Users\patri\Downloads\CyberLink_Application_Manager_PhotoDirector365_APM201207-01 (1).exe
2021-06-21 17:20 - 2021-06-25 18:20 - 000000000 ____D C:\ProgramData\CLSK
2021-06-21 16:53 - 2021-06-21 17:48 - 000000000 ____D C:\Users\patri\AppData\Local\CyberLink
2021-06-21 16:51 - 2021-06-21 16:51 - 025020832 _____ C:\Users\patri\Downloads\CyberLink_Application_Manager_PhotoDirector365_APM201207-01.exe
2021-06-19 22:57 - 2021-06-19 23:07 - 622459512 _____ C:\Users\patri\Downloads\PowerDirector_3008_365_Essential_Essential_VDE210311-01.exe
2021-06-19 22:57 - 2021-06-19 22:57 - 001164096 _____ (CyberLink) C:\Users\patri\Downloads\CyberLink_PowerDirector_Downloader.exe
2021-06-19 22:55 - 2021-06-19 22:55 - 000000000 ____D C:\Users\patri\AppData\Roaming\CyberLink
2021-06-19 22:54 - 2021-06-21 19:32 - 000000000 ____D C:\Users\Public\CyberLink
2021-06-16 23:59 - 2021-06-16 23:59 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-06-16 23:58 - 2021-06-16 23:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-16 23:58 - 2021-06-16 23:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-16 23:58 - 2021-06-16 23:58 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-16 23:58 - 2021-06-16 23:58 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-16 23:58 - 2021-06-16 23:58 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-16 23:58 - 2021-06-16 23:58 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-16 23:58 - 2021-06-16 23:58 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-16 23:58 - 2021-06-16 23:58 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-06-16 23:58 - 2021-06-16 23:58 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-06-16 23:58 - 2021-06-16 23:58 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-16 23:58 - 2021-06-16 23:58 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-16 23:58 - 2021-06-16 23:58 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-16 23:58 - 2021-06-16 23:58 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-16 23:58 - 2021-06-16 23:58 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-16 23:58 - 2021-06-16 23:58 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-16 23:58 - 2021-06-16 23:58 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-16 23:58 - 2021-06-16 23:58 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-16 23:58 - 2021-06-16 23:58 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-16 23:57 - 2021-06-16 23:57 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-16 23:57 - 2021-06-16 23:57 - 000342528 ___SH C:\Users\patri\AppData\Roaming\tfavcwd
2021-06-16 23:57 - 2021-06-16 23:57 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-16 23:57 - 2021-06-16 23:57 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-16 23:57 - 2021-06-16 23:57 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-06-16 23:57 - 2021-06-16 23:57 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-06-16 21:57 - 2021-06-16 21:58 - 000000000 ____D C:\Users\patri\AppData\Roaming\ProgTimeSwitch
2021-06-16 21:53 - 2021-06-16 21:53 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-06-16 21:53 - 2021-06-16 21:53 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-06-16 21:53 - 2021-06-16 21:53 - 000000000 ____D C:\Program Files\MSBuild
2021-06-16 21:53 - 2021-06-16 21:53 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-06-16 21:53 - 2021-06-16 21:53 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-06-16 21:45 - 2021-06-26 13:07 - 000000004 _____ C:\WINDOWS\HBCIKRNL.INI
2021-06-16 21:44 - 2021-06-16 21:45 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2021-06-10 07:07 - 2021-06-25 18:23 - 000000000 ____D C:\ProgramData\install_clap
2021-06-10 06:45 - 2021-06-21 18:30 - 000000000 ___HD C:\ProgramData\CyberLink
2021-06-09 12:20 - 2021-06-16 21:47 - 000000951 _____ C:\WINDOWS\Tasks\EPSON WF-2860 Series Update {638BDDB0-CA56-45C9-B7B9-D458C12CCDEA}.job
2021-06-09 12:20 - 2021-06-09 12:20 - 000004150 _____ C:\WINDOWS\system32\Tasks\EPSON WF-2860 Series Update {638BDDB0-CA56-45C9-B7B9-D458C12CCDEA}

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-29 21:41 - 2021-03-26 09:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-29 20:06 - 2021-03-26 09:41 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2021-06-29 19:59 - 2019-09-15 06:37 - 000000000 __SHD C:\Users\patri\IntelGraphicsProfiles
2021-06-29 07:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-28 23:13 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-28 23:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-28 22:30 - 2021-03-26 09:39 - 002056338 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-28 22:30 - 2019-12-07 16:49 - 000902798 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-28 22:30 - 2019-12-07 16:49 - 000194124 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-28 22:30 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-28 22:25 - 2021-03-26 09:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-28 22:25 - 2021-03-26 09:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-28 22:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-28 22:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2021-06-28 22:24 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-06-28 21:48 - 2019-10-04 10:57 - 000000000 ____D C:\Users\patri\AppData\Local\D3DSCache
2021-06-28 21:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-06-28 20:06 - 2019-09-15 06:37 - 000000000 ____D C:\Users\patri\AppData\Local\Intel
2021-06-28 20:06 - 2019-07-12 08:23 - 000000000 ____D C:\ProgramData\Intel
2021-06-28 17:14 - 2021-03-26 09:41 - 000001905 _____ C:\WINDOWS\diagwrn.xml
2021-06-28 17:14 - 2021-03-26 09:41 - 000001905 _____ C:\WINDOWS\diagerr.xml
2021-06-28 16:49 - 2019-09-15 06:40 - 000000000 ___RD C:\Users\patri\OneDrive
2021-06-28 16:15 - 2020-01-05 17:48 - 000000000 ____D C:\Users\patri\AppData\Local\ElevatedDiagnostics
2021-06-28 15:51 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-28 15:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-06-28 15:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-06-28 14:58 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-06-28 13:59 - 2021-03-26 09:34 - 000000000 ____D C:\Users\patri
2021-06-27 23:11 - 2019-10-04 08:05 - 000000000 ____D C:\Program Files (x86)\WinRAR
2021-06-27 22:49 - 2019-12-07 11:03 - 024641536 _____ C:\WINDOWS\system32\config\BCD00000000
2021-06-27 22:37 - 2019-09-15 10:08 - 000000000 ____D C:\ProgramData\EBP
2021-06-27 22:37 - 2019-09-15 10:08 - 000000000 ____D C:\Program Files\EBP
2021-06-27 22:36 - 2019-09-15 10:02 - 000000000 ____D C:\Users\patri\AppData\Local\IIIQF
2021-06-27 22:17 - 2019-09-15 07:11 - 000000000 ____D C:\Program Files (x86)\Orange
2021-06-27 22:16 - 2019-12-07 11:14 - 000000000 __SHD C:\Program Files\Windows Sidebar
2021-06-27 22:16 - 2019-09-15 10:06 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2021-06-26 14:37 - 2019-09-15 06:41 - 000000000 ____D C:\Users\patri\AppData\Local\PlaceholderTileLogoFolder
2021-06-26 14:37 - 2019-09-15 06:37 - 000000000 ____D C:\Users\patri\AppData\Local\Packages
2021-06-26 14:37 - 2019-09-15 06:29 - 000000000 ____D C:\ProgramData\Packages
2021-06-26 13:09 - 2021-03-26 09:33 - 000458952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-26 13:04 - 2021-03-26 09:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-06-26 13:04 - 2020-02-21 12:02 - 000000000 ____D C:\ProgramData\NCH Software
2021-06-26 13:04 - 2020-02-21 12:02 - 000000000 ____D C:\Program Files (x86)\NCH Software
2021-06-26 12:06 - 2020-07-15 13:25 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-26 10:19 - 2019-09-15 06:37 - 000000000 ____D C:\Users\patri\AppData\Local\VirtualStore
2021-06-26 01:02 - 2021-03-26 09:41 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2611424739-2508005720-3032142289-1001
2021-06-26 01:02 - 2021-03-26 09:34 - 000002423 _____ C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-25 18:23 - 2020-01-07 07:54 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-23 20:34 - 2019-09-14 18:32 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-06-21 18:29 - 2019-07-12 08:23 - 000000000 ____D C:\ProgramData\Package Cache
2021-06-17 00:23 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-17 00:20 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-06-17 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-17 00:01 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-06-16 21:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-06-16 21:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-06-16 21:46 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-06-16 21:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-12 23:19 - 2021-03-26 09:41 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2021-06-12 23:19 - 2021-03-26 09:41 - 000003764 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3
2021-06-12 10:46 - 2018-12-07 09:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-11 09:03 - 2020-10-01 11:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-10 16:58 - 2020-01-17 22:32 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-10 11:38 - 2019-09-14 19:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-10 11:35 - 2019-09-14 19:23 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Fichiers à la racine de certains dossiers ========

2021-06-27 22:37 - 2021-06-27 22:37 - 000000000 _____ () C:\Program Files (x86)\temp_files
2021-06-27 22:30 - 2021-06-27 22:30 - 000109072 _____ (Hostig) C:\Users\patri\AppData\Roaming\1067660.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000168464 _____ () C:\Users\patri\AppData\Roaming\1720259.exe
2021-06-27 22:18 - 2021-06-27 22:18 - 000319504 _____ (ArMORYAppl) C:\Users\patri\AppData\Roaming\2206606.exe
2021-06-27 22:18 - 2021-06-27 22:18 - 000143888 _____ () C:\Users\patri\AppData\Roaming\3453785.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000143888 _____ () C:\Users\patri\AppData\Roaming\4216310.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000168464 _____ () C:\Users\patri\AppData\Roaming\4453241.exe
2021-06-27 22:30 - 2021-06-27 22:30 - 000168464 _____ () C:\Users\patri\AppData\Roaming\4888884.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000109072 _____ (Hostig) C:\Users\patri\AppData\Roaming\5951240.exe
2021-06-27 22:30 - 2021-06-27 22:30 - 000143888 _____ () C:\Users\patri\AppData\Roaming\8369392.exe
2021-06-27 22:16 - 2021-06-27 22:16 - 000143888 _____ () C:\Users\patri\AppData\Roaming\8847470.exe
2021-06-27 22:18 - 2021-06-27 22:18 - 001305104 _____ () C:\Users\patri\AppData\Roaming\8959428.exe
2021-06-16 23:57 - 2021-06-16 23:57 - 000342528 ___SH () C:\Users\patri\AppData\Roaming\tfavcwd
2019-12-06 10:07 - 2019-12-06 10:07 - 000000000 _____ () C:\Users\patri\AppData\Local\1FCA3773.png
2020-09-21 12:20 - 2020-09-21 12:20 - 000001683 _____ () C:\Users\patri\AppData\Local\recently-used.xbel
2019-09-21 01:34 - 2019-09-21 01:34 - 000000017 _____ () C:\Users\patri\AppData\Local\resmon.resmoncfg

==================== FLock ==============================

2021-06-28 22:24 C:\WINDOWS\system32\config\SYSTEM
2021-06-27 22:18 C:\WINDOWS\system32\Drivers\R6av688.sys

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================