Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 17-03-2021
Exécuté par PC (administrateur) sur PC-PC (ASUSTeK COMPUTER INC. X555LA) (19-03-2021 14:08:23)
Exécuté depuis C:\Users\PC\Desktop\Nouveau dossier
Profils chargés: PC
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Discord Inc. -> Discord Inc.) C:\Users\PC\Desktop\DiscordSetup\Discord-0.0.308-full\lib\net45\Discord.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TunnelBear -> ) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [RegTool] => C:\Program Files (x86)\Gemalto\Classic Client\BIN\RegTool.exe [1253384 2016-03-23] (gemalto -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\Run: [Chromium] => "c:\users\pc\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2138448 2021-03-13] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIRRE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32988128 2021-03-09] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\Run: [Spotify] => C:\Users\PC\AppData\Roaming\Spotify\Spotify.exe [23854664 2021-03-13] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\Run: [Discord] => C:\Users\PC\Desktop\DiscordSetup\Discord-0.0.308-full\lib\Update.exe --processStart Discord.exe
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\MountPoints2: {292e5a6f-4727-11e8-9643-d053498cae60} - E:\AutoRun.exe
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\MountPoints2: {49f05b5f-5868-11e5-b4c9-d053498cae60} - G:\AutoRun.exe
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\MountPoints2: {c8c7002e-6680-11e5-9e2b-d053498cae60} - E:\iLinker.exe
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\MountPoints2: {d065586b-57e8-11e5-91ab-d053498cae60} - E:\AutoRun.exe
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\MountPoints2: {d065589b-57e8-11e5-91ab-d053498cae60} - G:\AutoRun.exe
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\MountPoints2: {d06558a8-57e8-11e5-91ab-d053498cae60} - E:\AutoRun.exe
HKU\S-1-5-21-2054802823-372819606-554328605-1000\...\MountPoints2: {d511447e-8e0f-11e5-9bee-d053498cae60} - E:\AutoRun.exe
HKU\S-1-5-21-2054802823-372819606-554328605-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\EPSON L382 Series 64MonitorBE: C:\Windows\system32\E_YLMBRRE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\HP1100LM: C:\Windows\system32\HP1100LM.DLL [288768 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-17] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.117\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{QXO030HK-B5JG-V1M5-3637-V0D1JTD2D4CL}] -> C:\WINDOWS\microsoft\notepad.exe
AppInit_DLLs: C:\ProgramData\Medlight\Meddamsoft.dll => Pas de fichier
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2020-11-27]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Policies: C:\Users\PC\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {05C4CDF7-5F1D-419B-91A1-51A1B04D007F} - System32\Tasks\EPSON L382 Series Update {BD92DFEE-0D56-4E87-B404-AF3B3C6FC83A} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {075C7DBE-61D9-40E1-BE79-C8E93F5488E1} - System32\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6 => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-6.exe <==== ATTENTION
Task: {15009139-831E-45C6-B9C2-8CA758C910B9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {16F420B3-96AA-474E-A6D4-9C17BB1C5E55} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1AD1D7D4-7B7B-4EA0-9A6B-45F6BBB97C3B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {34665A2E-6F70-4C24-95CD-7FC93044E458} - System32\Tasks\EPSON L382 Series Update {BC27124E-C0D8-49D9-93FF-D766F6317346} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {3EEC13F3-27E5-4603-9687-CEA87CA6A385} - \{12A78BDA-C4C0-46D4-345D-6A6710CF160F} -> Pas de fichier <==== ATTENTION
Task: {3EF9A616-0994-4B67-8BF6-6B055262D285} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {45838E05-341F-4F98-ABD6-3ABC9429E2E1} - System32\Tasks\40db1533-f551-4998-8bca-934da85073e3-5_user => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe <==== ATTENTION
Task: {497DF62F-33C4-48FE-AA4C-1CAE280E80AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-23] (Google Inc -> Google Inc.)
Task: {58259809-F2FC-4196-81E3-3F2D7A510B3D} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2054802823-372819606-554328605-1000 => C:\Users\PC\AppData\Local\MEGAsync\MEGAupdater.exe [760696 2018-01-15] (Mega Limited -> Mega Limited)
Task: {5A443946-C4CC-4CF3-85FA-B2401A26451B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C1CDBD7-1784-4DAA-976C-FDCB70C06B4B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software)
Task: {68F07E1D-67FB-434F-B2D7-B29FC4CF1F92} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {74BA49E0-E198-41B8-ACF9-AF3CB5EAC25F} - System32\Tasks\40db1533-f551-4998-8bca-934da85073e3-10_user => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-10.exe <==== ATTENTION
Task: {78A46DF5-960F-47EA-AC6F-641E642DF583} - System32\Tasks\{F64FAC57-5EC6-4823-9992-24FF5F08DE8F} => C:\Windows\system32\pcalua.exe -a C:\Users\PC\Desktop\EP-CDB-FRA.exe -d C:\Users\PC\Desktop
Task: {8353AB79-B2DE-4D09-AA09-61CEE81F1B03} - System32\Tasks\40db1533-f551-4998-8bca-934da85073e3-6 => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-6.exe <==== ATTENTION
Task: {A4E359C1-23C7-4001-B908-2860BCCA8A14} - System32\Tasks\{13CED89B-561D-4413-8771-D868CF98422C} => C:\Windows\system32\pcalua.exe -a C:\Users\PC\Downloads\adguardInstaller.exe -d C:\Users\PC\Downloads
Task: {AE9389E4-3EF0-4476-98CC-2E7CCD930321} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2054802823-372819606-554328605-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746880 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Task: {AF5EEF47-68E0-41C1-B0D0-FFF62CA658E8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-23] (Google Inc -> Google Inc.)
Task: {B22A405A-17C6-4F8A-9D6A-E91BBDB46E2F} - \{0C7A0E47-7F04-0B04-7E11-0B0F080E1179} -> Pas de fichier <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-10_user.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5_user.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\EPSON L382 Series Update {BC27124E-C0D8-49D9-93FF-D766F6317346}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE:/EXE:{BC27124E-C0D8-49D9-93FF-D766F6317346} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON L382 Series Update {BD92DFEE-0D56-4E87-B404-AF3B3C6FC83A}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRRE.EXE:/EXE:{BD92DFEE-0D56-4E87-B404-AF3B3C6FC83A} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 41.214.140.4 41.214.140.5 8.8.8.8
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{7D46B3C4-D674-4743-8BDE-1B8CC9E400BF}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{DB221BD6-20F8-4C09-89BC-3320B99A60DF}: [DhcpNameServer] 41.214.140.4 41.214.140.5 8.8.8.8
Tcpip\..\Interfaces\{EBC79EE0-8018-4350-9C08-9F8AE9E017FC}: [DhcpNameServer] 41.214.140.4 41.214.140.5 8.8.8.8
Tcpip\..\Interfaces\{F7890AE9-5FDF-4FE9-B727-C2FC8B233A47}: [DhcpNameServer] 172.20.10.1

FireFox:
========
FF DefaultProfile: 9uec9h16.default-1441821945333
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\9uec9h16.default-1441821945333 [2020-04-12]
FF user.js: detected! => C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\9uec9h16.default-1441821945333\user.js [2017-06-30]
FF Homepage: Mozilla\Firefox\Profiles\9uec9h16.default-1441821945333 -> hxxps://www.searchgoose.com/?path=firefox/newtab&u=7e5610af6ae67e31&subid=11118
FF NewTab: Mozilla\Firefox\Profiles\9uec9h16.default-1441821945333 -> C:\\ProgramData\\Medlights\\ff.NT
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\9uec9h16.default-1441821945333\Extensions\sp@avast.com.xpi [2020-03-11]
FF Extension: (Avast Online Security) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\9uec9h16.default-1441821945333\Extensions\wrc@avast.com.xpi [2020-03-11]
FF SearchPlugin: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\9uec9h16.default-1441821945333\searchplugins\yahoo-lavasoft-ff59.xml [2018-04-23]
FF Plugin: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll [Pas de fichier]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @qq.com/npAndroidAssistant -> C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-2054802823-372819606-554328605-1000: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll [Pas de fichier]

Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2021-03-09]
CHR HomePage: Default -> hxxp://www.surf-ma.com/
CHR StartupUrls: Default -> "hxxp://www.surf-ma.com/"
CHR DefaultSearchURL: Default -> hxxps://www.search-fine.com/search?subid=11118&u=7e5610af6ae67e31&keyword={searchTerms}
CHR DefaultSearchKeyword: Default -> Google
CHR DefaultNewTabURL: Default -> hxxps://www.searchgoose.com/?path=chrome/newtab&u=7e5610af6ae67e31&subid=11118
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}&language={language}&PC=U316
CHR Extension: (Google Docs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-10]
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-10]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-10]
CHR Extension: (Recherche Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10]
CHR Extension: (Google Docs hors connexion) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Adblocker for Youtube™) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\leppigdgdllmofaaknlncdiedoeellbj [2018-04-24]
CHR Extension: (Adblocker for Youtube™) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\lidbkgmnidcocknpahjcjppbjmabdmpp [2018-04-24]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-10]
CHR Extension: (电脑管家上网防护) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm [2015-11-18]
CHR Extension: (0) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbdpajcdgknpendpmecafmopknefafha [2018-04-23]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-10]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-03-09]
CHR HomePage: Profile 1 -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWpoE9FMzuYVvM8KUQpU0PrH51x3AuiNweck6SmQ7INqsuuGIFbD9Cnn6q3H6diu7VON-FoaTjPHww75qKg25qI_FcP0gfjYx2O0G0HoI-6is29j2KwXTtHT7u9-bsf2EwC8g_8Dr7aGxAH5FN8HfY6GDtBA,,
CHR NewTab: Profile 1 -> Not-active:"chrome-extension://jknfnmpagdiiabgnnonllhcdjflganlm/html/newtab.html"
CHR DefaultSearchURL: Profile 1 -> hxxps://www.search-fine.com/search?subid=11118&u=7e5610af6ae67e31&keyword={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> Google
CHR DefaultNewTabURL: Profile 1 -> hxxps://www.searchgoose.com/?path=chrome/newtab&u=7e5610af6ae67e31&subid=11118
CHR DefaultSuggestURL: Profile 1 -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}&language={language}&PC=U316
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-01]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-01]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2009-01-01]
CHR Extension: (Recherche Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-01]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-01-16]
CHR Extension: (Betternet Unlimited Free VPN Proxy) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gjknjjomckknofjidppipffbpoekiipm [2018-11-01]
CHR Extension: (0) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hhmffijkepkhjmccjggphbifmblmghjd [2019-05-01]
CHR Extension: (Flixtab Movie Center) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jknfnmpagdiiabgnnonllhcdjflganlm [2019-05-01]
CHR Extension: (Bloqueur de pub pour Youtube™) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\leppigdgdllmofaaknlncdiedoeellbj [2018-04-24]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-22]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-16]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-03-19]
CHR HomePage: Profile 2 -> hxxps://www.google.com/
CHR DefaultSearchURL: Profile 2 -> hxxps://www.search-fine.com/search?subid=11118&u=7e5610af6ae67e31&keyword={searchTerms}
CHR DefaultSearchKeyword: Profile 2 -> google
CHR DefaultNewTabURL: Profile 2 -> hxxps://www.searchgoose.com/?path=chrome/newtab&u=7e5610af6ae67e31&subid=11118
CHR DefaultSuggestURL: Profile 2 -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}&language={language}&PC=U316
CHR Session Restore: Profile 2 -> est activé.
CHR Extension: (Slides) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-16]
CHR Extension: (Just Black) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-08-31]
CHR Extension: (Docs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-16]
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-16]
CHR Extension: (wanteeed) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\emnoomldgleagdjapdeckpmebokijail [2020-11-24]
CHR Extension: (Sheets) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-03-18]
CHR Extension: (Enregistreur d'écran) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jdopnakmnlnccgpfpmjmdjjohmcdgabp [2020-12-05]
CHR Extension: (Clipchamp Create) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmnchbakjbeoekoggbcmegfainnmokbm [2020-12-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-09]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-09]
CHR Notifications: System Profile -> hxxps://mail-notification.info
CHR DefaultSearchKeyword: System Profile -> Google
CHR DefaultNewTabURL: System Profile -> hxxps://www.searchgoose.com/?path=chrome/newtab&u=7e5610af6ae67e31&subid=11118
CHR DefaultSuggestURL: System Profile -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}&language={language}&PC=U316
CHR Extension: (Adblocker for Youtube™) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\leppigdgdllmofaaknlncdiedoeellbj [2018-04-24]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fcgnigmofekcllgbiejhmigggmgehkip]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-03-10] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2018-10-28] (Macrovision Europe Ltd.) [Fichier non signé]
S2 GslShmSrvc; C:\Program Files (x86)\Gemalto\Classic Client\BIN\GslShmSrvc.exe [90632 2016-03-23] (gemalto -> Gemalto)
S2 jswpbapi; C:\Program Files (x86)\Jumpstart\jswpbapi.exe [265216 2008-09-26] (Atheros Communications, Inc.) [Fichier non signé]
S3 jswpsapi; C:\Program Files (x86)\Jumpstart\jswpsapi.exe [954368 2008-09-26] (Atheros Communications, Inc.) [Fichier non signé]
S2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé]
S2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [230240 2018-04-23] (HUAWEI Technologies Co., Ltd. -> )
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [119928 2018-09-03] (TunnelBear -> )
S2 VyprVPN; C:\Program Files (x86)\VyprVPN\VyprVPNService.exe [304128 2018-06-08] (Golden Frog, GmbH.) [Fichier non signé]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 egtraupddt; pas de ImagePath
S2 Service Mgr LuckyBright; "C:\ProgramData\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugincontainer.exe" [X] <==== ATTENTION

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [137712 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto)
R1 JSWPSLWF; C:\Windows\System32\DRIVERS\jswpslwfx.sys [26624 2008-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R0 LDrvPro; C:\Windows\System32\drivers\LDrvPro64.sys [195824 2021-03-09] (Shenzhen DriveTheLife Software Technology Co.Ltd -> 深圳市驱动人生软件技术有限公司)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2015-11-05] (Apple Inc.) [Fichier non signé]
R3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [38656 2018-07-31] (TunnelBear, Inc. -> The OpenVPN Project)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [36496 2018-06-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapvyprvpn; C:\Windows\System32\DRIVERS\tapvyprvpn.sys [44896 2018-06-08] (Golden Frog, GmbH -> The OpenVPN Project)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Apple, Inc.) [Fichier non signé]
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S1 QMUdisk; \??\C:\Program Files (x86)\Tencent\QQPCMgr\11.0.16794.227\QMUdisk64.sys [X]
S3 TS888x64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\11.0.16794.227\TS888x64.sys [X]
S1 TsDefenseBt; \??\C:\Program Files (x86)\Tencent\QQPCMgr\11.0.16794.227\TsDefenseBT64.sys [X]
S3 TSSKX64; System32\drivers\tsskx64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2036-02-07 01:29 - 2021-02-05 20:49 - 000003502 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2036-02-07 01:29 - 2021-02-05 20:49 - 000003374 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-03-18 18:30 - 2021-03-18 18:30 - 000001034 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2021-03-18 18:30 - 2021-03-18 18:30 - 000001034 _____ C:\ProgramData\Desktop\Revo Uninstaller.lnk
2021-03-18 18:30 - 2021-03-18 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-03-18 18:28 - 2021-03-18 18:29 - 007461704 _____ (VS Revo Group ) C:\Users\PC\Downloads\revosetup.exe
2021-03-18 18:23 - 2021-03-18 18:24 - 009602618 _____ C:\Users\PC\Downloads\RevoUninstaller_Portable.zip
2021-03-18 17:10 - 2021-03-18 17:10 - 000000222 _____ C:\Users\PC\Downloads\Search.txt
2021-03-18 17:04 - 2021-03-18 18:51 - 000051290 _____ C:\Users\PC\Downloads\Addition.txt
2021-03-18 17:01 - 2021-03-19 14:09 - 000000000 ____D C:\FRST
2021-03-18 16:51 - 2021-03-19 13:15 - 000000000 ____D C:\AdwCleaner
2021-03-18 16:51 - 2021-03-18 16:51 - 008463216 _____ (Malwarebytes) C:\Users\PC\Downloads\adwcleaner_8.1.exe
2021-03-18 16:50 - 2021-03-18 16:51 - 008457584 _____ (Malwarebytes) C:\Users\PC\Downloads\adwcleaner_8.0.9.1.exe
2021-03-17 15:46 - 2021-03-17 15:46 - 000904706 _____ C:\Users\PC\Downloads\carry_en_pelo (1).wotbreplay
2021-03-17 08:45 - 2021-03-17 08:46 - 000904706 _____ C:\Users\PC\Downloads\carry_en_pelo.wotbreplay
2021-03-15 23:22 - 2021-03-15 23:22 - 000007041 _____ C:\Users\PC\Downloads\téléchargement (4).html
2021-03-15 23:22 - 2021-03-15 23:22 - 000007041 _____ C:\Users\PC\Downloads\téléchargement (3).html
2021-03-15 23:22 - 2021-03-15 23:22 - 000007041 _____ C:\Users\PC\Downloads\téléchargement (2).html
2021-03-15 23:21 - 2021-03-15 23:22 - 000007041 _____ C:\Users\PC\Downloads\téléchargement.html
2021-03-15 23:21 - 2021-03-15 23:22 - 000007041 _____ C:\Users\PC\Downloads\téléchargement (1).html
2021-03-09 16:15 - 2021-03-09 16:15 - 000000000 ____D C:\Users\PC\Documents\Notruf 2 Showroom
2021-03-09 16:12 - 2021-03-09 16:13 - 000000000 ____D C:\Users\PC\Documents\Notruf 2 Templates
2021-03-09 16:12 - 2021-03-09 16:12 - 000000000 ____D C:\Users\PC\Documents\Notruf 2 Skins
2021-03-09 14:17 - 2021-03-18 17:46 - 000000000 ____D C:\Users\PC\AppData\LocalLow\IGDump
2021-03-09 14:12 - 2021-03-09 14:12 - 002084016 _____ (Malwarebytes) C:\Users\PC\Downloads\MBSetup (1).exe
2021-03-09 14:01 - 2021-03-09 14:01 - 000000000 ____D C:\Users\PC\AppData\Local\mbam
2021-03-09 13:59 - 2021-03-09 13:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-03-09 13:58 - 2021-03-09 13:58 - 000000000 ____D C:\Program Files\Malwarebytes
2021-03-09 13:57 - 2021-03-09 13:57 - 002084016 _____ (Malwarebytes) C:\Users\PC\Downloads\MBSetup.exe
2021-03-09 12:13 - 2021-03-09 12:13 - 000000000 ____D C:\Windows\system32\Ftg_ckr
2021-03-09 09:58 - 2021-03-09 09:58 - 000288528 _____ C:\Windows\Minidump\030921-36395-01.dmp
2021-03-04 15:11 - 2021-03-04 15:12 - 002498620 _____ C:\Users\PC\Downloads\Projet_01-01_SD.mp4
2021-03-01 20:40 - 2021-03-01 20:40 - 000294767 _____ C:\Users\PC\Downloads\bassem-oh-jai-le-droit-de-vivre-un-peu.mp4
2021-03-01 16:43 - 2021-03-01 16:50 - 000000000 ____D C:\Users\PC\AppData\Local\Roblox
2021-03-01 16:43 - 2021-03-01 16:46 - 000000175 _____ C:\Users\PC\AppData\LocalLow\rbxcsettings.rbx
2021-03-01 16:43 - 2021-03-01 16:45 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2021-03-01 16:42 - 2021-03-01 16:43 - 001641848 _____ (Roblox Corporation) C:\Users\PC\Downloads\RobloxPlayerLauncher.exe
2021-03-01 12:17 - 2021-03-19 13:10 - 000000000 ____D C:\Users\PC\Documents\DAVAProject
2021-03-01 11:27 - 2021-03-01 11:27 - 000000222 _____ C:\Users\PC\Desktop\World of Tanks Blitz.url
2021-02-28 14:38 - 2021-02-28 14:38 - 000948375 _____ C:\Users\PC\Downloads\02-Formalisation du besoin_E.pdf
2021-02-27 12:18 - 2021-02-27 12:18 - 000391028 _____ C:\Users\PC\Desktop\Plan salle polyvalente et salle oum errabia.pdf
2021-02-27 12:17 - 2021-02-27 12:17 - 000861189 _____ C:\Users\PC\Downloads\Plan salle polyvalente et salle oum errabia.pdf
2021-02-26 23:28 - 2021-02-26 23:28 - 001980731 _____ C:\Users\PC\Downloads\latest-27
2021-02-24 11:28 - 2021-03-09 15:14 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2021-02-23 15:18 - 2021-03-09 13:32 - 000000000 ____D C:\Users\PC\AppData\Local\NPE
2021-02-23 15:18 - 2021-02-23 15:18 - 000000000 ____D C:\ProgramData\Norton
2021-02-23 15:07 - 2021-02-23 15:08 - 009656736 _____ (NortonLifeLock Inc.) C:\Users\PC\Downloads\NPE.exe
2021-02-20 18:30 - 2021-02-20 18:30 - 000280816 _____ C:\Windows\Minidump\022021-22588-01.dmp

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-03-19 14:11 - 2020-04-10 16:05 - 000000000 ____D C:\Users\PC\AppData\Roaming\discord
2021-03-19 13:43 - 2019-02-20 09:43 - 000000913 _____ C:\Windows\Tasks\EPSON L382 Series Update {BC27124E-C0D8-49D9-93FF-D766F6317346}.job
2021-03-19 13:39 - 2015-11-09 23:39 - 000003126 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job
2021-03-19 13:38 - 2015-11-09 23:38 - 000005506 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job
2021-03-19 13:38 - 2015-11-09 23:38 - 000002100 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-10_user.job
2021-03-19 13:26 - 2020-03-22 16:26 - 000000913 _____ C:\Windows\Tasks\EPSON L382 Series Update {BD92DFEE-0D56-4E87-B404-AF3B3C6FC83A}.job
2021-03-19 13:16 - 2018-09-05 13:17 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2021-03-19 13:15 - 2009-07-14 05:45 - 000027424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-03-19 13:15 - 2009-07-14 05:45 - 000027424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-03-19 11:39 - 2015-11-09 23:39 - 000002434 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5_user.job
2021-03-19 08:18 - 2021-01-13 12:05 - 000000000 ____D C:\Users\PC\Desktop\Nouveau dossier
2021-03-18 18:30 - 2018-04-23 15:38 - 000000000 ____D C:\Program Files\VS Revo Group
2021-03-18 17:43 - 2015-10-20 17:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-03-18 17:41 - 2018-04-23 13:42 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-03-18 17:39 - 2019-03-05 11:30 - 000000000 ____D C:\Windows\system32\Macromed
2021-03-18 17:38 - 2015-09-13 10:09 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2021-03-17 19:29 - 2020-05-21 16:17 - 000000000 ____D C:\Users\PC\AppData\Local\Spotify
2021-03-17 18:47 - 2020-05-21 16:16 - 000000000 ____D C:\Users\PC\AppData\Roaming\Spotify
2021-03-11 12:39 - 2020-04-03 11:53 - 000000000 ____D C:\Users\PC\AppData\Roaming\obs-studio
2021-03-09 17:10 - 2020-05-11 16:08 - 000000000 ____D C:\Program Files (x86)\Steam
2021-03-09 16:04 - 2020-09-02 23:51 - 000000000 ____D C:\Users\PC\AppData\Local\WarThunder
2021-03-09 15:12 - 2018-04-23 21:16 - 000000000 ____D C:\Users\PC\Desktop\dossier karim
2021-03-09 15:11 - 2018-04-23 17:54 - 000000000 ____D C:\Users\PC\AppData\Roaming\s1nvat22exf
2021-03-09 15:11 - 2018-04-23 17:28 - 000000000 ____D C:\WinSys
2021-03-09 12:48 - 2018-04-23 15:25 - 000000000 __SHD C:\Users\PC\IntelGraphicsProfiles
2021-03-09 12:46 - 2018-04-24 19:20 - 000195824 _____ (深圳市驱动人生软件技术有限公司) C:\Windows\system32\Drivers\LDrvPro64.sys
2021-03-09 12:46 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-09 09:58 - 2021-01-31 20:28 - 365818633 _____ C:\Windows\MEMORY.DMP
2021-03-09 09:58 - 2015-11-05 17:24 - 000000000 ____D C:\Windows\Minidump
2021-03-01 12:10 - 2018-08-07 23:39 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-01 11:27 - 2020-08-10 23:55 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

==================== Fichiers à la racine de certains dossiers ========

2018-04-23 17:33 - 2018-04-25 11:21 - 000000004 _____ () C:\ProgramData\lock.dat
2015-09-10 20:12 - 2015-09-10 20:12 - 006420480 _____ () C:\Program Files (x86)\GUT9963.tmp
2015-04-14 17:28 - 2015-04-14 17:28 - 000004387 ____N () C:\Users\PC\AppData\Roaming\0ZPaAkafykHcSNjka
2015-04-19 13:20 - 2015-04-19 13:20 - 000005872 ____N () C:\Users\PC\AppData\Roaming\A8luklgXPm7keUVegdWqMRK
2020-06-16 11:41 - 2021-02-05 22:11 - 000000462 _____ () C:\Users\PC\AppData\Roaming\AdobeWLCMR2Cache.dat
2005-04-08 03:16 - 2015-11-10 00:41 - 008369948 ____H () C:\Users\PC\AppData\Roaming\PClog.dat
2020-04-12 16:20 - 2020-04-12 16:27 - 000007605 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg
2015-11-09 23:33 - 2015-11-09 23:32 - 000000187 _____ () C:\Users\PC\AppData\Local\Tinfax.exe.config
2018-04-23 17:15 - 2018-04-23 17:15 - 000000003 _____ () C:\Users\PC\AppData\Local\wbem.ini

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2021-02-11 13:33
==================== Fin de FRST.txt ========================