Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-07-2022
Exécuté par User (administrateur) sur NUC-HUARD (Intel Corporation NUC7i5BNK) (29-07-2022 18:39:49)
Exécuté depuis C:\Users\User\Dropbox\Mon PC (NUC-HUARD)\Desktop
Profils chargés: User
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1826 (X64) Langue: Anglais (Royaume-Uni) -> Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WD3YGYK4LPYOCKJVM6RZPW7YM4EANHQMHOGP4GNF64E364NZPYKA\DeepL.exe ->) (DeepL SE -> The CefSharp Authors) C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WD3YGYK4LPYOCKJVM6RZPW7YM4EANHQMHOGP4GNF64E364NZPYKA\CefSharp.BrowserSubprocess.exe <5>
(DeepL SE -> DeepL SE) C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WD3YGYK4LPYOCKJVM6RZPW7YM4EANHQMHOGP4GNF64E364NZPYKA\DeepL.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_b963b5cf9ef8a8d1\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b963b5cf9ef8a8d1\igfxEM.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) (AdAvoid Ltd -> AdAvoid Ltd.) C:\Program Files\AdBlocker Ultimate\AdblockerUltimateGUI.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\61.0.3.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe <7>
(SecurityHealthService.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(SecurityHealthService.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(services.exe ->) (AdAvoid Ltd -> AdAvoid Ltd) C:\Program Files\AdBlocker Ultimate\AdBlockerUltimateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b963b5cf9ef8a8d1\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b963b5cf9ef8a8d1\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b963b5cf9ef8a8d1\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Synology Inc. -> ) [Fichier non signé] C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\User\AppData\Local\slack\app-4.27.154\slack.exe <5>
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [878368 2019-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM\...\Run: [AdBlocker Ultimate] => C:\Program Files\AdBlocker Ultimate\AdblockerUltimateGUI.exe [18531616 2022-06-10] (AdAvoid Ltd -> AdAvoid Ltd.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11186440 2022-07-17] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1835764612-2398671435-3388662850-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5492224 2022-07-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1835764612-2398671435-3388662850-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1835764612-2398671435-3388662850-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\User\AppData\Local\slack\slack.exe [309040 2022-06-29] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\CutePDF Writer Monitor v4.0: C:\WINDOWS\system32\cpwmon64_v40.dll [89584 2019-10-20] (Acro Software Inc -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-25] (Google LLC -> Google LLC)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-07-01]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\User\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Fichier non signé]
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2018-03-26]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 - Capture d’écran et lancement.lnk [2018-05-22]
ShortcutTarget: OneNote 2010 - Capture d’écran et lancement.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {184C2E84-F650-4846-AE72-70ADB10D83F7} - System32\Tasks\AdBlocker Ultimate Updater => C:\Program Files\AdBlocker Ultimate\AdBlockerUltimateUpdater.exe [1466144 2022-05-31] (AdAvoid Ltd -> AdAvoid Ltd) <==== ATTENTION
Task: {196A647C-EAF3-4B1D-A292-895DF7D69E8D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1F0C8017-6F5C-4AD0-9022-428C48A65070} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {24D48035-5511-490E-9ABD-9450809DAB69} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {261D6370-51D1-40D3-8C7F-2ADD6A1CA78E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {287508C4-3EDA-446E-BE5C-80FEF60FB52A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4D10FB04-413F-47C4-8510-1FA1342232FB} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {6669D52E-61B1-4799-8C57-085DAEE49670} - System32\Tasks\Nettoyeur => C:\Users\User\Documents\Nettoyeur de DD.bat (Pas de fichier)
Task: {765CFE43-420B-4600-9EE7-184B9D096D26} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-16] (Google Inc -> Google Inc.)
Task: {7728412B-28B4-4E15-BE8D-1B3860687694} - System32\Tasks\AdBlocker Ultimate Sync => C:\Program Files\AdBlocker Ultimate\AdBlockerUltimateGUI.exe [18531616 2022-06-10] (AdAvoid Ltd -> AdAvoid Ltd.) <==== ATTENTION
Task: {7A74C48C-FC89-42BA-8E85-81C46C4D43ED} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-20] (Dropbox, Inc -> Dropbox, Inc.)
Task: {8415239C-D97D-459F-9CFB-2060915F1DB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {94583ADF-AE8C-434A-B6BE-69E193B7D303} - System32\Tasks\Ghostery\Ghostery Dawn Default Browser Agent D3EE55F17417DD52 => C:\Program Files\Ghostery Dawn\default-browser-agent.exe [653168 2021-02-08] (Ghostery, Inc. -> Mozilla Foundation)
Task: {9CC605B6-1A16-49C7-B496-F7B31720351C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {B9BC26AE-A537-43CA-8068-9169B1E4259A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-16] (Google Inc -> Google Inc.)
Task: {DE97FD15-22EC-4981-82EA-D11A9B7F715B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {EA4ADE97-7D20-46A1-B907-FD24D40D7694} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-20] (Dropbox, Inc -> Dropbox, Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b38273d9-d51b-4446-808f-60e40f317668}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e7c551b4-8c6b-4b7b-94e3-dee623f62b30}: [DhcpNameServer] 192.168.10.1 0.0.0.0

Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-1835764612-2398671435-3388662850-1001 -> hxxp://www.q-oole.com/
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-25]
Edge HomePage: Default -> hxxp://www.q-oole.com/
Edge StartupUrls: Default -> "hxxp://www.q-oole.com/"
Edge DefaultSearchURL: Default -> hxxp://www.q-oole.com/search?q={searchTerms}
Edge DefaultSearchKeyword: Default -> q-oole.com

FireFox:
========
FF DefaultProfile: dp0ece18.default-1581261870667
FF DefaultProfile: xo3moidt.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667 [2022-07-29]
FF Session Restore: Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667 -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667 -> hxxps://www.lalanguefrancaise.com
FF Extension: (Facebook Container) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\@contain-facebook.xpi [2022-03-29]
FF Extension: (Enhancer for YouTube™) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2022-06-29]
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\firefox@ghostery.com.xpi [2022-07-14]
FF Extension: (HTTPS partout) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\https-everywhere@eff.org.xpi [2022-06-29]
FF Extension: (Privacy Badger) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2022-06-15]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2022-06-29]
FF Extension: (Unhook - Remove YouTube Recommended Videos) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\myallychou@gmail.com.xpi [2022-06-12]
FF Extension: (TinEye Reverse Image Search) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\tineye@ideeinc.com.xpi [2021-10-29]
FF Extension: (RevEye Reverse Image Search) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{1526fba1-ac33-4dfc-99d8-163e6129f7b9}.xpi [2021-06-18]
FF Extension: (Startpage.com - recherche privé) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2021-02-20]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-07-27]
FF Extension: (Search by Image) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c}.xpi [2022-03-29]
FF Extension: (simple solid teal time) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{46fae9ec-7af9-45c3-acb2-5880d05aede6}.xpi [2022-06-12]
FF Extension: (autumn path by candelora) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{535071e4-c2fd-4292-9006-21d2ac08869d}.xpi [2021-07-19]
FF Extension: (10ten Japanese Reader (Rikaichamp)) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{59812185-ea92-4cca-8ab7-cfcacee81281}.xpi [2022-07-25]
FF Extension: (New Tab Suspender) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{6a65273e-2b26-40f5-b66e-8eed317307da}.xpi [2021-12-29]
FF Extension: (Rainy Spring Sakua by M♥Donna) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{6bc67ea3-bc31-4ae9-a07e-3e2ac641b4da}.xpi [2022-06-12]
FF Extension: (Font Finder) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{a658a273-612e-489e-b4f1-5344e672f4f5}.xpi [2022-06-12]
FF Extension: (Feedbro) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{a9c2ad37-e940-4892-8dce-cd73c6cbbc0c}.xpi [2022-06-14]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2022-05-04]
FF Extension: (Jungle Waterfall Animated) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{d4fef423-501b-47a0-877a-192d7d024f62}.xpi [2022-06-12]
FF Extension: (Web Apps by 123apps) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{e662576a-2f73-4069-bcca-ddf440fea62b}.xpi [2022-06-29]
FF Extension: (green plant mom ) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\dp0ece18.default-1581261870667\Extensions\{eaead984-8109-431e-a96b-0035bf2ae828}.xpi [2022-06-12]
FF ProfilePath: C:\Users\User\AppData\Roaming\Ghostery Browser\Profiles\xo3moidt.default [2021-05-08]
FF ProfilePath: C:\Users\User\AppData\Roaming\Ghostery Browser\Profiles\cgorr193.default-release [2022-07-28]
FF Homepage: Ghostery Browser\Profiles\cgorr193.default-release -> moz-extension://ed3089f4-add7-455c-aafb-633077075c02/index.html
FF HomepageOverride: Ghostery Browser\Profiles\cgorr193.default-release -> Enabled: newtab@ghostery.com
FF NewTabOverride: Ghostery Browser\Profiles\cgorr193.default-release -> Enabled: newtab@ghostery.com
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-07-05] (Adobe Inc. -> Adobe Systems Inc.)
StartMenuInternet: Firefox-D3EE55F17417DD52 - C:\Program Files\Ghostery Dawn\Ghostery.exe

Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2022-02-28]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://messages.android.com; hxxps://www.google.be; hxxps://www.herodote.net; hxxps://www.la-croix.com
CHR HomePage: Default -> qwant.com
CHR StartupUrls: Default -> "hxxp://www.q-oole.com/"
CHR DefaultSearchURL: Default -> hxxp://www.q-oole.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> recherche
CHR Extension: (Slides) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-26]
CHR Extension: (Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-26]
CHR Extension: (Extension 1Password (app desktop requise)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomjjhallfgjeglblehebfpbcfeobpgk [2019-06-26]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-12]
CHR Extension: (SearchFormsOnline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bddikhbjcannknadmcmeikpeiabhfbgl [2019-12-09]
CHR Extension: (eID Chrome Extension) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2022-02-28]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-26]
CHR Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-02-28]
CHR Extension: (Clearly Bookmarks) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnkcfoigabepbebfpbgojpgegdknokhh [2018-03-26]
CHR Extension: (Avast Passwords) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-03-23]
CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2022-02-28]
CHR Extension: (Sheets) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-28]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-02-28]
CHR Extension: (FromDocToPDF) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc [2019-12-31]
CHR Extension: (Qwant) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2022-02-28]
CHR Extension: (MapsGalaxy) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpchfcegfdfnebkeoemplnhngkijlcgj [2019-12-09]
CHR Extension: (Amazon Killer) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jndbieelpiaihakdaflepdbamcllgobd [2021-01-12]
CHR Extension: (NoteHomepage ) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lamecoaceiheggdhlnjnmciaonfdamlg [2019-12-31]
CHR Extension: (Ask Web Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgfehfbnofiffladdncogfobimealokp [2019-12-31]
CHR Extension: (EasyFileConvert) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\maffoojmaafjmmohkhhclgjjmghlifjo [2019-12-09]
CHR Extension: (FromDocToPDF (BETA)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mallpejgeafdahhflmliiahjdpgbegpk [2021-03-30]
CHR Extension: (AllInOneDocs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mciognngefdgcpelkogfllkbdonkbiia [2019-12-13]
CHR Extension: (Milanote Web Clipper) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mipimgcmndeggldjcbjfeogcpoafomhl [2021-01-12]
CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-02-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-20]
CHR Extension: (Signal Spam) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2022-02-28]
CHR Extension: (Mots de passe iCloud) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pejdijmoenmkgeppbflobdenhhabjlaj [2022-02-28]
CHR Extension: (Evernote Web Clipper) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2021-01-12]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-12]
CHR Extension: (Avast AntiTrack Premium) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2022-02-28]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ABUService; C:\Program Files\AdBlocker Ultimate\AdBlockerUltimateService.exe [7118112 2022-06-10] (AdAvoid Ltd -> AdAvoid Ltd)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-20] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-20] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46864 2022-07-17] (Dropbox, Inc -> Dropbox, Inc.)
R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [505856 2018-01-31] (Intel Corporation) [Fichier non signé]
R2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [291864 2019-03-12] (Synology Inc. -> ) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-29] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 adavoid; C:\WINDOWS\System32\drivers\adavoid.sys [103944 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AdAvoid Ltd)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-03-27] (AVAST Software s.r.o. -> The OpenVPN Project)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BrSerIb; C:\WINDOWS\system32\DRIVERS\BrSerIb.sys [284160 2012-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries Ltd.)
S3 BrUsbSIb; C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys [15360 2011-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries Ltd.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 ITECIRfilter; C:\WINDOWS\system32\DRIVERS\ITECIRfilter.sys [27856 2015-06-03] (ITE Tech. Inc. -> ITE Tech. Inc.)
R3 MpKsl14d73949; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{897E1521-8762-40B6-BE5C-BD0771F8019F}\MpKslDrv.sys [141576 2022-07-29] (Microsoft Windows -> Microsoft Corporation)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [356344 2019-05-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2020-07-16] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-29] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl6b08fe62; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{03A0D361-9CD8-41D0-ACB2-68A6BBC92E8C}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-07-29 18:39 - 2022-07-29 18:40 - 000033260 ____C C:\Users\User\Desktop\FRST.txt
2022-07-29 18:39 - 2022-07-29 18:40 - 000000000 ___DC C:\FRST
2022-07-29 18:39 - 2022-07-29 18:39 - 000000000 ___DC C:\Users\User\Desktop\FRST-OlderVersion
2022-07-29 15:20 - 2022-07-29 15:20 - 008725504 ____C C:\Users\User\Downloads\Spektakulare Luftaufnahmen.pps
2022-07-29 15:18 - 2022-07-29 15:18 - 010481664 ____C C:\Users\User\Downloads\sevilla.pps
2022-07-29 15:15 - 2022-07-29 15:15 - 014506723 ____C C:\Users\User\Downloads\VID-20220509-WA0005.mp4
2022-07-28 18:45 - 2022-07-28 18:45 - 005007613 ____C C:\Users\User\Downloads\LC 20220728 La république tchèque de Jachim Topol.pdf
2022-07-28 14:13 - 2022-07-28 14:13 - 000822569 ____C C:\Users\User\Downloads\Kleine Raak zomer 2022.pdf
2022-07-28 14:09 - 2022-07-28 14:09 - 009592111 ____C C:\Users\User\Downloads\Lac_de_C_me-_Italie__GF_-1-1.mp4
2022-07-28 14:06 - 2022-07-28 14:06 - 000090231 ____C C:\Users\User\Downloads\Dokter of dierenarts IMG-20220712-WA0001(1).jpeg
2022-07-28 14:06 - 2022-07-28 14:06 - 000000000 ____C C:\Users\User\Downloads\Dokter of dierenarts IMG-20220712-WA0001.jpeg
2022-07-27 12:12 - 2022-07-27 12:12 - 005384068 ____C C:\Users\User\Downloads\JM papillons mp4.mp4
2022-07-26 11:29 - 2022-07-26 11:29 - 000223734 ____C C:\Users\User\Downloads\DIPLOWEB Comment expliquer le revirement de la politique russe de l'administration Biden article_2395.pdf
2022-07-26 11:20 - 2022-07-26 11:20 - 105847261 ____C C:\Users\User\Downloads\FIMES AtlasStrategique_Interactif_HD_V5.pdf
2022-07-26 11:18 - 2022-07-26 11:18 - 000328844 ____C C:\Users\User\Downloads\DIPLOWEB Turquie, que cherche vraiment le président Erdogan (article 2107).pdf
2022-07-26 10:31 - 2022-07-26 10:31 - 003224576 ____C C:\Users\User\Downloads\belier-E4.pps
2022-07-25 17:40 - 2022-07-25 17:40 - 006035554 ____C C:\Users\User\Downloads\5da428a0-c206-470a-aaf4-1e7fe8bde945.MP4
2022-07-25 17:38 - 2022-07-25 17:38 - 002216694 ____C C:\Users\User\Downloads\Meme pas peur11.mp4
2022-07-25 14:29 - 2022-07-25 21:54 - 000971200 ___HC C:\Users\User\Dropbox\Mon PC (NUC-HUARD)\Documents\~WRL3283.tmp
2022-07-19 21:43 - 2022-07-19 21:43 - 002369536 ____C (Farbar) C:\Users\User\Downloads\FRST64.exe
2022-07-19 21:36 - 2022-07-29 18:39 - 002369536 ____C (Farbar) C:\Users\User\Desktop\FRST64.exe
2022-07-19 19:50 - 2022-07-19 19:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-07-19 17:30 - 2022-07-19 17:30 - 008381814 ____C C:\Users\User\Downloads\VIDEO-2018-11-29-15-23-05.mp4
2022-07-19 17:30 - 2022-07-19 17:30 - 001315373 ____C C:\Users\User\Downloads\VIDEO-2022-07-06-17-44-39.mp4
2022-07-19 17:28 - 2022-07-19 17:28 - 002629120 ____C C:\Users\User\Downloads\20 meest vreemde gerechten.pps
2022-07-19 17:20 - 2022-07-19 17:20 - 005861924 ____C C:\Users\User\Downloads\Lithium Is Dangerous.mp4
2022-07-19 17:11 - 2022-07-19 17:11 - 010918400 ____C C:\Users\User\Downloads\FRANCE, Un tour de France .. sans bicyclette ....... vraiment superbe ! curieux !!! (avec musique).pps
2022-07-19 17:06 - 2022-07-19 17:06 - 015273046 ____C C:\Users\User\Downloads\ONTWAKEN IN HET BOS.mp4
2022-07-19 17:04 - 2022-07-19 17:04 - 006590841 ____C C:\Users\User\Downloads\VID-20220122-WA0001.mp4
2022-07-19 17:02 - 2022-07-19 17:02 - 003390889 ____C C:\Users\User\Downloads\VIDEO-2022-05-18-17-39-29.mp4
2022-07-18 16:24 - 2022-07-18 16:24 - 002989740 ____C C:\Users\User\Downloads\SAMENLEVING dS 20220718 De samenleving is minder complex dan we denken.pdf
2022-07-18 16:15 - 2022-07-18 16:15 - 002334408 ____C C:\Users\User\Downloads\POLITIEK dS 20220718 Marc Reynebeau ARME MINISTERS TOCH Ministers die elders zoveel meer zouden verdienen.pdf
2022-07-18 16:09 - 2022-07-18 16:09 - 002702370 ____C C:\Users\User\Downloads\TRIMESTRIELE NIEUWSBRIEF DUURZAAM PORTEFEUILLEBEHEER DEFENSIF PROFIEL_20220630_NL.pdf
2022-07-18 16:07 - 2022-07-18 16:07 - 003289088 ____C C:\Users\User\Downloads\Arbres_magnifiques1-1_0.pps
2022-07-18 16:02 - 2022-07-18 16:02 - 015033452 ____C C:\Users\User\Downloads\Japanese light fireworks.mp4
2022-07-18 15:42 - 2022-07-18 15:42 - 007046656 ____C C:\Users\User\Downloads\L-Espagne_insolite_jc_11011.pps
2022-07-17 15:23 - 2022-07-28 21:13 - 000000000 ____D C:\Users\User\AppData\Local\WhatsApp
2022-07-17 15:23 - 2022-07-17 15:23 - 152638648 ____C (WhatsApp) C:\Users\User\Downloads\WhatsAppSetup.exe
2022-07-17 15:23 - 2022-07-17 15:23 - 000002210 ____C C:\Users\User\Desktop\WhatsApp.lnk
2022-07-17 10:48 - 2022-07-17 10:48 - 000351520 ____C C:\Users\User\Downloads\aide_prise_de_mesure.pdf
2022-07-17 03:10 - 2022-07-17 03:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-07-17 03:10 - 2022-07-17 03:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-07-17 03:10 - 2022-07-17 03:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-07-17 03:10 - 2022-07-17 03:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx.sys
2022-07-17 03:10 - 2022-07-17 03:10 - 000046864 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-07-16 20:19 - 2022-07-16 20:19 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-16 20:19 - 2022-07-16 20:19 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-16 20:19 - 2022-07-16 20:19 - 000011811 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-07-16 14:27 - 2022-07-16 14:27 - 000000000 __HDC C:\$WinREAgent
2022-07-09 11:07 - 2022-07-17 09:32 - 000000000 ___DC C:\Program Files\Mozilla Firefox
2022-07-07 14:30 - 2022-07-07 14:31 - 013520621 ____C C:\Users\User\Downloads\ATT00055.mp4
2022-07-04 09:59 - 2022-07-04 09:59 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-04 09:59 - 2022-07-04 09:59 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-04 09:59 - 2022-07-04 09:59 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-04 09:59 - 2022-07-04 09:59 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-04 09:59 - 2022-07-04 09:59 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-04 09:59 - 2022-07-04 09:59 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-04 09:59 - 2022-07-04 09:59 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-01 21:52 - 2022-07-01 21:52 - 000002491 ____C C:\Users\User\Desktop\DeepL.lnk
2022-07-01 21:52 - 2022-07-01 21:52 - 000002465 ____C C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL.lnk
2022-07-01 21:52 - 2022-07-01 21:52 - 000000000 ____D C:\Users\User\AppData\Roaming\0install.net
2022-07-01 21:52 - 2022-07-01 21:52 - 000000000 ____D C:\Users\User\AppData\Local\0install.net
2022-07-01 17:07 - 2022-07-01 17:07 - 000537799 ____C C:\Users\User\Downloads\ACFrOgALeVH_kD9VIvMs2m7Yux0SNtYCMywVVJRhN1HkqyG8YYedPHDYLmotlgDneKE6uH70tsXUoyN1KEVwzMvDmPuFLZ27ceekPoNADIABZvqtZMqYro2iM9Efus8=.pdf
2022-07-01 16:56 - 2022-07-01 16:56 - 000123993 ____C C:\Users\User\Downloads\ACFrOgDis8kT3V3HhdJZKBx7EMmNcB4IWp_wN3BckOBmOrsoEc2R-jWYJC2g97bsq8aeTznzgjcCSGjz-JOImIT7bwXfsMUzh8ltW3LxAisomCRBJo1d-h5--eAi6ho=.pdf
2022-07-01 16:54 - 2022-07-01 16:54 - 000537799 ____C C:\Users\User\Downloads\ACFrOgDMJvQZIOYZimatoXesaQj_YCvShy0Z7blOEMp4BLLHk9M2OWF3Q-bLNR5uGJB5f_rEeUGtEQmxctH4-HC2H_v51yPD4SMikF7GHB8DqvyeCjTFmi3WGaPvuzw=(1).pdf
2022-07-01 16:53 - 2022-07-01 16:53 - 000537799 ____C C:\Users\User\Downloads\ACFrOgDMJvQZIOYZimatoXesaQj_YCvShy0Z7blOEMp4BLLHk9M2OWF3Q-bLNR5uGJB5f_rEeUGtEQmxctH4-HC2H_v51yPD4SMikF7GHB8DqvyeCjTFmi3WGaPvuzw=.pdf
2022-06-30 09:09 - 2022-06-30 09:09 - 000000874 ____C C:\Users\User\Dropbox\Mon PC (NUC-HUARD)\Documents\Desktop - Raccourci.lnk
2022-06-30 08:53 - 2022-06-30 08:53 - 000000000 ____D C:\Users\User\.ms-ad

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-07-29 18:38 - 2018-03-16 16:59 - 000000000 ___DC C:\Users\User\AppData\LocalLow\Mozilla
2022-07-29 18:24 - 2018-03-16 23:53 - 000000000 ___DC C:\Program Files (x86)\Google
2022-07-29 18:13 - 2019-10-23 14:37 - 000000000 ___DC C:\Users\User\AppData\Roaming\Slack
2022-07-29 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-29 17:03 - 2020-11-22 22:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-29 15:17 - 2018-04-10 12:40 - 000000000 ___DC C:\Users\User\AppData\Roaming\vlc
2022-07-29 15:15 - 2022-02-28 01:32 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-29 15:14 - 2022-06-12 20:15 - 000000000 ____D C:\Users\User\AppData\Roaming\DropboxElectron
2022-07-29 15:14 - 2018-04-09 21:23 - 000000000 ___DC C:\Users\User\AppData\Local\Dropbox
2022-07-29 15:13 - 2021-02-20 12:10 - 000000000 ___RD C:\Users\User\iCloudDrive
2022-07-29 15:13 - 2018-03-16 23:59 - 000000000 _SHDC C:\Users\User\IntelGraphicsProfiles
2022-07-28 21:16 - 2020-07-07 20:49 - 000000000 ___DC C:\Users\User\Dropbox\Mon PC (NUC-HUARD)\Documents\My Kindle Content
2022-07-28 21:13 - 2020-05-10 20:22 - 000000000 ___DC C:\Users\User\AppData\Roaming\WhatsApp
2022-07-28 13:40 - 2020-01-24 12:47 - 000000000 ___DC C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL GmbH
2022-07-28 13:30 - 2021-11-21 22:05 - 000543518 _____ C:\WINDOWS\system32\perfh008.dat
2022-07-28 13:30 - 2021-11-21 22:05 - 000089162 _____ C:\WINDOWS\system32\perfc008.dat
2022-07-28 13:30 - 2021-04-13 20:35 - 000777610 _____ C:\WINDOWS\system32\perfh013.dat
2022-07-28 13:30 - 2021-04-13 20:35 - 000154460 _____ C:\WINDOWS\system32\perfc013.dat
2022-07-28 13:30 - 2020-11-22 23:39 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2022-07-28 13:30 - 2020-11-22 23:39 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2022-07-28 13:30 - 2020-11-22 23:38 - 000477796 _____ C:\WINDOWS\system32\perfh011.dat
2022-07-28 13:30 - 2020-11-22 23:38 - 000132674 _____ C:\WINDOWS\system32\perfc011.dat
2022-07-28 13:30 - 2020-11-22 23:09 - 003945092 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-28 13:30 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-28 13:24 - 2020-11-22 23:06 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2022-07-28 13:24 - 2020-11-22 22:59 - 000008192 ___SH C:\DumpStack.log.tmp
2022-07-28 13:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-07-27 20:59 - 2018-08-13 22:03 - 000000000 ___DC C:\Users\User\AppData\Local\D3DSCache
2022-07-27 12:00 - 2018-04-09 21:25 - 000000000 __RDC C:\Users\User\Dropbox
2022-07-26 21:06 - 2021-09-26 10:05 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-07-26 21:06 - 2021-09-26 10:05 - 000001899 ____C C:\Users\Default\Desktop\Google Slides.lnk
2022-07-26 21:06 - 2021-09-26 10:05 - 000001899 ____C C:\Users\Default\Desktop\Google Sheets.lnk
2022-07-26 21:06 - 2021-09-26 10:05 - 000001887 ____C C:\Users\Default\Desktop\Google Docs.lnk
2022-07-26 16:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-07-26 13:33 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-26 13:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-25 10:35 - 2021-01-12 21:37 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-07-25 10:31 - 2020-06-10 16:22 - 000002442 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-25 10:25 - 2020-11-22 23:06 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-07-19 19:50 - 2018-04-09 21:23 - 000000000 ___DC C:\Program Files (x86)\Dropbox
2022-07-17 15:23 - 2020-05-10 20:22 - 000000000 ___DC C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2022-07-17 15:23 - 2019-10-23 14:37 - 000000000 ___DC C:\Users\User\AppData\Local\SquirrelTemp
2022-07-17 09:33 - 2020-11-22 22:59 - 000463064 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-07-17 09:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-17 09:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-07-17 09:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-17 09:33 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-07-17 09:32 - 2018-03-16 23:52 - 000000000 ___DC C:\Program Files (x86)\Mozilla Maintenance Service
2022-07-16 20:21 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-16 20:19 - 2020-11-22 23:02 - 003010560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-07-14 17:09 - 2018-03-16 16:23 - 000000000 ___DC C:\WINDOWS\system32\MRT
2022-07-14 17:04 - 2018-03-16 16:22 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-07-14 16:30 - 2019-03-27 17:06 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-07-14 16:24 - 2021-09-27 21:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-07-14 16:24 - 2018-03-16 23:53 - 000001005 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-07-06 17:32 - 2020-11-22 23:38 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2022-07-06 17:32 - 2019-12-07 16:48 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-07-06 17:32 - 2019-12-07 16:48 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-07-06 17:32 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-07-06 17:32 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-07-06 17:32 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-07-06 17:32 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-07-06 17:32 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-07-06 17:32 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-07-06 17:32 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-07-06 17:32 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-07-06 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-07-06 17:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-07-04 17:45 - 2020-01-24 12:47 - 000000000 ___DC C:\Users\User\AppData\Local\DeepL_GmbH
2022-07-04 17:45 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\en-GB
2022-07-04 17:45 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-07-04 17:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-07-04 17:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-07-04 17:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-04 17:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-07-04 17:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-07-04 17:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-07-04 16:07 - 2022-02-27 20:33 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2022-07-04 15:55 - 2019-03-29 09:43 - 000000000 ___DC C:\ProgramData\Mozilla
2022-07-04 14:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-06-29 21:23 - 2018-07-18 20:14 - 000000000 ___DC C:\ProgramData\Packages
2022-06-29 21:22 - 2018-03-16 16:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-06-29 21:16 - 2019-10-23 14:38 - 000000000 ___DC C:\Users\User\AppData\Local\slack
2022-06-29 21:15 - 2019-12-31 13:30 - 000000000 ___DC C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc

==================== Fichiers à la racine de certains dossiers ========

2020-10-03 14:04 - 2020-10-03 14:09 - 000000128 ____C () C:\Users\User\AppData\Local\PUTTY.RND
2020-12-27 17:49 - 2020-12-27 17:49 - 000000017 _____ () C:\Users\User\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================