Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-04-2021
Exécuté par Thierry (administrateur) sur MANON (Acer Aspire V3-571G) (14-04-2021 21:47:33)
Exécuté depuis C:\Users\Thierry\Desktop
Profils chargés: Thierry
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Atheros Communications Inc. -> Atheros) [Fichier non signé] C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(EXPRSVPN LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\VOO Internet Security\fshoster32.exe <26>
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\fshoster64.exe <2>
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\fsorsp64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\FsPisces.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\fsulprothoster.exe
(Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <21>
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(TunnelBear Inc -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2868496 2012-02-14] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TechSmithSnagit] => C:\Program Files\TechSmith\Snagit 2020\Snagit32.exe [9487328 2020-09-29] (TechSmith Corporation -> TechSmith Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388936 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1106512 2012-03-02] (Dritek System Inc. -> Dritek System Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [370032 2021-03-22] (EXPRSVPN LLC -> ExpressVPN)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-338919052-3024432019-469343477-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [45488 2020-05-29] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-338919052-3024432019-469343477-1000\...\Run: [DigipassNativeBridge] => C:\Users\Thierry\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge-monitor.exe [108488 2019-11-20] (OneSpan North America Inc. -> VASCO Data Security)
HKU\S-1-5-21-338919052-3024432019-469343477-1000\...\Run: [HP ENVY 5640 series (NET)] => C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe [3769248 2019-03-19] (HP Inc -> HP Inc.)
HKU\S-1-5-21-338919052-3024432019-469343477-1000\...\Run: [RememBearExtension] => C:\Program Files\RememBear\RememBear.App.exe [6739776 2019-06-21] (TunnelBear -> )
HKU\S-1-5-21-338919052-3024432019-469343477-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-338919052-3024432019-469343477-1000\...\MountPoints2: {89791938-f69b-11ea-82a7-208984703035} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-338919052-3024432019-469343477-1000\...\MountPoints2: {a35d3b13-0093-11eb-8363-208984703035} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-338919052-3024432019-469343477-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\Windows\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 5640 series): C:\Windows\system32\HPDiscoPMCC11.dll [840096 2019-03-19] (HP Inc -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.114\Installer\chrmstp.exe [2021-03-31] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [158392 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
BootExecute: autocheck autochk *
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {05A65C9A-B823-4225-8C3C-2DB1623D369F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {07F61090-2AE2-412D-AC03-54B24F30113A} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\VOO Internet Security\fs_hotfix.exe [308608 2020-11-03] (F-Secure Corporation -> F-Secure Corporation)
Task: {0B6D992A-A736-4CB7-88F3-4E1CAF0D96B6} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {14B839CA-16EF-480A-878C-B22CF4A04F76} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser
Task: {17466584-39CE-42D9-BB67-53706AB1BF5F} - System32\Tasks\{A3D3440E-26B1-432C-816A-51022FAE22A9} => C:\Users\Thierry\Desktop\MBAMInstallerService_IObitDel_IObitDel_IObitDel.exe
Task: {20E2F18B-F28A-4496-91AC-DB5A6FB23074} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {2B3EDE2C-C19E-4232-8255-FAB4D498314D} - System32\Tasks\{0592FD1C-4F75-4EB2-99E0-D0346037032E} => C:\Windows\system32\pcalua.exe -a C:\Users\Thierry\Desktop\0009-64bit_Win7_Win8_Win81_Win10_R282.exe -d C:\Users\Thierry\Desktop
Task: {43B86295-E43D-4CB3-AFD3-9D5A28660045} - System32\Tasks\HPCustParticipation HP ENVY 5640 series => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [6437792 2019-03-19] (HP Inc -> HP Inc.)
Task: {452C1D71-05D2-4E2C-A8BE-5470FA6DFC83} - System32\Tasks\{60DF2DA1-680F-4E0E-8368-2E8C1E006F19} => C:\Windows\system32\pcalua.exe -a C:\Users\Thierry\Downloads\movie-maker_12_fr_10967.exe -d C:\Users\Thierry\Downloads
Task: {4A1EFFE9-4BA3-4CC3-90D6-E6DB3BD5AC50} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {4ACE8233-C520-4703-B972-A3BB8CE41CA9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {8A278A7A-C98A-41EB-86C7-7F652710980D} - System32\Tasks\Opera scheduled Autoupdate 1589470272 => C:\Users\Thierry\AppData\Local\Programs\Opera\launcher.exe
Task: {A0F80854-6B21-4A01-9FC1-34368C0603A3} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [918960 2020-05-29] (Glarysoft LTD -> Glarysoft Ltd)
Task: {A14B9B8A-B456-40F8-9B0B-6C4D9B8E6907} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [694256 2021-03-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {A7E15FA0-E22A-41E4-A892-A2D071258A69} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BA11087F-B81E-4C1F-8D53-27C991D57F59} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask
Task: {C7F57C34-7210-475F-92B5-93EDA6531F69} - System32\Tasks\{66B79F17-F361-488B-9A76-8989AC6C2392} => C:\Program Files (x86)\VirtualDJ\virtualdj8.exe
Task: {D3ED2181-E360-43A7-A842-2E903E5BEAC0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {D607EF3D-7B74-4A6D-B111-919E40BE89AA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {DA63CCD2-B5E3-4314-ADB3-B5278AFAE582} - System32\Tasks\Opera scheduled assistant Autoupdate 1589470273 => C:\Users\Thierry\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Thierry\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {DD2F88CA-26F8-45F6-A8FB-5A8F2F44EB9E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 172.30.11.254
Tcpip\..\Interfaces\{06B4591E-009E-405A-B149-67A7A9F22487}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{1FA4B78D-E751-4493-AA1B-A8E71554C2B7}: [DhcpNameServer] 172.18.10.1
Tcpip\..\Interfaces\{6B10F3B3-0E3A-4849-BC1A-71BB17CFA0F5}: [DhcpNameServer] 172.30.11.254
Tcpip\..\Interfaces\{95824FE1-CE0C-4015-87C4-0184AC2300D6}: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{CFCD36E9-706B-43CD-8E96-D193975D9454}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{E8E0D1BF-2119-4C2C-B574-71DC1B133D9F}: [DhcpNameServer] 192.168.42.129

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Thierry\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-14]
Edge Extension: (Browsing Protection by F-Secure) - C:\Users\Thierry\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2021-04-14]
Edge HKLM\...\Edge\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
Edge HKLM-x32\...\Edge\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]

FireFox:
========
FF DefaultProfile: v45rfeg8.default
FF ProfilePath: C:\Users\Thierry\AppData\Roaming\Mozilla\Firefox\Profiles\v45rfeg8.default [2021-01-21]
FF ProfilePath: C:\Users\Thierry\AppData\Roaming\Mozilla\Firefox\Profiles\8hjutif8.default-release [2021-04-14]
FF Extension: (eID Belgique) - C:\Users\Thierry\AppData\Roaming\Mozilla\Firefox\Profiles\8hjutif8.default-release\Extensions\belgiumeid@eid.belgium.be.xpi [2021-03-24]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default [2021-04-14]
CHR HomePage: Default -> hxxps://www.google.be/
CHR StartupUrls: Default -> "hxxp://www.google.com","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/"
CHR Extension: (eID Chrome Extension) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2021-01-15]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-01]
CHR Extension: (Désactivation de Google Analytics) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2021-04-11]
CHR Extension: (EditThisCookie) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg [2021-01-15]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-04-13]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2021-01-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (WebRTC Network Limiter) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\npeicpdbkakmehahjeeohfdhnlpdklia [2021-01-15]
CHR Extension: (Send from Gmail (by Google)) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc [2021-01-15]
CHR Extension: (Chrome Media Router) - C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-14]
CHR Profile: C:\Users\Thierry\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-14]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 BetternetSvc_6.9.4; C:\Program Files (x86)\Betternet\6.9.4.727\BetternetSvc.exe [30800 2021-04-01] (BetterNet LLC -> Betternet Technologies Inc.)
S2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [437104 2021-03-22] (EXPRSVPN LLC -> ExpressVPN)
R2 fshoster; C:\Program Files (x86)\VOO Internet Security\fshoster32.exe [244096 2020-11-03] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\VOO Internet Security\fshoster32.exe [244096 2020-11-03] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulhoster; C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\fshoster64.exe [623744 2021-04-06] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulnethoster; C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\fshoster64.exe [623744 2021-04-06] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulorsp; C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\fsorsp64.exe [101248 2021-04-06] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\fsulprothoster.exe [623744 2021-04-06] (F-Secure Corporation -> F-Secure Corporation)
S2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-09-07] (Huawei Technologies Co., Ltd. -> )
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [275200 2021-01-18] (TEFINCOM S.A. -> TEFINCOM S.A.)
S2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [139080 2021-03-02] (TunnelBear Inc -> TunnelBear)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros Communications Inc. -> Atheros) [Fichier non signé]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [3538432 2012-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R1 betternet_netfilter2; C:\Windows\System32\drivers\betternet_netfilter2.sys [94600 2021-04-01] (Pango Inc. -> Pango Inc)
R3 bntap; C:\Windows\System32\DRIVERS\bntap.sys [39152 2020-09-29] (Pango Inc. -> BetterNet)
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2020-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [18800 2021-03-22] (ExprsVPN LLC -> )
R3 F-Secure Gatekeeper; C:\Program Files (x86)\VOO Internet Security\Ultralight\ulcore\1617700888\fsulgk.sys [361448 2021-04-06] (F-Secure Corporation -> F-Secure Corporation)
R0 fsbts; C:\Windows\System32\drivers\fsbts.sys [58752 2020-12-02] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnif2; C:\Program Files (x86)\VOO Internet Security\Ultralight\nif2\1614076011\nif2s64.sys [177672 2021-02-26] (F-Secure Corporation -> F-Secure Corporation)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2020-05-01] (Glarysoft LTD -> Glarysoft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2021-04-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2021-04-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2021-04-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2021-04-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2021-04-14] (Malwarebytes Corporation -> Malwarebytes)
R2 NDivert; C:\Windows\System32\DRIVERS\NDivert.sys [95944 2021-03-22] (TEFINCOM S.A. -> )
R3 nlwt; C:\Windows\System32\DRIVERS\nlwt.sys [29888 2021-04-12] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\Windows\System32\DRIVERS\nordlwf.sys [29384 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 S3XXx64; C:\Windows\System32\DRIVERS\S3XXx64.sys [68608 2019-02-05] (Microsoft Windows Hardware Compatibility Publisher -> SCM Microsystems Inc.)
S3 ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [261640 2019-08-11] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.)
R3 SmbDrv; C:\Windows\System32\DRIVERS\Smb_driver.sys [22800 2012-02-14] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166768 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [38656 2020-09-23] (TunnelBear, Inc. -> The OpenVPN Project)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapexpressvpn; C:\Windows\System32\DRIVERS\tapexpressvpn.sys [36208 2021-03-22] (ExprsVPN LLC -> The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\DRIVERS\tapnordvpn.sys [35592 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
U3 avgbdisk; pas de ImagePath
S3 b57xdbd; system32\DRIVERS\b57xdbd.sys [X]
S3 b57xdmp; system32\DRIVERS\b57xdmp.sys [X]
S3 bScsiMSa; system32\DRIVERS\bScsiMSa.sys [X]
S3 bScsiSDa; system32\DRIVERS\bScsiSDa.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-04-14 21:32 - 2021-04-14 21:42 - 000000000 ____D C:\Users\Thierry\AppData\LocalLow\Mozilla
2021-04-14 21:32 - 2021-04-14 21:32 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-04-14 20:25 - 2021-04-14 20:25 - 000053899 _____ C:\Users\Thierry\Desktop\Shortcut.txt
2021-04-14 20:23 - 2021-04-14 20:25 - 000044976 _____ C:\Users\Thierry\Desktop\Addition.txt
2021-04-14 20:20 - 2021-04-14 21:48 - 000025908 _____ C:\Users\Thierry\Desktop\FRST.txt
2021-04-14 20:20 - 2021-04-14 21:47 - 000000000 ____D C:\FRST
2021-04-14 20:03 - 2021-04-14 20:03 - 002298368 _____ (Farbar) C:\Users\Thierry\Desktop\FRST64.exe
2021-04-14 19:48 - 2021-04-14 19:49 - 000000000 ____D C:\AdwCleaner
2021-04-14 19:47 - 2021-04-14 19:47 - 008534696 _____ (Malwarebytes) C:\Users\Thierry\Desktop\adwcleaner_8.2.exe
2021-04-14 19:08 - 2021-04-14 19:08 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-04-14 19:07 - 2021-04-14 19:07 - 000224408 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-04-14 19:07 - 2021-04-14 19:07 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-04-14 19:06 - 2021-04-14 19:06 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-04-14 19:00 - 2021-04-14 19:00 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2021-04-14 18:22 - 2021-04-14 18:22 - 073791894 _____ C:\Users\Thierry\Desktop\VirtualDJ 8.5.rar
2021-04-14 18:14 - 2021-04-14 18:17 - 034666497 _____ C:\Users\Thierry\Desktop\virtual dj pro 2021.rar
2021-04-14 18:01 - 2021-04-14 18:40 - 585762224 _____ C:\Users\Thierry\Desktop\VDJ Pro Infinity 2021 v8.5.6067 (PreActivated).rar
2021-04-14 17:49 - 2021-04-14 17:51 - 034687429 _____ C:\Users\Thierry\Desktop\VIRTUAL DJ 2020 DJ PENTA.rar
2021-04-14 17:32 - 2021-04-14 17:32 - 000119416 _____ C:\Users\Thierry\AppData\Local\GDIPFONTCACHEV1.DAT
2021-04-14 16:56 - 2021-04-14 16:56 - 000000000 ____D C:\Users\Thierry\Documents\VirtualDJ
2021-04-14 12:09 - 2021-04-14 16:00 - 000000000 ____D C:\Users\Thierry\AppData\Local\IP-Tools
2021-04-14 12:09 - 2021-04-14 16:00 - 000000000 ____D C:\Program Files (x86)\IP-Tools
2021-04-14 12:09 - 2021-04-14 12:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IP-Tools
2021-04-14 11:04 - 2021-04-14 11:04 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-04-14 10:35 - 2021-04-14 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Drive Recovery
2021-04-14 10:35 - 2021-04-14 18:48 - 000000000 ____D C:\Program Files (x86)\Hard Drive Recovery
2021-04-14 10:35 - 2021-04-14 10:35 - 000000000 ____D C:\Program Files (x86)\OMP Software
2021-04-14 10:35 - 2014-04-03 20:22 - 000645592 _____ C:\Windows\SysWOW64\sqlite3.dll
2021-04-14 10:32 - 2021-04-14 10:32 - 000000000 ____D C:\Program Files (x86)\7-Zip
2021-04-14 10:29 - 2021-04-14 10:29 - 000000000 ____D C:\Program Files (x86)\MaskVPN
2021-04-14 10:28 - 2021-04-14 10:32 - 001185968 _____ (Igor Pavlov) C:\Users\Thierry\Documents\7z1900.exe
2021-04-14 09:59 - 2021-04-14 09:59 - 000000000 ____D C:\Users\Thierry\AppData\Roaming\SysInfoTool
2021-04-14 09:53 - 2021-04-14 09:53 - 000000000 ____D C:\Users\Thierry\AppData\Roaming\Bidksa
2021-04-14 09:52 - 2021-04-14 10:09 - 000000000 ____D C:\Users\Thierry\AppData\Roaming\AHLaoTPZpYcd
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ C:\ProgramData\vcruntime140.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ C:\ProgramData\softokn3.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ C:\ProgramData\nss3.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ C:\ProgramData\msvcp140.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ C:\ProgramData\mozglue.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ C:\ProgramData\freebl3.dll
2021-04-13 22:06 - 2021-04-13 22:06 - 000065820 _____ C:\Users\Thierry\Desktop\nvpn.txt
2021-04-13 18:13 - 2021-04-13 18:13 - 000000303 _____ C:\Users\Thierry\Desktop\connection chm.url
2021-04-13 10:40 - 2021-04-13 10:40 - 000000022 _____ C:\Users\Thierry\Desktop\code.txt
2021-04-13 09:41 - 2021-04-13 09:41 - 000000303 _____ C:\Users\Thierry\Desktop\chm wifi.url
2021-04-12 16:35 - 2021-04-12 16:36 - 000000000 ____D C:\ProgramData\NordVPN
2021-04-12 16:30 - 2021-04-12 16:30 - 000000000 ____D C:\Program Files (x86)\NordVPN network TAP
2021-04-12 12:32 - 2021-04-12 17:25 - 000001761 _____ C:\Users\Thierry\Desktop\NordVPN.lnk
2021-04-12 12:32 - 2021-04-12 16:35 - 000000000 ____D C:\Users\Thierry\AppData\Local\NordVPN
2021-04-12 12:32 - 2021-04-12 15:16 - 000000000 ____D C:\Program Files\NordVPN
2021-04-12 12:32 - 2021-04-12 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-04-12 12:32 - 2021-03-22 16:31 - 000095944 _____ C:\Windows\system32\Drivers\NDivert.sys
2021-04-12 12:32 - 2020-12-14 10:21 - 000029384 _____ (TEFINCOM S.A.) C:\Windows\system32\Drivers\nordlwf.sys
2021-04-12 12:30 - 2021-04-12 12:30 - 000029888 ____T (WireGuard LLC) C:\Windows\system32\Drivers\nlwt.sys
2021-04-12 07:43 - 2021-04-12 07:43 - 000117543 _____ C:\Users\Thierry\Desktop\Attestation Indemnités CARREYN T.pdf
2021-04-12 06:47 - 2021-04-12 06:51 - 000000000 ____D C:\Users\Thierry\AppData\Local\ExpressVPN
2021-04-12 06:47 - 2021-04-12 06:47 - 000002228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExpressVPN.lnk
2021-04-12 06:47 - 2021-04-12 06:47 - 000000000 ____D C:\ProgramData\ExpressVPN
2021-04-12 06:47 - 2021-04-12 06:47 - 000000000 ____D C:\Program Files (x86)\ExpressVPN
2021-04-11 17:18 - 2021-04-14 15:29 - 000000000 ____D C:\ProgramData\Betternet
2021-04-11 17:18 - 2021-04-11 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Betternet Technologies Inc
2021-04-11 17:18 - 2021-04-11 17:18 - 000000000 ____D C:\Program Files\BetterNet TAP-Windows
2021-04-11 17:18 - 2021-04-01 18:11 - 000094600 _____ (Pango Inc) C:\Windows\system32\Drivers\betternet_netfilter2.sys
2021-04-11 16:18 - 2021-04-11 17:18 - 000000000 ____D C:\Program Files (x86)\Betternet
2021-04-11 15:33 - 2021-04-11 15:33 - 000000000 ____D C:\Program Files\TAP-Windows
2021-04-10 11:25 - 2021-04-10 11:25 - 000000000 ____D C:\Users\Thierry\Desktop\Office Fix
2021-04-10 11:22 - 2021-04-10 11:22 - 033509924 _____ C:\Users\Thierry\Desktop\Office Fix.zip
2021-04-10 09:32 - 2021-04-10 09:32 - 000057779 _____ C:\Users\Thierry\Desktop\Lettre__Fiche_fiscale_281.12.PDF
2021-04-05 09:34 - 2021-04-05 09:34 - 000118789 ___HT C:\Users\Thierry\Desktop\~09731666_380276809637413_1569687864294176688_n.tmp
2021-03-25 10:18 - 2021-03-25 10:18 - 000496658 _____ C:\Users\Thierry\Documents\Scan_0001.pdf
2021-03-24 18:09 - 2021-04-14 21:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-03-22 09:37 - 2021-03-22 09:37 - 000036208 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tapexpressvpn.sys
2021-03-16 13:52 - 2021-03-16 13:52 - 000002291 _____ C:\ProgramData\Desktop\HP Print and Scan Doctor.lnk
2021-03-16 13:52 - 2021-03-16 13:52 - 000000000 ____D C:\Users\Thierry\AppData\Roaming\HPPSDr

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-04-14 21:42 - 2021-01-21 21:34 - 000000000 ____D C:\ProgramData\Mozilla
2021-04-14 21:36 - 2020-05-01 09:36 - 000000000 ____D C:\Users\Thierry\AppData\Local\F-Secure
2021-04-14 21:32 - 2021-01-21 21:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-04-14 19:49 - 2020-05-08 17:42 - 000000000 ____D C:\Users\Thierry\AppData\Roaming\IObit
2021-04-14 19:49 - 2020-05-08 17:42 - 000000000 ____D C:\ProgramData\IObit
2021-04-14 19:49 - 2020-04-30 18:59 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-14 19:15 - 2009-07-14 06:45 - 000036384 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-04-14 19:15 - 2009-07-14 06:45 - 000036384 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-04-14 19:09 - 2020-12-29 21:22 - 000000000 ____D C:\Program Files\CCleaner
2021-04-14 19:06 - 2020-04-30 21:22 - 000000000 __SHD C:\Users\Thierry\IntelGraphicsProfiles
2021-04-14 19:05 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-04-14 19:04 - 2020-05-01 10:32 - 000000000 ____D C:\Windows\system32\MRT
2021-04-14 19:00 - 2020-05-01 10:32 - 131963968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-04-14 18:59 - 2009-07-14 04:34 - 000000478 _____ C:\Windows\win.ini
2021-04-14 18:00 - 2020-06-30 10:26 - 000002227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-14 18:00 - 2020-06-30 10:26 - 000002186 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-04-14 17:48 - 2020-06-30 10:26 - 000003534 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-14 17:48 - 2020-06-30 10:26 - 000003406 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-04-14 17:43 - 2020-05-08 19:57 - 000000000 ____D C:\Users\Thierry\AppData\LocalLow\Adobe
2021-04-14 17:34 - 2020-12-29 21:22 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-04-14 17:33 - 2020-05-01 09:36 - 000000000 ____D C:\ProgramData\F-Secure
2021-04-14 17:30 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-04-14 16:55 - 2020-05-01 13:21 - 000000000 ___RD C:\Users\Thierry\Desktop\RADIO
2021-04-14 16:54 - 2020-08-17 21:05 - 000000000 ____D C:\Program Files (x86)\VirtualDJ
2021-04-14 16:48 - 2020-05-01 13:16 - 000000000 ___RD C:\Users\Thierry\Desktop\SECURITY
2021-04-14 16:42 - 2021-01-21 17:36 - 000001259 _____ C:\Users\Thierry\Desktop\Nouveau document texte (2).txt
2021-04-14 15:29 - 2020-08-26 13:30 - 000000000 ____D C:\ProgramData\Samsung
2021-04-14 15:29 - 2020-08-18 21:01 - 000000000 ____D C:\Program Files (x86)\RadioBOSS
2021-04-14 15:29 - 2020-07-31 20:03 - 000000000 ____D C:\ProgramData\AVG
2021-04-14 15:29 - 2020-05-15 23:54 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant
2021-04-14 15:29 - 2020-05-15 00:22 - 000000000 ____D C:\Program Files\Malwarebytes
2021-04-14 15:29 - 2020-05-14 17:31 - 000000000 ____D C:\Users\Thierry\AppData\Local\BitTorrentHelper
2021-04-14 15:29 - 2020-05-14 15:17 - 000000000 ____D C:\ProgramData\HP
2021-04-14 15:29 - 2020-05-11 17:59 - 000000000 ____D C:\MBRecasterFree
2021-04-14 15:29 - 2020-05-08 19:55 - 000000000 ____D C:\Users\Thierry\AppData\Local\Adobe
2021-04-14 15:29 - 2020-05-01 17:25 - 000000000 ____D C:\ProgramData\TechSmith
2021-04-14 15:29 - 2020-04-30 18:40 - 000000000 ____D C:\Users\Thierry\AppData\Local\Google
2021-04-14 15:29 - 2020-04-30 18:40 - 000000000 ____D C:\Program Files (x86)\Google
2021-04-14 15:29 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\Windows Sidebar
2021-04-14 15:29 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files (x86)\Windows Sidebar
2021-04-14 15:25 - 2020-05-02 18:05 - 000000000 ___RD C:\Users\Thierry\Desktop\Art
2021-04-14 14:17 - 2020-05-01 12:29 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2021-04-14 12:08 - 2020-05-14 17:30 - 000000000 ____D C:\Users\Thierry\AppData\Roaming\uTorrent
2021-04-14 09:18 - 2021-03-14 17:12 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2021-04-14 06:49 - 2020-05-06 20:16 - 000000000 ____D C:\Users\Thierry\AppData\Local\CrashDumps
2021-04-13 20:44 - 2020-12-29 21:24 - 000000000 ____D C:\Program Files (x86)\WinRAR
2021-04-12 17:04 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2021-04-12 15:40 - 2011-04-12 11:16 - 000747154 _____ C:\Windows\system32\perfh00C.dat
2021-04-12 15:40 - 2011-04-12 11:16 - 000149646 _____ C:\Windows\system32\perfc00C.dat
2021-04-12 15:40 - 2009-07-14 07:13 - 001667292 _____ C:\Windows\system32\PerfStringBackup.INI
2021-04-12 12:32 - 2020-05-08 18:28 - 000000000 ____D C:\ProgramData\Package Cache
2021-04-09 16:08 - 2020-05-03 19:28 - 000000000 ____D C:\Users\Thierry\AppData\Roaming\vlc

==================== Fichiers à la racine de certains dossiers ========

2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ () C:\ProgramData\freebl3.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ () C:\ProgramData\mozglue.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ () C:\ProgramData\msvcp140.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ () C:\ProgramData\nss3.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ () C:\ProgramData\softokn3.dll
2021-04-14 09:51 - 2021-04-14 09:51 - 000002070 _____ () C:\ProgramData\vcruntime140.dll
2021-01-21 16:50 - 2021-04-14 21:32 - 000005923 _____ () C:\Users\Thierry\AppData\Roaming\.BEID_0.log
2020-05-02 18:58 - 2020-05-19 18:19 - 000001102 _____ () C:\Users\Thierry\AppData\Roaming\buttrc
2020-05-11 16:18 - 2020-05-11 16:18 - 000014387 _____ () C:\Users\Thierry\AppData\Local\HWVendorDetection.log

==================== FCheck ================================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

FCheck: C:\Windows\SysWOW64\version_IObitDel.dll [2020-05-14] <==== ATTENTION (zéro octet Fichier/Dossier)

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2021-04-12 06:03
==================== Fin de FRST.txt ========================