La souris nécessite plusieurs clics gauches pour fonctionner – malware ? – Serveur d’impression
[bzkshopping keyword= »Minecraft » count= »8″ template= »grid »]
A exécuté le scanner ESET et Malwarebytes, mais après quelques minutes de navigation, ma souris USB sans fil nécessite plusieurs clics pour fonctionner. Connecteur USB déplacé vers un autre emplacement et vice-versa. Même chose. Piles de souris remplacées.
Vous trouverez ci-dessous mes scans FRST et Add – Aide appréciée
Résultat de l'analyse de l'outil d'analyse de récupération Farbar (FRST) (x64) Version : 13-09-2021
Exécuté par le PROPRIÉTAIRE (administrateur) sur HP-Z220 (Hewlett-Packard HP Compaq Elite 8300 SFF) (13-09-2021 16:12:33)
Exécuté depuis C:UsersOwnerDownloads
Profils chargés : PROPRIÉTAIRE
Plate-forme : Windows 10 Pro Version 20H2 19042.1165 (X64) Langue : Anglais (États-Unis)
Navigateur par défaut : Chrome
Mode de démarrage : Normal
==================== Processus (liste blanche) ==================
(Si une entrée est incluse dans la fixlist, le processus sera fermé. Le fichier ne sera pas déplacé.)
(Google LLC -> Google LLC) C:Program Files (x86)GoogleChromeApplicationchrome.exe <20>
(HP Inc. -> HP Inc.) C:Program FilesHPHP Enabling ServicesAppHelperCap.exe
(HP Inc. -> HP Inc.) C:Program FilesHPHP Enabling ServicesDiagsCap.exe
(HP Inc. -> HP Inc.) C:Program FilesHPHP Enabling ServicesNetworkCap.exe
(HP Inc. -> HP Inc.) C:Program FilesHPHP Enabling ServicesSysInfoCap.exe
(HP Inc. -> HP Inc.) C:Program FilesHPPrintScanDoctorHPPrintScanDoctorService.exe
(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:WindowsSystem32WirelessKB850NotificationService.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2108.7-0MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2108.7-0NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARtkAudioService64.exe
==================== Registre (liste blanche) ====================
(Si une entrée est incluse dans la liste de correctifs, l'élément de registre sera restauré par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM…Exécuter : [RTHDVCPL] => C:Program FilesRealtekAudioHDARtkNGUI64.exe [9240512 2017-12-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM…Exécuter : [RtHDVBg] => C:Program FilesRealtekAudioHDARAVBg64.exe [1492928 2017-12-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM…Exécuter : [TabletDriver] => C:Huion TabletHuion Tablet.exe [2821128 2017-06-26] (Shenzhen Huion Animation Technology Co., Ltd. -> HUION Animation Technology Co., Ltd)
HKLM-x32…Exécuter : [DivXMediaServer] => C:Program Files (x86)DivXDivX Media ServerDivXMediaServer.exe [1058512 2018-12-17] (DivX, LLC. -> DivX, LLC)
HKLM-x32…Exécuter : [InCD] => C:Program Files (x86)NeroToolsInCDInCD.exe [1060136 2009-10-16] (Nero AG -> Nero AG)
HKLM-x32…Exécuter : [NBHGui] => C:Program Files (x86)NeroToolsInCDNBHGui.exe [1600816 2009-10-16] (Nero AG -> Nero AG)
HKUS-1-5-21-528068570-1047697352-1524386410-1001…Exécuter : [Toolkit] => C:Program Files (x86)ToolkitToolkit.exe [1147184 2018-11-09] (Seagate Technology LLC -> Seagate Technology LLC)
HKUS-1-5-21-528068570-1047697352-1524386410-1001…Exécuter : [CCleaner Smart Cleaning] => C:Program FilesCCleanerCCleaner64.exe [35144320 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKUS-1-5-21-528068570-1047697352-1524386410-1001…Exécuter : [FlashGet 3] => C:Program Files (x86)FlashGet NetworkFlashGet 3FlashGet3.exe [3083712 2012-01-09] (Trend Media Corporation Limited -> Trend Media Corporation Limited) [File not signed]
HKUS-1-5-21-528068570-1047697352-1524386410-1001…Exécuter : [EpicGamesLauncher] => C:Program Files (x86)Epic GamesLauncherPortalBinariesWin64EpicGamesLauncher.exe [31606672 2020-02-18] (Epic Games Inc. -> Epic Games, Inc.)
HKUS-1-5-21-528068570-1047697352-1524386410-1001…Exécuter : [com.squirrel.Teams.Teams] => C:UsersOwnerAppDataLocalMicrosoftTeamsUpdate.exe [2453688 2020-12-03] (Composant d'application tiers Microsoft -> Microsoft Corporation)
HKUS-1-5-21-528068570-1047697352-1524386410-1001…Exécuter : [Steam] => C:UsersOwnerDesktopNouveau dossiersteam.exe [4110568 2021-07-20] (Valve -> Valve Corporation)
HKLM…PrintMonitorsHP 7112 Status Monitor : C:WINDOWSsystem32hpinksts7112LM.dll [328704 2014-03-03] (Éditeur de compatibilité matérielle Microsoft Windows -> Hewlett-Packard Co.)
HKLMSoftwareMicrosoftActive SetupComposants installés : [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C:Program Files (x86)GoogleChromeApplication93.0.4577.63Installerchrmstp.exe [2021-09-02] (Google LLC -> Google LLC)
HKLMSoftwareWow6432NodeMicrosoftActive SetupComposants installés : [052EB454-9F19-CB42-7875-807F79F311C4] -> C:Program Files (x86)CCleaner BrowserApplication84.1.5543.138Installerchrmstp.exe [2020-08-26] (Piriform Software Ltd -> Piriform Software)
Démarrage : C:UsersOwnerAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupMEGAsync.lnk [2018-05-31]
Raccourci cible : MEGAsync.lnk -> C:UsersOwnerAppDataLocalMEGAsyncMEGAsync.exe (Mega Limited -> Mega Limited)
==================== Tâches planifiées (liste blanche) ============
(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé à moins qu'il ne soit répertorié séparément.)
Tâche : 12EA6C1A-4659-4767-B3F6-7C4489A9564D – System32TasksCCleaner Browser Heartbeat Task (Logon) => C:Program Files (x86)CCleaner BrowserApplicationCCleanerBrowser.exe [1976296 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Tâche : 190D5EDC-B0FD-4C0A-89B4-56EE74309ACC – System32TasksHewlett-PackardHP Support AssistantHP Support Solutions Framework Updater => C:Program Files (x86)Hewlett-PackardHP Support Solutions ModulesHPSSFUpdater.exe
Tâche : 24680B4B-C3F2-4DF1-B486-C6686ECBDCA6 – System32TasksAdobe Flash Player PPAPI Notifier => C:WINDOWSSysWOW64MacromedFlashFlashUtil32_32_0_0_330_pepper.exe [1453624 2020-02-18] (Adobe Inc. -> Adobe)
Tâche : 2B71ED87-D64F-4EC7-885B-685DFDD0B7D6 – System32TasksAdobe Flash Player NPAPI Notifier => C:WINDOWSSysWOW64MacromedFlashFlashUtil32_32_0_0_433_Plugin.exe [1502264 2020-09-15] (Adobe Inc. -> Adobe)
Tâche : 3F66D202-02BB-488E-886D-95853DA684F0 – Tâche de mise à jour System32TasksMEGAMEGAsync S-1-5-21-528068570-1047697352-1524386410-1001 => C:UsersOwnerAppDataLocal MEGAsyncMEGAupdater.exe [760696 2018-01-15] (Méga Limité -> Méga Limité)
Tâche : 40251405-C5DA-4B15-9941-661CFF7E0763 – System32TasksGoogleUpdateTaskMachineCore1d57d506dbbf599 => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156968 2019-02-18] (Google Inc -> Google Inc.)
Tâche : 44CCE751-EB6E-4DE8-9F94-EA754915B5A3 – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cache Maintenance => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2108.7-0MpCmdRun .EXE [851472 2021-09-09] (Éditeur Microsoft Windows -> Microsoft Corporation)
Tâche : 47B23BBE-5A50-4322-BCB6-15BF78601996 – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Scan programmé => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2108.7-0MpCmdRun .EXE [851472 2021-09-09] (Éditeur Microsoft Windows -> Microsoft Corporation)
Tâche : 4D31E5F4-827C-429D-AD14-915DB592E83F – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156968 2019-02-18] (Google Inc -> Google Inc.)
Tâche : 50FE835A-0215-40FB-820A-D46893062769 – System32TasksCCleanerSkipUAC => C:Program FilesCCleanerCCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Tâche : 558A262F-87FF-4F67-BCBE-4867914F94FC – System32TasksGoogleUpdateTaskMachineUA1d57d506ddc0dc6 => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156968 2019-02-18] (Google Inc -> Google Inc.)
Tâche : 5E093222-A248-449F-BBFE-6B1954D28789 – System32TasksCorelUpdateHelperTaskCore => C:Program Files (x86)CorelCUHv2CUH.exe [1656568 2018-06-21] (Corel Corporation -> Corel Corporation)
Tâche : 662AEBA6-96A4-4872-8952-06ED58BC61AD – System32TasksCCleanerUpdateTaskMachineCore => C:Program Files (x86)CCleaner BrowserUpdateCCleanerBrowserUpdate.exe [209128 2019-08-14] (Piriform Software Ltd -> Piriform Software)
Tâche : 74196BB5-AE2F-48E6-A6D0-32812196CBAD – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [21858176 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
Tâche : 786A75B1-651F-4FE2-95EA-439838FC2263 – System32TasksMicrosoftOfficeOffice Fonctionnalités d'ouverture de session => C:Program Files (x86)Microsoft OfficerootOffice16sdxhelper.exe [113496 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
Tâche : 84BD143D-7651-4218-B909-D6BACACAB302 – Tâche de pulsation du navigateur System32TasksCCleaner (horaire) => C:Program Files (x86)CCleaner BrowserApplicationCCleanerBrowser.exe [1976296 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Tâche : 86A064C9-C560-443E-AAE7-587D3DCA1041 – System32TasksCCleanerSkipUAC – OWNER => C:Program FilesCCleanerCCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Tâche : 86BBEDDB-EB3C-4714-B697-BDF41411334E – System32TasksHewlett-PackardHP Support AssistantWarrantyChecker_CN5BAF30JC => C:Program Files (x86)Hewlett-PackardHP Support FrameworkResourcesHPWarrantyCheck HPWarrantyChecker.exe
Tâche : 8E858723-CF20-4E85-B68D-7857716E2306 – System32TasksMicrosoftOfficeOffice Feature Updates => C:Program Files (x86)Microsoft OfficerootOffice16sdxhelper.exe [113496 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
Tâche : 930D4E41-1C6B-4260-8BF9-CA5848F80645 – System32TasksHewlett-PackardHP Support AssistantWarrantyChecker => C:Program Files (x86)Hewlett-PackardHP Support FrameworkResourcesHPWarrantyCheck HPWarrantyChecker.exe
Tâche : 9FFF541B-80EE-4D51-ADD9-DF5B8F6A1944 – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156968 2019-02-18] (Google Inc -> Google Inc.)
Tâche : A3470DA0-5113-4880-BECE-A4E034BE4FBF – System32TasksHewlett-PackardHP Support AssistantHP Support Solutions Framework Report => C:Program Files (x86)Hewlett-PackardHP Support Solutions ModulesHPSFReport.exe
Tâche : A5EDE02B-778D-418A-81B0-9BF11492B3B0 – System32TasksCorelUpdateHelperTask-3AD98B0771EF8756195E11A32ED20632 => C:Program Files (x86)CorelCUHv2CUH.exe [1656568 2018-06-21] (Corel Corporation -> Corel Corporation)
Tâche : B84CB31D-1AE1-447E-AA65-11C254D67236 – System32TasksHewlett-PackardHP Support AssistantWarrantyChecker_DeviceScan => C:Program Files (x86)Hewlett-PackardHP Support FrameworkResourcesHPWarrantyCheck HPWarrantyChecker.exe
Tâche : B98D1504-F9D3-4D52-AF0E-E411472DD9A2 – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cleanup => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2108.7-0MpCmdRun. EXE [851472 2021-09-09] (Éditeur Microsoft Windows -> Microsoft Corporation)
Tâche : C0E53B97-F2FE-40C7-A443-0D777DEC8FCD – System32TasksCCleaner Update => C:Program FilesCCleanerCCUpdate.exe [684976 2021-08-16] (Piriform Software Ltd -> Piriform)
Tâche : C5877927-B67E-4A8C-99A5-E6764B67F4AD – System32TasksCCleanerUpdateTaskMachineUA => C:Program Files (x86)CCleaner BrowserUpdateCCleanerBrowserUpdate.exe [209128 2019-08-14] (Piriform Software Ltd -> Piriform Software)
Tâche : CB056E81-7895-4E8E-8685-CFD28BC3349D – System32TasksDivXUpdate => C:Program Files (x86)Common FilesDivX SharedDivX UpdateDivXUpdate.exe [68568 2017-08-02] (DivX, LLC -> DivX, LLC)
Tâche : CEFE5998-3FC0-43D1-9B10-3AADB7A95479 – System32TasksAdobe Flash Player Updater => C:WINDOWSSysWOW64MacromedFlashFlashPlayerUpdateService.exe [335416 2020-09-15] (Adobe Inc. -> Adobe)
Tâche : D248A325-0CA8-49F9-A92C-497BA71A0D88 – System32TasksMicrosoftOfficeOfficeTelemetryAgentFallBack2016 => C:Program Files (x86)Microsoft OfficerootOffice16msoia.exe [5439384 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
Tâche : D504148F-A5DE-4474-B8CF-1982B9E3861B – System32TasksMicrosoftOfficeOfficeTelemetryAgentLogOn2016 => C:Program Files (x86)Microsoft OfficerootOffice16msoia.exe [5439384 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
Tâche : DD078C13-D166-4F99-8FE1-ACC9741938B1 – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Tâche : E6321CF5-D4E8-4F18-BC40-C9034C430391 – Maintenance des abonnements System32TasksMicrosoftOfficeOffice => C:Program Files (x86)Microsoft OfficerootvfsProgramFilesCommonx86Microsoft SharedOffice16 OLicenseHeartbeat.exe [1155504 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
Tâche : EFFF5976-C7AA-4834-9DDD-B71648ED4686 – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Verification => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2108.7-0MpCmdRun. EXE [851472 2021-09-09] (Éditeur Microsoft Windows -> Microsoft Corporation)
Tâche : F5F2DF03-ECE7-4FA8-8D7B-26ACCF3375A5 – System32TasksMicrosoftOfficeOffice Automatic Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [21858176 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
(Si une entrée est incluse dans la liste de correctifs, le fichier de tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (liste blanche) ====================
(Si un élément est inclus dans la liste de correctifs, s'il s'agit d'un élément de registre, il sera supprimé ou restauré par défaut.)
Hosts : fichier Hosts non détecté dans le répertoire par défaut
TcpipParamètres : [DhcpNameServer] 192.168.2.1 142.166.166.166
Tcpip..Interfaces45a228de-0f35-45b3-96f5-df99a529abe0 : [DhcpNameServer] 192.168.2.1 142.166.166.166
Tcpip..Interfaces967011db-fc46-4443-a72b-8d01f612f251 : [DhcpNameServer] 172.20.10.1
Tcpip..Interfaceseeca0073-ae0b-411d-b0ef-87af1964de3b : [DhcpNameServer] 192.168.2.1 142.166.166.166
Bord:
=======
DownloadDir: C:UsersOwnerDownloads
Profil par défaut Edge : par défaut
Profil Edge : C:UsersOwnerAppDataLocalMicrosoftEdgeUser DataDefault [2021-09-13]
Edge DownloadDir : Par défaut -> C:UsersOwnerDownloads
Extension Edge : (Malwarebytes Browser Guard) – C:UsersOwnerAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsihcjicgdanjaechkgeegckofjjedodee [2021-08-11]
Bord HKLM-x32…BordExtension : [ihcjicgdanjaechkgeegckofjjedodee]
FireFox :
========
Profil par défaut FF : x5gvt07o.default-1526577378407
Chemin de profil FF : C:UsersOwnerAppDataRoamingMozillaFirefoxProfilesx5gvt07o.default-1526577378407 [2021-09-13]
FF DownloadDir : E:DrivesLooksxnt
Notifications FF : MozillaFirefoxProfilesx5gvt07o.default-1526577378407 -> hxxps://vznm.haphetititletleres.club ; hxxps://tf3t.butfirecrangu.club ; hxxps://members.puremature.com ; hxxps://members.passion-hd.com ; hxxps://members.pornpros.com ; hxxps://untheronsuprec.info; hxxps://openloadmovies.bz; hxxps://www1.ecleneue.com; hxxps://rgzbb.ctableobs.work; hxxps://www.tushy.com; hxxps://www.blacked.com
Extension FF : (Télécharger toutes les images) – C:UsersOwnerAppDataRoamingMozillaFirefoxProfilesx5gvt07o.default-1526577378407Extensions32af1358-428a-446d-873e-5f8eb5f2a72e.xpi [2021-07-05]
Extension FF : (Video DownloadHelper) – C:UsersOwnerAppDataRoamingMozillaFirefoxProfilesx5gvt07o.default-1526577378407Extensionsb9db16a4-6edc-47ec-a1f4-b86292ed211d.xpi [2021-07-05]
Plugin FF : @adobe.com/FlashPlayer -> C:WINDOWSsystem32MacromedFlashNPSWF64_32_0_0_433.dll [2020-09-15] (Adobe Inc. -> )
Plugin FF-x32 : @adobe.com/FlashPlayer -> C:WINDOWSSysWOW64MacromedFlashNPSWF32_32_0_0_433.dll [2020-09-15] (Adobe Inc. -> )
FF Plugin-x32 : @divx.com/DivX Web Player Plug-In, version=1.0.0 -> C:Program Files (x86)DivXDivX Web Playernpdivx32.dll [2017-11-21] (DivX, LLC -> DivX, LLC)
Plugin FF-x32 : @microsoft.com/Lync, version=15.0 -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX86Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
Plugin FF-x32 : @microsoft.com/SharePoint, version=14.0 -> C:Program Files (x86)Microsoft OfficerootOffice16NPSPWRAP.DLL [2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
Plugin FF-x32 : @videolan.org/vlc,version=3.0.10 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
Plugin FF-x32 : @videolan.org/vlc,version=3.0.11 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
Plugin FF-x32 : @videolan.org/vlc,version=3.0.12 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
Plugin FF-x32 : @videolan.org/vlc,version=3.0.2 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
Plugin FF-x32 : @videolan.org/vlc,version=3.0.4 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
Plugin FF-x32 : @videolan.org/vlc,version=3.0.6 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
Plugin FF-x32 : Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
Profil par défaut du CHR : par défaut
Profil CHR : C:UsersOwnerAppDataLocalGoogleChromeUser DataDefault [2021-09-13]
Notifications CHR : Par défaut -> hxxps://aoschat.apple.com ; hxxps://business.facebook.com ; hxxps://chatsupport.apple.com ; hxxps://meet.google.com ; hxxps://www.kijiji.ca; hxxps://www.netflix.com ; hxxps://www.wordans.ca
CHR StartupUrls : Par défaut -> "hxxp://google.ca/"
Extension CHR : (diapositives) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2017-10-31]
Extension CHR : (Docs) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2017-10-31]
Extension CHR : (Google Drive) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2020-10-27]
Extension CHR : (YouTube) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-31]
Extension CHR : (Adobe Acrobat) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsefaidnbmnnnibpcajpcglclefindmkaj [2021-09-07]
Extension CHR : (Feuilles) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2017-10-31]
Extension CHR : (alliage) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsfljipcgeenffdcglannkpppedokbpgjl [2019-06-20]
Extension CHR : (Google Docs Offline) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-29]
Extension CHR : (AdBlock – meilleur bloqueur de publicités) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsgighmmpiobklfepjocnamgkkbiglidom [2021-09-11]
Extension CHR : (Malwarebytes Browser Guard) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsihcjicgdanjaechkgeegckofjjedodee [2021-08-30]
Extension CHR : (Flash Player pour le Web) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsmcakfkioeanhfiojkchcndahgagcidbd [2021-03-08]
Extension CHR : (Video Downloader PLUS) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsnjgehaondchbmjmajphnhlojfnbfokng [2021-09-07]
Extension CHR : (Chrome Web Store Payments) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
Extension CHR : (Gmail) – C:UsersOwnerAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
Profil CHR : C:UsersOwnerAppDataLocalGoogleChromeUser DataGuest Profile [2021-09-07]
Profil CHR : C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1 [2021-05-03]
Extension CHR : (diapositives) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionsaapocclcgogkmnckokdopfmhonfmgoek [2020-03-24]
Extension CHR : (Docs) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionsaohghmighlieiainnegkcijnfilokake [2020-03-24]
Extension CHR : (Google Drive) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionsapdfllckaahabafndbhieahigkjlhalf [2020-03-24]
Extension CHR : (YouTube) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-24]
Extension CHR : (Adobe Acrobat) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionsefaidnbmnnnibpcajpcglclefindmkaj [2020-10-12]
Extension CHR : (Feuilles) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionsfelcaaldnbdncclmgdcncolpebgiejap [2020-03-24]
Extension CHR : (Google Docs Offline) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-12]
Extension CHR : (Chrome Web Store Payments) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionsnmmhkkegccagdldgiimedpiccmgmieda [2020-03-24]
Extension CHR : (Gmail) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionspjkljhegncpnkpknbcohdijeoejaedia [2020-03-24]
Extension CHR : (Chrome Media Router) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 1Extensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-12]
Profil CHR : C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2 [2021-09-04]
Extension CHR : (diapositives) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsaapocclcgogkmnckokdopfmhonfmgoek [2021-09-04]
Extension CHR : (Docs) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsaohghmighlieiainnegkcijnfilokake [2021-09-04]
Extension CHR : (Google Drive) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsapdfllckaahabafndbhieahigkjlhalf [2021-09-04]
Extension CHR : (YouTube) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2021-09-04]
Extension CHR : (Adobe Acrobat) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsefaidnbmnnnibpcajpcglclefindmkaj [2021-09-04]
Extension CHR : (Feuilles) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsfelcaaldnbdncclmgdcncolpebgiejap [2021-09-04]
Extension CHR : (Google Docs Offline) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-04]
Extension CHR : (Avast Online Security) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsgomekmidlodglbbmalcneegieacbdmki [2021-09-04]
Extension CHR : (Malwarebytes Browser Guard) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsihcjicgdanjaechkgeegckofjjedodee [2021-09-04]
Extension CHR : (Paiements Chrome Web Store) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionsnmmhkkegccagdldgiimedpiccmgmieda [2021-09-04]
Extension CHR : (Gmail) – C:UsersOwnerAppDataLocalGoogleChromeUser DataProfile 2Extensionspjkljhegncpnkpknbcohdijeoejaedia [2021-09-04]
Profil CHR : C:UsersOwnerAppDataLocalGoogleChromeUser DataSystem Profile [2021-09-07]
CHR HKLM-x32…ChromeExtension : [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32…ChromeExtension : [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32…ChromeExtension : [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (liste blanche) ====================
(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé à moins qu'il ne soit répertorié séparément.)
Service AdobeARM S2 ; C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S4 AdobeFlashPlayerUpdateSvc; C:WINDOWSSysWOW64MacromedFlashFlashPlayerUpdateService.exe [335416 2020-09-15] (Adobe Inc. -> Adobe)
Service S4 BE ; C:Program Files (x86)Common FilesBattlEyeBEService.exe [8395968 2019-10-29] (BattlEye Innovations e.K. -> )
nettoyeur S4; C:Program Files (x86)CCleaner BrowserUpdateCCleanerBrowserUpdate.exe [209128 2019-08-14] (Piriform Software Ltd -> Piriform Software)
S4 CCleanerBrowserElevationService; C:Program Files (x86)CCleaner BrowserApplication84.1.5543.138elevation_service.exe [1071832 2020-08-19] (Piriform Software Ltd -> Piriform Software)
S4 ccleanerm; C:Program Files (x86)CCleaner BrowserUpdateCCleanerBrowserUpdate.exe [209128 2019-08-14] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc ; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [9166736 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
S4 EasyAntiCheat; C:Program Files (x86)EasyAntiCheatEasyAntiCheat.exe [803440 2019-10-27] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HPAppHelperCap; C:Program FilesHPHP Enabling ServicesAppHelperCap.exe [733200 2021-04-19] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:Program FilesHPHP Enabling ServicesDiagsCap.exe [731152 2021-04-19] (HP Inc. -> HP Inc.)
R2 HPNetworkCap ; C:Program FilesHPHP Enabling ServicesNetworkCap.exe [731152 2021-04-19] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService ; C:Program FilesHPPrintScanDoctorHPPrintScanDoctorService.exe [288360 2021-05-12] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap ; C:Program FilesHPHP Enabling ServicesSysInfoCap.exe [732176 2021-04-19] (HP Inc. -> HP Inc.)
S4 InCDSrv; C:Program Files (x86)NeroToolsInCDInCDSrv.exe [1420592 2009-10-16] (Nero AG -> Nero AG)
Service MBAM S3 ; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [7456464 2021-05-04] (Malwarebytes Inc -> Malwarebytes)
S4 NeroRegInCDSrv; C:Program Files (x86)NeroToolsInCDNBHRegInCDSrv.exe [53560 2009-10-16] (Nero AG -> Nero AG)
S4 PSI_SVC_2 ; c:Program Files (x86)Common FilesProtexisLicense ServicePsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S4 PSI_SVC_2_x64 ; c:Program FilesCommon FilesProtexisLicense ServicePsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
Sens S3 ; C:Program FilesWindows Defender Advanced Threat ProtectionMsSense.exe [5394872 2021-08-12] (Éditeur Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2108.7-0NisSrv.exe [2772856 2021-09-09] (Éditeur Microsoft Windows -> Microsoft Corporation)
R2 WinDefend ; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2108.7-0MsMpEng.exe [136640 2021-09-09] (Éditeur Microsoft Windows -> Microsoft Corporation)
Service de notification sans fil R2 KB850 ; C:WINDOWSsystem32WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
===================== Pilotes (liste blanche) ===================
(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé à moins qu'il ne soit répertorié séparément.)
ampli S3 ; C:WINDOWSsystem32ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R0 apmwin ; C:WINDOWSSystem32DRIVERSapmwin.sys [48920 2017-08-31] (Paragon Software GmbH -> Paragon Software Group)
S3 BthA2dp; C:WINDOWSSystem32driversBthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S2 csvol; C:WINDOWSsystem32DRIVERScsvol.sys [46552 2017-08-31] (Paragon Software GmbH -> Paragon Software Group)
S3 ddmdrv; C:WINDOWSsystem32ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 ESProtectionDriver ; C:WINDOWSsystem32driversmbae64.sys [160176 2021-08-29] (Éditeur de compatibilité matérielle Microsoft Windows -> Malwarebytes)
R0 gpt_loader ; C:WINDOWSSystem32DRIVERSgpt_loader.sys [79832 2017-08-31] (Paragon Software GmbH -> )
S3 hfsplus; C:WINDOWSSystem32DRIVERShfsplus.sys [218072 2017-08-31] (Paragon Software GmbH -> Paragon Software Group)
R2 HfsplusRec; C:WINDOWSSystem32DRIVERShfsplusrec.sys [35288 2017-08-31] (Paragon Software GmbH -> Paragon Software Group)
R3 InCDPass ; C:WINDOWSsystem32DRIVERSInCDPass.sys [60952 2009-10-16] (Nero AG -> Nero AG)
S1 InCDRec; C:WINDOWSSystem32DRIVERSInCDRec.sys [22040 2009-10-16] (Nero AG -> Nero AG)
R2 MBAMChameleon; C:WINDOWSSystem32DriversMbamChameleon.sys [210344 2021-08-29] (Éditeur de compatibilité matérielle Microsoft Windows -> Malwarebytes)
S0 MbamElam; C:WINDOWSSystem32DRIVERSMbamElam.sys [19912 2021-05-04] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMFarflt; C:WINDOWSSystem32DRIVERSfarflt.sys [198888 2021-08-29] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMProtection ; C:WINDOWSsystem32DRIVERSmbam.sys [68528 2021-08-29] (Éditeur de compatibilité matérielle Microsoft Windows -> Malwarebytes)
S3 MBAMSwissArmy ; C:WINDOWSSystem32Driversmbamswissarmy.sys [248992 2021-08-29] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMWebProtection ; C:WINDOWSsystem32DRIVERSmwac.sys [149424 2021-08-29] (Éditeur de compatibilité matérielle Microsoft Windows -> Malwarebytes)
R0 mounthlp; C:WINDOWSSystem32DRIVERSmounthlp.sys [66832 2017-08-31] (Paragon Software GmbH -> Paragon Software Group)
R3 vmulti ; C:WINDOWSSystem32driversvmulti.sys [10752 2014-09-17] (Éditeur de compatibilité matérielle Microsoft Windows -> Fournisseur DDK Windows ® Win 7)
S0 WdBoot ; C:WINDOWSSystem32driverswdWdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFiltre; C:WINDOWSSystem32driverswdWdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
Filtre de clavier sans fil R3 ; C:WINDOWSSystem32driversWirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
==================== NetSvcs (liste blanche) ===================
(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé à moins qu'il ne soit répertorié séparément.)
==================== Un mois (créé) (Liste blanche) =========
(Si une entrée est incluse dans la liste de correctifs, le fichier/dossier sera déplacé.)
2021-09-13 16:08 – 2021-09-13 16:08 – 002303488 _____ (Farbar) C:UsersOwnerDownloadsFRST64 (1).exe
2021-09-13 14:14 – 2021-09-13 14:14 – 001225928 _____ C:UsersOwnerDownloadsIMG_8065.jpg.crdownload
2021-09-11 14:38 – 2021-09-11 14:38 – 000001423 _____ C:UsersOwnerAppDataRoamingMicrosoftWindowsStart MenuProgramsOutlook.lnk
2021-09-10 21:16 – 2021-09-10 21:16 – 000489996 _____ C:UsersOwnerDownloadsH1ode11.pdf
2021-09-10 01:15 – 2021-09-11 07:21 – 00000000 ____D C:Program FilesMozilla Firefox
2021-09-08 17:09 – 2021-09-08 17:09 – 00000000 ____D C:UsersOwnerDocumentsOutlook Files
2021-09-07 17:34 – 2021-09-07 17:34 – 000520041 _____ C:UsersOwnerDownloadsVirginPDF (1).pdf
2021-09-07 10:39 – 2021-09-07 10:39 – 000499380 _____ C:UsersOwnerDownloadsgrade8.pdf
2021-09-06 20:19 – 2021-09-06 20:38 – 1384663545 _____ C:UsersOwnerDownloadsRegardez le film gratuit en ligne Pans Labyrinth (2006) sur Streamm4u.c.mp4
2021-09-06 20:18 – 2021-09-06 20:28 – 894691878 _____ C:UsersOwnerDownloadsRegardez le film gratuit en ligne Thunderbird 6 (1968) sur Streamm4u.co.mp4
2021-09-04 16:47 – 2021-09-04 16:47 – 000298917 _____ C:UsersOwnerDownloadsInstructional Positions – Health Science (Open) (1).pdf
2021-09-04 16:45 – 2021-09-04 16:45 – 000425673 _____ C:UsersOwnerDownloadsClinical Instructor- Practical Nursing (Open).pdf
2021-09-04 16:41 – 2021-09-04 16:41 – 000629790 _____ C:UsersOwnerDownloadsdocument (23).pdf
2021-09-04 16:40 – 2021-09-04 16:40 – 000019808 _____ C:UsersOwnerDownloadsdocument (22).pdf
2021-09-04 16:40 – 2021-09-04 16:40 – 000019808 _____ C:UsersOwnerDownloadsdocument (21).pdf
2021-08-29 07:24 – 2021-08-29 07:24 – 132334800 _____ C:UsersOwnerDownloadsGH013785.MP4
2021-08-29 07:22 – 2021-08-29 07:26 – 892112626 _____ C:UsersOwnerDownloadsGH013205.MP4
2021-08-29 07:21 – 2021-08-29 07:26 – 1304454562 _____ C:UsersOwnerDownloadsGH013203.MP4
2021-08-29 07:21 – 2021-08-29 07:26 – 1071333410 _____ C:UsersOwnerDownloadsGH013204.MP4
2021-08-29 07:21 – 2021-08-29 07:25 – 880308392 _____ C:UsersOwnerDownloadsGH013202.MP4
2021-08-29 07:20 – 2021-08-29 07:25 – 575427272 _____ C:UsersOwnerDownloadsGH013201.MP4
2021-08-29 07:20 – 2021-08-29 07:24 – 1231333387 _____ C:UsersOwnerDownloadsGH013199.MP4
2021-08-29 07:19 – 2021-08-29 07:20 – 270137864 _____ C:UsersOwnerDownloadsGH013198.MP4
2021-08-29 04:40 – 2021-08-29 04:40 – 000248992 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbamswissarmy.sys
2021-08-29 04:40 – 2021-08-29 04:40 – 000210344 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamChameleon.sys
2021-08-29 04:40 – 2021-08-29 04:40 – 000198888 _____ (Malwarebytes) C:WINDOWSsystem32Driversfarflt.sys
2021-08-29 04:40 – 2021-08-29 04:40 – 000149424 _____ (Malwarebytes) C:WINDOWSsystem32Driversmwac.sys
2021-08-29 04:40 – 2021-08-29 04:40 – 000068528 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbam.sys
2021-08-26 14:34 – 2021-09-01 04:57 – 00000000 ____D C:UsersOwnerAppDataLocalLowIGDump
2021-08-25 22:43 – 2021-08-25 22:43 – 000002912 _____ C:WINDOWSsystem32TasksCCleanerSkipUAC – PROPRIÉTAIRE
2021-08-24 22:47 – 2021-08-24 22:47 – 000000000 ____D C:UsersOwnerDocumentsregistry backup
2021-08-24 22:34 – 2021-08-24 22:34 – 008553680 _____ (Malwarebytes) C:UsersOwnerDesktopadwcleaner_8.3.0.exe
2021-08-24 01:50 – 2021-08-24 01:50 – 000000306 _____ C:UsersOwnerDesktopaugust scan.txt
2021-08-21 18:22 – 2021-08-21 18:23 – 999353524 _____ C:UsersOwnerDownloadsxOWqYLJhRAWRKqZOQme36Q_2BIyE1XdRKZCb4XgyvqwRQ_o.MP4
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-09-13 16:14 – 2021-05-01 19:24 – 000030554 _____ C:UsersOwnerDownloadsFRST.txt
2021-09-13 16:13 – 2021-05-01 19:24 – 000000000 ____D C:FRST
2021-09-13 15:51 – 2021-03-23 05:55 – 000000000 ____D C:WINDOWSsystem32SleepStudy
2021-09-13 15:23 – 2017-10-31 15:55 – 000000000 ____D C:Program Files (x86)Google
2021-09-13 14:09 – 2020-09-02 00:40 – 000002438 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2021-09-13 14:09 – 2020-09-02 00:40 – 000002276 _____ C:UsersPublicDesktopMicrosoft Edge.lnk
2021-09-13 14:09 – 2019-12-07 06:44 – 000000000 ___HD C:Program FilesWindowsApps
2021-09-13 14:09 – 2019-12-07 06:44 – 000000000 ____D C:WINDOWSAppReadiness
2021-09-13 14:09 – 2019-12-07 06:44 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2021-09-13 14:02 – 2018-05-03 10:55 – 000000000 ____D C:UsersOwnerAppDataRoamingvlc
2021-09-13 13:59 – 2018-05-02 22:46 – 000000000 ____D C:UsersOwnerAppDataLocalLowMozilla
2021-09-13 13:29 – 2019-02-06 11:12 – 000000000 ____D C:ProgramDataMozilla
2021-09-13 11:21 – 2021-05-04 16:14 – 000001378 _____ C:UsersOwnerAppDataRoamingMicrosoftWindowsStart MenuProgramsESET Online Scanner.lnk
2021-09-13 11:21 – 2021-05-04 16:14 – 000001272 _____ C:UsersOwnerDesktopESET Online Scanner.lnk
2021-09-13 10:44 – 2018-05-17 14:53 – 000000000 ____D C:Program FilesCCleaner
2021-09-11 14:37 – 2021-03-23 10:26 – 000769700 _____ C:WINDOWSsystem32perfh00C.dat
2021-09-11 14:37 – 2021-03-23 10:26 – 000145092 _____ C:WINDOWSsystem32perfc00C.dat
2021-09-11 14:37 – 2018-05-17 17:31 – 001753160 _____ C:WINDOWSSysWOW64PerfStringBackup.INI
2021-09-11 11:22 – 2021-03-23 06:25 – 000004562 _____ C:WINDOWSsystem32TasksAdobe Acrobat Update Task
2021-09-11 07:37 – 2018-05-03 10:36 – 000000000 ____D C:Program Files (x86)Microsoft Office
2021-09-11 07:36 – 2019-12-07 06:43 – 000000000 ____D C:WINDOWSINF
2021-09-11 07:21 – 2021-03-23 06:25 – 000000006 ____H C:WINDOWSTasksSA.DAT
2021-09-11 07:21 – 2021-03-23 05:55 – 000008192 ___SH C:DumpStack.log.tmp
2021-09-11 07:21 – 2018-05-02 22:46 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2021-09-10 08:19 – 2018-05-02 22:46 – 000001005 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk
2021-09-10 08:01 – 2020-12-14 10:46 – 000000000 ____D C:UsersOwnerDesktopNew folder
2021-09-09 08:19 – 2020-09-02 04:01 – 000000000 ____D C:Program FilesMicrosoft Update Health Tools
2021-09-09 05:17 – 2018-04-21 13:05 – 000000000 ____D C:WINDOWSsystem32Driverswd
2021-09-07 08:25 – 2021-01-20 01:41 – 000000000 ____D C:UsersOwnerDownloadsio-oi.xyz
2021-09-02 20:15 – 2017-10-31 15:55 – 000002301 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2021-09-02 20:15 – 2017-10-31 15:55 – 000002260 _____ C:UsersPublicDesktopGoogle Chrome.lnk
2021-09-02 05:10 – 2021-03-23 06:02 – 000000000 ____D C:UsersOwner
2021-09-02 05:07 – 2021-03-23 05:55 – 000472664 _____ C:WINDOWSsystem32FNTCACHE.DAT
2021-08-31 16:09 – 2017-11-01 13:32 – 000803176 ____N (Microsoft Corporation) C:WINDOWSsystem32MpSigStub.exe
2021-08-29 04:40 – 2019-03-19 02:12 – 000160176 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbae64.sys
2021-08-25 22:43 – 2021-03-23 06:25 – 000003936 _____ C:WINDOWSsystem32TasksCCleaner Update
2021-08-24 22:44 – 2021-03-17 16:23 – 000000000 ___DC C:WINDOWSPanther
2021-08-24 22:44 – 2018-05-31 14:50 – 000000000 ____D C:UsersOwnerAppDataLocalCrashDumps
2021-08-24 22:37 – 2018-05-31 16:28 – 000000000 ____D C:UsersOwnerAppDataRoamingHewlett-Packard
2021-08-24 22:37 – 2018-05-31 16:26 – 000000000 ____D C:ProgramDataHewlett-Packard
2021-08-24 22:37 – 2018-05-31 16:26 – 000000000 ____D C:Program Files (x86)Hewlett-Packard
2021-08-23 07:22 – 2021-05-04 15:45 – 011697056 _____ (ESET) C:UsersOwnerDownloadsesetonlinescanner.exe
2021-08-22 16:03 – 2021-03-23 06:13 – 001709070 _____ C:WINDOWSsystem32PerfStringBackup.INI
2021-08-22 07:38 – 2019-12-07 06:33 – 000262144 _____ C:WINDOWSsystem32configBBI
2021-08-21 21:38 – 2021-05-03 13:42 – 000000000 ____D C:UsersOwnerDesktopNew folder (2)
2021-08-21 21:28 – 2021-03-19 10:43 – 000001107 _____ C:UsersPublicDesktopiMazing HEIC Converter.lnk
2021-08-21 21:28 – 2021-03-19 10:43 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsiMazing HEIC Converter
2021-08-17 06:25 – 2021-03-23 06:25 – 000000000 ____D C:WINDOWSsystem32TasksNCH Software
2021-08-17 01:22 – 2020-09-02 04:01 – 000486728 _____ (Microsoft Corporation) C:WINDOWSsystem32QualityUpdateAssistant.dll
2021-08-17 01:22 – 2020-02-19 08:40 – 000740168 _____ (Microsoft Corporation) C:WINDOWSsystem32sedplugins.dll
2021-08-16 01:59 – 2021-04-12 19:35 – 000003386 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineCore1d71fc04447c9f5
2021-08-16 01:59 – 2021-03-23 06:25 – 000003480 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineUA
==================== Files in the root of some directories ========
2018-06-30 12:58 – 2014-12-25 23:33 – 366402764 _____ () C:Program FilesImage-Line.FL.Studio.Producer.Edition.v11.1.0.R2.Incl.Keygen-R2R.rar
2020-05-27 00:23 – 2021-09-05 22:25 – 000262123 _____ () C:UsersOwnerAppDataRoamingError.log
2019-01-11 14:34 – 2019-01-11 14:34 – 000000078 _____ () C:UsersOwnerAppDataRoamingIC.dat
2018-05-06 20:25 – 2021-02-14 15:15 – 000036352 _____ () C:UsersOwnerAppDataLocalDCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-11-29 19:24 – 2019-11-29 19:24 – 000000356 _____ () C:UsersOwnerAppDataLocalkarboncalligraphyrc
2019-10-24 19:05 – 2019-11-29 19:26 – 000089005 _____ () C:UsersOwnerAppDataLocalkrita.log
2019-11-29 19:26 – 2019-11-29 19:26 – 000000068 _____ () C:UsersOwnerAppDataLocalkritadisplayrc
2019-10-24 19:06 – 2019-11-29 19:26 – 000016863 _____ () C:UsersOwnerAppDataLocalkritarc
2018-07-07 23:21 – 2018-07-07 23:21 – 000001469 _____ () C:UsersOwnerAppDataLocalrecently-used.xbel
2018-05-06 22:47 – 2018-05-26 21:57 – 000007597 _____ () C:UsersOwnerAppDataLocalresmon.resmoncfg
2018-05-17 09:22 – 2018-05-17 09:22 – 000000003 _____ () C:UsersOwnerAppDataLocalwbem.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
ADDITION LOG
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-09-2021
Ran by Owner (13-09-2021 16:15:01)
Running from C:UsersOwnerDownloads
Windows 10 Pro Version 20H2 19042.1165 (X64) (2021-03-23 08:56:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-528068570-1047697352-1524386410-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-528068570-1047697352-1524386410-503 – Limited – Disabled)
Guest (S-1-5-21-528068570-1047697352-1524386410-501 – Limited – Disabled)
nubiw (S-1-5-21-528068570-1047697352-1524386410-1002 – Limited – Disabled)
Owner (S-1-5-21-528068570-1047697352-1524386410-1001 – Administrator – Enabled) => C:UsersOwner
WDAGUtilityAccount (S-1-5-21-528068570-1047697352-1524386410-504 – Limited – Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46
AS: Windows Defender (Enabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC (HKLM-x32…AC76BA86-7AD7-1033-7B44-AC0F074E4100) (Version: 21.005.20060 – Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32…Adobe Flash Player NPAPI) (Version: 32.0.0.433 – Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32…Adobe Flash Player PPAPI) (Version: 32.0.0.330 – Adobe)
AOMEI Partition Assistant Standard Edition 8.8 (HKLM-x32…