Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28-04-2021
Exécuté par MOI (administrateur) sur LORDI-0HQCRH72T (HP HP ProBook x360 11 G5 EE) (03-05-2021 20:25:24)
Exécuté depuis C:\Users\MOI\Desktop
Profils chargés: MOI
Platform: Windows 10 Pro Education Version 1909 18363.1500 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\ProgramData\{1D7BD5EC-1EA9-44E8-9114-08DDFBD26AB9}\33A2E4F0.exe <2>
() [Fichier non signé] C:\Users\MOI\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(DearMob, Inc.) [Fichier non signé] C:\Windows\PublicGaming\prun.exe
(Elaborate Bytes AG) [Fichier non signé] C:\Windows\PublicGaming\appsetup.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(geek software GmbH -> geek software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_9bddac799ceb76f6\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_597f56ef379e5075\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_597f56ef379e5075\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_597f56ef379e5075\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_597f56ef379e5075\x64\SysInfoCap.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPInteractiveLight_1.1.0.0_x64__v10z8vjag6ke6\HP.InteractiveLight.StoreApp.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3282.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3282.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\dptf_helper.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\GfxDownloadWrapper.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_caa7639078e34732\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_03d5d2fd71179ae5\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_03d5d2fd71179ae5\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\MOI\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.52.13001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.52.13001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotification.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1497_none_16f5d4b32a2ef7c6\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe <3>
(Sistem) [Fichier non signé] C:\ProgramData\Windows Host\Windows Host.exe
(Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe [1223224 2021-01-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [OrdiRegionStartOnce] => C:\Windows\OrdiRegion\OrdiRegionAccueil\OrdiRegionStartOnce.bat [219 2020-04-24] () [Fichier non signé]
HKLM\...\Run: [{7C046CF8-759C-4301-A95C-2D5FD8AD23DE}] => C:\ProgramData\{1D7BD5EC-1EA9-44E8-9114-08DDFBD26AB9}\33A2E4F0.exe [372736 2021-04-29] () [Fichier non signé]
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [{7C046CF8-759C-4301-A95C-2D5FD8AD23DE}] => C:\ProgramData\{1D7BD5EC-1EA9-44E8-9114-08DDFBD26AB9}\33A2E4F0.exe [372736 2021-04-29] () [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2522260060-2712000912-4139239502-1003\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33013728 2021-04-27] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2522260060-2712000912-4139239502-1003\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-04-12] (Valve -> Valve Corporation)
HKU\S-1-5-21-2522260060-2712000912-4139239502-1003\...\Run: [Prun] => C:\windows\PublicGaming\prun.exe [708023808 2021-04-23] (DearMob, Inc.) [Fichier non signé]
HKU\S-1-5-21-2522260060-2712000912-4139239502-1003\...\Run: [Windows Host] => C:\ProgramData\Windows Host\Windows Host.exe [99344 2021-04-27] (Sistem) [Fichier non signé] <==== ATTENTION
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.93\Installer\chrmstp.exe [2021-04-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\90.1.23.75\Installer\chrmstp.exe [2021-04-29] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MicrosoftEdgeCPS.lnk [2021-05-03]
ShortcutTarget: MicrosoftEdgeCPS.lnk -> C:\Users\MOI\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe () [Fichier non signé]
Startup: C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartClock.lnk [2021-04-23] <==== ATTENTION
ShortcutTarget: SmartClock.lnk -> C:\Users\MOI\AppData\Roaming\Smart Clock\SmartClock.exe (Pas de fichier)
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {01CD232E-AE4E-4AF2-96C0-F09EAE7C18CD} - System32\Tasks\NCH Software\VideoPadCacheDeleteAll => C:\Program Files\WindowsApps\NCHSoftware.VideoPadVideoEditorFree_10.2.6.0_x86__7kedsbyvzns34\videopad.exe
Task: {132BC9D7-8835-4433-97FE-8BF3348936F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-23] (Google LLC -> Google LLC)
Task: {2E96F56A-22B3-4C95-AFDE-CBED60F44B85} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Lhvwbvwzoept => C:\windows\Microsoft.NET\Framework\v4.0.30319\regsvcs.exe "C:\Program Files (x86)\SourcesStarted\MohejExvironment\Xjdws_UBH223.dll"
Task: {53D93E81-4791-42CC-9AFE-8E13CB4E92D0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-23] (Google LLC -> Google LLC)
Task: {5D17ABBE-A9D8-4627-BF74-390D6723B9EB} - \OneDrive Standalone Update Task-S-1-5-21-2522260060-2712000912-4139239502-1001 -> Pas de fichier <==== ATTENTION
Task: {91FB4EDD-9D88-4A9C-9556-09AD271DBFB9} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162384 2021-02-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {95A81B50-2A00-4D1A-9C15-BDC9C1AD86A2} - System32\Tasks\CTOptimizer => C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\CryptoTabUpdate\CTOptimizer.exe [2146776 2021-02-03] (BitTorrent Inc -> BitTorrent Inc.)
Task: {9BEF9841-544B-4464-97C1-44DABEC9BAC6} - System32\Tasks\Smart Clock => C:\Users\MOI\AppData\Roaming\Smart Clock\SmartClock.exe
Task: {A8AF39F7-64EC-4B48-8D5D-459B84BDC0E0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [555640 2021-04-16] (HP Inc. -> HP Inc.)
Task: {B4A8A918-6453-426B-A19D-E31A0D07F51A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B82524A4-14BB-40D0-9DCA-96BD1935ED42} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [135000 2020-10-06] (HP Inc. -> HP Inc.)
Task: {BC0D827D-9B54-45F8-9F31-849DB3CFC369} - System32\Tasks\Firefox Default Browser Agent 1A1B719DF6BDA809 => C:\Users\MOI\AppData\Roaming\avfacad [280576 2020-09-20] () [Fichier non signé] [Fichier en cours d'utilisation]
Task: {CAEF2F7F-9842-4A21-B426-062866286C1C} - System32\Tasks\Firefox Default Browser Agent 7DC9C154FECA83EB => C:\Users\MOI\AppData\Roaming\refacad [237568 2020-09-20] () [Fichier non signé] [Fichier en cours d'utilisation]
Task: {D19C63B9-0BFB-4AE3-A992-AB2B51D47277} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D392FDF6-A2AB-4A90-8B7A-CCF77EFB5D0B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-04-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {D4445183-6925-4CF6-946D-0BC3783697F7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {DE815D1B-EC5E-4E54-8D5D-3DD0BF01F2FF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E2D5B945-62A2-4BB5-A605-CE7AAB6D3BBE} - System32\Tasks\Activation Recovery => C:\Windows\OrdiRegion\OrdiRegionAccueil\EnableWinRe.bat [6927 2020-03-04] () [Fichier non signé]
Task: {F740DE63-1385-45AE-A513-7F5B18B6CFE6} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162384 2021-02-14] (Brave Software, Inc. -> BraveSoftware Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\windows\Tasks\CTOptimizer.job => C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\CryptoTabUpdate\CTOptimizer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{08da77eb-fbc1-4467-bfee-3156a0d8b9c6}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{68aa56ba-284b-4f57-8655-77b0d327da1c}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ac7b3c8d-5391-45a1-a198-0e852dee675e}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\MOI\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-30]

FireFox:
========
FF DefaultProfile: 42dpij7p.default
FF ProfilePath: C:\Users\MOI\AppData\Roaming\Mozilla\Firefox\Profiles\42dpij7p.default [2021-05-01]
FF ProfilePath: C:\Users\MOI\AppData\Roaming\Mozilla\Firefox\Profiles\6wv6xxy9.default-release [2021-05-01]
FF user.js: detected! => C:\Users\MOI\AppData\Roaming\Mozilla\Firefox\Profiles\6wv6xxy9.default-release\user.js [2021-04-29]
FF Extension: (Greasemonkey) - C:\Users\MOI\AppData\Roaming\Mozilla\Firefox\Profiles\6wv6xxy9.default-release\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2021-04-29]
FF Extension: (6053C6) - C:\Users\MOI\AppData\Roaming\Mozilla\Firefox\Profiles\6wv6xxy9.default-release\Extensions\{eac68ce4-0b9c-4c71-8a07-93c56283af5d}.xpi [2021-04-30]
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-21] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default [2021-05-03]
CHR Notifications: Default -> hxxps://discord.com; hxxps://rocket-league.com; hxxps://www.twitch.tv
CHR HomePage: Default -> hxxps://sitejeune.laregion.fr/
CHR StartupUrls: Default -> "hxxps://sitejeune.laregion.fr/"
CHR Extension: (Slides) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-20]
CHR Extension: (Docs) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-20]
CHR Extension: (Google Drive) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-20]
CHR Extension: (Naruto Uzumaki Sasuke Uchiha) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\eagdcbbhncflgccnlfdojllcgljocmco [2020-09-29]
CHR Extension: (Sheets) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-22]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-01]
CHR Extension: (d8yI+Hf7rX) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jadflfollpojhpbanhbhkhdglakmdehp [2020-11-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Gmail) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\MOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-23]

Brave:
=======
BRA Profile: C:\Users\MOI\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-05-01]
BRA Session Restore: Default -> est activé.
BRA Extension: (Brave Local Data Files Updater) - C:\Users\MOI\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-02-14]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\MOI\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-05-01]
BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\MOI\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2021-05-01]
BRA Extension: (Brave User Model Installer) - C:\Users\MOI\AppData\Local\BraveSoftware\Brave-Browser\User Data\hbejpnagkgeeohiojniljejpdpojmfdp [2021-03-29]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\MOI\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-02-14]
BRA Extension: (Brave NTP sponsored images) - C:\Users\MOI\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-05-01]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\MOI\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-05-01]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162384 2021-02-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162384 2021-02-14] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_597f56ef379e5075\x64\AppHelperCap.exe [731160 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_597f56ef379e5075\x64\DiagsCap.exe [728584 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_597f56ef379e5075\x64\NetworkCap.exe [728608 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_597f56ef379e5075\x64\SysInfoCap.exe [729632 2021-03-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_9bddac799ceb76f6\x64\TouchpointAnalyticsClientService.exe [480304 2021-03-04] (HP Inc. -> HP Inc.)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
R2 pubgame-updater; C:\windows\PublicGaming\appsetup.exe [723240448 2021-04-23] (Elaborate Bytes AG) [Fichier non signé]
R2 RtkAudioUniversalService; C:\windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe [1223224 2021-01-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6488304 2021-04-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 HotKeyServiceUWP; %SystemRoot%\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_6743249544e6fa49\HotKeyServiceUWP.exe [X]
S2 LanWlanWwanSwitchingServiceUWP; %SystemRoot%\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_6743249544e6fa49\LanWlanWwanSwitchingServiceUWP.exe [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-10-02] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
S0 SmartPqi; C:\windows\System32\drivers\SmartPqi.sys [244856 2017-10-03] (Microsemi Storage Solutions Inc. -> Microsemi Corporation.)
S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [49560 2021-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [421088 2021-04-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-11] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-05-03 20:25 - 2021-05-03 20:27 - 000023603 _____ C:\Users\MOI\Desktop\FRST.txt
2021-05-03 20:24 - 2021-05-03 20:24 - 000003712 _____ C:\windows\system32\Tasks\Firefox Default Browser Agent 7DC9C154FECA83EB
2021-05-03 20:24 - 2021-05-03 20:24 - 000003712 _____ C:\windows\system32\Tasks\Firefox Default Browser Agent 1A1B719DF6BDA809
2021-05-03 15:50 - 2021-05-03 15:50 - 006211766 _____ C:\Users\MOI\Downloads\114 T8 El pasapalabra.wav
2021-05-03 15:40 - 2021-05-03 15:40 - 000091408 _____ C:\Users\MOI\Downloads\Méthode Question problématisée.pdf
2021-05-03 15:39 - 2021-05-03 20:25 - 000000000 ___HD C:\Users\MOI\AppData\Roaming\EdgeCP
2021-05-01 15:33 - 2021-05-01 15:39 - 736750167 _____ C:\Users\MOI\Downloads\CymaticsOracleSamplePack-V2-z3x (1).zip
2021-05-01 13:15 - 2021-05-01 13:17 - 000005019 _____ C:\Users\MOI\Desktop\Fixlog.txt
2021-05-01 11:04 - 2021-05-03 20:26 - 000000000 ____D C:\FRST
2021-05-01 11:01 - 2021-05-01 11:01 - 002298368 _____ (Farbar) C:\Users\MOI\Desktop\FRST64.exe
2021-05-01 10:03 - 2021-05-01 10:03 - 000003376 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2522260060-2712000912-4139239502-1003
2021-05-01 10:03 - 2021-05-01 10:03 - 000002406 _____ C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-01 07:31 - 2021-05-01 07:31 - 000138240 _____ C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\GveMnyEU2.exe
2021-04-30 23:22 - 2021-04-30 23:23 - 000000000 ____D C:\Users\MOI\Downloads\CymaticsTrapStarterPack-V1-t5r
2021-04-30 11:43 - 2021-04-10 10:31 - 736738823 _____ C:\Users\MOI\Downloads\CymaticsOracleSamplePack-V2-z3x.zip
2021-04-30 11:41 - 2021-04-30 13:52 - 000000456 ____H C:\windows\Tasks\CTOptimizer.job
2021-04-30 11:41 - 2021-04-30 11:41 - 000003440 _____ C:\windows\system32\Tasks\CTOptimizer
2021-04-30 11:41 - 2021-04-30 11:41 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\CryptoTabUpdate
2021-04-30 11:41 - 2021-04-30 11:41 - 000000000 ____D C:\Users\MOI\AppData\Local\CryptoCompany
2021-04-30 09:48 - 2021-05-01 13:17 - 000000000 ____D C:\Users\MOI\AppData\LocalLow\Temp
2021-04-30 09:39 - 2021-04-30 09:39 - 000000000 ____D C:\windows\system32\Tasks\Mozilla
2021-04-30 09:37 - 2021-04-30 09:37 - 000556755 _____ C:\Users\MOI\Downloads\suite du chapitre 3 26 avril.pdf
2021-04-30 09:36 - 2021-04-30 09:38 - 235414932 _____ C:\Users\MOI\Downloads\CymaticsTrapStarterPack-V1-t5r.zip
2021-04-30 09:29 - 2021-04-30 09:30 - 000000000 ____D C:\ProgramData\WGCIVAI1UZRXZZSHBHKGS2H03
2021-04-29 19:39 - 2021-04-29 19:39 - 000951584 _____ (Payeer-NDA) C:\Users\MOI\AppData\Roaming\8548409.exe
2021-04-29 19:39 - 2021-04-29 19:39 - 000136720 _____ (hdfghdfhdfgdfg) C:\Users\MOI\AppData\Roaming\8015710.exe
2021-04-29 19:39 - 2021-04-29 19:39 - 000083984 _____ (Sistem) C:\Users\MOI\AppData\Roaming\2999513.exe
2021-04-29 19:34 - 2021-04-29 19:34 - 000951584 _____ (Payeer-NDA) C:\Users\MOI\AppData\Roaming\6904116.exe
2021-04-29 19:34 - 2021-04-29 19:34 - 000136720 _____ (hdfghdfhdfgdfg) C:\Users\MOI\AppData\Roaming\1241857.exe
2021-04-29 19:34 - 2021-04-29 19:34 - 000083984 _____ (Sistem) C:\Users\MOI\AppData\Roaming\7959936.exe
2021-04-29 10:15 - 2021-04-29 10:15 - 000000000 ____D C:\ProgramData\{1D7BD5EC-1EA9-44E8-9114-08DDFBD26AB9}
2021-04-29 09:54 - 2021-04-29 09:54 - 000000105 ____H C:\Users\MOI\Downloads\.~lock.GUARDIOLA.docx#
2021-04-29 08:39 - 2021-04-29 08:39 - 000000000 ____D C:\Users\MOI\AppData\LocalLow\Oracle
2021-04-28 19:28 - 2021-04-28 19:28 - 000032768 _____ C:\Users\MOI\AppData\Roaming\1619630907956-shm
2021-04-28 19:28 - 2021-04-28 19:28 - 000000000 _____ C:\Users\MOI\AppData\Roaming\1619630907956-wal
2021-04-27 20:26 - 2021-04-27 20:27 - 000000000 ____D C:\ProgramData\MH4J58K99SZ2RNQI74FQ3GKS6
2021-04-27 15:05 - 2021-04-27 15:05 - 000951584 _____ (Payeer-NDA) C:\Users\MOI\AppData\Roaming\8964799.exe
2021-04-27 15:05 - 2021-04-27 15:05 - 000129040 _____ (hdfghdfhdfgdfg) C:\Users\MOI\AppData\Roaming\4585086.exe
2021-04-27 15:05 - 2021-04-27 15:05 - 000099344 _____ (Sistem) C:\Users\MOI\AppData\Roaming\6452538.exe
2021-04-27 15:05 - 2021-04-27 15:05 - 000000000 ___HD C:\ProgramData\Windows Host
2021-04-27 15:05 - 2021-04-27 15:05 - 000000000 ____D C:\Users\MOI\AppData\Roaming\CoverSearchTool
2021-04-25 20:41 - 2021-04-25 20:43 - 000000000 ____D C:\Users\MOI\AppData\Roaming\XkhcPoUSquhmmwkpiqevsTMaaECRFZXbMcWIjRruDyeTfRBoMdTBaiUtnVelFejqo
2021-04-25 11:43 - 2021-04-25 11:43 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-04-25 11:19 - 2021-04-25 11:19 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Bisut
2021-04-25 11:17 - 2021-04-25 12:26 - 000000000 ____D C:\Users\MOI\AppData\Roaming\LQiwABuCbNQPjdWWDQMbzUtxNtacglhixyXdlAHhUCrkbCzBrSzhilL
2021-04-23 21:56 - 2021-04-26 08:22 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Smart Clock
2021-04-23 21:56 - 2021-04-23 21:56 - 000003082 _____ C:\windows\system32\Tasks\Smart Clock
2021-04-23 21:56 - 2021-04-23 21:56 - 000000000 ____D C:\Users\MOI\AppData\Roaming\IvOyQwkQbLuJoMKPtBkDDHoWLlKJfpkKEsadGqQPocJvcIveqPYNFpfqgSzFdCBhAvtRxxprLvxiYLBrOIImkbyxwaeNHlnGUcVYDFHGGUwpPo
2021-04-23 21:56 - 2021-04-23 21:56 - 000000000 ____D C:\ProgramData\Posse
2021-04-23 21:53 - 2021-04-23 21:53 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Bisuntr
2021-04-23 21:52 - 2021-04-23 21:56 - 000000000 ____D C:\Users\MOI\AppData\Roaming\OQSCbqHsnJDpzfVbTytabpYRwFNvRnQXOxdhaJnXqJwsRaPWWehUboIFRw
2021-04-23 21:52 - 2021-04-23 21:52 - 000000000 ____D C:\ProgramData\ALEWHR430ZJC21YAEX9VI12L0
2021-04-23 21:51 - 2021-04-23 21:52 - 000000000 ____D C:\windows\PublicGaming
2021-04-23 21:46 - 2021-04-23 21:46 - 000000000 ____D C:\Users\MOI\Downloads\40b6e2c0__izotope-vocalsy
2021-04-23 21:37 - 2021-04-23 21:37 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2021-04-23 21:36 - 2021-04-23 21:41 - 000000000 ____D C:\Users\MOI\AppData\Local\JDownloader 2.0
2021-04-22 13:19 - 2021-04-22 13:19 - 000510166 _____ C:\Users\MOI\Downloads\Explication de texte 3.pdf
2021-04-19 10:20 - 2021-04-19 10:20 - 000192672 _____ C:\Users\MOI\Downloads\Temps.pdf
2021-04-18 13:41 - 2021-04-18 13:41 - 000001945 _____ C:\Users\MOI\Downloads\sfilter.zip
2021-04-18 13:35 - 2021-04-18 13:35 - 003584000 _____ C:\Users\MOI\Downloads\pfilter.dll
2021-04-18 13:16 - 2021-04-18 13:17 - 005798695 _____ C:\Users\MOI\Downloads\NaiveLPF_06 (1).zip
2021-04-18 12:25 - 2021-04-18 12:25 - 000004584 _____ C:\Users\MOI\Downloads\NaiveLPF_06.zip
2021-04-14 19:28 - 2021-04-14 19:28 - 000000000 ____D C:\Users\MOI\AppData\Local\Sharpened_Productions
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth9.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth8.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth7.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth6.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth5.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth4.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth3.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth2.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth18.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth17.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth16.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth15.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth12.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth11.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth10.bin
2021-04-14 17:37 - 2021-04-14 17:37 - 000000315 _____ C:\windows\system32\DrtmAuth1.bin
2021-04-14 17:36 - 2021-04-14 17:36 - 001758672 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2021-04-14 17:36 - 2021-04-14 17:36 - 000232760 _____ C:\windows\system32\containerdevicemanagement.dll
2021-04-13 15:12 - 2021-04-13 15:12 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Maize Sampler Player
2021-04-12 09:55 - 2021-04-12 09:55 - 001648168 _____ (Dream Vortex Studio ) C:\Users\MOI\Downloads\Guitar.exe
2021-04-11 17:31 - 2021-04-11 17:31 - 007600164 _____ C:\Users\MOI\Downloads\Dark projet.avi
2021-04-11 17:30 - 2021-04-11 17:30 - 003850455 _____ C:\Users\MOI\Downloads\Dark_projet.mp4
2021-04-11 17:17 - 2021-04-11 17:17 - 000000000 ____D C:\Users\MOI\Suite NCH Software
2021-04-11 17:16 - 2021-04-11 17:16 - 000001264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad - Logiciel de montage vidéo.lnk
2021-04-11 17:02 - 2021-04-11 17:16 - 000000000 ____D C:\Program Files (x86)\NCH Software
2021-04-11 17:02 - 2021-04-11 17:02 - 003100696 _____ (NCH Software) C:\Users\MOI\Downloads\DebutCaptureVideo_FR.exe
2021-04-11 17:02 - 2021-04-11 17:02 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH.lnk
2021-04-11 17:02 - 2021-04-11 17:02 - 000001220 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Debut - Logiciel de capture vidéo.lnk
2021-04-11 11:07 - 2021-04-11 11:07 - 000000219 _____ C:\Users\MOI\Desktop\Portal 2.url
2021-04-10 10:57 - 2021-04-10 10:57 - 000000000 ____D C:\Users\MOI\AppData\Roaming\iZotope
2021-04-10 10:57 - 2021-04-10 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iZotope
2021-04-10 10:56 - 2021-04-10 10:56 - 000000000 ____D C:\Program Files\Steinberg
2021-04-10 10:56 - 2021-04-10 10:56 - 000000000 ____D C:\Program Files\iZotope
2021-04-10 10:55 - 2021-04-10 10:55 - 044308864 _____ (iZotope, Inc.) C:\Users\MOI\Downloads\iZotope_Vinyl_v1_9_0.exe
2021-04-08 15:44 - 2021-04-08 15:44 - 000315082 _____ C:\Users\MOI\Downloads\TP -base plaisir_distanciel.pdf
2021-04-08 15:41 - 2021-04-08 15:41 - 000278774 _____ C:\Users\MOI\Downloads\Doc 1 TP -base plaisir.pdf
2021-04-07 15:08 - 2021-04-07 15:08 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Cymatics
2021-04-07 15:07 - 2021-04-07 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cymatics
2021-04-07 15:06 - 2021-04-10 10:56 - 000000000 ____D C:\Program Files\Common Files\VST3
2021-04-07 15:06 - 2021-04-07 15:06 - 000000000 ____D C:\Program Files\Common Files\Avid
2021-04-07 15:04 - 2021-04-07 15:04 - 000000000 ____D C:\Users\MOI\Downloads\Cymatics Diablo Lite v1.1.0 Windows
2021-04-07 14:38 - 2021-04-07 14:39 - 157102768 _____ C:\Users\MOI\Downloads\Cymatics Diablo Lite v1.1.0 Windows.zip
2021-04-07 14:35 - 2021-04-07 14:36 - 059847487 _____ C:\Users\MOI\Downloads\Non confirmé 910766.crdownload
2021-04-07 13:16 - 2021-04-07 13:16 - 000350930 _____ C:\Users\MOI\Downloads\hard-hitter-808-sub-bass.wav
2021-04-07 11:47 - 2021-04-07 11:47 - 000387858 _____ C:\Users\MOI\Downloads\saw-synth.wav
2021-04-07 11:45 - 2021-04-07 11:45 - 000661166 _____ C:\Users\MOI\Downloads\synthstab-001_C.wav
2021-04-07 10:44 - 2021-04-07 10:44 - 000352918 _____ C:\Users\MOI\Downloads\bell-key-one-shot-soft-hit_C_minor.wav
2021-04-07 10:44 - 2021-04-07 10:44 - 000352918 _____ C:\Users\MOI\Downloads\bell-key-one-shot-high-shiny_C_major.wav
2021-04-06 17:07 - 2021-04-06 19:28 - 000001747 _____ C:\Users\MOI\Downloads\EightOEight.CSPM.MasterKit.zip
2021-04-06 16:52 - 2021-04-06 16:53 - 007062013 _____ C:\Users\MOI\Downloads\camelcrusher-win_mac (1).zip
2021-04-06 16:38 - 2021-04-11 17:22 - 000000000 ____D C:\Users\MOI\Documents\FL STUDIO
2021-04-06 16:10 - 2021-04-13 15:11 - 000000000 ____D C:\Program Files\VSTPlugins
2021-04-06 16:10 - 2021-04-06 16:10 - 000000000 ____D C:\Program Files\Camel Audio
2021-04-06 15:58 - 2021-04-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camel Audio
2021-04-06 15:58 - 2021-04-06 15:58 - 000000000 ____D C:\ProgramData\Camel Audio
2021-04-06 15:58 - 2021-04-06 15:58 - 000000000 ____D C:\Program Files (x86)\Camel Audio
2021-04-06 15:26 - 2021-04-06 15:28 - 447086368 _____ C:\Users\MOI\Downloads\XSUB FREE VST-MAC.zip
2021-04-06 14:59 - 2021-04-06 15:34 - 000000212 _____ C:\Users\MOI\Downloads\camelcrusher-win_mac.zip
2021-04-06 13:47 - 2021-04-06 13:47 - 000110320 _____ C:\Users\MOI\Downloads\Cours histoire 5 avril 2de3.pdf
2021-04-06 12:56 - 2021-04-06 12:56 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Modrich
2021-04-06 12:54 - 2021-04-06 12:58 - 000000000 ____D C:\Users\MOI\AppData\Roaming\ClLnivsWaSr
2021-04-06 12:52 - 2021-04-06 12:52 - 001939018 _____ C:\Users\MOI\Downloads\606c3d5f__Nexus-VST-344-C.zip
2021-04-06 11:29 - 2021-04-06 11:29 - 000659418 _____ C:\Users\MOI\Downloads\PDT distanciel 2de3.pdf
2021-04-06 00:07 - 2021-04-06 00:13 - 000000022 _____ C:\Users\MOI\Downloads\Trap Bells Sample Pack by Ihaksi.zip
2021-04-05 18:04 - 2021-04-06 16:15 - 000000000 ____D C:\Users\MOI\Documents\Image-Line
2021-04-05 18:02 - 2021-04-06 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2021-04-05 18:02 - 2021-04-06 15:58 - 000000000 ____D C:\Program Files (x86)\VstPlugins
2021-04-05 18:02 - 2021-04-05 18:02 - 000002134 _____ C:\Users\Public\Desktop\FL Studio 20.lnk
2021-04-05 18:02 - 2021-04-05 18:02 - 000002134 _____ C:\ProgramData\Desktop\FL Studio 20.lnk
2021-04-05 18:02 - 2021-04-05 18:02 - 000001242 _____ C:\Users\MOI\Desktop\ASIO4ALL v2 Instruction Manual.lnk
2021-04-05 18:02 - 2021-04-05 18:02 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2021-04-05 18:02 - 2021-04-05 18:02 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2021-04-05 18:02 - 2021-04-05 18:02 - 000000000 ____D C:\Program Files\Common Files\VST2
2021-04-05 18:02 - 2021-04-05 18:02 - 000000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2021-04-05 17:57 - 2021-04-05 18:03 - 000000000 ____D C:\Program Files (x86)\Image-Line

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-05-03 20:26 - 2020-12-30 17:00 - 000000000 ____D C:\Users\MOI\AppData\Local\CrashDumps
2021-05-03 20:24 - 2021-03-26 12:21 - 000000000 ____D C:\Program Files (x86)\Steam
2021-05-03 20:23 - 2020-09-17 20:34 - 000000000 __SHD C:\Users\MOI\IntelGraphicsProfiles
2021-05-03 20:23 - 2020-05-24 02:39 - 000000006 ____H C:\windows\Tasks\SA.DAT
2021-05-03 20:23 - 2020-05-24 02:39 - 000000000 ____D C:\windows\system32\SleepStudy
2021-05-03 20:23 - 2020-05-24 02:39 - 000000000 ____D C:\Intel
2021-05-03 20:23 - 2019-03-19 06:52 - 000000000 ____D C:\windows\Registration
2021-05-03 20:23 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-03 20:07 - 2019-03-19 06:50 - 000000000 ____D C:\windows\INF
2021-05-03 15:43 - 2020-05-24 02:48 - 001772410 _____ C:\windows\system32\PerfStringBackup.INI
2021-05-03 15:43 - 2019-11-05 05:10 - 000794900 _____ C:\windows\system32\perfh00C.dat
2021-05-03 15:43 - 2019-11-05 05:10 - 000150916 _____ C:\windows\system32\perfc00C.dat
2021-05-03 15:41 - 2019-03-19 06:52 - 000000000 ____D C:\windows\AppReadiness
2021-05-03 15:36 - 2019-03-19 06:52 - 000000000 ____D C:\windows\LiveKernelReports
2021-05-02 13:01 - 2020-09-17 20:34 - 000000000 ____D C:\Users\MOI
2021-05-01 18:20 - 2020-05-23 18:41 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-01 13:24 - 2019-03-19 06:37 - 001048576 _____ C:\windows\system32\config\BBI
2021-05-01 11:00 - 2020-09-17 20:34 - 000000000 ____D C:\Users\MOI\AppData\Local\ConnectedDevicesPlatform
2021-05-01 10:21 - 2020-05-23 18:38 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-01 10:19 - 2020-09-17 20:34 - 000000000 ____D C:\Users\MOI\AppData\LocalLow\Mozilla
2021-05-01 10:03 - 2020-09-17 20:34 - 000000000 ___RD C:\Users\MOI\OneDrive
2021-04-30 22:11 - 2020-05-24 02:53 - 000000000 ____D C:\ProgramData\Packages
2021-04-30 22:11 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-30 13:52 - 2021-03-16 15:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-04-30 13:52 - 2020-09-19 12:52 - 000000000 ____D C:\Users\MOI\AppData\Local\PlaceholderTileLogoFolder
2021-04-30 13:52 - 2020-05-23 18:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-04-30 11:32 - 2020-09-17 20:34 - 000000000 ____D C:\Users\MOI\AppData\Local\Packages
2021-04-30 11:30 - 2020-10-30 15:09 - 000000000 ____D C:\Users\MOI\AppData\Local\Bluestacks
2021-04-30 09:48 - 2020-10-02 11:19 - 000000000 ____D C:\Users\MOI\Documents\SES
2021-04-30 09:39 - 2020-05-23 18:38 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-04-29 13:53 - 2021-02-14 12:16 - 000002379 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-04-29 13:53 - 2021-02-14 12:16 - 000002338 _____ C:\Users\Public\Desktop\Brave.lnk
2021-04-29 13:53 - 2021-02-14 12:16 - 000002338 _____ C:\ProgramData\Desktop\Brave.lnk
2021-04-26 11:09 - 2020-11-12 20:41 - 001695184 _____ (Microsoft Corporation) C:\windows\system32\xgameruntime.dll
2021-04-26 11:09 - 2020-11-12 20:41 - 000176592 _____ (Microsoft Corporation) C:\windows\system32\gamingservicesproxy.dll
2021-04-26 11:09 - 2020-11-12 20:41 - 000091136 _____ (Microsoft Corporation) C:\windows\system32\gamingtcuihelpers.dll
2021-04-26 11:08 - 2020-11-12 20:41 - 000236472 _____ (Microsoft Corporation) C:\windows\system32\gameplatformservices.dll
2021-04-26 11:08 - 2020-11-12 20:41 - 000159672 _____ (Microsoft Corporation) C:\windows\system32\gameconfighelper.dll
2021-04-26 11:08 - 2020-11-12 20:41 - 000038328 _____ (Microsoft Corporation) C:\windows\system32\gamemodcontrol.exe
2021-04-25 11:15 - 2020-05-23 18:41 - 000003634 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-25 11:15 - 2020-05-23 18:41 - 000003510 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-04-22 13:22 - 2020-05-23 18:18 - 000000000 ____D C:\windows\system32\Tasks\Hewlett-Packard
2021-04-21 15:58 - 2020-05-23 18:37 - 000003588 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-21 15:58 - 2020-05-23 18:37 - 000003464 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-18 17:02 - 2020-10-15 08:10 - 000000000 ____D C:\windows\system32\Tasks\NCH Software
2021-04-15 18:09 - 2020-11-07 12:36 - 000000000 ____D C:\Users\MOI\AppData\Local\ElevatedDiagnostics
2021-04-15 00:09 - 2020-09-17 20:34 - 000000000 ___RD C:\Users\MOI\3D Objects
2021-04-15 00:09 - 2020-05-24 02:48 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-04-15 00:07 - 2020-05-24 02:39 - 000566256 _____ C:\windows\system32\FNTCACHE.DAT
2021-04-15 00:06 - 2019-11-05 07:01 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ___SD C:\windows\system32\DiagSvcs
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ___RD C:\windows\ImmersiveControlPanel
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\SystemResources
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\system32\oobe
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\system32\lv-LV
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\system32\lt-LT
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\system32\et-EE
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\system32\es-MX
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\ShellExperiences
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\Provisioning
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\PolicyDefinitions
2021-04-15 00:06 - 2019-03-19 06:52 - 000000000 ____D C:\windows\bcastdvr
2021-04-14 17:46 - 2020-09-24 19:30 - 000000000 ____D C:\windows\system32\MRT
2021-04-14 17:41 - 2020-09-24 19:30 - 131963968 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2021-04-14 17:41 - 2019-03-19 06:37 - 000000000 ____D C:\windows\CbsTemp
2021-04-13 10:46 - 2020-09-17 20:34 - 000000000 ____D C:\Users\MOI\AppData\Roaming\vlc
2021-04-12 09:55 - 2020-09-17 20:34 - 000000000 ____D C:\Users\MOI\AppData\Local\VirtualStore
2021-04-11 17:04 - 2020-10-14 13:10 - 000000000 ____D C:\Users\MOI\AppData\Roaming\NCH Software
2021-04-11 17:02 - 2020-10-14 13:10 - 000000000 ____D C:\ProgramData\NCH Software
2021-04-11 11:11 - 2020-05-24 02:39 - 000000000 ____D C:\windows\system32\Drivers\wd
2021-04-11 11:07 - 2021-04-01 20:33 - 000000000 ____D C:\Users\MOI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-04-10 10:57 - 2020-05-24 02:55 - 000000000 ____D C:\ProgramData\Package Cache
2021-04-08 16:55 - 2020-11-25 16:50 - 000000000 ____D C:\Users\MOI\Documents\SVT
2021-04-06 16:19 - 2020-11-17 16:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuxGuitar

==================== Fichiers à la racine de certains dossiers ========

2021-04-29 19:34 - 2021-04-29 19:34 - 000136720 _____ (hdfghdfhdfgdfg) C:\Users\MOI\AppData\Roaming\1241857.exe
2021-04-28 19:28 - 2021-04-28 19:28 - 000032768 _____ () C:\Users\MOI\AppData\Roaming\1619630907956-shm
2021-04-28 19:28 - 2021-04-28 19:28 - 000000000 _____ () C:\Users\MOI\AppData\Roaming\1619630907956-wal
2021-04-29 19:39 - 2021-04-29 19:39 - 000083984 _____ (Sistem) C:\Users\MOI\AppData\Roaming\2999513.exe
2021-04-27 15:05 - 2021-04-27 15:05 - 000129040 _____ (hdfghdfhdfgdfg) C:\Users\MOI\AppData\Roaming\4585086.exe
2021-04-27 15:05 - 2021-04-27 15:05 - 000099344 _____ (Sistem) C:\Users\MOI\AppData\Roaming\6452538.exe
2021-04-29 19:34 - 2021-04-29 19:34 - 000951584 _____ (Payeer-NDA) C:\Users\MOI\AppData\Roaming\6904116.exe
2021-04-29 19:34 - 2021-04-29 19:34 - 000083984 _____ (Sistem) C:\Users\MOI\AppData\Roaming\7959936.exe
2021-04-29 19:39 - 2021-04-29 19:39 - 000136720 _____ (hdfghdfhdfgdfg) C:\Users\MOI\AppData\Roaming\8015710.exe
2021-04-29 19:39 - 2021-04-29 19:39 - 000951584 _____ (Payeer-NDA) C:\Users\MOI\AppData\Roaming\8548409.exe
2021-04-27 15:05 - 2021-04-27 15:05 - 000951584 _____ (Payeer-NDA) C:\Users\MOI\AppData\Roaming\8964799.exe
2020-09-20 10:04 - 2020-09-20 10:04 - 000280576 ___SH () C:\Users\MOI\AppData\Roaming\avfacad
2020-09-20 10:04 - 2020-09-20 10:04 - 000237568 ___SH () C:\Users\MOI\AppData\Roaming\refacad

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================