Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2021
Exécuté par Moundziegou (administrateur) sur DEVYMAXPC (SAMSUNG ELECTRONICS CO., LTD. RV415/RV515/E3415) (29-05-2021 10:43:24)
Exécuté depuis C:\Users\Moundziegou\Desktop
Profils chargés: Moundziegou
Platform: Windows 10 Pro Version 1903 18362.1256 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Bible Verse Desktop\verse.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Au˜slogics) [Fichier non signé] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(IP Izmaylov Artem Andreevich -> AIMP DevTeam) C:\Program Files (x86)\AIMP\AIMP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.7-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Softdeluxe) [Fichier non signé] C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
(Softdeluxe) [Fichier non signé] C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe
(Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(VideoLAN -> VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(WIBU-SYSTEMS AG) [Fichier non signé] C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
(上海迈微软件科技有限公司 -> ) D:\Program Files\Microvirt\MEmu\adb.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3251408 2015-09-23] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2021-03-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\Run: [MiPhoneManager] => C:\Users\Moundziegou\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [235903 2016-03-11] () [Fichier non signé]
HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\Run: [Free Download Manager] => C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe [4800000 2021-01-25] (Softdeluxe) [Fichier non signé]
HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\Run: [Discord] => C:\Users\Moundziegou\AppData\Local\Discord\app-0.0.298\Discord.exe [57477112 2017-08-08] (Hammer & Chisel Inc. -> Discord Inc.)
HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [409280 2021-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5562111 2021-03-22] (Tonec Inc.) [Fichier non signé]
HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\Run: [Opera Browser Assistant] => C:\Users\Moundziegou\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4121239 2021-05-26] (Opera Software) [Fichier non signé]
HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\MountPoints2: {0a5e73e4-7596-11eb-862e-30144a246e37} - "G:\setup.exe"
AppInit_DLLs-x32: C:\PROGRA~1\COMMON~1\System\symsrv.dll => C:\Program Files\Common Files\System\symsrv.dll [69337 2021-05-18] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bible Verse Desktop.lnk [2021-02-02]
ShortcutTarget: Bible Verse Desktop.lnk -> C:\Program Files (x86)\Bible Verse Desktop\verse.exe () [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2021-02-23]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Serveur réseau.lnk [2021-02-23]
ShortcutTarget: Serveur réseau.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG) [Fichier non signé]

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0ABBF989-F70E-483C-A2EC-DD6BDEF79DC3} - System32\Tasks\Opera scheduled Autoupdate 1611791959 => C:\Users\Moundziegou\AppData\Local\Programs\Opera\launcher.exe [2199760 2021-05-26] (Opera Software AS -> Opera Software)
Task: {37B31794-1C65-4DDF-8E0E-DD6355931EAF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3369652388-2473206372-3548224555-1001 => C:\Users\Moundziegou\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2960687 2021-03-15] (Microsoft Corporation) [Fichier non signé]
Task: {3C61B2B0-8A0C-40EF-AE4F-DDF5E72AA78D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe
Task: {4A7BE2C7-C66F-4A67-86D9-07DF5187327D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.7-0\MpCmdRun.exe [591160 2021-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4D9EFA2D-DBDC-4171-B401-743F9C3ED2B2} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
Task: {64BC0058-D063-4B21-91CD-21F645F375DD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248792 2021-04-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {88514E77-0914-47A8-B5A8-E6C2E22C77DF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.7-0\MpCmdRun.exe [591160 2021-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {90FF2D10-E20E-4F72-8929-05DBB28395FE} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe [144896 2021-01-25] (Softdeluxe) [Fichier non signé]
Task: {92AC3280-6E37-4F99-99E5-4E410E99BDAA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248792 2021-04-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E536C44-9C23-441A-8CD8-CF7B43A0B2ED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.7-0\MpCmdRun.exe [591160 2021-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ADCD1BEC-73E7-4019-A057-8F124B691BFC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe
Task: {B91FD291-F50B-4BED-8CE2-A3E081430E10} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3369652388-2473206372-3548224555-1001 => C:\ProgramData\MEGAsync\MEGAupdater.exe [1818360 2021-01-28] (Mega Limited -> Mega Limited)
Task: {BFA51F1D-F51D-452D-A99A-50632FDB5D39} - System32\Tasks\Opera scheduled assistant Autoupdate 1615766493 => C:\Users\Moundziegou\AppData\Local\Programs\Opera\launcher.exe [2199760 2021-05-26] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Moundziegou\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {EC395D9E-0CE8-4C6B-9AB7-1CCE01C89B3C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
Task: {F471340A-1E95-4D50-ABC4-FCF76F5C5860} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.7-0\MpCmdRun.exe [591160 2021-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{daf7cf64-86a8-419c-bf2d-622a2189a508}: [DhcpNameServer] 192.168.43.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Moundziegou\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-29]
Edge Notifications: Default -> hxxps://captcharesolving-universe.com; hxxps://telecharger-filmz.com; hxxps://wholeactualjournal.com
Edge Extension: (Outlook) - C:\Users\Moundziegou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-02-10]
Edge Extension: (Word) - C:\Users\Moundziegou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-02-10]
Edge Extension: (Excel) - C:\Users\Moundziegou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2021-02-10]
Edge Extension: (IDM Integration Module) - C:\Users\Moundziegou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2021-04-06]
Edge Extension: (PowerPoint) - C:\Users\Moundziegou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-02-10]
Edge HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2020-12-25]

FireFox:
========
FF HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Moundziegou\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Moundziegou\AppData\Roaming\IDM\idmmzcc5 [2021-03-02] [] [non signé]
FF HKU\S-1-5-21-3369652388-2473206372-3548224555-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] []
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-01] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-04-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-04-12] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Moundziegou\AppData\Local\Google\Chrome\User Data\Default [2021-05-20]
CHR Notifications: Default -> hxxps://artepigr.com; hxxps://forums.futura-sciences.com; hxxps://get.4ksportsearchs.com; hxxps://getfreesmsnumber.com; hxxps://spark.adobe.com; hxxps://viralnewsobserver.com; hxxps://vvvfilmstreaming1.xyz; hxxps://www.4shared.com; hxxps://www.facebook.com; hxxps://www.genesiscasino.com; hxxps://www.youtube.com; hxxps://www70.eloypatrick.pro
CHR HomePage: Default -> hxxp://www.mail.ru/cnt/9134
CHR StartupUrls: Default -> "hxxp://internet-start.net/"
CHR DefaultSearchURL: Default -> hxxps://spark.adobe.com/images/app-icons/120x120_v2.png
CHR Session Restore: Default -> est activé.
CHR Extension: (Google Traduction) - C:\Users\Moundziegou\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-02-10]
CHR Extension: (Adobe Spark) - C:\Users\Moundziegou\AppData\Local\Google\Chrome\User Data\Default\Extensions\biilbcfkfcjcppaoognbchpjbjihinil [2021-02-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Moundziegou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Coinbase) - C:\Users\Moundziegou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nooamfkkjnpfcggbmginhieempgenhhe [2021-03-07]
CHR Extension: (Gmail) - C:\Users\Moundziegou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-28]
CHR Extension: (Chrome Media Router) - C:\Users\Moundziegou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-22]
CHR HKLM-x32\...\Chrome\Extension: [LLCDELLNOFNCIKMHIMJDBKDJGPMCJBIK]

Opera:
=======
OPR Profile: C:\Users\Moundziegou\AppData\Roaming\Opera Software\Opera Stable [2021-05-27]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Moundziegou\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-05-27]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8788392 2021-04-07] (Microsoft Corporation -> Microsoft Corporation)
S2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [9199512 2018-02-26] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S2 CodeMeter.exe; C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [5109079 2018-02-26] (WIBU-SYSTEMS AG) [Fichier non signé]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5026496 2021-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [2073463 2020-04-29] (Foxit Software Inc.) [Fichier non signé]
R2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [536519 2021-03-27] (Au˜slogics) [Fichier non signé]
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [536519 2021-03-27] (Au˜slogics) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264152 2021-04-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wampapache; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [22016 2014-05-01] (Apache Software Foundation) [Fichier non signé]
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [11037639 2014-05-01] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.7-0\NisSrv.exe [2599296 2021-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.7-0\MsMpEng.exe [128376 2021-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WkSvw32.exe; C:\Program Files (x86)\WIBUKEY\Server\WkSvw32.exe [752079 2016-12-22] (WIBU-SYSTEMS AG) [Fichier non signé]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2021-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2021-02-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [319192 2019-09-21] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
R1 MEmuNetLwf; C:\WINDOWS\system32\DRIVERS\MEmuNetLwf.sys [218360 2019-09-20] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
R3 MpKsl3f0515cc; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{62589819-4F2A-40C3-ACC0-0DB5D9408101}\MpKslDrv.sys [47336 2021-05-28] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421096 2021-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73976 2021-05-01] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [118200 2016-12-20] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-05-29 02:35 - 2021-05-29 03:24 - 000000000 ____D C:\Users\Moundziegou\Downloads\365 Days (2020) [720p] [WEBRip] [YTS.MX]
2021-05-29 02:35 - 2021-05-29 02:35 - 000000000 ___HD C:\.freedownloadmanager
2021-05-29 02:34 - 2021-05-29 02:34 - 000042566 _____ C:\Users\Moundziegou\Downloads\365-dni[720p][web].torrent
2021-05-27 16:04 - 2021-05-27 16:04 - 000000626 _____ C:\Users\Moundziegou\Desktop\WampServer.lnk
2021-05-27 16:04 - 2021-05-27 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer
2021-05-27 13:21 - 2021-05-27 15:57 - 000000000 ____D C:\wamp
2021-05-26 14:11 - 2019-06-12 12:18 - 017755050 _____ C:\Users\Moundziegou\Documents\GTA__SA.apk
2021-05-26 05:32 - 2021-05-26 05:39 - 000735516 _____ C:\WINDOWS\Minidump\052621-54906-01.dmp
2021-05-25 22:20 - 2021-05-27 16:02 - 000000000 ____D C:\Users\Moundziegou\Desktop\Nouveau dossier (2)
2021-05-23 01:59 - 2021-05-23 02:09 - 000082914 _____ C:\Users\Moundziegou\Desktop\Addition.txt
2021-05-23 01:36 - 2021-05-29 10:48 - 000022167 _____ C:\Users\Moundziegou\Desktop\FRST.txt
2021-05-23 01:35 - 2021-05-29 10:46 - 000000000 ____D C:\FRST
2021-05-23 01:18 - 2021-05-23 01:18 - 002299904 _____ (Farbar) C:\Users\Moundziegou\Desktop\FRST64.exe
2021-05-22 03:40 - 2021-05-22 03:41 - 002115037 _____ C:\Users\Moundziegou\Downloads\QuickShortcutMaker_2.4.0.apk
2021-05-22 03:19 - 2021-05-22 03:19 - 000065742 _____ C:\Users\Moundziegou\Downloads\Samsung FRP TOOL (1).rar
2021-05-22 02:40 - 2021-05-22 02:41 - 000065742 _____ C:\Users\Moundziegou\Downloads\Samsung FRP TOOL.rar
2021-05-22 02:28 - 2021-05-22 02:30 - 000000000 ___HD C:\$WINDOWS.~BT
2021-05-22 00:57 - 2021-05-22 01:04 - 000000000 ____D C:\Users\Moundziegou\Desktop\DEDE
2021-05-19 21:47 - 2021-05-19 23:11 - 000000000 ____D C:\Users\Moundziegou\Documents\SITE WEB
2021-05-17 23:35 - 2021-05-17 23:35 - 000000000 ____D C:\NVIDIA
2021-05-17 10:41 - 2021-05-17 10:56 - 000000000 ____D C:\Users\Moundziegou\Desktop\no sense
2021-05-17 00:00 - 2021-05-17 00:40 - 000000000 ____D C:\Users\Moundziegou\Desktop\ test
2021-05-16 15:58 - 2021-05-17 10:44 - 000000000 ____D C:\Users\Moundziegou\Desktop\#ifndef COMPIL_H_INCLUDED
2021-05-16 15:55 - 2021-05-16 15:55 - 000000000 ____D C:\Users\Moundziegou\Documents\Nouveau dossier (3)
2021-05-16 15:50 - 2021-05-16 15:50 - 000000000 ____D C:\ProgramData\dbg
2021-05-16 08:17 - 2021-05-16 08:17 - 000001663 _____ C:\Users\Moundziegou\Desktop\programmez_avec_le_langage_c++.pdf - Raccourci.lnk
2021-05-16 08:12 - 2021-05-16 08:12 - 000000000 ____D C:\Users\Moundziegou\AppData\Local\molotov
2021-05-16 06:48 - 2021-05-23 01:37 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\molotov
2021-05-16 06:48 - 2021-05-16 08:12 - 000002311 _____ C:\Users\Moundziegou\Desktop\Molotov.lnk
2021-05-16 06:48 - 2021-05-16 08:12 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov
2021-05-16 01:42 - 2021-05-16 23:56 - 000001134 _____ C:\Users\Moundziegou\Desktop\CodeBlocks.lnk
2021-05-16 01:42 - 2021-05-16 01:58 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2021-05-16 01:42 - 2021-05-16 01:58 - 000000000 ____D C:\Program Files\CodeBlocks
2021-05-15 01:29 - 2021-05-15 20:37 - 000000000 ____D C:\MinGW
2021-05-14 23:52 - 2021-05-15 00:01 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\Google
2021-05-14 23:48 - 2021-05-14 23:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2021-05-14 23:44 - 2021-05-14 23:44 - 000000000 ____D C:\Program Files\Android
2021-05-14 23:30 - 2021-05-28 15:46 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\CodeBlocks
2021-05-14 23:14 - 2021-05-27 12:11 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\Code
2021-05-14 23:14 - 2021-05-16 02:14 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2021-05-14 23:14 - 2021-05-14 23:14 - 000001422 _____ C:\Users\Moundziegou\Desktop\Visual Studio Code.lnk
2021-05-14 23:14 - 2021-05-14 23:14 - 000000000 ____D C:\Users\Moundziegou\.vscode
2021-05-12 01:07 - 2021-05-12 01:19 - 000000000 ____D C:\Users\Moundziegou\Documents\GBWhatsApp
2021-05-01 05:03 - 2021-05-01 05:03 - 000000080 ___SH C:\bootTel.dat
2021-05-01 03:37 - 2021-05-22 03:04 - 000000000 ____D C:\WINDOWS\Panther
2021-04-30 03:47 - 2021-05-14 23:24 - 000000000 ____D C:\Users\Moundziegou\Desktop\Bible

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-05-29 10:54 - 2017-06-26 04:45 - 000000000 ___RD C:\Users\Moundziegou\Downloads\Video
2021-05-29 10:53 - 2021-03-27 03:08 - 000000004 _____ C:\ProgramData\lock.dat
2021-05-29 10:43 - 2021-04-22 11:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-29 10:43 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-29 10:42 - 2021-01-28 03:14 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\vlc
2021-05-29 10:16 - 2021-02-23 05:21 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\AIMP
2021-05-29 10:06 - 2021-03-02 02:17 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\DMCache
2021-05-29 04:44 - 2021-02-11 00:34 - 000000000 ____D C:\Users\Moundziegou\AppData\Local\ElevatedDiagnostics
2021-05-29 03:41 - 2021-04-06 01:30 - 000000004 _____ C:\ProgramData\rc.dat
2021-05-29 02:37 - 2021-04-22 12:11 - 000004248 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1611791959
2021-05-29 02:37 - 2021-01-28 01:59 - 000001497 _____ C:\Users\Moundziegou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-05-28 23:45 - 2021-04-12 11:44 - 000000000 ____D C:\Users\Moundziegou\Desktop\Warcraft III - Copie
2021-05-27 13:28 - 2021-03-02 02:16 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2021-05-27 13:13 - 2020-08-14 10:49 - 000000000 ___RD C:\Users\Moundziegou\3D Objects
2021-05-27 02:00 - 2021-04-22 12:11 - 000004484 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1615766493
2021-05-27 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-26 22:10 - 2020-07-31 03:47 - 000000000 ____D C:\Users\Moundziegou\Downloads\MEmu Download
2021-05-26 21:55 - 2020-07-31 03:46 - 000000000 ____D C:\Users\Moundziegou\.MemuHyperv
2021-05-26 06:52 - 2021-01-27 07:30 - 000000000 ____D C:\Users\Moundziegou\AppData\Local\Packages
2021-05-26 06:48 - 2021-03-27 03:08 - 000000312 _____ C:\ProgramData\lir.bats
2021-05-26 06:46 - 2021-01-28 01:05 - 000000000 ____D C:\Users\Moundziegou\AppData\Local\D3DSCache
2021-05-26 06:43 - 2021-04-22 12:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-26 06:40 - 2021-04-22 11:16 - 000000000 ____D C:\Users\Moundziegou
2021-05-26 06:40 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-05-26 05:41 - 2021-04-27 16:08 - 000000000 ____D C:\WINDOWS\Minidump
2021-05-25 22:30 - 2021-01-28 03:36 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-22 03:53 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2021-05-22 03:43 - 2021-01-23 01:37 - 000000000 ____D C:\Users\Moundziegou\Downloads\Compressed
2021-05-22 01:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-05-21 19:04 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2021-05-21 19:03 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-05-21 17:28 - 2021-04-22 12:09 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2021-05-21 17:28 - 2021-04-22 12:09 - 000001908 _____ C:\WINDOWS\diagerr.xml
2021-05-21 06:16 - 2021-03-02 02:17 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\IDM
2021-05-20 03:49 - 2021-04-22 11:37 - 001798560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-20 03:49 - 2019-03-19 14:01 - 000802716 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-20 03:49 - 2019-03-19 14:01 - 000154806 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-19 23:06 - 2021-01-28 01:09 - 000000000 ____D C:\Program Files (x86)\WinRAR
2021-05-16 08:12 - 2021-02-15 21:47 - 000000000 ____D C:\Users\Moundziegou\AppData\Local\SquirrelTemp
2021-05-16 01:42 - 2017-06-22 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2021-05-16 00:05 - 2021-04-27 05:33 - 000000000 ____D C:\Users\Moundziegou\AppData\Local\BibleStudyPro
2021-05-15 23:53 - 2017-08-04 21:52 - 000000000 ____D C:\Users\Moundziegou\Documents\Euro Truck Simulator 2
2021-05-14 23:58 - 2017-06-27 18:00 - 000000000 ____D C:\Users\Moundziegou\.android
2021-05-14 23:52 - 2021-01-28 00:59 - 000000000 ____D C:\Users\Moundziegou\AppData\Local\Google
2021-05-11 13:23 - 2021-04-03 01:18 - 000000000 ____D C:\Users\Moundziegou\AppData\Roaming\dvdcss
2021-05-05 10:25 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-01 17:29 - 2017-06-22 17:13 - 000000000 ___RD C:\Users\Moundziegou\OneDrive
2021-05-01 05:45 - 2021-01-29 03:07 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-01 05:44 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-01 05:30 - 2021-01-27 04:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-01 03:48 - 2021-01-27 07:31 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-05-01 03:38 - 2021-04-22 11:05 - 000440800 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-01 01:02 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-05-01 01:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2021-05-01 01:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-01 01:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-01 01:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-01 01:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-05-01 01:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-05-01 01:01 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-05-01 01:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-01 01:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-01 01:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-05-01 01:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-01 01:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-05-01 01:00 - 2019-03-19 14:04 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-05-01 01:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-05-01 00:58 - 2019-03-19 14:04 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-05-01 00:58 - 2019-03-19 14:04 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-01 00:58 - 2019-03-19 14:04 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-05-01 00:58 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-05-01 00:58 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2021-05-01 00:57 - 2019-03-19 06:52 - 000000000 ____D C:\PerfLogs

==================== Fichiers à la racine de certains dossiers ========

2021-03-27 03:08 - 2021-05-29 10:53 - 000000004 _____ () C:\ProgramData\lock.dat
2021-04-06 01:30 - 2021-05-29 03:41 - 000000004 _____ () C:\ProgramData\rc.dat
2021-03-27 03:08 - 2021-03-27 03:08 - 000000008 _____ () C:\ProgramData\ts.dat
2021-03-08 20:41 - 2021-03-08 21:59 - 000005632 _____ () C:\Users\Moundziegou\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)



testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== Fin de FRST.txt ========================