Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2021 01
Exécuté par dang_ (administrateur) sur DESKTOP-FRP5NUT (08-05-2021 20:20:15)
Exécuté depuis C:\Users\dang_\Desktop
Profils chargés: dang_
Platform: Windows 10 Pro Version 20H2 19042.964 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe <3>
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\10.1.0.3194\AdskLicensingService\AdskLicensingService.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Bopsoft (Zaozhuang) Sales Department -> ) C:\Program Files\Listary\ListaryHelper64.exe
(Bopsoft (Zaozhuang) Sales Department -> ) C:\Program Files\Listary\ListaryHookHelper32.exe
(Bopsoft (Zaozhuang) Sales Department -> ) C:\Program Files\Listary\ListaryHookHelper64.exe
(Bopsoft (Zaozhuang) Sales Department -> ) C:\Program Files\Listary\ListaryService.exe
(Bopsoft (Zaozhuang) Sales Department -> Bopsoft) C:\Program Files\Listary\Listary.exe
(Elias Fotinis) [Fichier non signé] C:\Program Files (x86)\DeskPins\deskpins.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.8.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <21>
(Imperative Software Pty Ltd -> ) C:\Program Files (x86)\Input Director\InputDirectorSessionHelper.exe
(Imperative Software Pty Ltd -> Imperative Software Pty Ltd) C:\Program Files (x86)\Input Director\IDWinService.exe
(Imperative Software Pty Ltd -> Imperative Software Pty Ltd) C:\Program Files (x86)\Input Director\InputDirector.exe
(Jackie Liu) C:\Program Files\WindowsApps\19282JackieLiu.Notepads-Beta_1.4.5.0_x64__echhpq9pdbte8\Notepads.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\dang_\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2103.17603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(QFX Software Corporation -> QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
(QFX Software Corporation -> QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
(Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Huion Tablet\Huion Tablet.exe
(Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Huion Tablet\x64\TabletDriverCore.exe
(Tim Grabinat) C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_3.4.1.0_x64__rcb0qdgx4z9ca\EasyMail.UwpApp.exe
(Tim Grabinat) C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_3.4.1.0_x64__rcb0qdgx4z9ca\EasyMail.Win32\EasyMail.Win32.exe
(Western Digital Corporation) [Fichier non signé] C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe <4>
(Western Digital Corporation) [Fichier non signé] C:\Program Files (x86)\Western Digital\Discovery\Current\WDDiscoveryMonitor.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files\WD Desktop App\kdd.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [516240 2020-08-05] (QFX Software Corporation -> QFX Software Corporation)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [664872 2020-03-04] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> )
HKLM-x32\...\Run: [InputDirector] => C:\Program Files (x86)\Input Director\InputDirector.exe [2469680 2020-10-02] (Imperative Software Pty Ltd -> Imperative Software Pty Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81359872 2021-04-15] (Western Digital Corporation) [Fichier non signé]
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-05-07] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\Run: [Listary] => C:\Program Files\Listary\Listary.exe [4678968 2017-10-14] (Bopsoft (Zaozhuang) Sales Department -> Bopsoft)
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32721976 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-04-12] (Valve -> Valve Corporation)
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33031648 2021-05-06] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\Run: [Opera Browser Assistant] => C:\Users\dang_\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3368576 2021-02-22] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\Run: [TabletDriver] => C:\Huion Tablet\x64\TabletDriverCore.exe [321256 2020-06-29] (Shenzhen Huion Animation Technology Co.,LTD -> )
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\Run: [GoogleChromeAutoLaunch_9208D8341FCE3DC29381694A92AD919E] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-3117523687-2910562245-3109839232-1001\...\MountPoints2: {6337a45f-926e-11eb-a6e0-001a7dda7111} - "J:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\90.0.4430.93\Installer\chrmstp.exe [2021-04-27] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Huion Tablet.lnk [2021-04-03]
ShortcutTarget: Huion Tablet.lnk -> C:\Huion Tablet\Huion Tablet.exe (Shenzhen Huion Animation Technology Co.,LTD -> )
Startup: C:\Users\dang_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeskPins.lnk [2021-02-23]
ShortcutTarget: DeskPins.lnk -> C:\Program Files (x86)\DeskPins\deskpins.exe (Elias Fotinis) [Fichier non signé]

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1F5E7BAE-A00F-4504-9C8F-14E0C4BFE753} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141144 2021-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {35F6D5D0-2431-474A-BB44-F1216946445D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {38BD6304-F10A-4F06-BF4E-52E1028E9FA0} - System32\Tasks\WD Discovery Service Task dang_ => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [58880 2021-04-15] () [Fichier non signé]
Task: {543E45C6-BE66-467A-87D5-D27793490378} - System32\Tasks\Opera scheduled Autoupdate 1614720200 => C:\Users\dang_\AppData\Local\Programs\Opera\launcher.exe [1886872 2021-04-26] (Opera Software AS -> Opera Software)
Task: {5A4D22D7-5478-47F9-8E73-121ED74F5CC2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141144 2021-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {67BF129D-DE11-450D-A326-4EFF771CAB4E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-02-16] (Piriform Software Ltd -> Piriform)
Task: {75505C83-CC78-44A4-82B3-0A3D1A43FBF6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7F5F3E08-7B01-48CD-9ED4-B2BEC378D8AE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5229504 2021-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {82030A88-2C8E-4BC0-9809-C8F08EA44E7D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {90B9EE15-96E7-460E-B878-0BDB98D74D8D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5229504 2021-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {9D373CF7-5D76-4551-A953-D68FD35EA5A6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A6DB2C3D-CC34-4D4A-A673-4A809ABB53A1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27165752 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C09BE55D-3285-4B29-8750-20BA76D03FB9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-22] (Google LLC -> Google LLC)
Task: {C2C49F37-45C4-4F18-9FE6-2DB296904C95} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-22] (Google LLC -> Google LLC)
Task: {D7DA0740-7B64-4905-8A58-9E57E1D3170A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0DB0762-DA89-494C-80D8-1327D72DCA4F} - System32\Tasks\Opera scheduled assistant Autoupdate 1614720212 => C:\Users\dang_\AppData\Local\Programs\Opera\launcher.exe [1886872 2021-04-26] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\dang_\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {F1C6CFB0-BA03-4BE9-9C8B-8887F91DB5FE} - System32\Tasks\WD Device Agent Task dang_ => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [720432 2021-04-15] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {FD317802-8EED-4D5B-9F4D-DC2D6ADBF585} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ff75eaa6-fc54-454d-87c4-87939b8bd52e}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\dang_\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-08]
Edge Session Restore: Default -> est activé.
Edge Extension: (Session Buddy) - C:\Users\dang_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2021-02-22]
Edge Extension: (uBlock Origin) - C:\Users\dang_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-04-28]
Edge Extension: (Video picture in picture) - C:\Users\dang_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pebpinjlicoohdheciapkgladockbjjn [2021-02-22]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-03-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-03-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-23] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default [2021-05-08]
CHR Notifications: Default -> hxxps://drive.google.com; hxxps://www.reddit.com
CHR HomePage: Default -> hxxps://www.google.fr/?gws_rd=cr
CHR Session Restore: Default -> est activé.
CHR Extension: (Cluster - Window & Tab Manager) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aadahadfdmiibmdhfmpbeeebejmjnkef [2021-02-22]
CHR Extension: (Google Traduction) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-02-22]
CHR Extension: (Slides) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-02-22]
CHR Extension: (YouTube) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\adnlfjpnmidfimlkaohpidplnoimahfh [2021-02-22]
CHR Extension: (Docs) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-02-22]
CHR Extension: (Google Drive) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-02-22]
CHR Extension: (AdGuard AdBlocker) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2021-04-10]
CHR Extension: (WOT: Web of Trust, Évaluation de la réputation de sites Web) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2021-05-06]
CHR Extension: (Touch VPN - VPN et proxy gratuit) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2021-05-08]
CHR Extension: (YouTube) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-02-22]
CHR Extension: (uBlock Origin) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-05-08]
CHR Extension: (Thumbnail Rating Bar for YouTube™) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmlddjbnoehmihdmfhaacemlpgfbpoeb [2021-05-06]
CHR Extension: (Session Buddy) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2021-02-22]
CHR Extension: (BlockSite - Stay Focused & Contrôlez votre temps) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2021-05-06]
CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2021-03-24]
CHR Extension: (Sheets) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-02-22]
CHR Extension: (SearchBar) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjefgkhmchopegjeicnblodnidbammed [2021-02-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-22]
CHR Extension: (Screenshot YouTube) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjoijpfmdhbjkkgnmahganhoinjjpohk [2021-02-22]
CHR Extension: (Duplicate Tabs Closer) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnmdbogfankgjepgglmmfmbnimcmcjle [2021-04-22]
CHR Extension: (Floating Video with Playback Controls) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpeaojhfeejplchbhmhpcecpfginfnhk [2021-02-22]
CHR Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2021-04-28]
CHR Extension: (Google Keep – Notes et listes) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2021-05-06]
CHR Extension: (Looper for YouTube) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2021-04-28]
CHR Extension: (Clutter Free - Prevent duplicate tabs) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\iipjdmnoigaobkamfhnojmglcdbnfaaf [2021-04-22]
CHR Extension: (Image Downloader Continued) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfkjbfhcfaoldhgbnkekkoheganchiea [2021-02-22]
CHR Extension: (Volume Master - contrôleur de volume) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\jghecgabfgfdldnmbfkhmffcabddioke [2021-02-22]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2021-02-22]
CHR Extension: (PhotoShow) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgpdnhlllbpncjpgokgfogidhoegebod [2021-04-28]
CHR Extension: (Reload All Tabs) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\midkcinmplflbiflboepnahkboeonkam [2021-05-06]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2021-05-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-22]
CHR Extension: (Image Size Info) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\oihdhfbfoagfkpcncinlbhfdgpegcigf [2021-02-22]
CHR Extension: (Gmail) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-02-22]
CHR Extension: (Chrome Media Router) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-06]
CHR Extension: (Diigo Web Collector - Capture and Annotate) - C:\Users\dang_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnhplgjpclknigjpccbcnmicgcieojbh [2021-04-10]

Opera:
=======
OPR Profile: C:\Users\dang_\AppData\Roaming\Opera Software\Opera Stable [2021-05-08]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\dang_\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-04-14]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1046904 2020-03-04] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16930616 2019-12-18] (Autodesk, Inc. -> Autodesk)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8798600 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
R2 InputDirector; C:\Program Files (x86)\Input Director\IDWinService.exe [108848 2020-10-02] (Imperative Software Pty Ltd -> Imperative Software Pty Ltd)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10605472 2021-05-07] (Logitech Inc -> Logitech, Inc.)
R2 ListaryService; C:\Program Files\Listary\ListaryService.exe [275256 2017-10-14] (Bopsoft (Zaozhuang) Sales Department -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-23] (Malwarebytes Inc -> Malwarebytes)
S3 QFXUpdateService; C:\Program Files (x86)\KeyScrambler\x64\QFXUpdateService.exe [87184 2020-08-05] (QFX Software Corporation -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393304 2021-05-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 InputDirectorVirtualDriver; C:\WINDOWS\System32\drivers\InputDirectorVirtualDriver.sys [26896 2019-10-31] (Imperative Software Pty Ltd -> Imperative Software Pty Ltd)
R3 KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [243800 2018-09-08] (QFX Software Corporation -> QFX Software Corporation)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-05-07] (Logitech Inc -> Logitech)
R3 logi_generic_hid_filter; C:\WINDOWS\System32\drivers\logi_generic_hid_filter.sys [56368 2021-02-22] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-16] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-16] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-16] (Logitech Inc -> Logitech)
R3 logi_mouse_hid_filter; C:\WINDOWS\System32\drivers\logi_mouse_hid_filter.sys [55856 2021-02-22] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-04-26] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-26] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-12] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-12] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-05-08 20:15 - 2021-05-08 20:20 - 000029658 _____ C:\Users\dang_\Desktop\FRST.txt
2021-05-08 20:14 - 2021-05-08 20:20 - 000000000 ____D C:\FRST
2021-05-08 20:12 - 2021-05-08 20:12 - 002298880 _____ (Farbar) C:\Users\dang_\Desktop\FRST64.exe
2021-05-08 20:08 - 2021-05-08 20:09 - 000000000 ____D C:\Program Files\LGHUB
2021-05-08 20:08 - 2021-05-08 20:08 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2021-05-08 20:08 - 2021-05-08 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-05-08 20:02 - 2021-05-08 20:03 - 000000000 ____D C:\AdwCleaner
2021-05-07 12:37 - 2021-05-07 12:37 - 000001117 _____ C:\Users\dang_\AppData\Roaming\PureRef.ini
2021-05-06 22:31 - 2021-05-06 22:31 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-06 22:31 - 2021-05-06 22:31 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-06 22:31 - 2021-05-06 22:31 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-06 22:31 - 2021-05-06 22:31 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-06 22:31 - 2021-05-06 22:31 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-06 22:31 - 2021-05-06 22:31 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-06 22:31 - 2021-05-06 22:31 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-06 22:31 - 2021-05-06 22:31 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-06 22:31 - 2021-05-06 22:31 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-05-06 22:31 - 2021-05-06 22:31 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-05-06 22:31 - 2021-05-06 22:31 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-06 22:31 - 2021-05-06 22:31 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-06 22:30 - 2021-05-06 22:30 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-06 22:30 - 2021-05-06 22:30 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-04-26 10:42 - 2021-04-26 10:42 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-26 10:42 - 2021-04-26 10:42 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-04-22 21:36 - 2021-04-22 21:36 - 000000000 ____D C:\ProgramData\Logishrd
2021-04-20 14:38 - 2021-04-20 14:38 - 000000000 ____D C:\Users\dang_\AppData\Local\AdSSO
2021-04-19 04:47 - 2021-04-19 04:47 - 000097835 _____ C:\Users\dang_\Desktop\zOffTy_AverageNormals (2).rar
2021-04-15 21:41 - 2021-05-08 20:09 - 000000000 ____D C:\Users\dang_\AppData\Roaming\WD Discovery
2021-04-15 21:41 - 2021-05-08 20:09 - 000000000 ____D C:\Users\dang_\.wdc
2021-04-15 21:41 - 2021-04-15 21:41 - 000003234 _____ C:\WINDOWS\system32\Tasks\WD Discovery Service Task dang_
2021-04-15 21:41 - 2021-04-15 21:41 - 000003172 _____ C:\WINDOWS\system32\Tasks\WD Device Agent Task dang_
2021-04-15 21:41 - 2021-04-15 21:41 - 000001320 _____ C:\Users\Public\Desktop\WD Discovery.lnk
2021-04-15 21:41 - 2021-04-15 21:41 - 000000000 ____D C:\Users\dang_\AppData\Roaming\WDDesktop
2021-04-15 21:41 - 2021-04-15 21:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD Discovery
2021-04-15 21:41 - 2021-04-15 21:41 - 000000000 ____D C:\Program Files\WD Desktop App
2021-04-15 21:41 - 2021-04-15 21:41 - 000000000 ____D C:\Program Files (x86)\Western Digital
2021-04-15 21:41 - 2017-11-21 12:03 - 000468112 _____ (Western Digital Technologies, Inc.) C:\WINDOWS\system32\Drivers\wdfsconnect2017.sys
2021-04-15 21:41 - 2017-11-21 12:03 - 000020624 _____ (Western Digital Technologies, Inc.) C:\WINDOWS\system32\Drivers\wdvpnpbus.sys
2021-04-15 21:41 - 2017-11-10 12:51 - 000223744 _____ (Western Digital Technologies, Inc.) C:\WINDOWS\SysWOW64\wdfsconnectNetRdr2017.dll
2021-04-15 21:41 - 2017-11-10 12:51 - 000180224 _____ (Western Digital Technologies, Inc.) C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll
2021-04-15 21:41 - 2017-11-10 12:51 - 000154112 _____ (Western Digital Technologies, Inc.) C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll
2021-04-15 21:41 - 2017-11-10 12:51 - 000118272 _____ (Western Digital Technologies, Inc.) C:\WINDOWS\system32\wdfsconnectNetRdr2017.dll
2021-04-15 21:41 - 2017-11-10 12:51 - 000002560 _____ (Western Digital Technologies, Inc.) C:\WINDOWS\system32\wdfsconnectevtmsg.dll
2021-04-14 15:40 - 2021-04-28 19:21 - 000000000 ____D C:\Users\dang_\AppData\Roaming\qBittorrent
2021-04-14 15:40 - 2021-04-14 15:40 - 000000000 ____D C:\Users\dang_\AppData\Local\qBittorrent
2021-04-14 15:40 - 2021-04-14 15:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2021-04-14 15:40 - 2021-04-14 15:40 - 000000000 ____D C:\Program Files\qBittorrent
2021-04-14 06:48 - 2021-04-14 06:48 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-09 14:30 - 2021-04-09 14:30 - 000000000 ____D C:\Users\dang_\AppData\Local\AutodeskDesktopApp

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-05-08 20:17 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-08 20:12 - 2021-02-23 22:27 - 001771346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-08 20:12 - 2021-02-22 22:27 - 000000000 ___RD C:\Users\dang_\OneDrive
2021-05-08 20:12 - 2019-12-07 16:50 - 000791866 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-08 20:12 - 2019-12-07 16:50 - 000150032 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-08 20:11 - 2021-02-22 23:39 - 000000000 ____D C:\Users\dang_\AppData\Local\LGHUB
2021-05-08 20:09 - 2021-02-23 04:49 - 000000000 ____D C:\ProgramData\Autodesk
2021-05-08 20:09 - 2021-02-22 23:39 - 000000000 ____D C:\Users\dang_\AppData\Roaming\LGHUB
2021-05-08 20:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-08 20:08 - 2021-02-23 22:29 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-08 20:08 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-08 20:06 - 2021-02-23 22:20 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-08 20:05 - 2020-11-19 01:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-08 20:05 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-08 20:05 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-05-08 20:04 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-08 20:04 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-08 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-08 20:00 - 2021-02-23 05:08 - 000000000 ____D C:\Users\dang_\AppData\Roaming\substancelinkopentcp
2021-05-08 20:00 - 2021-02-23 02:44 - 000000000 ____D C:\Program Files\ImageGlass
2021-05-08 20:00 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-08 19:59 - 2021-02-23 00:46 - 000000000 ____D C:\Users\dang_\AppData\Roaming\obs-studio
2021-05-08 12:47 - 2020-11-19 00:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-08 06:26 - 2021-02-23 06:26 - 000000000 ____D C:\Program Files\CCleaner
2021-05-07 19:16 - 2021-02-23 19:18 - 000000000 ____D C:\Program Files (x86)\Steam
2021-05-07 19:03 - 2020-11-19 01:47 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-07 19:03 - 2020-11-19 01:47 - 000002297 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-05-07 01:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-06 22:33 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-06 20:51 - 2021-02-23 22:21 - 000000000 ____D C:\Users\dang_
2021-05-06 20:48 - 2021-02-23 05:00 - 000000000 ____D C:\Program Files\Microsoft Office
2021-05-06 20:26 - 2021-02-23 06:05 - 000000000 ____D C:\Users\dang_\AppData\LocalLow\IGDump
2021-04-30 22:33 - 2021-02-23 23:11 - 000000016 _____ C:\Users\dang_\AppData\Roaming\obs-virtualcam.txt
2021-04-30 06:53 - 2021-02-23 01:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-28 22:26 - 2021-03-02 23:23 - 000004236 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1614720200
2021-04-28 22:26 - 2021-03-02 23:23 - 000001426 _____ C:\Users\dang_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-04-27 01:18 - 2021-02-22 23:10 - 000002262 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-27 01:18 - 2021-02-22 23:10 - 000002221 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-04-26 22:32 - 2021-02-23 22:29 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3117523687-2910562245-3109839232-1001
2021-04-26 22:32 - 2021-02-23 22:21 - 000002422 _____ C:\Users\dang_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-26 09:57 - 2021-03-04 22:52 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d70a221518c299
2021-04-26 09:57 - 2020-11-19 01:46 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-22 21:34 - 2020-11-19 00:44 - 000474568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-22 21:33 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-22 21:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-22 21:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-22 21:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-21 01:13 - 2021-02-23 22:29 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-21 01:13 - 2021-02-23 22:29 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-15 21:41 - 2021-02-22 23:27 - 000000000 ____D C:\ProgramData\Package Cache
2021-04-14 06:48 - 2020-11-19 01:46 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-14 06:41 - 2021-02-23 01:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-14 06:38 - 2021-02-23 01:25 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-14 01:15 - 2021-04-06 11:52 - 000000000 ____D C:\OBS ARCHIVE PROVISOIRE 06_04_2021
2021-04-14 01:15 - 2021-04-03 03:27 - 000000000 ____D C:\Huion Tablet
2021-04-13 03:52 - 2021-03-08 23:45 - 000001456 _____ C:\Users\dang_\AppData\Local\Adobe Save for Web 13.0 Prefs
2021-04-12 00:08 - 2020-11-19 01:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-11 05:12 - 2021-02-23 01:27 - 000001035 _____ C:\Users\Public\Desktop\PotPlayer 64 bit.lnk
2021-04-09 05:42 - 2021-02-23 01:40 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys

==================== Fichiers à la racine de certains dossiers ========

2021-02-23 23:11 - 2021-04-30 22:33 - 000000016 _____ () C:\Users\dang_\AppData\Roaming\obs-virtualcam.txt
2021-05-07 12:37 - 2021-05-07 12:37 - 000001117 _____ () C:\Users\dang_\AppData\Roaming\PureRef.ini
2021-03-08 23:45 - 2021-04-13 03:52 - 000001456 _____ () C:\Users\dang_\AppData\Local\Adobe Save for Web 13.0 Prefs
2021-03-17 01:22 - 2021-03-17 01:26 - 000002561 _____ () C:\Users\dang_\AppData\Local\krita-sysinfo.log
2021-03-17 01:22 - 2021-03-17 01:27 - 000001016 _____ () C:\Users\dang_\AppData\Local\krita.log
2021-03-17 01:27 - 2021-03-17 01:27 - 000000039 _____ () C:\Users\dang_\AppData\Local\kritadisplayrc
2021-03-17 01:22 - 2021-03-17 01:26 - 000017103 _____ () C:\Users\dang_\AppData\Local\kritarc
2021-03-23 17:11 - 2021-03-23 21:43 - 000029263 _____ () C:\Users\dang_\AppData\Local\PlariumPlay.log
2021-02-26 06:28 - 2021-02-26 06:28 - 000000741 _____ () C:\Users\dang_\AppData\Local\recently-used.xbel
2021-02-23 01:29 - 2021-02-23 02:28 - 000594944 _____ () C:\Users\dang_\AppData\Local\SageThumbs.db3

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================