RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 26-01-2022
ExÃ©cutÃ© par Administrateur (administrateur) sur UTILISA-LLC68EG (Dell Inc. Precision Tower 3620) (29-01-2022 22:21:35)
ExÃ©cutÃ© depuis C:\Users\Administrateur\Desktop
Profils chargÃ©s: Administrateur
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1503 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: Opera
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(Bartels Media GmbH -> BartelsMedia GmbH) C:\Program Files (x86)\ShareMouse\ShareMouse.exe <2>
(Bartels Media GmbH -> BartelsMedia GmbH) C:\Program Files (x86)\ShareMouse\smService.exe
(Hugh Bailey -> ) C:\Program Files\obs-studio\obs-plugins\64bit\obs-browser-page.exe <2>
(Hugh Bailey -> OBS) C:\Program Files\obs-studio\bin\64bit\obs64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <21>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ScreenSketch_10.2008.2277.0_x64__8wekyb3d8bbwe\ScreenSketch.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Opera Software AS -> Opera Software) C:\Users\Administrateur\AppData\Local\Programs\Opera\82.0.4227.58\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Users\Administrateur\AppData\Local\Programs\Opera\opera.exe <22>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Winamax SA -> Winamax) C:\Users\Administrateur\AppData\Local\Programs\winamax\Winamax.exe <6>

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230280 2017-06-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489384 2017-06-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [723928 2017-01-26] (Waves Inc -> Waves Audio Ltd.)
HKU\S-1-5-21-55898453-388422404-477289401-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-55898453-388422404-477289401-500\...\Run: [Mikogo] => C:\Users\Administrateur\AppData\Roaming\Mikogo\Mikogo-host.exe [7839968 2019-06-04] (Snapview GmbH -> BeamYourScreen GmbH)
HKU\S-1-5-21-55898453-388422404-477289401-500\...\Run: [Tone] => C:\Users\Administrateur\AppData\Roaming\Tone\Tone.exe [134323994 2022-01-26] (Tone app) [Fichier non signÃ©]
HKLM\Software\...\Authentication\Credential Providers: [{1EDBF04D-03A6-4589-9CB4-89DC03FD175A}] -> C:\WINDOWS\system32\smcp.dll [2021-05-27] (Bartels Media GmbH -> BartelsMedia GmbH)

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) ============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {4F42A27D-734D-49C0-990D-31BE6FAD239A} - System32\Tasks\CCleanerSkipUAC - Administrateur => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7636C2A9-A0DC-4350-AE0E-D9AAAA79E701} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489384 2017-06-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {A3126D4B-957C-4972-B24A-DAE4EDC21BB1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)


==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{069cb5d7-72a5-4d79-83c9-b59b6a87c4ca}: [DhcpNameServer] 192.168.111.200
Tcpip\..\Interfaces\{1dfc5329-c967-495f-a8da-6145ec9c2d65}: [DhcpNameServer] 192.168.111.200
Tcpip\..\Interfaces\{6840f24d-480d-4ba8-9ec6-14aa0b85a3ee}: [DhcpNameServer] 192.168.111.200
Tcpip\..\Interfaces\{9c8709ee-c391-4b39-89bc-24afb54488c3}: [DhcpNameServer] 192.168.111.200
Tcpip\..\Interfaces\{bb79ede2-0364-44d1-b074-2edfdf54f997}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{d808c5b5-6644-441f-9816-edbd3f9ceb91}: [DhcpNameServer] 192.168.111.200
Tcpip\..\Interfaces\{ecc607e8-aa0a-4765-acc9-55b0f0895c9a}: [DhcpNameServer] 192.168.111.200
Tcpip\..\Interfaces\{f30e48fd-6fb0-4625-901f-4a0a9ada52f9}: [DhcpNameServer] 192.168.111.200
Tcpip\..\Interfaces\{f5763590-cb46-4009-89bd-fae7dc013439}: [DhcpNameServer] 192.168.111.200

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-29]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-01-27]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Opera: 
=======
OPR Profile: C:\Users\Administrateur\AppData\Roaming\Opera Software\Opera Stable [2022-01-29]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Administrateur\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-01-28]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Administrateur\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-17]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-27] (Malwarebytes Inc -> Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136536 2022-01-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ShareMouse Service; C:\Program Files (x86)\ShareMouse\smService.exe [305976 2021-05-27] (Bartels Media GmbH -> BartelsMedia GmbH)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14610864 2022-01-24] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signÃ©]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signÃ©]
R3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2022-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-01-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-01-27] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-01-29] (Malwarebytes Inc -> Malwarebytes)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435432 2021-12-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-20] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-01-29 22:21 - 2022-01-29 22:22 - 000012077 _____ C:\Users\Administrateur\Desktop\FRST.txt
2022-01-29 22:21 - 2022-01-29 22:21 - 000000000 ____D C:\FRST
2022-01-29 22:20 - 2022-01-29 22:20 - 002311680 _____ (Farbar) C:\Users\Administrateur\Desktop\FRST64.exe
2022-01-29 16:51 - 2022-01-29 16:51 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-01-29 16:51 - 2022-01-29 16:51 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-01-29 16:51 - 2022-01-29 16:51 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-01-29 16:51 - 2022-01-29 16:51 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-01-29 16:14 - 2022-01-29 16:14 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-01-29 16:14 - 2022-01-29 16:14 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-01-29 16:14 - 2022-01-29 16:14 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-01-29 16:14 - 2022-01-29 16:14 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-01-29 16:14 - 2022-01-29 16:14 - 000011805 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-29 16:09 - 2022-01-29 16:09 - 000000000 ___HD C:\$WinREAgent
2022-01-29 12:40 - 2022-01-29 16:58 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-29 12:39 - 2022-01-29 12:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2022-01-29 12:39 - 2022-01-29 12:39 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-01-29 12:37 - 2022-01-29 12:37 - 000000020 ___SH C:\Users\Administrateur\ntuser.ini
2022-01-29 12:36 - 2022-01-29 20:08 - 000004186 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{7599159A-6841-40E5-986B-01F5233F5CB9}
2022-01-29 12:36 - 2022-01-29 16:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-29 12:36 - 2022-01-29 12:39 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-01-29 12:36 - 2022-01-29 12:36 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2022-01-29 12:36 - 2022-01-29 12:36 - 000007623 _____ C:\WINDOWS\diagerr.xml
2022-01-29 12:36 - 2022-01-29 12:36 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-29 12:36 - 2022-01-29 12:36 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-29 12:36 - 2022-01-29 12:36 - 000002842 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-55898453-388422404-477289401-500
2022-01-29 12:36 - 2022-01-29 12:36 - 000002304 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_PushButton
2022-01-29 12:36 - 2022-01-29 12:36 - 000002262 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Administrateur
2022-01-29 12:36 - 2021-11-04 08:17 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2947091234-691956510-2732276090-500
2022-01-29 12:36 - 2021-10-25 09:01 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1767776226-493479616-1941578086-500
2022-01-29 12:36 - 2021-10-01 06:47 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-534485381-937348561-2399075957-500
2022-01-29 12:36 - 2021-09-15 08:07 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3925286204-3155664244-3453188131-500
2022-01-29 12:36 - 2021-08-03 09:36 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1536274200-1329923138-333695391-500
2022-01-29 12:36 - 2021-07-15 07:32 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-232220706-2914288722-2697434733-500
2022-01-29 12:36 - 2021-07-13 13:36 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-338649430-3935668384-2546989585-500
2022-01-29 12:36 - 2021-07-07 13:05 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2616553869-3362025474-2467535236-500
2022-01-29 12:36 - 2021-07-02 08:55 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3191447508-3161162848-1611928788-500
2022-01-29 12:36 - 2021-05-28 08:28 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1400076722-1294528015-2834820352-500
2022-01-29 12:36 - 2021-05-25 14:14 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-287971686-2631438949-1905562757-500
2022-01-29 12:36 - 2021-05-25 12:44 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3723143533-3704732855-2135774122-500
2022-01-29 12:36 - 2021-05-06 08:33 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-235825533-3643913744-2367972333-500
2022-01-29 12:36 - 2021-04-20 14:04 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1205957600-2435442525-3549562528-500
2022-01-29 12:36 - 2021-04-01 12:34 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2036133193-4018688601-965594155-500
2022-01-29 12:36 - 2021-03-19 15:28 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1249458368-1868764570-3558135769-500
2022-01-29 12:36 - 2021-02-10 14:25 - 000002850 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-236521713-2420111934-715828739-500
2022-01-29 12:36 - 2020-09-27 08:42 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4076117667-3613827606-2929839615-500
2022-01-29 12:33 - 2022-01-29 12:33 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2022-01-29 12:33 - 2022-01-29 12:33 - 000000000 ____D C:\Program Files\Waves
2022-01-29 12:32 - 2022-01-29 20:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-29 12:32 - 2022-01-29 16:51 - 000257992 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-29 12:32 - 2022-01-29 12:36 - 000000000 ____D C:\Windows.old
2022-01-29 12:27 - 2022-01-29 12:37 - 000000000 ____D C:\Users\Administrateur
2022-01-29 12:27 - 2022-01-29 12:32 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\Voisinage rÃ©seau
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\Voisinage d'impression
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\ModÃ¨les
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\Mes documents
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\Menu DÃ©marrer
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\Documents\Mes vidÃ©os
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\Documents\Mes images
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\Documents\Ma musique
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-01-29 12:27 - 2022-01-29 12:27 - 000000000 _SHDL C:\Users\Administrateur\AppData\Local\Historique
2022-01-29 12:27 - 2019-12-07 10:10 - 000001105 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-29 12:26 - 2022-01-29 12:27 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-01-29 12:24 - 2022-01-29 12:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-01-29 12:22 - 2022-01-29 12:22 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-29 12:22 - 2022-01-29 12:22 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-29 12:22 - 2022-01-29 12:22 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-01-29 12:13 - 2022-01-29 12:13 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-01-29 12:03 - 2022-01-29 12:37 - 000000000 ___DC C:\WINDOWS\Panther
2022-01-29 12:02 - 2022-01-29 12:03 - 000000036 _____ C:\WINDOWS\progress.ini
2022-01-29 11:34 - 2022-01-29 11:34 - 000000000 ____D C:\Users\Administrateur\AppData\Local\OneDrive
2022-01-29 11:27 - 2022-01-29 12:02 - 000000000 ___HD C:\$GetCurrent
2022-01-29 11:27 - 2022-01-29 12:02 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant
2022-01-29 11:17 - 2022-01-29 11:18 - 000000000 ____D C:\Users\Administrateur\Desktop\Ordi
2022-01-27 23:57 - 2022-01-27 23:57 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps
2022-01-27 14:22 - 2022-01-27 14:22 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-01-27 14:22 - 2022-01-27 14:22 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-01-27 14:22 - 2022-01-27 14:22 - 000000000 ____D C:\Users\Administrateur\AppData\Local\mbam
2022-01-27 14:22 - 2022-01-27 14:21 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-01-27 14:22 - 2022-01-27 14:21 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-01-27 14:21 - 2022-01-27 14:21 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-01-27 14:20 - 2022-01-27 14:21 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-27 13:38 - 2022-01-27 13:38 - 000059646 _____ C:\Users\Administrateur\Downloads\twitchtest-1.52.zip
2022-01-27 13:38 - 2022-01-27 13:38 - 000059646 _____ C:\Users\Administrateur\Downloads\twitchtest-1.52 (3).zip
2022-01-27 13:38 - 2022-01-27 13:38 - 000059646 _____ C:\Users\Administrateur\Downloads\twitchtest-1.52 (2).zip
2022-01-27 13:38 - 2022-01-27 13:38 - 000059646 _____ C:\Users\Administrateur\Downloads\twitchtest-1.52 (1).zip
2022-01-27 10:08 - 2022-01-29 12:32 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PMU Poker
2022-01-26 23:13 - 2022-01-26 23:13 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Tone
2022-01-26 23:12 - 2022-01-26 23:13 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Tone
2022-01-26 16:22 - 2022-01-26 23:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Mikogo-video
2022-01-26 16:06 - 2022-01-29 16:51 - 000000000 ____D C:\Program Files\TeamViewer
2022-01-26 16:06 - 2022-01-26 16:06 - 000000896 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2022-01-26 16:06 - 2022-01-26 16:06 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\TeamViewer
2022-01-26 16:06 - 2022-01-26 16:06 - 000000000 ____D C:\Users\Administrateur\AppData\Local\TeamViewer
2022-01-26 16:05 - 2022-01-26 16:05 - 035193248 _____ (TeamViewer Germany GmbH) C:\Users\Administrateur\Downloads\TeamViewer_Setup_x64.exe
2022-01-23 15:57 - 2022-01-29 12:32 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mikogo
2022-01-23 15:57 - 2022-01-26 16:22 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Mikogo
2022-01-23 15:57 - 2022-01-23 15:57 - 000000000 ____D C:\Users\Administrateur\Documents\Mikogo
2022-01-23 15:44 - 2022-01-23 15:44 - 011755576 _____ (BeamYourScreen GmbH) C:\Users\Administrateur\Downloads\mikogo_5-3-1_en_205034.exe
2022-01-23 15:38 - 2022-01-23 15:38 - 001676592 _____ () C:\Users\Administrateur\Downloads\mikogo-starter.exe
2022-01-20 17:36 - 2022-01-20 17:36 - 000000000 ____D C:\Users\Administrateur\Tracing
2022-01-17 18:18 - 2022-01-29 16:53 - 000000000 ____D C:\Program Files\CCleaner
2022-01-17 18:18 - 2022-01-29 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-01-17 18:18 - 2022-01-17 18:18 - 036564744 _____ (Piriform Software Ltd) C:\Users\Administrateur\Downloads\ccsetup588.exe
2022-01-17 17:31 - 2022-01-17 17:31 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics
2022-01-17 16:58 - 2022-01-17 16:58 - 000001501 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-01-17 16:58 - 2022-01-17 16:58 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Opera Software
2022-01-17 16:57 - 2022-01-17 16:57 - 002618912 _____ (Opera Software) C:\Users\Administrateur\Downloads\OperaSetup.exe
2022-01-17 16:57 - 2022-01-17 16:57 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Opera Software
2022-01-17 11:19 - 2022-01-29 12:33 - 000000000 ____D C:\Program Files\KeyboardNotification
2022-01-16 10:30 - 2022-01-16 10:33 - 000000000 ____D C:\ProgramData\ShareMouse
2022-01-16 10:30 - 2022-01-16 10:30 - 008246656 _____ (Bartels Media GmbH ) C:\Users\Administrateur\Downloads\ShareMouseSetup.exe
2022-01-16 10:30 - 2022-01-16 10:30 - 000001200 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\sharemouse.lnk
2022-01-16 10:30 - 2022-01-16 10:30 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\ShareMouse
2022-01-16 10:30 - 2022-01-16 10:30 - 000000000 ____D C:\Program Files\ShareMouse
2022-01-16 10:30 - 2022-01-16 10:30 - 000000000 ____D C:\Program Files (x86)\ShareMouse
2022-01-16 10:30 - 2021-05-27 16:35 - 000075576 _____ (BartelsMedia GmbH) C:\WINDOWS\system32\smcp.dll
2022-01-16 10:30 - 2017-07-25 16:46 - 000001208 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareMouse service restart.lnk
2022-01-16 10:02 - 2022-01-16 10:02 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2022-01-16 09:44 - 2022-01-29 12:32 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2022-01-16 09:44 - 2022-01-27 10:08 - 000001407 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\PMU Poker.lnk
2022-01-16 09:44 - 2022-01-16 09:44 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\PMU
2022-01-16 09:44 - 2022-01-16 09:44 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\cef3-cache-3359
2022-01-16 09:42 - 2022-01-16 09:42 - 000772936 _____ C:\Users\Administrateur\Downloads\PMUPokerInstallation.exe
2022-01-16 09:38 - 2022-01-27 23:57 - 000001608 _____ C:\ProgramData\droidcam-client-options-v2
2022-01-16 09:38 - 2022-01-27 23:57 - 000000399 _____ C:\ProgramData\droidcam-settings
2022-01-16 09:22 - 2022-01-28 08:25 - 000000000 ____D C:\Users\Administrateur\AppData\Local\JxBrowser
2022-01-16 09:21 - 2022-01-29 12:32 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Xeester
2022-01-16 09:21 - 2022-01-28 08:25 - 000000030 _____ C:\Users\Administrateur\xeester.txt
2022-01-16 09:19 - 2022-01-28 12:12 - 000000000 ____D C:\Program Files (x86)\Xeester
2022-01-16 09:19 - 2022-01-16 09:19 - 000405344 _____ C:\Users\Administrateur\Downloads\xeester-installer-fr.exe
2022-01-16 09:05 - 2022-01-29 12:32 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DroidCam
2022-01-16 09:05 - 2022-01-16 09:05 - 016408456 _____ C:\Users\Administrateur\Downloads\DroidCam.Setup.6.5.2.exe
2022-01-16 09:05 - 2022-01-16 09:05 - 000000000 ____D C:\Program Files (x86)\DroidCam
2022-01-16 08:51 - 2022-01-26 22:14 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\slobs-client
2022-01-16 08:51 - 2022-01-16 08:51 - 000001983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs Desktop.lnk
2022-01-16 08:51 - 2022-01-16 08:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\slobs-plugins
2022-01-16 08:51 - 2022-01-16 08:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\obs-studio-node-server
2022-01-16 08:51 - 2022-01-16 08:51 - 000000000 ____D C:\Users\Administrateur\AppData\Local\slobs-client-updater
2022-01-16 08:51 - 2022-01-16 08:51 - 000000000 ____D C:\Program Files\Streamlabs OBS
2022-01-16 08:47 - 2022-01-16 08:49 - 206820992 _____ (General Workings, Inc.) C:\Users\Administrateur\Downloads\Streamlabs+Desktop+Setup+1.7.0-NSM2FOizPI7NrJ7.exe
2022-01-16 08:12 - 2022-01-16 08:32 - 000000316 _____ C:\Users\Public\sp_connectionlist.xml
2022-01-16 08:08 - 2022-01-16 08:09 - 007147520 _____ C:\Users\Administrateur\Downloads\spacedesk_driver_Win_10_64_v1030_BETA.msi
2022-01-16 07:55 - 2022-01-29 20:20 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\winamax
2022-01-16 07:55 - 2022-01-25 18:59 - 000000000 ____D C:\Users\Administrateur\AppData\Local\winamax-updater
2022-01-16 07:55 - 2022-01-16 07:55 - 000002309 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamax.lnk
2022-01-16 07:52 - 2022-01-16 07:55 - 278550440 _____ (Winamax) C:\Users\Administrateur\Downloads\winamax-setup.exe
2022-01-16 07:30 - 2022-01-16 07:30 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CEF
2022-01-16 07:29 - 2022-01-29 16:50 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\obs-studio
2022-01-16 07:29 - 2022-01-16 07:29 - 011047589 _____ C:\Users\Administrateur\Downloads\archive.zip
2022-01-16 07:28 - 2022-01-29 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2022-01-16 07:28 - 2022-01-16 07:28 - 000000000 ____D C:\ProgramData\obs-studio-hook
2022-01-16 07:27 - 2022-01-29 11:27 - 000000000 ____D C:\Users\Administrateur\Desktop\Dl
2022-01-16 07:27 - 2022-01-16 09:05 - 000000000 ____D C:\ProgramData\Package Cache
2022-01-16 07:27 - 2022-01-16 07:28 - 000000000 ____D C:\Program Files\obs-studio
2022-01-16 07:24 - 2022-01-16 07:27 - 090640720 _____ (obsproject.com) C:\Users\Administrateur\Downloads\OBS-Studio-27.1.3-Full-Installer-x64.exe
2022-01-16 06:24 - 2022-01-16 06:24 - 000000000 ____H C:\Users\Administrateur\Documents\Default.rdp
2022-01-15 18:05 - 2022-01-29 12:27 - 000000000 ____D C:\WINDOWS\Firmware

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-01-29 20:04 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-29 18:55 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-29 16:58 - 2019-12-07 15:50 - 000755174 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-29 16:58 - 2019-12-07 15:50 - 000141980 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-29 16:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-29 16:51 - 2021-11-15 13:31 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-29 16:51 - 2020-09-27 06:33 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-29 16:50 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-01-29 16:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-29 16:50 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-29 16:17 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-29 16:16 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-01-29 15:58 - 2021-03-19 15:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-01-29 15:11 - 2021-11-15 12:28 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache
2022-01-29 12:53 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-01-29 12:38 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-29 12:37 - 2021-11-15 12:28 - 000000000 ___RD C:\Users\Administrateur\3D Objects
2022-01-29 12:37 - 2020-09-27 08:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-01-29 12:37 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-01-29 12:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-29 12:36 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT
2022-01-29 12:36 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-01-29 12:36 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-01-29 12:34 - 2019-12-07 10:14 - 000000000 __RSD C:\WINDOWS\Media
2022-01-29 12:33 - 2021-11-15 13:32 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2022-01-29 12:33 - 2021-11-15 13:31 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-01-29 12:32 - 2021-11-15 13:31 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-01-29 12:32 - 2020-09-27 08:36 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-29 12:32 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-01-29 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-01-29 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-01-29 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2022-01-29 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-01-29 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-01-29 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-29 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help
2022-01-29 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2022-01-29 12:30 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup
2022-01-29 12:29 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2022-01-29 12:28 - 2021-11-15 13:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2022-01-29 12:27 - 2021-11-15 13:32 - 000000000 ____D C:\Program Files\Realtek
2022-01-29 12:27 - 2021-11-15 12:27 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages
2022-01-29 12:24 - 2019-12-07 15:53 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-01-29 12:24 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-29 12:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-01-29 12:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-29 12:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-01-29 12:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-01-29 12:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-01-28 00:09 - 2021-11-15 12:30 - 000000000 ____D C:\Users\Administrateur\AppData\Local\PlaceholderTileLogoFolder
2022-01-19 06:44 - 2020-12-21 16:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-19 06:43 - 2020-12-21 16:21 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================