Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-01-2023
Exécuté par berna (administrateur) sur LAPTOP-SHLB3MCA (HP HP Pavilion Notebook) (20-01-2023 18:08:26)
Exécuté depuis C:\Users\berna\Desktop
Profils chargés: berna
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2486 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(C:\Program Files (x86)\hicloud\update_server\startUp.exe ->) (EZVIZ Inc. -> ) C:\Program Files (x86)\hicloud\update_server\SPUpDateServer.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(EZVIZ Inc. -> ) C:\Program Files (x86)\hicloud\update_server\startUp.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\igfxEM.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (HP Inc. -> HP) C:\Windows\System32\HP3DDGService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (WildTangent, Inc. -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270216 2018-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1923008 2017-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3245968 2023-01-09] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [SPUpDateServerrun] => C:\Program Files (x86)\hicloud\update_server\startUp.exe [14832 2015-09-10] (EZVIZ Inc. -> )
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-1548823856-688126851-1248427421-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38935376 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1548823856-688126851-1248427421-1001\...\Run: [MicrosoftEdgeAutoLaunch_73DBE6F1D7C76CA9DC7B8009ED529D7A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188616 2023-01-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548823856-688126851-1248427421-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [154624 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP C311 Status Monitor: C:\windows\system32\hpinkstsC311LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 5530 series): C:\windows\system32\HPDiscoPMC311.dll [762400 2013-08-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.75\Installer\chrmstp.exe [2023-01-11] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll
IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll
Startup: C:\Users\berna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP ENVY 5530 series.lnk [2022-09-04]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP ENVY 5530 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP ENVY 5530 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3AM1S4PD05XT;CONNECTION=USB;MONITOR=1;
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2D8943E4-2936-4E3E-AA27-37C577332B26} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-07] (Google LLC -> Google LLC)
Task: {92FCDC56-571B-47AB-B5A7-53FD10026E61} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9E04178F-2520-4A26-B87D-88D99FE69B39} - System32\Tasks\HPCustParticipation HP ENVY 5530 series => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPCustPartic.exe [5642272 2013-08-13] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {A1192401-496A-4004-91CB-442FF4028DF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BAE1CCA1-5064-4762-8901-5C3C53D60226} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4713808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c7b10cae-744c-406b-a0d4-65154aff4f68" --version "6.08.10255" --silent
Task: {C4B7FF4B-8565-4381-91B8-17BA45F8AE64} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-07] (Google LLC -> Google LLC)
Task: {DAE60A49-C1CC-49AF-95DF-416D132B1BBE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-01-11] (Piriform Software Ltd -> Piriform)
Task: {E8FFE940-546A-49BB-81D0-BDB127773A30} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {f241540f-d4c3-45e4-b781-1c193c7651fe} - pas de chemin du fichier
Task: {F9009875-F869-400C-8943-64AB8895ED19} - System32\Tasks\CCleanerSkipUAC - berna => C:\Program Files\CCleaner\CCleaner.exe [32617808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FD4A0452-E593-40A9-BF84-53CBF1E7D8DF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0d6fdb5c-7857-42b0-9979-90028b6080d8}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\berna\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-20]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\berna\AppData\Local\Google\Chrome\User Data\Default [2023-01-20]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://captchaverifier.top; hxxps://www.lameteoagricole.net; hxxps://www.netflix.com; hxxps://www.revolution-energetique.com; hxxps://www.tomtom.com; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxps://www.google.fr/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8#q=manuel%20utilisation%20google%20chgrome","hxxps://support.google.com/chrome/answer/3104598?hl=fr","hxxps://www.google.com/","hxxps://www.google.com/"
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\berna\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-12-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\berna\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-07]
CHR Profile: C:\Users\berna\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-16]
CHR Profile: C:\Users\berna\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-16]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 hp3ddgsrv; C:\windows\system32\HP3DDGService.exe [130072 2017-09-22] (HP Inc. -> HP)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1689984 2022-03-29] (WildTangent, Inc. -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2019-05-07] (Alcorlink Corp. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-04-26] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-04-26] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_hwusbdev; C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [117248 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [13952 2010-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_cdcacm; C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [98816 2011-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\WINDOWS\System32\drivers\ew_juextctrl.sys [28672 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_update; C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [22016 2010-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\WINDOWS\System32\drivers\ewusbmdm.sys [222464 2011-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 MpKslc343a7e8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{40E1B53C-7E87-46EF-BDA1-9A1B6CA942F3}\MpKslDrv.sys [214280 2023-01-20] (Microsoft Windows -> Microsoft Corporation)
R2 NPF; C:\Program Files (x86)\Ezviz Studio\npf64.sys [36600 2021-01-25] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 NVHDA; C:\WINDOWS\system32\drivers\nvhda64v.sys [138584 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [26560 2017-10-24] (NVIDIA Corporation -> Windows (R) Win 7 DDK provider)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [260608 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
S3 MpKsld7bdc4eb; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9FAC0994-3F6C-4FFB-81A8-AA06A3CD9A4A}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-01-20 18:08 - 2023-01-20 18:11 - 000019931 _____ C:\Users\berna\Desktop\FRST.txt
2023-01-20 18:07 - 2023-01-20 18:09 - 000000000 ____D C:\FRST
2023-01-20 18:05 - 2023-01-20 18:07 - 002376704 _____ (Farbar) C:\Users\berna\Desktop\FRST64.exe
2023-01-20 18:04 - 2023-01-20 18:04 - 000308098 _____ C:\Users\berna\Desktop\ZHPDiag.txt
2023-01-20 17:31 - 2023-01-20 17:31 - 000000872 _____ C:\Users\berna\Desktop\ZHPDiag.lnk
2023-01-20 17:31 - 2023-01-20 17:31 - 000000000 ____D C:\Users\berna\AppData\Local\ZHP
2023-01-19 08:08 - 2023-01-19 08:08 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-01-17 17:15 - 2023-01-17 17:15 - 000001382 _____ C:\Users\berna\Desktop\kprm-20230117171521.txt
2023-01-17 17:15 - 2023-01-17 17:15 - 000000000 ____D C:\KPRM
2023-01-16 22:23 - 2023-01-16 22:23 - 000000112 ___SH C:\bootTel.dat
2023-01-16 13:15 - 2023-01-20 17:10 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-01-16 13:15 - 2023-01-19 08:08 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-01-16 08:51 - 2023-01-20 18:04 - 000000000 ____D C:\Users\berna\AppData\Roaming\ZHP
2023-01-11 11:53 - 2023-01-11 11:53 - 000000000 ___HD C:\$WinREAgent
2022-11-23 13:21 - 2022-11-23 17:26 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2022-11-23 13:21 - 2022-11-23 16:50 - 000000000 ____D C:\Users\berna\AppData\Local\BraveSoftware
2022-11-20 17:52 - 2022-11-20 17:52 - 000000000 ____D C:\Users\berna\AppData\Local\SolidDocuments
2022-11-20 17:52 - 2022-11-20 17:52 - 000000000 ____D C:\ProgramData\SolidDocuments
2022-11-11 12:38 - 2022-09-30 05:24 - 000050720 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ss_conn_usb_driver2.sys
2022-11-05 07:47 - 2022-09-30 05:24 - 000174112 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2022-11-05 07:47 - 2022-09-30 05:23 - 000167440 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-01-20 17:40 - 2021-06-07 09:02 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-20 17:40 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-01-20 17:33 - 2021-06-07 09:02 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-20 17:31 - 2021-06-07 19:21 - 000000000 ____D C:\Program Files (x86)\Google
2023-01-20 17:26 - 2021-06-07 10:55 - 001841164 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-01-20 17:26 - 2021-06-07 09:18 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2023-01-20 17:26 - 2021-06-07 09:18 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2023-01-20 17:26 - 2021-06-07 08:54 - 000000000 ____D C:\WINDOWS\INF
2023-01-20 17:24 - 2021-08-04 16:14 - 000000000 ____D C:\Program Files\CCleaner
2023-01-20 17:21 - 2021-06-07 13:06 - 000000000 __SHD C:\Users\berna\IntelGraphicsProfiles
2023-01-20 17:21 - 2021-06-07 12:57 - 000000000 ____D C:\Users\berna
2023-01-20 17:17 - 2021-06-07 10:05 - 000000000 ____D C:\ProgramData\NVIDIA
2023-01-20 17:10 - 2021-06-07 10:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-01-20 17:10 - 2021-06-07 10:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-20 17:10 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\ServiceState
2023-01-20 17:09 - 2021-06-07 09:58 - 000008192 ___SH C:\DumpStack.log.tmp
2023-01-20 10:41 - 2021-06-26 18:27 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3001328F-07B0-409F-85BB-9D27D4933D22}
2023-01-19 19:53 - 2021-06-08 16:52 - 000000000 ____D C:\Users\berna\AppData\Roaming\calibre
2023-01-19 13:14 - 2021-12-13 10:52 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1548823856-688126851-1248427421-1001
2023-01-19 13:14 - 2021-06-07 13:12 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1548823856-688126851-1248427421-1001
2023-01-19 13:14 - 2021-06-07 12:57 - 000002424 _____ C:\Users\berna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-18 19:46 - 2021-06-08 07:04 - 000000000 ____D C:\Users\berna\AppData\Roaming\KeePass
2023-01-18 14:00 - 2021-06-07 08:28 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-01-18 13:58 - 2021-06-07 13:07 - 000000000 ____D C:\Users\berna\AppData\Local\D3DSCache
2023-01-17 17:10 - 2021-07-09 06:33 - 000000000 ____D C:\WINDOWS\Minidump
2023-01-17 10:10 - 2021-08-03 07:30 - 000000000 ____D C:\Users\berna\AppData\Local\CrashDumps
2023-01-17 07:46 - 2021-06-07 10:01 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-01-17 07:46 - 2021-06-07 10:01 - 000002247 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-01-16 22:39 - 2021-06-07 08:32 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-01-16 13:09 - 2021-10-22 15:08 - 000000000 ____D C:\Users\berna\AppData\LocalLow\Temp
2023-01-16 12:58 - 2021-08-19 19:38 - 000000000 ____D C:\Users\berna\AppData\Roaming\Orange
2023-01-16 08:08 - 2022-08-08 13:06 - 000000000 ____D C:\Program Files\Wondershare
2023-01-16 08:04 - 2022-07-05 09:25 - 000000000 ____D C:\Users\berna\Documents\WeChat Files
2023-01-16 08:04 - 2022-07-05 09:25 - 000000000 ____D C:\Users\berna\AppData\Roaming\Tencent
2023-01-16 08:04 - 2022-07-05 09:25 - 000000000 ____D C:\Program Files (x86)\Tencent
2023-01-11 19:25 - 2021-06-08 17:27 - 000001346 _____ C:\Users\Public\Desktop\Skype.lnk
2023-01-11 19:25 - 2021-06-08 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-01-11 19:24 - 2021-06-08 07:09 - 000001141 _____ C:\Users\berna\Desktop\KeePass 2.lnk
2023-01-11 19:24 - 2021-06-08 07:03 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2023-01-11 19:24 - 2021-06-08 07:03 - 000000000 ____D C:\Program Files (x86)\KeePass Password Safe 2
2023-01-11 19:24 - 2021-06-07 19:25 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-11 19:24 - 2021-06-07 19:25 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-01-11 19:23 - 2021-06-08 16:52 - 000001060 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
2023-01-11 19:23 - 2021-06-08 16:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2023-01-11 19:22 - 2021-06-08 16:52 - 000000000 ____D C:\Program Files\Calibre2
2023-01-11 13:49 - 2021-06-07 10:00 - 000520040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-11 13:48 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-11 13:48 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-11 13:48 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-01-11 13:48 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-11 12:01 - 2021-06-07 10:02 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-11 11:49 - 2021-06-07 18:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-11 11:46 - 2021-06-07 18:44 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-11 09:23 - 2021-06-08 17:36 - 000000000 ____D C:\Users\berna\AppData\Roaming\vlc
2023-01-03 08:33 - 2022-08-08 13:06 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2022-12-31 07:32 - 2021-06-07 10:00 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-12-31 07:32 - 2021-06-07 10:00 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2021-09-05 19:12 - 2022-10-26 08:05 - 000004096 ____H () C:\Users\berna\AppData\Local\keyfile3.drm
==================== SigCheckExt =========================
2018-01-23 10:08 - 2017-10-24 23:11 - 001135280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-01-23 10:08 - 2017-10-24 23:12 - 013253824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2022-02-11 17:47 - 2022-02-11 17:47 - 000018432 _____ C:\WINDOWS\system32\SppExtComObjHook.dll
2022-08-04 15:07 - 1998-08-18 15:25 - 000169984 _____ C:\WINDOWS\SysWOW64\glut32.dll
1999-03-15 11:52 - 1999-03-15 11:52 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC42FRA.DLL
1999-04-06 16:06 - 1999-04-06 16:06 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPRPFR.DLL
2000-05-11 12:06 - 2000-05-11 12:06 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSRDO20.DLL
2000-05-24 05:45 - 2000-05-24 05:45 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTDFMT.DLL
1998-08-09 18:07 - 1998-08-09 18:07 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTKPRP.DLL
2018-01-23 10:08 - 2017-10-24 23:11 - 000885496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-01-23 10:08 - 2017-10-24 23:12 - 010881696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2000-04-03 16:52 - 2000-04-03 16:52 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RDOCURS.DLL
1998-03-25 05:54 - 1998-03-25 05:54 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SCP32.DLL
1999-11-25 02:40 - 1999-11-25 02:40 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBAME.DLL
2002-08-21 05:13 - 2002-08-21 05:13 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2023-01-20 18:05 - 2023-01-20 18:07 - 002376704 _____ (Farbar) C:\Users\berna\Desktop\FRST64.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par berna (administrateur) sur LAPTOP-SHLB3MCA (HP HP Pavilion Notebook) (20-01-2023 18:08:26)
Exécuté depuis C:\Users\berna\Desktop
Profils chargés: berna
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2486 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(C:\Program Files (x86)\hicloud\update_server\startUp.exe ->) (EZVIZ Inc. -> ) C:\Program Files (x86)\hicloud\update_server\SPUpDateServer.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(EZVIZ Inc. -> ) C:\Program Files (x86)\hicloud\update_server\startUp.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\igfxEM.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (HP Inc. -> HP) C:\Windows\System32\HP3DDGService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (WildTangent, Inc. -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270216 2018-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1923008 2017-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3245968 2023-01-09] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [SPUpDateServerrun] => C:\Program Files (x86)\hicloud\update_server\startUp.exe [14832 2015-09-10] (EZVIZ Inc. -> )
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-1548823856-688126851-1248427421-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38935376 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1548823856-688126851-1248427421-1001\...\Run: [MicrosoftEdgeAutoLaunch_73DBE6F1D7C76CA9DC7B8009ED529D7A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188616 2023-01-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548823856-688126851-1248427421-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [154624 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP C311 Status Monitor: C:\windows\system32\hpinkstsC311LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 5530 series): C:\windows\system32\HPDiscoPMC311.dll [762400 2013-08-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.75\Installer\chrmstp.exe [2023-01-11] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll
IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll
Startup: C:\Users\berna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP ENVY 5530 series.lnk [2022-09-04]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP ENVY 5530 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP ENVY 5530 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3AM1S4PD05XT;CONNECTION=USB;MONITOR=1;
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2D8943E4-2936-4E3E-AA27-37C577332B26} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-07] (Google LLC -> Google LLC)
Task: {92FCDC56-571B-47AB-B5A7-53FD10026E61} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9E04178F-2520-4A26-B87D-88D99FE69B39} - System32\Tasks\HPCustParticipation HP ENVY 5530 series => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPCustPartic.exe [5642272 2013-08-13] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {A1192401-496A-4004-91CB-442FF4028DF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BAE1CCA1-5064-4762-8901-5C3C53D60226} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4713808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c7b10cae-744c-406b-a0d4-65154aff4f68" --version "6.08.10255" --silent
Task: {C4B7FF4B-8565-4381-91B8-17BA45F8AE64} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-07] (Google LLC -> Google LLC)
Task: {DAE60A49-C1CC-49AF-95DF-416D132B1BBE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-01-11] (Piriform Software Ltd -> Piriform)
Task: {E8FFE940-546A-49BB-81D0-BDB127773A30} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {f241540f-d4c3-45e4-b781-1c193c7651fe} - pas de chemin du fichier
Task: {F9009875-F869-400C-8943-64AB8895ED19} - System32\Tasks\CCleanerSkipUAC - berna => C:\Program Files\CCleaner\CCleaner.exe [32617808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FD4A0452-E593-40A9-BF84-53CBF1E7D8DF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0d6fdb5c-7857-42b0-9979-90028b6080d8}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\berna\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-20]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\berna\AppData\Local\Google\Chrome\User Data\Default [2023-01-20]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://captchaverifier.top; hxxps://www.lameteoagricole.net; hxxps://www.netflix.com; hxxps://www.revolution-energetique.com; hxxps://www.tomtom.com; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxps://www.google.fr/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8#q=manuel%20utilisation%20google%20chgrome","hxxps://support.google.com/chrome/answer/3104598?hl=fr","hxxps://www.google.com/","hxxps://www.google.com/"
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\berna\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-12-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\berna\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-07]
CHR Profile: C:\Users\berna\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-16]
CHR Profile: C:\Users\berna\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-16]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 hp3ddgsrv; C:\windows\system32\HP3DDGService.exe [130072 2017-09-22] (HP Inc. -> HP)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1689984 2022-03-29] (WildTangent, Inc. -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2019-05-07] (Alcorlink Corp. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-04-26] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-04-26] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_hwusbdev; C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [117248 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [13952 2010-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_cdcacm; C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [98816 2011-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\WINDOWS\System32\drivers\ew_juextctrl.sys [28672 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_update; C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [22016 2010-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\WINDOWS\System32\drivers\ewusbmdm.sys [222464 2011-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 MpKslc343a7e8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{40E1B53C-7E87-46EF-BDA1-9A1B6CA942F3}\MpKslDrv.sys [214280 2023-01-20] (Microsoft Windows -> Microsoft Corporation)
R2 NPF; C:\Program Files (x86)\Ezviz Studio\npf64.sys [36600 2021-01-25] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 NVHDA; C:\WINDOWS\system32\drivers\nvhda64v.sys [138584 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [26560 2017-10-24] (NVIDIA Corporation -> Windows (R) Win 7 DDK provider)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [260608 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
S3 MpKsld7bdc4eb; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9FAC0994-3F6C-4FFB-81A8-AA06A3CD9A4A}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-01-20 18:08 - 2023-01-20 18:11 - 000019931 _____ C:\Users\berna\Desktop\FRST.txt
2023-01-20 18:07 - 2023-01-20 18:09 - 000000000 ____D C:\FRST
2023-01-20 18:05 - 2023-01-20 18:07 - 002376704 _____ (Farbar) C:\Users\berna\Desktop\FRST64.exe
2023-01-20 18:04 - 2023-01-20 18:04 - 000308098 _____ C:\Users\berna\Desktop\ZHPDiag.txt
2023-01-20 17:31 - 2023-01-20 17:31 - 000000872 _____ C:\Users\berna\Desktop\ZHPDiag.lnk
2023-01-20 17:31 - 2023-01-20 17:31 - 000000000 ____D C:\Users\berna\AppData\Local\ZHP
2023-01-19 08:08 - 2023-01-19 08:08 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-01-17 17:15 - 2023-01-17 17:15 - 000001382 _____ C:\Users\berna\Desktop\kprm-20230117171521.txt
2023-01-17 17:15 - 2023-01-17 17:15 - 000000000 ____D C:\KPRM
2023-01-16 22:23 - 2023-01-16 22:23 - 000000112 ___SH C:\bootTel.dat
2023-01-16 13:15 - 2023-01-20 17:10 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-01-16 13:15 - 2023-01-19 08:08 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-01-16 08:51 - 2023-01-20 18:04 - 000000000 ____D C:\Users\berna\AppData\Roaming\ZHP
2023-01-11 11:53 - 2023-01-11 11:53 - 000000000 ___HD C:\$WinREAgent
2022-11-23 13:21 - 2022-11-23 17:26 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2022-11-23 13:21 - 2022-11-23 16:50 - 000000000 ____D C:\Users\berna\AppData\Local\BraveSoftware
2022-11-20 17:52 - 2022-11-20 17:52 - 000000000 ____D C:\Users\berna\AppData\Local\SolidDocuments
2022-11-20 17:52 - 2022-11-20 17:52 - 000000000 ____D C:\ProgramData\SolidDocuments
2022-11-11 12:38 - 2022-09-30 05:24 - 000050720 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ss_conn_usb_driver2.sys
2022-11-05 07:47 - 2022-09-30 05:24 - 000174112 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2022-11-05 07:47 - 2022-09-30 05:23 - 000167440 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-01-20 17:40 - 2021-06-07 09:02 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-20 17:40 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-01-20 17:33 - 2021-06-07 09:02 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-20 17:31 - 2021-06-07 19:21 - 000000000 ____D C:\Program Files (x86)\Google
2023-01-20 17:26 - 2021-06-07 10:55 - 001841164 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-01-20 17:26 - 2021-06-07 09:18 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2023-01-20 17:26 - 2021-06-07 09:18 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2023-01-20 17:26 - 2021-06-07 08:54 - 000000000 ____D C:\WINDOWS\INF
2023-01-20 17:24 - 2021-08-04 16:14 - 000000000 ____D C:\Program Files\CCleaner
2023-01-20 17:21 - 2021-06-07 13:06 - 000000000 __SHD C:\Users\berna\IntelGraphicsProfiles
2023-01-20 17:21 - 2021-06-07 12:57 - 000000000 ____D C:\Users\berna
2023-01-20 17:17 - 2021-06-07 10:05 - 000000000 ____D C:\ProgramData\NVIDIA
2023-01-20 17:10 - 2021-06-07 10:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-01-20 17:10 - 2021-06-07 10:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-20 17:10 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\ServiceState
2023-01-20 17:09 - 2021-06-07 09:58 - 000008192 ___SH C:\DumpStack.log.tmp
2023-01-20 10:41 - 2021-06-26 18:27 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3001328F-07B0-409F-85BB-9D27D4933D22}
2023-01-19 19:53 - 2021-06-08 16:52 - 000000000 ____D C:\Users\berna\AppData\Roaming\calibre
2023-01-19 13:14 - 2021-12-13 10:52 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1548823856-688126851-1248427421-1001
2023-01-19 13:14 - 2021-06-07 13:12 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1548823856-688126851-1248427421-1001
2023-01-19 13:14 - 2021-06-07 12:57 - 000002424 _____ C:\Users\berna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-18 19:46 - 2021-06-08 07:04 - 000000000 ____D C:\Users\berna\AppData\Roaming\KeePass
2023-01-18 14:00 - 2021-06-07 08:28 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-01-18 13:58 - 2021-06-07 13:07 - 000000000 ____D C:\Users\berna\AppData\Local\D3DSCache
2023-01-17 17:10 - 2021-07-09 06:33 - 000000000 ____D C:\WINDOWS\Minidump
2023-01-17 10:10 - 2021-08-03 07:30 - 000000000 ____D C:\Users\berna\AppData\Local\CrashDumps
2023-01-17 07:46 - 2021-06-07 10:01 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-01-17 07:46 - 2021-06-07 10:01 - 000002247 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-01-16 22:39 - 2021-06-07 08:32 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-01-16 13:09 - 2021-10-22 15:08 - 000000000 ____D C:\Users\berna\AppData\LocalLow\Temp
2023-01-16 12:58 - 2021-08-19 19:38 - 000000000 ____D C:\Users\berna\AppData\Roaming\Orange
2023-01-16 08:08 - 2022-08-08 13:06 - 000000000 ____D C:\Program Files\Wondershare
2023-01-16 08:04 - 2022-07-05 09:25 - 000000000 ____D C:\Users\berna\Documents\WeChat Files
2023-01-16 08:04 - 2022-07-05 09:25 - 000000000 ____D C:\Users\berna\AppData\Roaming\Tencent
2023-01-16 08:04 - 2022-07-05 09:25 - 000000000 ____D C:\Program Files (x86)\Tencent
2023-01-11 19:25 - 2021-06-08 17:27 - 000001346 _____ C:\Users\Public\Desktop\Skype.lnk
2023-01-11 19:25 - 2021-06-08 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-01-11 19:24 - 2021-06-08 07:09 - 000001141 _____ C:\Users\berna\Desktop\KeePass 2.lnk
2023-01-11 19:24 - 2021-06-08 07:03 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2023-01-11 19:24 - 2021-06-08 07:03 - 000000000 ____D C:\Program Files (x86)\KeePass Password Safe 2
2023-01-11 19:24 - 2021-06-07 19:25 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-11 19:24 - 2021-06-07 19:25 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-01-11 19:23 - 2021-06-08 16:52 - 000001060 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
2023-01-11 19:23 - 2021-06-08 16:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2023-01-11 19:22 - 2021-06-08 16:52 - 000000000 ____D C:\Program Files\Calibre2
2023-01-11 13:49 - 2021-06-07 10:00 - 000520040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-11 13:48 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-11 13:48 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-11 13:48 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-01-11 13:48 - 2021-06-07 09:02 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-11 12:01 - 2021-06-07 10:02 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-11 11:49 - 2021-06-07 18:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-11 11:46 - 2021-06-07 18:44 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-11 09:23 - 2021-06-08 17:36 - 000000000 ____D C:\Users\berna\AppData\Roaming\vlc
2023-01-03 08:33 - 2022-08-08 13:06 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2022-12-31 07:32 - 2021-06-07 10:00 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-12-31 07:32 - 2021-06-07 10:00 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2021-09-05 19:12 - 2022-10-26 08:05 - 000004096 ____H () C:\Users\berna\AppData\Local\keyfile3.drm
==================== SigCheckExt =========================
2018-01-23 10:08 - 2017-10-24 23:11 - 001135280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-01-23 10:08 - 2017-10-24 23:12 - 013253824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2022-02-11 17:47 - 2022-02-11 17:47 - 000018432 _____ C:\WINDOWS\system32\SppExtComObjHook.dll
2022-08-04 15:07 - 1998-08-18 15:25 - 000169984 _____ C:\WINDOWS\SysWOW64\glut32.dll
1999-03-15 11:52 - 1999-03-15 11:52 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC42FRA.DLL
1999-04-06 16:06 - 1999-04-06 16:06 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPRPFR.DLL
2000-05-11 12:06 - 2000-05-11 12:06 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSRDO20.DLL
2000-05-24 05:45 - 2000-05-24 05:45 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTDFMT.DLL
1998-08-09 18:07 - 1998-08-09 18:07 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTKPRP.DLL
2018-01-23 10:08 - 2017-10-24 23:11 - 000885496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-01-23 10:08 - 2017-10-24 23:12 - 010881696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2000-04-03 16:52 - 2000-04-03 16:52 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RDOCURS.DLL
1998-03-25 05:54 - 1998-03-25 05:54 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SCP32.DLL
1999-11-25 02:40 - 1999-11-25 02:40 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBAME.DLL
2002-08-21 05:13 - 2002-08-21 05:13 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2023-01-20 18:05 - 2023-01-20 18:07 - 002376704 _____ (Farbar) C:\Users\berna\Desktop\FRST64.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================