Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Exécuté par Bernard (administrateur) sur ASUS-I5 (ASUS System Product Name) (27-04-2024 11:10:26)
Exécuté depuis C:\Users\Bernard\Desktop\FRST64.exe
Profils chargés: Bernard
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4355 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\ViewPower\openJDK\bin\javaw.exe ->) () [Fichier non signé] C:\ViewPower\console\upsTray.exe
(C:\ViewPower\upsMonitor.exe ->) (London Jamocha Community CIC -> AdoptOpenJDK) C:\ViewPower\openJDK\bin\javaw.exe <2>
(explorer.exe ->) (ITSamples.com) [Fichier non signé] C:\Program Files\ITSamples\NetworkIndicator\NetworkIndicator.exe
(Flexera Software) [Fichier non signé] C:\ViewPower\ViewPower.exe
(services.exe ->) (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SchedulesMonitor.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Flexera Software) [Fichier non signé] C:\ViewPower\upsMonitor.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_186a3f5e688b24d7\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_49599d441c87af7f\Intel_PIE_Service.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_84b2c943d6816eb7\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(services.exe ->) (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(services.exe ->) (The Apache Software Foundation -> Apache Software Foundation) C:\ViewPower\tomcat\bin\tomcat8.exe
(svchost.exe ->) (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.53.60911.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081648 2020-10-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [ViewPower] => C:\ViewPower\ViewPower.exe [552960 2022-08-17] (Flexera Software) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-525498243-2257248359-2578062925-1001\...\Run: [NetworkIndicator] => C:\Program Files\ITSamples\NetworkIndicator\NetworkIndicator.exe [367616 2014-12-12] (ITSamples.com) [Fichier non signé]
HKU\S-1-5-21-525498243-2257248359-2578062925-1001\...\Run: [EPSONE0F3D1 (Epson Stylus Photo PX720WD)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGYE.EXE [224768 2022-08-17] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) <==== ATTENTION
HKU\S-1-5-21-525498243-2257248359-2578062925-1001\...\Run: [electron.app.BlueStacks Services] => C:\Users\Bernard\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe [162219656 2024-01-25] (Now.gg, INC -> now.gg, Inc.)
HKLM\...\Print\Monitors\EPSON PX720WD Series 64MonitorBE: C:\WINDOWS\system32\E_ILMGYE.DLL [118784 2022-08-17] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ViewPower.lnk [2022-08-17]
ShortcutTarget: ViewPower.lnk -> C:\ViewPower\ViewPower.exe (Flexera Software) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {22FD74BA-36DB-4496-BF5B-36CAA7BE8858} - System32\Tasks\2BrightSparks\SyncBackFree\ASUS-I5-Bernard\SyncBackFree => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [145089296 2024-04-02] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) -> C:\Program Files (x86)\2BrightSparks\SyncBackFree\-delay -m -notsched
Task: {ACF59586-510D-4DE9-AF7C-AC4F886EAF75} - System32\Tasks\2BrightSparks\SyncBackFree\ASUS-I5-Bernard\SyncBackFree Bureau => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [145089296 2024-04-02] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) -> C:\Program Files (x86)\2BrightSparks\SyncBackFree\-m "Bureau"
Task: {D1173975-7D6E-4A8C-AB3A-62EEE2180A65} - System32\Tasks\2BrightSparks\SyncBackFree\ASUS-I5-Bernard\SyncBackFree Data => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [145089296 2024-04-02] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) -> C:\Program Files (x86)\2BrightSparks\SyncBackFree\-m "Data"
Task: {666EC6C2-3DF7-4FD7-8EAA-49A802766317} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2024-03-20] (Now.gg, INC -> BlueStack Systems, Inc.)
Task: {46AA7B25-42F0-4B26-AFAD-806FC65ACCE9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {B3FCC1E3-62C8-4920-BF45-DC302A217C55} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "de7334d4-1eb9-48d0-ae35-81662e6f837f" --version "6.23.11010" --silent
Task: {843397C7-57A4-4CB2-8768-8DF08A391BCB} - System32\Tasks\CCleanerSkipUAC - Bernard => C:\Program Files\CCleaner\CCleaner.exe [39118752 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {B3D7211D-9487-4693-A9D4-5D29003AC99A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42E9CFAD-EDC6-466B-89F0-9C5E7293DE5C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CB9DD4C9-0322-4588-BD18-CE35830F6025} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E185D6DD-3F5D-4300-8C5B-7325B0E455D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {760811F2-D7DE-4094-B315-9A105ECCEE86} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34208 2024-04-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {669D5248-45CB-4B73-AD96-4B7E5BA970FA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (Pas de fichier)
Task: {61FCACF3-088A-4D36-A091-B867CCC848F0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (Pas de fichier)
Task: {CF646E0D-B316-4162-B3D0-8884F6F728A9} - System32\Tasks\Opera scheduled Autoupdate 1660687266 => C:\Program Files\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-25] (Opera Norway AS -> Opera Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}: [NameServer] 80.67.169.12,80.67.169.40
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}: [DhcpDomain] numericable.fr
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}\E457D6562796361626C656D273637383: [NameServer] 80.67.169.12,80.67.169.40
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}\E457D6562796361626C656D273637383: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}\E457D6562796361626C656D273637383: [DhcpDomain] numericable.fr
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-27]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-03-23]
Edge Extension: (Google Docs hors connexion) - C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-04]
Edge Extension: (Edge relevant text changes) - C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-30]
Edge Extension: (AdGuard AdBlocker) - C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2024-03-30]
Edge Profile: C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2024-04-27]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF ProfilePath: C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f2yxgzvq.Profil de test [non trouvé(e)] <==== ATTENTION
FF DefaultProfile: iy8kc4or.default
FF ProfilePath: C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\iy8kc4or.default [2021-06-17]
FF ProfilePath: C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release [2024-04-27]
FF DownloadDir: E:\Téléchargements
FF Notifications: Mozilla\Firefox\Profiles\f263fmh6.default-release -> hxxps://forum.zebulon.fr; hxxps://outlook.live.com; hxxps://www.zebulon.fr; hxxps://cemantix.herokuapp.com
FF Extension: (AdGuard AdBlocker) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\adguardadblocker@adguard.com.xpi [2024-04-18]
FF Extension: (TinEye Reverse Image Search) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\tineye@ideeinc.com.xpi [2023-09-17]
FF Extension: (Google™ Translator) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\{059cddf1-f66c-4b63-a79a-c35ac7e6ac65}.xpi [2021-01-12]
FF Extension: (Mac OS X Tiger) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\{4efd4111-580f-4d62-9ea7-aa697527d826}.xpi [2020-10-04]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2024-04-05]
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\opera.exe
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 ArmouryLiveUpdate; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_94d9766656ff6011\ArmouryLiveUpdate.exe [576216 2021-08-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [222104 2020-10-03] (DTS, Inc. -> )
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Fichier non signé]
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2432608 2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887264 2024-04-20] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-02-24] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe [1459968 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_84b2c943d6816eb7\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation)
R2 SyncBackFreeSchedulesMonitor; C:\Program Files (x86)\2BrightSparks\SyncBackFree\SchedulesMonitor.exe [3447536 2024-04-02] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd)
R2 upsMonitor; C:\ViewPower\upsMonitor.exe [552960 2022-08-17] (Flexera Software) [Fichier non signé]
R3 upsTomcat; C:\ViewPower\tomcat\bin\Tomcat8.exe [104056 2020-02-05] (The Apache Software Foundation -> Apache Software Foundation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [394288 2024-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [282624 2023-10-27] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2023-10-27] (Microsoft Corporation) [Fichier non signé]
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl8d99bdc6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{86BB555E-F73E-446C-85E0-46D3271A5567}\MpKslDrv.sys [301336 2024-04-27] (Microsoft Windows -> Microsoft Corporation)
R3 ROGKB; C:\WINDOWS\System32\DriverStore\FileRepository\rogkb.inf_amd64_9c19fffb5d62d536\ROGKB.sys [33680 2021-08-30] (ASUSTeK Computer Inc. -> )
R3 ROGMS; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_94d9766656ff6011\ROGMS.sys [33184 2021-08-30] (ASUSTeK Computer Inc. -> )
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2023-07-10] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 TMUSB; C:\WINDOWS\System32\DRIVERS\TMUSB64.SYS [63096 2020-08-25] (SEIKO EPSON Corporation Test Signing -> Seiko Epson Corporation)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-02-29] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-27 11:09 - 2024-04-27 11:10 - 000049775 _____ C:\Users\Bernard\Desktop\Addition.txt
2024-04-27 11:08 - 2024-04-27 11:10 - 000021040 _____ C:\Users\Bernard\Desktop\FRST.txt
2024-04-27 11:08 - 2024-04-27 11:10 - 000000000 ____D C:\FRST
2024-04-27 10:45 - 2024-04-27 10:45 - 002394112 _____ (Farbar) C:\Users\Bernard\Desktop\FRST64.exe
2024-04-27 10:40 - 2024-04-27 10:40 - 000026896 _____ C:\WINDOWS\system32\lc.dat
2024-04-26 07:14 - 2024-04-26 07:14 - 000000000 ___HD C:\$WinREAgent
2024-04-19 04:52 - 2024-04-20 02:43 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-04-18 06:17 - 2024-04-12 17:24 - 002031360 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-18 06:17 - 2024-04-12 17:24 - 002031360 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-04-18 06:17 - 2024-04-12 17:24 - 001578856 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-18 06:17 - 2024-04-12 17:24 - 001578856 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-04-18 06:17 - 2024-04-12 17:24 - 001488008 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001445224 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001445224 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001295208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001295208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001226864 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 001543288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 001199624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 001046152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 000842376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-04-18 06:17 - 2024-04-12 17:20 - 000670344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 000505352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 016034848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 012930080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 002174600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 001626760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 001024648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 000787568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 000459808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-04-18 06:17 - 2024-04-12 17:18 - 006780528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-04-18 06:17 - 2024-04-12 17:18 - 005913736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-04-18 06:17 - 2024-04-12 17:18 - 005772912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-04-18 06:17 - 2024-04-12 17:18 - 003721328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-04-18 06:17 - 2024-04-12 17:18 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-04-18 06:17 - 2024-04-12 17:17 - 006035152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-04-18 06:17 - 2024-04-12 04:05 - 000119466 _____ C:\WINDOWS\system32\nvinfo.pb
2024-04-12 09:40 - 2024-03-12 17:02 - 005208232 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys
2024-04-12 09:40 - 2024-03-12 17:02 - 001472168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter10.dll
2024-03-29 04:00 - 2024-03-29 04:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.6
2024-03-28 06:37 - 2024-04-27 09:24 - 000000000 ____D C:\ProgramData\bst_boost_interprocess
2024-03-28 06:36 - 2024-03-28 06:36 - 000000000 ____D C:\Program Files\BlueStacks_nxt
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-27 11:03 - 2022-08-16 21:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-27 10:58 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-27 10:52 - 2022-08-16 21:35 - 000000000 ____D C:\Users\Bernard\AppData\Local\D3DSCache
2024-04-27 10:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-04-27 10:40 - 2023-11-16 22:07 - 000000000 ____D C:\Program Files\CCleaner
2024-04-27 10:06 - 2022-08-18 13:53 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-27 10:06 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-27 10:06 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-27 09:59 - 2022-08-18 13:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-27 09:59 - 2022-08-16 20:42 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-27 09:59 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-27 09:57 - 2024-02-29 10:31 - 000000000 ____D C:\Program Files (x86)\GZ Systems
2024-04-27 09:57 - 2022-08-17 11:42 - 000000000 ____D C:\ProgramData\Package Cache
2024-04-27 09:18 - 2022-08-18 13:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-27 08:58 - 2022-08-17 00:01 - 000000000 ____D C:\Program Files\Opera
2024-04-27 08:14 - 2022-08-17 00:28 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Microsoft\Skype for Desktop
2024-04-27 08:14 - 2020-10-03 17:20 - 000000000 ___SD C:\Users\Bernard\AppData\Roaming\Microsoft\Credentials
2024-04-27 06:33 - 2024-01-17 05:48 - 000001094 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-04-27 06:33 - 2022-08-18 13:48 - 000004028 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1660687266
2024-04-27 02:57 - 2022-09-06 18:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-27 02:57 - 2022-08-16 21:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-26 11:30 - 2020-10-06 14:53 - 000000000 ____D C:\Users\Bernard\Documents\FoxTarot
2024-04-26 09:42 - 2022-08-16 21:08 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-26 07:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-26 07:22 - 2022-08-18 13:45 - 000474040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-26 07:21 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-04-26 07:21 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-04-26 07:21 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-04-26 07:21 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-26 07:21 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-04-26 07:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-26 07:17 - 2022-08-18 13:46 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-26 07:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-26 06:14 - 2022-08-18 13:40 - 000000000 ____D C:\Users\Bernard
2024-04-26 06:12 - 2022-08-18 09:54 - 000000000 ____D C:\Users\Bernard\AppData\Local\2BrightSparks
2024-04-26 06:12 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-04-26 06:12 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-04-26 06:12 - 2019-12-07 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2024-04-26 06:12 - 2019-12-07 16:52 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2024-04-26 06:12 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2024-04-26 06:12 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2024-04-26 06:12 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemApps
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\icsxml
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\downlevel
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\L2Schemas
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IdentityCRL
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Cursors
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Containers
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2024-04-26 06:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Web
2024-04-26 06:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Vss
2024-04-26 06:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2024-04-26 06:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\IME
2024-04-26 06:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\schemas
2024-04-20 04:56 - 2023-04-21 19:25 - 000000000 ____D C:\Users\Bernard\AppData\Local\Malwarebytes
2024-04-20 04:55 - 2022-08-18 17:07 - 000000000 ____D C:\Users\Bernard\AppData\LocalLow\IGDump
2024-04-20 02:46 - 2024-03-23 04:23 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-19 07:09 - 2022-08-16 21:27 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-04-19 01:57 - 2023-11-16 22:07 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-04-18 06:26 - 2022-08-17 12:52 - 000000000 ____D C:\Users\Bernard\AppData\Local\NVIDIA
2024-04-18 06:12 - 2023-11-16 22:07 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-04-18 06:12 - 2023-11-16 22:07 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-04-17 03:45 - 2022-08-17 21:39 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2024-04-17 03:45 - 2022-08-17 21:39 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Notepad++
2024-04-17 03:40 - 2023-11-18 07:08 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\XnViewMP
2024-04-14 06:36 - 2020-10-05 04:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2024-04-13 04:39 - 2023-09-12 05:55 - 000000000 ____D C:\Program Files\Recuva
2024-04-12 17:17 - 2022-08-18 11:01 - 006948552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-04-10 11:50 - 2023-11-18 06:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView MP
2024-04-10 11:50 - 2023-11-18 06:59 - 000000000 ____D C:\Program Files\XnViewMP
2024-04-10 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-10 05:41 - 2022-08-16 21:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 05:40 - 2022-08-16 21:21 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 04:40 - 2022-08-16 20:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-07 14:46 - 2022-08-16 23:50 - 000000000 ____D C:\Users\Bernard\AppData\Local\ElevatedDiagnostics
2024-04-05 07:09 - 2022-08-17 21:29 - 000001407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackFree.lnk
2024-04-04 04:40 - 2022-08-18 13:48 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 04:40 - 2022-08-18 13:48 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-29 04:00 - 2022-08-17 05:53 - 000000000 ____D C:\Program Files\LibreOffice
2024-03-28 06:36 - 2023-04-02 06:29 - 000001319 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2024-03-28 06:36 - 2023-01-11 19:23 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk
2024-03-28 06:36 - 2023-01-11 19:20 - 000000000 ____D C:\Users\Bernard\AppData\Local\BlueStacks
2024-03-28 06:36 - 2022-12-31 07:58 - 000003926 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper_nxt
2024-03-28 06:34 - 2022-08-16 21:48 - 000000000 ____D C:\Users\Public\BlueStacks
2024-03-28 04:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
==================== Fichiers à la racine de certains dossiers ========
2023-02-28 08:19 - 2023-02-28 08:19 - 000000001 _____ () C:\Users\Bernard\AppData\Roaming\c
2022-08-16 21:46 - 2022-08-19 15:41 - 000011776 _____ () C:\Users\Bernard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Bernard (administrateur) sur ASUS-I5 (ASUS System Product Name) (27-04-2024 11:10:26)
Exécuté depuis C:\Users\Bernard\Desktop\FRST64.exe
Profils chargés: Bernard
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4355 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\ViewPower\openJDK\bin\javaw.exe ->) () [Fichier non signé] C:\ViewPower\console\upsTray.exe
(C:\ViewPower\upsMonitor.exe ->) (London Jamocha Community CIC -> AdoptOpenJDK) C:\ViewPower\openJDK\bin\javaw.exe <2>
(explorer.exe ->) (ITSamples.com) [Fichier non signé] C:\Program Files\ITSamples\NetworkIndicator\NetworkIndicator.exe
(Flexera Software) [Fichier non signé] C:\ViewPower\ViewPower.exe
(services.exe ->) (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SchedulesMonitor.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Flexera Software) [Fichier non signé] C:\ViewPower\upsMonitor.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_186a3f5e688b24d7\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_49599d441c87af7f\Intel_PIE_Service.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_84b2c943d6816eb7\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(services.exe ->) (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(services.exe ->) (The Apache Software Foundation -> Apache Software Foundation) C:\ViewPower\tomcat\bin\tomcat8.exe
(svchost.exe ->) (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.53.60911.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081648 2020-10-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [ViewPower] => C:\ViewPower\ViewPower.exe [552960 2022-08-17] (Flexera Software) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-525498243-2257248359-2578062925-1001\...\Run: [NetworkIndicator] => C:\Program Files\ITSamples\NetworkIndicator\NetworkIndicator.exe [367616 2014-12-12] (ITSamples.com) [Fichier non signé]
HKU\S-1-5-21-525498243-2257248359-2578062925-1001\...\Run: [EPSONE0F3D1 (Epson Stylus Photo PX720WD)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGYE.EXE [224768 2022-08-17] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) <==== ATTENTION
HKU\S-1-5-21-525498243-2257248359-2578062925-1001\...\Run: [electron.app.BlueStacks Services] => C:\Users\Bernard\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe [162219656 2024-01-25] (Now.gg, INC -> now.gg, Inc.)
HKLM\...\Print\Monitors\EPSON PX720WD Series 64MonitorBE: C:\WINDOWS\system32\E_ILMGYE.DLL [118784 2022-08-17] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ViewPower.lnk [2022-08-17]
ShortcutTarget: ViewPower.lnk -> C:\ViewPower\ViewPower.exe (Flexera Software) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {22FD74BA-36DB-4496-BF5B-36CAA7BE8858} - System32\Tasks\2BrightSparks\SyncBackFree\ASUS-I5-Bernard\SyncBackFree => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [145089296 2024-04-02] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) -> C:\Program Files (x86)\2BrightSparks\SyncBackFree\-delay -m -notsched
Task: {ACF59586-510D-4DE9-AF7C-AC4F886EAF75} - System32\Tasks\2BrightSparks\SyncBackFree\ASUS-I5-Bernard\SyncBackFree Bureau => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [145089296 2024-04-02] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) -> C:\Program Files (x86)\2BrightSparks\SyncBackFree\-m "Bureau"
Task: {D1173975-7D6E-4A8C-AB3A-62EEE2180A65} - System32\Tasks\2BrightSparks\SyncBackFree\ASUS-I5-Bernard\SyncBackFree Data => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [145089296 2024-04-02] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) -> C:\Program Files (x86)\2BrightSparks\SyncBackFree\-m "Data"
Task: {666EC6C2-3DF7-4FD7-8EAA-49A802766317} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2024-03-20] (Now.gg, INC -> BlueStack Systems, Inc.)
Task: {46AA7B25-42F0-4B26-AFAD-806FC65ACCE9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {B3FCC1E3-62C8-4920-BF45-DC302A217C55} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "de7334d4-1eb9-48d0-ae35-81662e6f837f" --version "6.23.11010" --silent
Task: {843397C7-57A4-4CB2-8768-8DF08A391BCB} - System32\Tasks\CCleanerSkipUAC - Bernard => C:\Program Files\CCleaner\CCleaner.exe [39118752 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {B3D7211D-9487-4693-A9D4-5D29003AC99A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42E9CFAD-EDC6-466B-89F0-9C5E7293DE5C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CB9DD4C9-0322-4588-BD18-CE35830F6025} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E185D6DD-3F5D-4300-8C5B-7325B0E455D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {760811F2-D7DE-4094-B315-9A105ECCEE86} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34208 2024-04-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {669D5248-45CB-4B73-AD96-4B7E5BA970FA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (Pas de fichier)
Task: {61FCACF3-088A-4D36-A091-B867CCC848F0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (Pas de fichier)
Task: {CF646E0D-B316-4162-B3D0-8884F6F728A9} - System32\Tasks\Opera scheduled Autoupdate 1660687266 => C:\Program Files\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-25] (Opera Norway AS -> Opera Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}: [NameServer] 80.67.169.12,80.67.169.40
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}: [DhcpDomain] numericable.fr
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}\E457D6562796361626C656D273637383: [NameServer] 80.67.169.12,80.67.169.40
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}\E457D6562796361626C656D273637383: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{86c07d8e-fffd-4947-b9fc-54c5db106605}\E457D6562796361626C656D273637383: [DhcpDomain] numericable.fr
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-27]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-03-23]
Edge Extension: (Google Docs hors connexion) - C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-04]
Edge Extension: (Edge relevant text changes) - C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-30]
Edge Extension: (AdGuard AdBlocker) - C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2024-03-30]
Edge Profile: C:\Users\Bernard\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2024-04-27]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF ProfilePath: C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f2yxgzvq.Profil de test [non trouvé(e)] <==== ATTENTION
FF DefaultProfile: iy8kc4or.default
FF ProfilePath: C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\iy8kc4or.default [2021-06-17]
FF ProfilePath: C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release [2024-04-27]
FF DownloadDir: E:\Téléchargements
FF Notifications: Mozilla\Firefox\Profiles\f263fmh6.default-release -> hxxps://forum.zebulon.fr; hxxps://outlook.live.com; hxxps://www.zebulon.fr; hxxps://cemantix.herokuapp.com
FF Extension: (AdGuard AdBlocker) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\adguardadblocker@adguard.com.xpi [2024-04-18]
FF Extension: (TinEye Reverse Image Search) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\tineye@ideeinc.com.xpi [2023-09-17]
FF Extension: (Google™ Translator) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\{059cddf1-f66c-4b63-a79a-c35ac7e6ac65}.xpi [2021-01-12]
FF Extension: (Mac OS X Tiger) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\{4efd4111-580f-4d62-9ea7-aa697527d826}.xpi [2020-10-04]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\f263fmh6.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2024-04-05]
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-02-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\opera.exe
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 ArmouryLiveUpdate; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_94d9766656ff6011\ArmouryLiveUpdate.exe [576216 2021-08-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [222104 2020-10-03] (DTS, Inc. -> )
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Fichier non signé]
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2432608 2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887264 2024-04-20] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-02-24] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe [1459968 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_84b2c943d6816eb7\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation)
R2 SyncBackFreeSchedulesMonitor; C:\Program Files (x86)\2BrightSparks\SyncBackFree\SchedulesMonitor.exe [3447536 2024-04-02] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd)
R2 upsMonitor; C:\ViewPower\upsMonitor.exe [552960 2022-08-17] (Flexera Software) [Fichier non signé]
R3 upsTomcat; C:\ViewPower\tomcat\bin\Tomcat8.exe [104056 2020-02-05] (The Apache Software Foundation -> Apache Software Foundation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [394288 2024-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [282624 2023-10-27] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2023-10-27] (Microsoft Corporation) [Fichier non signé]
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl8d99bdc6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{86BB555E-F73E-446C-85E0-46D3271A5567}\MpKslDrv.sys [301336 2024-04-27] (Microsoft Windows -> Microsoft Corporation)
R3 ROGKB; C:\WINDOWS\System32\DriverStore\FileRepository\rogkb.inf_amd64_9c19fffb5d62d536\ROGKB.sys [33680 2021-08-30] (ASUSTeK Computer Inc. -> )
R3 ROGMS; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_94d9766656ff6011\ROGMS.sys [33184 2021-08-30] (ASUSTeK Computer Inc. -> )
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2023-07-10] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 TMUSB; C:\WINDOWS\System32\DRIVERS\TMUSB64.SYS [63096 2020-08-25] (SEIKO EPSON Corporation Test Signing -> Seiko Epson Corporation)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-02-29] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-27 11:09 - 2024-04-27 11:10 - 000049775 _____ C:\Users\Bernard\Desktop\Addition.txt
2024-04-27 11:08 - 2024-04-27 11:10 - 000021040 _____ C:\Users\Bernard\Desktop\FRST.txt
2024-04-27 11:08 - 2024-04-27 11:10 - 000000000 ____D C:\FRST
2024-04-27 10:45 - 2024-04-27 10:45 - 002394112 _____ (Farbar) C:\Users\Bernard\Desktop\FRST64.exe
2024-04-27 10:40 - 2024-04-27 10:40 - 000026896 _____ C:\WINDOWS\system32\lc.dat
2024-04-26 07:14 - 2024-04-26 07:14 - 000000000 ___HD C:\$WinREAgent
2024-04-19 04:52 - 2024-04-20 02:43 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-04-18 06:17 - 2024-04-12 17:24 - 002031360 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-18 06:17 - 2024-04-12 17:24 - 002031360 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-04-18 06:17 - 2024-04-12 17:24 - 001578856 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-18 06:17 - 2024-04-12 17:24 - 001578856 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-04-18 06:17 - 2024-04-12 17:24 - 001488008 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001445224 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001445224 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001295208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001295208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-04-18 06:17 - 2024-04-12 17:24 - 001226864 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 001543288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 001199624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 001046152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 000842376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-04-18 06:17 - 2024-04-12 17:20 - 000670344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-04-18 06:17 - 2024-04-12 17:20 - 000505352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 016034848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 012930080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 002174600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 001626760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 001024648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 000787568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-04-18 06:17 - 2024-04-12 17:19 - 000459808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-04-18 06:17 - 2024-04-12 17:18 - 006780528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-04-18 06:17 - 2024-04-12 17:18 - 005913736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-04-18 06:17 - 2024-04-12 17:18 - 005772912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-04-18 06:17 - 2024-04-12 17:18 - 003721328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-04-18 06:17 - 2024-04-12 17:18 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-04-18 06:17 - 2024-04-12 17:17 - 006035152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-04-18 06:17 - 2024-04-12 04:05 - 000119466 _____ C:\WINDOWS\system32\nvinfo.pb
2024-04-12 09:40 - 2024-03-12 17:02 - 005208232 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys
2024-04-12 09:40 - 2024-03-12 17:02 - 001472168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter10.dll
2024-03-29 04:00 - 2024-03-29 04:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.6
2024-03-28 06:37 - 2024-04-27 09:24 - 000000000 ____D C:\ProgramData\bst_boost_interprocess
2024-03-28 06:36 - 2024-03-28 06:36 - 000000000 ____D C:\Program Files\BlueStacks_nxt
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-27 11:03 - 2022-08-16 21:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-27 10:58 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-27 10:52 - 2022-08-16 21:35 - 000000000 ____D C:\Users\Bernard\AppData\Local\D3DSCache
2024-04-27 10:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-04-27 10:40 - 2023-11-16 22:07 - 000000000 ____D C:\Program Files\CCleaner
2024-04-27 10:06 - 2022-08-18 13:53 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-27 10:06 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-27 10:06 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-27 09:59 - 2022-08-18 13:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-27 09:59 - 2022-08-16 20:42 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-27 09:59 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-27 09:57 - 2024-02-29 10:31 - 000000000 ____D C:\Program Files (x86)\GZ Systems
2024-04-27 09:57 - 2022-08-17 11:42 - 000000000 ____D C:\ProgramData\Package Cache
2024-04-27 09:18 - 2022-08-18 13:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-27 08:58 - 2022-08-17 00:01 - 000000000 ____D C:\Program Files\Opera
2024-04-27 08:14 - 2022-08-17 00:28 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Microsoft\Skype for Desktop
2024-04-27 08:14 - 2020-10-03 17:20 - 000000000 ___SD C:\Users\Bernard\AppData\Roaming\Microsoft\Credentials
2024-04-27 06:33 - 2024-01-17 05:48 - 000001094 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-04-27 06:33 - 2022-08-18 13:48 - 000004028 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1660687266
2024-04-27 02:57 - 2022-09-06 18:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-27 02:57 - 2022-08-16 21:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-26 11:30 - 2020-10-06 14:53 - 000000000 ____D C:\Users\Bernard\Documents\FoxTarot
2024-04-26 09:42 - 2022-08-16 21:08 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-26 07:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-26 07:22 - 2022-08-18 13:45 - 000474040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-26 07:21 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-04-26 07:21 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-04-26 07:21 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-04-26 07:21 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-04-26 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-26 07:21 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-04-26 07:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-26 07:17 - 2022-08-18 13:46 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-26 07:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-26 06:14 - 2022-08-18 13:40 - 000000000 ____D C:\Users\Bernard
2024-04-26 06:12 - 2022-08-18 09:54 - 000000000 ____D C:\Users\Bernard\AppData\Local\2BrightSparks
2024-04-26 06:12 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-04-26 06:12 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-04-26 06:12 - 2019-12-07 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2024-04-26 06:12 - 2019-12-07 16:52 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2024-04-26 06:12 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2024-04-26 06:12 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2024-04-26 06:12 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemApps
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\icsxml
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\downlevel
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\L2Schemas
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IdentityCRL
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Cursors
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Containers
2024-04-26 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2024-04-26 06:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Web
2024-04-26 06:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Vss
2024-04-26 06:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2024-04-26 06:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\IME
2024-04-26 06:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\schemas
2024-04-20 04:56 - 2023-04-21 19:25 - 000000000 ____D C:\Users\Bernard\AppData\Local\Malwarebytes
2024-04-20 04:55 - 2022-08-18 17:07 - 000000000 ____D C:\Users\Bernard\AppData\LocalLow\IGDump
2024-04-20 02:46 - 2024-03-23 04:23 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-19 07:09 - 2022-08-16 21:27 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-04-19 01:57 - 2023-11-16 22:07 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-04-18 06:26 - 2022-08-17 12:52 - 000000000 ____D C:\Users\Bernard\AppData\Local\NVIDIA
2024-04-18 06:12 - 2023-11-16 22:07 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-04-18 06:12 - 2023-11-16 22:07 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-04-17 03:45 - 2022-08-17 21:39 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2024-04-17 03:45 - 2022-08-17 21:39 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Notepad++
2024-04-17 03:40 - 2023-11-18 07:08 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\XnViewMP
2024-04-14 06:36 - 2020-10-05 04:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2024-04-13 04:39 - 2023-09-12 05:55 - 000000000 ____D C:\Program Files\Recuva
2024-04-12 17:17 - 2022-08-18 11:01 - 006948552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-04-10 11:50 - 2023-11-18 06:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView MP
2024-04-10 11:50 - 2023-11-18 06:59 - 000000000 ____D C:\Program Files\XnViewMP
2024-04-10 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-10 05:41 - 2022-08-16 21:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 05:40 - 2022-08-16 21:21 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 04:40 - 2022-08-16 20:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-07 14:46 - 2022-08-16 23:50 - 000000000 ____D C:\Users\Bernard\AppData\Local\ElevatedDiagnostics
2024-04-05 07:09 - 2022-08-17 21:29 - 000001407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackFree.lnk
2024-04-04 04:40 - 2022-08-18 13:48 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 04:40 - 2022-08-18 13:48 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-29 04:00 - 2022-08-17 05:53 - 000000000 ____D C:\Program Files\LibreOffice
2024-03-28 06:36 - 2023-04-02 06:29 - 000001319 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2024-03-28 06:36 - 2023-01-11 19:23 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk
2024-03-28 06:36 - 2023-01-11 19:20 - 000000000 ____D C:\Users\Bernard\AppData\Local\BlueStacks
2024-03-28 06:36 - 2022-12-31 07:58 - 000003926 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper_nxt
2024-03-28 06:34 - 2022-08-16 21:48 - 000000000 ____D C:\Users\Public\BlueStacks
2024-03-28 04:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
==================== Fichiers à la racine de certains dossiers ========
2023-02-28 08:19 - 2023-02-28 08:19 - 000000001 _____ () C:\Users\Bernard\AppData\Roaming\c
2022-08-16 21:46 - 2022-08-19 15:41 - 000011776 _____ () C:\Users\Bernard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================