Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-01-2022 Exécuté par berla (administrateur) sur DESKTOP-47NC29N (HP 550-102nfm) (31-01-2022 17:39:15) Exécuté depuis C:\Users\berla\Desktop Profils chargés: berla Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1466 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (devolo AG -> ) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (Intel CASE -> Intel Corporation) C:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130266.inf_amd64_e83ea833b4430f79\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130266.inf_amd64_e83ea833b4430f79\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130266.inf_amd64_e83ea833b4430f79\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130266.inf_amd64_e83ea833b4430f79\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe (Oodrive) [Fichier non signé] C:\Program Files\Pack Sérénité\Sauvegarde\Service\AdBackup.RemotingService.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [587000 2022-01-05] (geek software GmbH -> geek software GmbH) HKLM-x32\...\Run: [FbNotifications] => C:\Program Files (x86)\Goto.Games\Funbridge2\FbNotificationsComServer.exe [491008 2012-04-05] (Goto.Games) [Fichier non signé] HKU\S-1-5-21-3914082657-850623802-2874591013-1001\...\Run: [Adobe Reader Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe" (Pas de fichier) HKU\S-1-5-21-3914082657-850623802-2874591013-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3914082657-850623802-2874591013-1001\...\Run: [MicrosoftEdgeAutoLaunch_10C5062E84E1441BA04EA2491D336FF2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKU\S-1-5-18\...\Run: [MicrosoftEdgeAutoLaunch_CA9B7D9844F469736CB7DE722868CCD0] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109080 2018-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [432648 2015-07-11] (Microsoft Windows Hardware Compatibility Publisher -> HP) HKLM\...\Print\Monitors\PCL hpz3llhn: C:\WINDOWS\system32\hpz3llhn.dll [44248 2018-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) HKLM\...\Print\Monitors\PDFill Writer Monitor: C:\Program Files (x86)\PlotSoft\PDFill\PDFWriter\Driver\PDFillWriterMon.dll HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> "C:\Program Files (x86)\CCleaner Browser\Application\96.1.13589.113\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-25] (Google LLC -> Google LLC) Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {047843CF-0DBE-42D6-BCC3-FB11A94F17F7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC) Task: {119A0750-AAF3-4375-98C9-A9F6E2ACD032} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2F4DDA05-D02B-4FA0-94D0-3BBC7A75ACF7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (Pas de fichier) Task: {349A96F2-085C-4C6B-AE85-81E4FAAC61AC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111024 2022-01-17] (Microsoft Corporation -> Microsoft Corporation) Task: {40D52A73-05DD-4950-8521-1290E280867A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {4A9AB2AE-8FEF-4805-961E-AA6572FEE427} - System32\Tasks\CCleanerSkipUAC - berla => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd) Task: {54D2D482-6AED-4C7B-8120-6DCF946008D0} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1171328 2022-01-17] (Microsoft Corporation -> Microsoft Corporation) Task: {5F5F1DE5-DA44-4936-B667-37EBE9575B58} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {61101C7B-181C-4729-9BE0-F05FE639843A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC) Task: {7501101D-AD4C-4797-BA4C-44220958F11D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111024 2022-01-17] (Microsoft Corporation -> Microsoft Corporation) Task: {8B5C9772-6851-4CC1-A620-0E8CF04390B6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {905002DF-67A6-47CE-9615-67F2FDE4B029} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe --type=heartbeat --hourly (Pas de fichier) Task: {97D14431-02F0-45E2-981C-CFA49F6B3C7B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {9FCC3897-0E38-4683-9CB0-567AC999B27E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A88D0E2C-64A7-4D34-8D35-4BB661C666BC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation) Task: {AEB504D7-ABA5-45EE-96A9-3F4BB06E4E12} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (Pas de fichier) Task: {B3D60981-E33B-454A-B48E-99322F0B78CA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation) Task: {B7F44C6A-3A5A-4A63-B04B-E4C177E4EC40} - System32\Tasks\F-Secure\F-Secure GUI => C:\Program Files (x86)\Pack Sérénité\Sécurité\FsGuiStarter.exe (Pas de fichier) Task: {BF724645-1ACA-4C60-B73B-1AD86DED6D0C} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3914082657-850623802-2874591013-1001Core1d2377e513414d4 => C:\Users\berla\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c (Pas de fichier) Task: {CBCDF341-D196-482C-98E6-8AEC8E2394DF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform) Task: {CC60A3FF-FDB9-4347-9E64-21FA3D706BC9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (Pas de fichier) Task: {D25F6D0E-15CA-43E3-8992-EDAD0D399AAB} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {EAC97C5B-7D71-411D-AB25-712810DCBEA2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-30] (Microsoft Windows Publisher -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{15db12b2-5458-4977-ae58-dcebbe68570c}: [DhcpNameServer] 109.0.66.20 109.0.66.10 Tcpip\..\Interfaces\{81bce3a7-580e-45b3-bba6-2cd7e7f21e8d}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{82011499-53e1-40e3-a24c-be3f3752b86e}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{99b79877-32e1-45e4-85ee-f4f3db3ef0e0}: [DhcpNameServer] 192.168.1.254 Edge: ======= DownloadDir: C:\Users\berla\Downloads Edge DefaultProfile: Default Edge Profile: C:\Users\berla\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-31] Edge Extension: (Avast Passwords) - C:\Users\berla\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-01-29] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 92ixrukk.default-1566506630446 FF ProfilePath: C:\Users\berla\AppData\Roaming\Mozilla\Firefox\Profiles\2ji8j5iw.default-release-1615484398126 [2022-01-30] FF Extension: (Avast Passwords) - C:\Users\berla\AppData\Roaming\Mozilla\Firefox\Profiles\2ji8j5iw.default-release-1615484398126\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2021-03-11] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json] FF ProfilePath: C:\Users\berla\AppData\Roaming\Mozilla\Firefox\Profiles\92ixrukk.default-1566506630446 [2022-01-30] FF Extension: (Avast Online Security) - C:\Users\berla\AppData\Roaming\Mozilla\Firefox\Profiles\92ixrukk.default-1566506630446\Extensions\wrc@avast.com.xpi [2018-07-18] FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [Pas de fichier] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-01-22] (Visan Industries -> RocketLife, LLP) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Pas de fichier] FF Plugin HKU\S-1-5-21-3914082657-850623802-2874591013-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\berla\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-23] (Visan Industries -> RocketLife, LLP) FF Plugin HKU\S-1-5-21-3914082657-850623802-2874591013-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\berla\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-16] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\berla\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-01-30] CHR Profile: C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-01-31] CHR Notifications: Profile 1 -> hxxps://www.wish.com CHR HomePage: Profile 1 -> hxxp://search.babylon.com/?affID=113357&tt=5212_4&babsrc=HP_ss&mntrId=f0310f7f000000000000000c767fcfd1 CHR StartupUrls: Profile 1 -> "hxxp://www.google.com/" CHR Extension: (Slides) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-29] CHR Extension: (Docs) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-29] CHR Extension: (Google Drive) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-29] CHR Extension: (YouTube) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-29] CHR Extension: (PagesJaunes) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfiebajnnakcjkedcfamhdfgckcbnhke [2022-01-29] CHR Extension: (Adobe Acrobat) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-01-29] CHR Extension: (Avast Passwords) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-01-29] CHR Extension: (Sheets) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-29] CHR Extension: (Google Docs hors connexion) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-29] CHR Extension: (Avast Online Security & Privacy) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-01-29] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-01-29] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-29] CHR Extension: (Gmail) - C:\Users\berla\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-29] CHR Profile: C:\Users\berla\AppData\Local\Google\Chrome\User Data\System Profile [2022-01-30] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdBackup Service Controller; C:\Program Files\Pack Sérénité\Sauvegarde\Service\AdBackup.RemotingService.exe [14848 2015-08-06] (Oodrive) [Fichier non signé] R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119432 2022-01-10] (Microsoft Corporation -> Microsoft Corporation) R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [2231616 2010-07-19] (devolo AG -> ) S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-10-27] (Mixbyte Inc -> Freemake) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [260256 2022-01-29] (HP Inc. -> HP Inc.) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé] R2 IRMTService; c:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe [181520 2015-07-14] (Intel CASE -> Intel Corporation) S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-23] (Malwarebytes Inc -> Malwarebytes) R2 PDF24; C:\Program Files\PDF24\pdf24.exe [587000 2022-01-05] (geek software GmbH -> geek software GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-30] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [40720 2015-07-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2015-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) R3 IntelReadyModeDriver; C:\WINDOWS\System32\drivers\IntelReadyModeDriver.sys [33512 2015-07-14] (Intel CASE -> Intel Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-01-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-01-13] (Malwarebytes Inc -> Malwarebytes) R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [34048 2010-06-10] (devolo AG -> CACE Technologies) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-01-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-01-30] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-30] (Microsoft Windows -> Microsoft Corporation) U3 TrueSight; \??\C:\Windows\System32\drivers\truesight.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-01-31 17:39 - 2022-01-31 17:42 - 000024577 _____ C:\Users\berla\Desktop\FRST.txt 2022-01-31 10:24 - 2022-01-31 13:59 - 000001251 _____ C:\Users\berla\Desktop\Notepad.lnk 2022-01-30 22:37 - 2022-01-30 22:37 - 000000008 __RSH C:\ProgramData\ntuser.pol 2022-01-29 22:38 - 2022-01-29 22:38 - 020669347 _____ C:\Users\berla\Documents\Led Zeppelin - Whole Lotta Love (Official Music Video) (360p).mp4 2022-01-29 22:35 - 2022-01-29 22:35 - 008833401 _____ C:\Users\berla\Documents\Led Zeppelin - How Many More Times (Danish TV 1969) (360p).mp4 2022-01-28 18:31 - 2022-01-28 18:33 - 009207744 _____ C:\Users\berla\Documents\The Doors-Unhappy Girl Live (360p) (2).mp4 2022-01-28 09:37 - 2022-01-30 22:36 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-01-27 18:53 - 2022-01-30 12:55 - 002311680 _____ (Farbar) C:\Users\berla\Desktop\FRST64.exe 2022-01-27 13:53 - 2022-01-27 13:53 - 000000000 ____D C:\WINDOWS\Panther 2022-01-26 21:29 - 2022-01-26 21:29 - 000000000 ___HD C:\$AV_ASW 2022-01-25 23:30 - 2022-01-25 23:31 - 027756983 _____ C:\Users\berla\Documents\Rachmaninov - Symphony No. 2 Op. 27 III. Adagio_ Adagio (LSO) (360p).mp4 2022-01-25 18:08 - 2022-01-31 17:40 - 000000000 ____D C:\FRST 2022-01-23 14:38 - 2022-01-23 14:38 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-01-22 22:16 - 2022-01-22 22:16 - 040512891 _____ C:\Users\berla\Documents\Led Zeppelin - Stairway to Heaven LIVE (Lyrics) HD+ (360p).mp4 2022-01-20 17:15 - 2022-01-20 17:15 - 027491864 _____ (Adlice Software ) C:\Users\berla\Documents\UCheck_setup.exe 2022-01-19 14:36 - 2022-01-19 14:36 - 003127236 _____ C:\Users\berla\Documents\Que reste-t-il de nos amours _ (360p).mp4 2022-01-18 21:25 - 2022-01-27 11:17 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3914082657-850623802-2874591013-1001 2022-01-16 17:42 - 2022-01-16 17:43 - 027163271 _____ C:\Users\berla\Documents\Nothing Else Matters (360p).mp4 2022-01-16 17:34 - 2022-01-16 17:35 - 024828181 _____ C:\Users\berla\Documents\Nothing Else Matters (Metallica) _ MOZART HEROES (Official Video) (360p).mp4 2022-01-16 17:28 - 2022-01-16 17:32 - 014165813 _____ C:\Users\berla\Documents\Nothing Else Matters (Metallica) - LUKA (360p).mp4 2022-01-15 19:26 - 2022-01-15 19:26 - 024060667 _____ C:\Users\berla\Documents\Shakira - Nothing Else Matters_Despedida Medley (Live from Paris) (360p).mp4 2022-01-15 19:22 - 2022-01-15 19:22 - 025098492 _____ C:\Users\berla\Documents\Lucie Silvas - Nothing Else Matters (Radio 2 concert) (360p).mp4 2022-01-15 19:19 - 2022-01-15 19:19 - 028587585 _____ C:\Users\berla\Documents\Metallica_ Nothing Else Matters (Piano cover) (360p).mp4 2022-01-15 19:14 - 2022-01-15 19:14 - 027878701 _____ C:\Users\berla\Documents\Metallica_ Nothing Else Matters (Official Music Video) (360p).mp4 2022-01-14 18:20 - 2022-01-14 18:20 - 000000000 ___RD C:\Users\berla\Documents\Scanned Documents 2022-01-14 18:20 - 2022-01-14 18:20 - 000000000 ____D C:\Users\berla\Documents\Fax 2022-01-14 16:34 - 2022-01-14 16:34 - 001735411 _____ C:\Users\berla\Documents\Extra Muros 2021.pdf 2022-01-14 15:44 - 2022-01-14 15:45 - 003292312 _____ (Nicolas Coolman) C:\Users\berla\Desktop\ZHPCleaner.exe 2022-01-13 18:00 - 2022-01-23 14:38 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-01-13 18:00 - 2022-01-23 14:38 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-01-13 18:00 - 2022-01-13 18:00 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-01-13 18:00 - 2022-01-13 17:59 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-01-13 18:00 - 2022-01-13 17:59 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-01-13 17:58 - 2022-01-23 14:34 - 000000000 ____D C:\Program Files\Malwarebytes 2022-01-13 15:49 - 2022-01-13 15:51 - 000000000 ____D C:\Users\berla\Documents\Le virus de la peur 2022-01-12 11:52 - 2022-01-12 11:52 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-01-12 11:52 - 2022-01-12 11:52 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-01-12 11:52 - 2022-01-12 11:52 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-01-12 10:54 - 2022-01-12 10:54 - 000000000 ___HD C:\$WinREAgent 2022-01-11 22:26 - 2022-01-11 22:27 - 027056374 _____ C:\Users\berla\Documents\Scorpions & Vanessa-Mae - Still Loving You (Taratata, 28 Apr 1996) (360p).mp4 2022-01-11 10:59 - 2022-01-11 10:59 - 000043852 _____ C:\Users\berla\Downloads\Impot_sur_les_revenus_2021_Avance_de_reductions_et_credits_d_impot.pdf 2022-01-10 11:39 - 2022-01-10 11:39 - 006658501 _____ C:\Users\berla\Documents\Sofiane Pamart - Berlin (Official Videoclip) (360p).mp4 2022-01-10 11:35 - 2022-01-10 11:35 - 015012490 _____ C:\Users\berla\Documents\Sofiane Pamart - LOVE (Official Videoclip) (360p).mp4 2022-01-10 11:32 - 2022-01-10 11:32 - 013298011 _____ C:\Users\berla\Documents\Sofiane Pamart - Love - 20h30, le dimanche (France 2, 2022) (360p).mp4 2022-01-05 12:04 - 2022-01-05 12:04 - 000001714 _____ C:\Users\Public\Desktop\PDF24.lnk 2022-01-05 12:04 - 2022-01-05 12:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 2022-01-05 12:03 - 2022-01-05 12:04 - 000000000 ____D C:\Program Files\PDF24 2022-01-05 12:01 - 2022-01-05 12:02 - 130557304 _____ (geek software GmbH ) C:\Users\berla\Desktop\pdf24-creator-10.7.1.exe 2022-01-05 11:58 - 2022-01-05 11:58 - 000100669 _____ C:\Users\berla\Documents\Compte rendu IRM épaule gauche.pdf 2022-01-04 19:01 - 2022-01-04 19:01 - 018620335 _____ C:\Users\berla\Documents\Khatia Buniatishvili plays Liebestraum No. 3 from Franz Liszt _ Verbier Festival 2011 (360p).mp4 2022-01-04 18:48 - 2022-01-04 18:49 - 082351021 _____ C:\Users\berla\Documents\Rachmaninoff - Piano Concerto #3 in D Minor, Op. 30 - HD (360p).mp4 2022-01-04 18:44 - 2022-01-04 18:44 - 014085463 _____ C:\Users\berla\Documents\Lodolezzi sjunger Suite_ III. Karneval (360p).mp4 2022-01-02 11:04 - 2022-01-08 18:36 - 000001315 _____ C:\Users\berla\Desktop\Microsoft Edge.lnk ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-01-31 17:42 - 2016-11-18 22:54 - 000000000 ____D C:\Users\berla\AppData\LocalLow\Mozilla 2022-01-31 17:37 - 2015-12-27 21:40 - 000000000 ____D C:\Program Files (x86)\Google 2022-01-31 17:35 - 2020-12-16 15:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-01-31 16:19 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-01-31 15:06 - 2015-12-27 22:31 - 000000000 ____D C:\Users\berla\AppData\Roaming\ZHP 2022-01-31 14:09 - 2020-12-16 16:02 - 001925694 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-01-31 14:09 - 2019-12-07 15:49 - 000831776 _____ C:\WINDOWS\system32\perfh00C.dat 2022-01-31 14:09 - 2019-12-07 15:49 - 000167542 _____ C:\WINDOWS\system32\perfc00C.dat 2022-01-31 14:09 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-01-31 14:06 - 2020-12-12 10:04 - 000000000 ____D C:\Program Files\CCleaner 2022-01-31 14:03 - 2015-12-26 16:52 - 000000000 __SHD C:\Users\berla\IntelGraphicsProfiles 2022-01-31 14:01 - 2020-12-16 16:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-01-31 14:01 - 2020-12-16 15:44 - 000008192 ___SH C:\DumpStack.log.tmp 2022-01-31 14:01 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-01-30 22:46 - 2016-08-11 16:13 - 000001086 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2022-01-30 22:46 - 2016-08-11 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2022-01-30 22:36 - 2019-01-19 22:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-01-30 22:33 - 2016-01-16 17:30 - 000000000 ____D C:\Users\berla\AppData\LocalLow\Temp 2022-01-30 21:36 - 2018-12-13 09:35 - 000000000 ____D C:\ProgramData\Mozilla 2022-01-30 12:22 - 2018-05-25 18:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-01-29 22:45 - 2021-11-02 12:01 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2022-01-29 16:53 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-01-29 16:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-01-29 11:22 - 2020-12-18 19:55 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-01-28 12:04 - 2019-03-08 23:42 - 000000000 ____D C:\Users\berla\AppData\Local\D3DSCache 2022-01-28 11:59 - 2015-12-26 16:28 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2022-01-28 09:51 - 2021-10-10 15:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-01-28 09:51 - 2019-01-19 22:41 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-01-28 09:48 - 2016-01-25 22:30 - 000000000 ____D C:\ProgramData\F-Secure 2022-01-28 09:42 - 2020-12-16 16:16 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-01-27 20:06 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-01-27 19:26 - 2021-12-07 21:34 - 000002422 _____ C:\Users\berla\Desktop\Outlook (PWA).lnk 2022-01-27 19:26 - 2021-12-07 21:34 - 000000000 ____D C:\Users\berla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2022-01-27 19:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2022-01-27 19:26 - 2015-07-10 12:04 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2022-01-27 14:31 - 2020-12-16 15:50 - 000000000 ____D C:\Users\berla 2022-01-27 11:17 - 2021-12-10 14:08 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3914082657-850623802-2874591013-1001 2022-01-27 11:17 - 2020-12-16 15:50 - 000002424 _____ C:\Users\berla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-01-26 22:36 - 2015-12-28 21:30 - 000000000 ____D C:\wbridge5 2022-01-26 19:19 - 2019-06-27 14:43 - 000000000 ____D C:\Users\berla\Documents\Relevés CCP 2022-01-26 16:08 - 2015-12-29 00:03 - 000000000 ____D C:\Users\berla\AppData\Local\CrashDumps 2022-01-23 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-01-23 14:34 - 2015-12-27 22:20 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-01-22 09:40 - 2020-12-18 19:54 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-01-22 09:40 - 2020-12-18 19:54 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-01-21 11:50 - 2020-12-16 16:16 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-01-21 11:50 - 2020-12-16 16:16 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-01-20 17:16 - 2019-03-15 19:25 - 000000844 _____ C:\Users\Public\Desktop\UCheck.lnk 2022-01-20 17:16 - 2019-03-15 19:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck 2022-01-20 17:16 - 2019-03-15 19:25 - 000000000 ____D C:\Program Files\UCheck 2022-01-20 10:44 - 2021-12-20 12:45 - 000003104 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly) 2022-01-20 10:44 - 2021-08-19 21:17 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - berla 2022-01-20 10:44 - 2021-02-13 11:34 - 000002280 _____ C:\WINDOWS\system32\Tasks\RTKCPL 2022-01-20 10:44 - 2020-12-16 16:16 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-01-17 12:46 - 2015-10-28 08:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2022-01-16 16:15 - 2018-05-25 20:52 - 000000000 ____D C:\Users\berla\AppData\Local\PlaceholderTileLogoFolder 2022-01-16 15:24 - 2018-07-03 14:54 - 000000000 ____D C:\ProgramData\Packages 2022-01-16 15:24 - 2017-12-21 09:41 - 000000000 ____D C:\Users\berla\AppData\Local\Packages 2022-01-13 18:00 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-01-12 19:59 - 2020-12-16 15:44 - 000479400 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-01-12 19:54 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2022-01-12 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-01-12 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-01-12 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-01-12 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-01-12 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-01-12 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-01-12 10:51 - 2015-12-26 19:18 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-01-12 10:45 - 2015-12-26 19:18 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-01-03 19:22 - 2019-09-08 22:31 - 000000000 ____D C:\Users\berla\AppData\Local\ElevatedDiagnostics ==================== Fichiers à la racine de certains dossiers ======== 2016-03-01 14:38 - 2016-03-01 14:38 - 000000045 _____ () C:\Users\berla\AppData\Roaming\WB.CFG ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================