Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-03-2025
Exécuté par Courant (administrateur) sur DESKTOP-Q8C8GMR (ASUSTeK COMPUTER INC. X555LB) (12-03-2025 21:32:18)
Exécuté depuis C:\Users\Courant\Desktop\FRST64.exe
Profils chargés: Courant
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.5487 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <15>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (ICEpower a/s -> ICEpower a/s) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (REALITYMINE LIMITED -> RealityMine Ltd) [Fichier non signé] C:\Program Files\UsageMonitor\YouGovPulse\YouGovPulse.WindowsService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1220128 2015-09-18] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1380384 2015-09-18] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-25] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [UsageMonitor.YouGovPulse] => C:\Program Files\UsageMonitor\YouGovPulse\YouGovPulse.UI.App.exe [534120 2023-04-06] (REALITYMINE LIMITED -> RealityMine Ltd) [Fichier non signé]
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe (Pas de fichier)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [SandboxieControl] => "C:\Program Files\Sandboxie\SbieCtrl.exe" (Pas de fichier)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe"
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [MicrosoftEdgeAutoLaunch_2EB6F7DB2ABD9F5EA8B8E1CE0F30B11E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291152 2025-03-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe"
HKLM\...\Print\Monitors\EPSON XP-322 323 325 Series 64MonitorBE: C:\Windows\system32\E_YLMBNEE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\134.0.6998.89\Installer\chrmstp.exe [2025-03-12] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {C22251FB-2AF6-4215-82B4-3CAB2564CD80} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {AA6AF033-A569-46A4-8E50-AF0B0D4CBDA1} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {E3556856-775A-4677-9401-DFCAC8F74C61} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{4F9D5E1B-4FFF-40E4-AE27-16CB853048A0} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {C5F86E31-681E-4150-88B3-ADD56B69DBDF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {89EB43FA-9C36-4439-82F4-A6955A90FD4B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0E53EEC-76C1-4078-BCD1-34C1BFBA9C7D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BAB72B6E-9989-463C-82F9-46F7272AD99E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC8E29D4-2D9A-407F-8CA3-9068638C3570} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-03-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {58F00E73-AE1D-411C-9079-4B5DFE9824AA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FADA0A09-ACA5-4D98-9E40-52CD4650AA2E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
Task: {83B86134-7BFE-470C-9B48-D22425019B8E} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7055A812-6208-4EE7-96DD-71D4032DC2C0} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1c769cbc-e466-4e29-8b30-5292d63ea68e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{38d1359a-2fac-4930-b617-1deac16b3b8f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{38d1359a-2fac-4930-b617-1deac16b3b8f}\C496675626F687D244148303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{38d1359a-2fac-4930-b617-1deac16b3b8f}\C496675626F687D244148303: [DhcpDomain] home
Tcpip\..\Interfaces\{56b8b668-d752-4b6e-81c3-7027b689b0f5}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\Courant\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-12]
Edge Extension: (Google Docs hors connexion) - C:\Users\Courant\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-12]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\Courant\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-26]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
FireFox:
========
FF DefaultProfile: 7imis4a7.default
FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\7imis4a7.default [2025-03-12]
FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\865vkyjc.default-release [2025-03-12]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Courant\AppData\Local\Google\Chrome\User Data\Default [2025-03-12]
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Google Docs hors connexion) - C:\Users\Courant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-12]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Courant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-03-12]hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YouGovPulseService; C:\Program Files\UsageMonitor\YouGovPulse\YouGovPulse.WindowsService.exe [24680 2023-04-06] (REALITYMINE LIMITED -> RealityMine Ltd) [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-18] (ASUSTek Computer Inc. -> ASUS)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-03-05] (Microsoft Windows -> Microsoft Corporation)
S3 RevoProcessDetector; C:\WINDOWS\System32\DRIVERS\RevoProcessDetector.sys [19504 2024-03-28] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-05] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-07-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-03-12 21:32 - 2025-03-12 21:33 - 000017834 _____ C:\Users\Courant\Desktop\FRST.txt
2025-03-12 21:31 - 2025-03-12 21:31 - 000034622 _____ C:\Users\Courant\Downloads\Shortcut.txt
2025-03-12 21:30 - 2025-03-12 21:30 - 000002424 _____ C:\Users\Courant\Desktop\re0olution2problèmeWinUPdate.txt
2025-03-12 21:27 - 2025-03-12 21:31 - 000030944 _____ C:\Users\Courant\Downloads\Addition.txt
2025-03-12 21:22 - 2025-03-12 21:27 - 000029616 _____ C:\Users\Courant\Downloads\FRST.txt
2025-03-12 21:21 - 2025-03-12 21:33 - 000000000 ____D C:\FRST
2025-03-12 21:20 - 2025-03-12 21:20 - 002404352 _____ (Farbar) C:\Users\Courant\Desktop\FRST64.exe
2025-03-12 19:43 - 2025-03-12 19:43 - 000000000 ____D C:\Users\Courant\AppData\Local\Mozilla
2025-03-12 18:44 - 2025-03-12 18:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-03-12 17:09 - 2025-03-12 18:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-03-12 13:10 - 2025-03-12 13:10 - 000000000 ___HD C:\$WinREAgent
2025-03-11 21:23 - 2025-03-11 21:23 - 000000000 ____D C:\Users\Lemien\Desktop\Brésilien
2025-03-07 11:12 - 2025-03-07 12:52 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2025-03-02 15:53 - 2025-03-02 15:53 - 000000000 ___RD C:\Sandbox
2025-02-14 16:52 - 2025-03-01 19:03 - 000060943 _____ C:\Users\Lemien\Desktop\retravail Budgets.ods
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-03-12 21:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-03-12 21:20 - 2022-05-22 21:10 - 000000000 ____D C:\Users\Courant\AppData\Local\Packages
2025-03-12 21:16 - 2022-05-22 23:11 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-03-12 21:13 - 2022-05-23 21:01 - 000000000 __SHD C:\Users\Courant\IntelGraphicsProfiles
2025-03-12 21:13 - 2022-05-22 22:07 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2025-03-12 21:13 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-03-12 21:12 - 2024-02-25 16:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-03-12 21:12 - 2022-05-22 22:04 - 000000000 ____D C:\ProgramData\NVIDIA
2025-03-12 21:12 - 2022-05-22 17:57 - 000008192 ___SH C:\DumpStack.log.tmp
2025-03-12 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2025-03-12 21:11 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-03-12 21:09 - 2024-02-27 16:13 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-03-12 21:09 - 2022-09-08 04:11 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-03-12 21:07 - 2022-05-22 20:44 - 000000000 ____D C:\Users\Lemien\Desktop\Sécurité
2025-03-12 21:06 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-12 19:43 - 2022-05-24 08:32 - 000000000 ____D C:\Users\Courant\AppData\Roaming\Mozilla
2025-03-12 19:16 - 2024-02-25 16:17 - 001773766 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-03-12 19:16 - 2019-12-07 15:49 - 000794726 _____ C:\WINDOWS\system32\perfh00C.dat
2025-03-12 19:16 - 2019-12-07 15:49 - 000150840 _____ C:\WINDOWS\system32\perfc00C.dat
2025-03-12 19:16 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-03-12 19:13 - 2022-05-22 22:07 - 000000000 __SHD C:\Users\Lemien\IntelGraphicsProfiles
2025-03-12 19:08 - 2024-07-18 21:36 - 000000000 ____D C:\Users\Lemien\Desktop\Mes téléchargements
2025-03-12 18:56 - 2022-05-22 23:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-03-12 18:55 - 2024-07-18 21:38 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\winamax
2025-03-12 17:22 - 2025-02-01 19:57 - 000068129 _____ C:\Users\Lemien\Desktop\Budgets 2025.ods
2025-03-12 16:54 - 2024-02-25 16:21 - 000004182 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D4C11611-6B50-4DFC-9A6E-813F417CE57A}
2025-03-12 16:53 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-03-12 16:51 - 2024-02-25 15:14 - 000000000 ____D C:\Users\Lemien
2025-03-12 16:45 - 2024-02-25 15:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-03-12 16:37 - 2024-02-26 09:11 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-12 16:20 - 2024-07-20 22:04 - 000000000 ____D C:\WINDOWS\system32\compatrel
2025-03-12 16:20 - 2024-02-25 15:14 - 000000000 ____D C:\Users\Courant
2025-03-12 16:20 - 2019-12-07 15:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-03-12 16:20 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2025-03-12 16:20 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\fr
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\icsxml
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\downlevel
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-12 16:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2025-03-12 16:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2025-03-12 16:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-03-12 16:19 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2025-03-12 16:16 - 2024-07-18 21:38 - 000000000 ____D C:\Users\Lemien\AppData\Local\winamax-updater
2025-03-12 16:16 - 2022-06-01 10:59 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\vlc
2025-03-12 16:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Containers
2025-03-12 15:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2025-03-12 15:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Web
2025-03-12 15:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps
2025-03-12 15:14 - 2024-12-01 21:47 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\mednum-desktop-player
2025-03-12 14:02 - 2025-02-01 19:57 - 000030942 _____ C:\Users\Lemien\Desktop\Prix aliments St Sym.ods
2025-03-12 12:44 - 2025-02-01 19:57 - 000028039 _____ C:\Users\Lemien\Desktop\Comptes financiers 2025.ods
2025-03-12 10:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps.tmp
2025-03-08 11:03 - 2025-02-01 19:57 - 000027268 _____ C:\Users\Lemien\Desktop\Eau - Elec.ods
2025-03-07 12:52 - 2024-01-04 22:17 - 000001057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2025-03-07 11:07 - 2024-02-25 21:26 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-03-07 11:07 - 2024-02-25 21:26 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-03-05 20:31 - 2022-05-22 17:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-02-25 15:22 - 2025-02-01 19:57 - 000000000 ____D C:\Users\Lemien\Desktop\En cours
2025-02-17 00:53 - 2022-05-22 18:41 - 000000000 ____D C:\Users\Lemien\AppData\Local\Packages
2025-02-16 19:29 - 2024-07-19 09:49 - 000000000 ____D C:\Users\Lemien\Desktop\Mooc en cours
2025-02-12 18:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2025-02-12 12:55 - 2022-05-22 18:41 - 000000000 ____D C:\ProgramData\Packages
2025-02-12 12:37 - 2024-02-25 15:58 - 000296696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-02-12 12:34 - 2024-02-25 21:09 - 000000000 ____D C:\WINDOWS\InboxApps
2025-02-12 12:33 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2025-02-12 12:14 - 2024-02-25 16:02 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-02-12 11:26 - 2022-05-22 21:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-02-12 11:21 - 2022-05-22 21:49 - 209365816 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-02-11 00:27 - 2025-02-01 19:57 - 000038502 _____ C:\Users\Lemien\Desktop\Santé.ods
==================== Fichiers à la racine de certains dossiers ========
2022-06-27 10:53 - 2022-06-27 16:06 - 000035321 _____ () C:\Users\Courant\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Courant (administrateur) sur DESKTOP-Q8C8GMR (ASUSTeK COMPUTER INC. X555LB) (12-03-2025 21:32:18)
Exécuté depuis C:\Users\Courant\Desktop\FRST64.exe
Profils chargés: Courant
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.5487 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <15>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (ICEpower a/s -> ICEpower a/s) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (REALITYMINE LIMITED -> RealityMine Ltd) [Fichier non signé] C:\Program Files\UsageMonitor\YouGovPulse\YouGovPulse.WindowsService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1220128 2015-09-18] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1380384 2015-09-18] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-25] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [UsageMonitor.YouGovPulse] => C:\Program Files\UsageMonitor\YouGovPulse\YouGovPulse.UI.App.exe [534120 2023-04-06] (REALITYMINE LIMITED -> RealityMine Ltd) [Fichier non signé]
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe (Pas de fichier)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [SandboxieControl] => "C:\Program Files\Sandboxie\SbieCtrl.exe" (Pas de fichier)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe"
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [MicrosoftEdgeAutoLaunch_2EB6F7DB2ABD9F5EA8B8E1CE0F30B11E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291152 2025-03-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe"
HKLM\...\Print\Monitors\EPSON XP-322 323 325 Series 64MonitorBE: C:\Windows\system32\E_YLMBNEE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\134.0.6998.89\Installer\chrmstp.exe [2025-03-12] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {C22251FB-2AF6-4215-82B4-3CAB2564CD80} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {AA6AF033-A569-46A4-8E50-AF0B0D4CBDA1} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {E3556856-775A-4677-9401-DFCAC8F74C61} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{4F9D5E1B-4FFF-40E4-AE27-16CB853048A0} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {C5F86E31-681E-4150-88B3-ADD56B69DBDF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {89EB43FA-9C36-4439-82F4-A6955A90FD4B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0E53EEC-76C1-4078-BCD1-34C1BFBA9C7D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BAB72B6E-9989-463C-82F9-46F7272AD99E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC8E29D4-2D9A-407F-8CA3-9068638C3570} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-03-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {58F00E73-AE1D-411C-9079-4B5DFE9824AA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FADA0A09-ACA5-4D98-9E40-52CD4650AA2E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
Task: {83B86134-7BFE-470C-9B48-D22425019B8E} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7055A812-6208-4EE7-96DD-71D4032DC2C0} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1c769cbc-e466-4e29-8b30-5292d63ea68e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{38d1359a-2fac-4930-b617-1deac16b3b8f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{38d1359a-2fac-4930-b617-1deac16b3b8f}\C496675626F687D244148303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{38d1359a-2fac-4930-b617-1deac16b3b8f}\C496675626F687D244148303: [DhcpDomain] home
Tcpip\..\Interfaces\{56b8b668-d752-4b6e-81c3-7027b689b0f5}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\Courant\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-12]
Edge Extension: (Google Docs hors connexion) - C:\Users\Courant\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-12]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\Courant\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-26]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
FireFox:
========
FF DefaultProfile: 7imis4a7.default
FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\7imis4a7.default [2025-03-12]
FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\865vkyjc.default-release [2025-03-12]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Courant\AppData\Local\Google\Chrome\User Data\Default [2025-03-12]
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Google Docs hors connexion) - C:\Users\Courant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-12]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Courant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-03-12]hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YouGovPulseService; C:\Program Files\UsageMonitor\YouGovPulse\YouGovPulse.WindowsService.exe [24680 2023-04-06] (REALITYMINE LIMITED -> RealityMine Ltd) [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-18] (ASUSTek Computer Inc. -> ASUS)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-03-05] (Microsoft Windows -> Microsoft Corporation)
S3 RevoProcessDetector; C:\WINDOWS\System32\DRIVERS\RevoProcessDetector.sys [19504 2024-03-28] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-05] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-07-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-03-12 21:32 - 2025-03-12 21:33 - 000017834 _____ C:\Users\Courant\Desktop\FRST.txt
2025-03-12 21:31 - 2025-03-12 21:31 - 000034622 _____ C:\Users\Courant\Downloads\Shortcut.txt
2025-03-12 21:30 - 2025-03-12 21:30 - 000002424 _____ C:\Users\Courant\Desktop\re0olution2problèmeWinUPdate.txt
2025-03-12 21:27 - 2025-03-12 21:31 - 000030944 _____ C:\Users\Courant\Downloads\Addition.txt
2025-03-12 21:22 - 2025-03-12 21:27 - 000029616 _____ C:\Users\Courant\Downloads\FRST.txt
2025-03-12 21:21 - 2025-03-12 21:33 - 000000000 ____D C:\FRST
2025-03-12 21:20 - 2025-03-12 21:20 - 002404352 _____ (Farbar) C:\Users\Courant\Desktop\FRST64.exe
2025-03-12 19:43 - 2025-03-12 19:43 - 000000000 ____D C:\Users\Courant\AppData\Local\Mozilla
2025-03-12 18:44 - 2025-03-12 18:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-03-12 17:09 - 2025-03-12 18:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-03-12 13:10 - 2025-03-12 13:10 - 000000000 ___HD C:\$WinREAgent
2025-03-11 21:23 - 2025-03-11 21:23 - 000000000 ____D C:\Users\Lemien\Desktop\Brésilien
2025-03-07 11:12 - 2025-03-07 12:52 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2025-03-02 15:53 - 2025-03-02 15:53 - 000000000 ___RD C:\Sandbox
2025-02-14 16:52 - 2025-03-01 19:03 - 000060943 _____ C:\Users\Lemien\Desktop\retravail Budgets.ods
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-03-12 21:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-03-12 21:20 - 2022-05-22 21:10 - 000000000 ____D C:\Users\Courant\AppData\Local\Packages
2025-03-12 21:16 - 2022-05-22 23:11 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-03-12 21:13 - 2022-05-23 21:01 - 000000000 __SHD C:\Users\Courant\IntelGraphicsProfiles
2025-03-12 21:13 - 2022-05-22 22:07 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2025-03-12 21:13 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-03-12 21:12 - 2024-02-25 16:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-03-12 21:12 - 2022-05-22 22:04 - 000000000 ____D C:\ProgramData\NVIDIA
2025-03-12 21:12 - 2022-05-22 17:57 - 000008192 ___SH C:\DumpStack.log.tmp
2025-03-12 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2025-03-12 21:11 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-03-12 21:09 - 2024-02-27 16:13 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-03-12 21:09 - 2022-09-08 04:11 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-03-12 21:07 - 2022-05-22 20:44 - 000000000 ____D C:\Users\Lemien\Desktop\Sécurité
2025-03-12 21:06 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-12 19:43 - 2022-05-24 08:32 - 000000000 ____D C:\Users\Courant\AppData\Roaming\Mozilla
2025-03-12 19:16 - 2024-02-25 16:17 - 001773766 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-03-12 19:16 - 2019-12-07 15:49 - 000794726 _____ C:\WINDOWS\system32\perfh00C.dat
2025-03-12 19:16 - 2019-12-07 15:49 - 000150840 _____ C:\WINDOWS\system32\perfc00C.dat
2025-03-12 19:16 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-03-12 19:13 - 2022-05-22 22:07 - 000000000 __SHD C:\Users\Lemien\IntelGraphicsProfiles
2025-03-12 19:08 - 2024-07-18 21:36 - 000000000 ____D C:\Users\Lemien\Desktop\Mes téléchargements
2025-03-12 18:56 - 2022-05-22 23:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-03-12 18:55 - 2024-07-18 21:38 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\winamax
2025-03-12 17:22 - 2025-02-01 19:57 - 000068129 _____ C:\Users\Lemien\Desktop\Budgets 2025.ods
2025-03-12 16:54 - 2024-02-25 16:21 - 000004182 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D4C11611-6B50-4DFC-9A6E-813F417CE57A}
2025-03-12 16:53 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-03-12 16:51 - 2024-02-25 15:14 - 000000000 ____D C:\Users\Lemien
2025-03-12 16:45 - 2024-02-25 15:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-03-12 16:37 - 2024-02-26 09:11 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-12 16:20 - 2024-07-20 22:04 - 000000000 ____D C:\WINDOWS\system32\compatrel
2025-03-12 16:20 - 2024-02-25 15:14 - 000000000 ____D C:\Users\Courant
2025-03-12 16:20 - 2019-12-07 15:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-03-12 16:20 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2025-03-12 16:20 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\fr
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\icsxml
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\downlevel
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2025-03-12 16:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-12 16:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-03-12 16:19 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2025-03-12 16:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2025-03-12 16:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-03-12 16:19 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2025-03-12 16:16 - 2024-07-18 21:38 - 000000000 ____D C:\Users\Lemien\AppData\Local\winamax-updater
2025-03-12 16:16 - 2022-06-01 10:59 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\vlc
2025-03-12 16:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Containers
2025-03-12 15:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2025-03-12 15:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Web
2025-03-12 15:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps
2025-03-12 15:14 - 2024-12-01 21:47 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\mednum-desktop-player
2025-03-12 14:02 - 2025-02-01 19:57 - 000030942 _____ C:\Users\Lemien\Desktop\Prix aliments St Sym.ods
2025-03-12 12:44 - 2025-02-01 19:57 - 000028039 _____ C:\Users\Lemien\Desktop\Comptes financiers 2025.ods
2025-03-12 10:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps.tmp
2025-03-08 11:03 - 2025-02-01 19:57 - 000027268 _____ C:\Users\Lemien\Desktop\Eau - Elec.ods
2025-03-07 12:52 - 2024-01-04 22:17 - 000001057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2025-03-07 11:07 - 2024-02-25 21:26 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-03-07 11:07 - 2024-02-25 21:26 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-03-05 20:31 - 2022-05-22 17:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-02-25 15:22 - 2025-02-01 19:57 - 000000000 ____D C:\Users\Lemien\Desktop\En cours
2025-02-17 00:53 - 2022-05-22 18:41 - 000000000 ____D C:\Users\Lemien\AppData\Local\Packages
2025-02-16 19:29 - 2024-07-19 09:49 - 000000000 ____D C:\Users\Lemien\Desktop\Mooc en cours
2025-02-12 18:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2025-02-12 12:55 - 2022-05-22 18:41 - 000000000 ____D C:\ProgramData\Packages
2025-02-12 12:37 - 2024-02-25 15:58 - 000296696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-02-12 12:34 - 2024-02-25 21:09 - 000000000 ____D C:\WINDOWS\InboxApps
2025-02-12 12:33 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2025-02-12 12:14 - 2024-02-25 16:02 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-02-12 11:26 - 2022-05-22 21:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-02-12 11:21 - 2022-05-22 21:49 - 209365816 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-02-11 00:27 - 2025-02-01 19:57 - 000038502 _____ C:\Users\Lemien\Desktop\Santé.ods
==================== Fichiers à la racine de certains dossiers ========
2022-06-27 10:53 - 2022-06-27 16:06 - 000035321 _____ () C:\Users\Courant\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================