Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2023
Exécuté par madon (administrateur) sur MADO (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X515JAB_X515JA) (11-06-2023 09:08:31)
Exécuté depuis C:\Users\madon\OneDrive\Bureau\FRST64.exe
Profils chargés: madon
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1702 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOSD.exe
(C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe
(C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertReunion.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23091.410.2053.8773_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.37\msedgewebview2.exe <12>
(DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxEMN.exe
(explorer.exe ->) (F-Secure Corporation -> Darty Corporation) C:\Program Files (x86)\Darty\Darty Mot de Passe\fskey.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.) C:\Windows\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_56ce4d8646932f07\C-MediaAudioService.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_3cbddcc68b1c0da2\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a439e07c373809e2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0a2eb8dac923ec42\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_e72614dff5a8a910\Intel_PIE_Service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe
(sihost.exe ->) (5E725061-EB4B-47FD-B309-0B1348500865 -> C-Media Electronics, Inc.) C:\Program Files\WindowsApps\E2B691C9.C-Media6549AudioControlPanel_1.0.37.0_x64__y9kx1840xc4zw\VFS\ProgramFilesX86\C-Media Audio Control Panel\CMediaAudioControlPanel.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.11600.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKU\S-1-5-21-2347074124-3702551152-1276553165-1001\...\Run: [Darty Cloud] => C:\Users\madon\AppData\Local\Pack Sérénité\Darty Cloud\bin\DartyCloud.exe [1143984 2022-01-19] (OODRIVE S.A.S. -> Oodrive)
HKU\S-1-5-21-2347074124-3702551152-1276553165-1001\...\Run: [FSKeyAutoStart] => C:\Program Files (x86)\Darty\Darty Mot de Passe\fskey.exe [7063424 2020-12-08] (F-Secure Corporation -> Darty Corporation)
HKU\S-1-5-21-2347074124-3702551152-1276553165-1001\...\Run: [MicrosoftEdgeAutoLaunch_55D4BDEA02654F314E86275657AA50E7] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2347074124-3702551152-1276553165-1001\...\MountPoints2: {589ca1cf-a301-11ed-bb4d-7032172c449d} - "D:\setup.EXE" /AUTORUN
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0E83E50B-902F-4174-A439-64778D5994E2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157544 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {1615E3E4-1345-4BE6-AEB9-9C3BE5031E8B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {25D47282-631A-4997-A8DE-FF39D36AB5DB} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170456 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {28C849D9-0FEF-416B-A2AE-E425D5D64196} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusHotkey.exe [288904 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {3359EE8C-C4D7-4E2E-9E6E-0427D27C7309} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557360 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {55E6C7DD-BFBA-4C7C-9823-DA2C6C3A81B9} - System32\Tasks\MyASUS Update Messenger => C:\Users\madon\AppData\Local\MyASUS Update Messenger\UpdateMessenger.exe [13284208 2023-04-18] (SweetLabs Inc -> SweetLabs, Inc)
Task: {6804AE42-DCEE-465E-BAC2-EA6DD7B00B01} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {758FA57C-242A-4A90-A861-ADF08F67621E} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3697800 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {872F0081-63E0-41D3-BA4F-FB04C23E3433} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2347074124-3702551152-1276553165-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D81A0A1-657C-4D64-BF9C-11EF19B1CFC4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B77E4717-CEF5-425A-9361-586F14DC4DD3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D4F1E045-EB95-4677-B6C9-3BA62694C281} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557360 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {EDD6A400-00CC-49E6-BA8A-9EB9D5816AC0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157544 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7EB2152-F439-4AA4-8B84-629E5EB02AA8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA0721DF-22ED-47E3-A44C-0B183CAEEB59} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusUpdateChecker.exe [797832 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4e14c44d-1488-4d6e-82a0-63119fca6eeb}: [DhcpNameServer] 40.52.1.13
Tcpip\..\Interfaces\{e89fc9a5-681d-4dde-8b5e-d6edaeef273b}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\madon\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-11]
Edge Extension: (IGRAAL : Cashback & codes promo) - C:\Users\madon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hgfjoaookbahbhinopgfoiajfijfcdhm [2023-05-10]
Edge Extension: (Edge relevant text changes) - C:\Users\madon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
Edge Extension: (AdGuard AdBlocker) - C:\Users\madon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2023-06-09]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-02-04] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\AsusAppService\AsusAppService.exe [1159264 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkNear\AsusLinkNear.exe [1335432 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkRemote\AsusLinkRemote.exe [764552 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe [458848 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusScreenXpertHostService; C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe [1747088 2023-05-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManager.exe [1091720 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSwitch\AsusSwitch.exe [635528 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3697800 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [829064 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 C-MediaAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_56ce4d8646932f07\C-MediaAudioService.exe [309672 2022-08-26] (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11774392 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [241760 2022-04-29] (DTS, Inc. -> DTS Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.107.0521.0001\FileSyncHelper.exe [3445672 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-05-08] (HP Inc. -> HP Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.107.0521.0001\OneDriveUpdaterService.exe [3781512 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSAIO.sys [46736 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusWmiAcpi.sys [48776 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R3 iaLPSS2_GPIO2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_SPI_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_icl.inf_amd64_66a759065dfa6f64\iaLPSS2_SPI_ICL.sys [160024 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_icl.inf_amd64_b535659b9405201a\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 MpKsl1de4a6d4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{38132BB4-6004-4DE3-B4B7-21723D97C793}\MpKslDrv.sys [213288 2023-06-11] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-09] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-06-11 09:08 - 2023-06-11 09:08 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2023-06-11 09:08 - 2023-06-11 09:08 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2023-06-11 08:47 - 2023-06-11 08:47 - 012370384 _____ (McAfee, LLC) C:\Users\madon\Downloads\MCPR.exe
2023-06-09 21:26 - 2023-06-09 21:26 - 002383360 _____ (Farbar) C:\Users\madon\Downloads\FRST64 (1).exe
2023-06-09 13:21 - 2023-06-09 13:19 - 105161384 _____ (AO Kaspersky Lab) C:\Users\madon\Downloads\KVRT (1) - Copie.exe
2023-06-09 13:20 - 2023-06-09 21:25 - 000000000 ____D C:\KVRT2020_Data
2023-06-09 13:19 - 2023-06-09 13:19 - 105161384 _____ (AO Kaspersky Lab) C:\Users\madon\Downloads\KVRT.exe
2023-06-09 13:19 - 2023-06-09 13:19 - 105161384 _____ (AO Kaspersky Lab) C:\Users\madon\Downloads\KVRT (1).exe
2023-06-08 16:40 - 2023-06-11 09:08 - 000000000 ____D C:\FRST
2023-06-08 16:38 - 2023-06-08 16:38 - 002383360 _____ (Farbar) C:\Users\madon\Downloads\FRST64.exe
2023-06-08 16:30 - 2023-06-11 09:07 - 000000000 ____D C:\Users\madon\AppData\Roaming\ZHP
2023-06-08 16:30 - 2023-06-08 16:30 - 000000000 ____D C:\Users\madon\AppData\Local\ZHP
2023-06-08 16:29 - 2023-06-08 16:29 - 000001297 _____ C:\Users\madon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZHPSuite (3).lnk
2023-06-08 16:28 - 2023-06-08 16:28 - 003517128 _____ (Nicolas Coolman) C:\Users\madon\Downloads\ZHPSuite (3).exe
2023-06-08 16:22 - 2023-06-08 16:22 - 000000000 ____D C:\Users\madon\AppData\Local\CEF
2023-06-08 14:43 - 2023-06-08 14:43 - 001386328 _____ C:\Users\madon\Downloads\Photos-001 (7).zip
2023-06-07 15:16 - 2023-06-07 15:16 - 000036717 _____ C:\Users\madon\Downloads\FA158213.pdf
2023-06-07 13:47 - 2023-06-07 13:47 - 036366440 _____ C:\Users\madon\Downloads\Photos-001 (6).zip
2023-06-05 16:55 - 2023-06-05 16:55 - 000042598 _____ C:\Users\madon\Downloads\05062023_COMMANDE_C1968E984918O344917.pdf
2023-06-02 08:03 - 2023-06-02 08:03 - 000122363 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.c6699feb-de2f-4f6c-92a7-7cc64d79d286.pdf
2023-06-02 08:01 - 2023-06-02 08:01 - 000121154 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.24899a6e-5711-4812-b635-703f0096fa51.pdf
2023-05-31 07:27 - 2023-05-31 07:27 - 000122521 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.5b625ee3-8471-4a19-b32c-ab1f7bea4b9c.pdf
2023-05-30 22:33 - 2023-05-30 22:33 - 460476172 _____ C:\Users\madon\Downloads\Photos-001 (5).zip
2023-05-30 08:05 - 2023-05-30 08:05 - 000121051 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.a6b6838a-6cca-4ead-881a-838de9bc293e.pdf
2023-05-30 08:04 - 2023-05-30 08:04 - 000120946 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.67af3063-dd16-4844-9381-034afb001f75.pdf
2023-05-30 07:30 - 2023-05-30 07:30 - 000121001 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.d26fcc15-3a18-41d8-a05c-a39cb8b379f8.pdf
2023-05-28 15:57 - 2023-05-28 15:57 - 058688422 _____ C:\Users\madon\Downloads\Photos-001 (4).zip
2023-05-28 15:44 - 2023-05-28 15:44 - 018064088 _____ C:\Users\madon\Downloads\Photos-001 (3).zip
2023-05-19 13:52 - 2023-05-19 13:53 - 000776451 _____ C:\Users\madon\Downloads\2023 BS COMPLET GROUPE Bloqué- 2023 version 5.xlsx
2023-05-17 19:07 - 2023-05-17 19:07 - 000218967 _____ C:\Users\madon\Downloads\rousseau thérèse 27.04.23.pdf
2023-05-17 14:42 - 2023-05-17 14:42 - 000312662 _____ C:\Users\madon\Downloads\Proposition de minoration ou report Agirc-Arrco (paiement provisoire effectué) (1).pdf
2023-05-17 14:40 - 2023-05-17 14:40 - 000196217 _____ C:\Users\madon\Downloads\normand (2).pdf
2023-05-17 13:50 - 2023-05-17 13:50 - 001344116 _____ C:\Users\madon\Downloads\a71348_108298.pdf
2023-05-17 08:56 - 2023-05-17 08:56 - 000884926 _____ C:\Users\madon\Downloads\a61424_108076.pdf
2023-05-17 08:22 - 2023-05-17 08:22 - 000994496 _____ C:\Users\madon\Downloads\a61423_108075 (1).pdf
2023-05-17 07:58 - 2023-05-17 07:58 - 000994496 _____ C:\Users\madon\Downloads\a61423_108075.pdf
2023-05-15 08:05 - 2023-05-15 08:05 - 000125459 _____ C:\Users\madon\Downloads\QGI23-145.pdf
2023-05-13 09:41 - 2023-05-13 09:41 - 000203180 _____ C:\Users\madon\Downloads\Réédition attestation paiement.pdf
2023-05-13 09:21 - 2023-05-13 09:21 - 000312662 _____ C:\Users\madon\Downloads\Proposition de minoration ou report Agirc-Arrco (paiement provisoire effectué).pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-06-11 09:09 - 2022-11-24 20:26 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2023-06-11 09:08 - 2022-11-24 20:30 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-11 09:08 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-06-11 09:05 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-11 09:03 - 2022-11-24 20:28 - 000000000 ____D C:\Users\madon\AppData\Local\MyASUS Update Messenger
2023-06-11 09:02 - 2023-02-04 15:04 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-11 09:02 - 2022-11-24 20:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-11 09:02 - 2022-11-24 20:22 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2023-06-11 09:02 - 2022-11-20 21:00 - 000000277 _____ C:\ProgramData\CMediaAudioControlPanelData.ini
2023-06-11 09:02 - 2022-11-20 20:57 - 000000000 __SHD C:\Users\madon\IntelGraphicsProfiles
2023-06-11 09:02 - 2022-07-25 16:33 - 000000000 ___HD C:\Intel
2023-06-11 09:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-06-11 09:02 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-11 09:02 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-06-11 09:02 - 2021-10-07 00:47 - 000012288 ___SH C:\DumpStack.log.tmp
2023-06-11 09:00 - 2022-11-20 20:57 - 000000000 ____D C:\Users\madon\AppData\Local\Packages
2023-06-11 09:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-11 09:00 - 2021-10-07 00:49 - 000000000 ____D C:\ProgramData\Packages
2023-06-10 10:02 - 2022-11-24 20:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-10 09:55 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-10 09:40 - 2021-10-07 00:47 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-09 14:16 - 2023-02-04 14:42 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2347074124-3702551152-1276553165-1001
2023-06-09 14:16 - 2023-02-04 14:42 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-09 14:16 - 2023-02-04 14:42 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-09 14:16 - 2022-11-20 20:59 - 000000000 ___RD C:\Users\madon\OneDrive
2023-06-09 13:29 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-06-09 08:59 - 2021-10-07 00:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-08 16:19 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-08 15:05 - 2023-02-04 14:27 - 000000000 ____D C:\Program Files\Microsoft Office
2023-06-06 10:29 - 2022-11-24 18:38 - 000000000 ____D C:\Users\madon\AppData\Roaming\Microsoft\Word
2023-05-31 09:44 - 2022-12-19 12:04 - 000000000 ____D C:\Users\madon\AppData\Roaming\Microsoft\Excel
2023-05-29 14:06 - 2022-11-20 20:57 - 000000000 ____D C:\Users\madon\AppData\Local\D3DSCache
2023-05-12 03:57 - 2022-11-24 20:26 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-12 03:57 - 2022-11-24 20:26 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par madon (administrateur) sur MADO (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X515JAB_X515JA) (11-06-2023 09:08:31)
Exécuté depuis C:\Users\madon\OneDrive\Bureau\FRST64.exe
Profils chargés: madon
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1702 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOSD.exe
(C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe
(C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertReunion.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23091.410.2053.8773_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.37\msedgewebview2.exe <12>
(DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxEMN.exe
(explorer.exe ->) (F-Secure Corporation -> Darty Corporation) C:\Program Files (x86)\Darty\Darty Mot de Passe\fskey.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.) C:\Windows\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_56ce4d8646932f07\C-MediaAudioService.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_3cbddcc68b1c0da2\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a439e07c373809e2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0a2eb8dac923ec42\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_e72614dff5a8a910\Intel_PIE_Service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe
(sihost.exe ->) (5E725061-EB4B-47FD-B309-0B1348500865 -> C-Media Electronics, Inc.) C:\Program Files\WindowsApps\E2B691C9.C-Media6549AudioControlPanel_1.0.37.0_x64__y9kx1840xc4zw\VFS\ProgramFilesX86\C-Media Audio Control Panel\CMediaAudioControlPanel.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.11600.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKU\S-1-5-21-2347074124-3702551152-1276553165-1001\...\Run: [Darty Cloud] => C:\Users\madon\AppData\Local\Pack Sérénité\Darty Cloud\bin\DartyCloud.exe [1143984 2022-01-19] (OODRIVE S.A.S. -> Oodrive)
HKU\S-1-5-21-2347074124-3702551152-1276553165-1001\...\Run: [FSKeyAutoStart] => C:\Program Files (x86)\Darty\Darty Mot de Passe\fskey.exe [7063424 2020-12-08] (F-Secure Corporation -> Darty Corporation)
HKU\S-1-5-21-2347074124-3702551152-1276553165-1001\...\Run: [MicrosoftEdgeAutoLaunch_55D4BDEA02654F314E86275657AA50E7] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2347074124-3702551152-1276553165-1001\...\MountPoints2: {589ca1cf-a301-11ed-bb4d-7032172c449d} - "D:\setup.EXE" /AUTORUN
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0E83E50B-902F-4174-A439-64778D5994E2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157544 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {1615E3E4-1345-4BE6-AEB9-9C3BE5031E8B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {25D47282-631A-4997-A8DE-FF39D36AB5DB} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170456 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {28C849D9-0FEF-416B-A2AE-E425D5D64196} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusHotkey.exe [288904 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {3359EE8C-C4D7-4E2E-9E6E-0427D27C7309} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557360 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {55E6C7DD-BFBA-4C7C-9823-DA2C6C3A81B9} - System32\Tasks\MyASUS Update Messenger => C:\Users\madon\AppData\Local\MyASUS Update Messenger\UpdateMessenger.exe [13284208 2023-04-18] (SweetLabs Inc -> SweetLabs, Inc)
Task: {6804AE42-DCEE-465E-BAC2-EA6DD7B00B01} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {758FA57C-242A-4A90-A861-ADF08F67621E} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3697800 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {872F0081-63E0-41D3-BA4F-FB04C23E3433} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2347074124-3702551152-1276553165-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D81A0A1-657C-4D64-BF9C-11EF19B1CFC4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B77E4717-CEF5-425A-9361-586F14DC4DD3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D4F1E045-EB95-4677-B6C9-3BA62694C281} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557360 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {EDD6A400-00CC-49E6-BA8A-9EB9D5816AC0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157544 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7EB2152-F439-4AA4-8B84-629E5EB02AA8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA0721DF-22ED-47E3-A44C-0B183CAEEB59} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusUpdateChecker.exe [797832 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4e14c44d-1488-4d6e-82a0-63119fca6eeb}: [DhcpNameServer] 40.52.1.13
Tcpip\..\Interfaces\{e89fc9a5-681d-4dde-8b5e-d6edaeef273b}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\madon\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-11]
Edge Extension: (IGRAAL : Cashback & codes promo) - C:\Users\madon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hgfjoaookbahbhinopgfoiajfijfcdhm [2023-05-10]
Edge Extension: (Edge relevant text changes) - C:\Users\madon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
Edge Extension: (AdGuard AdBlocker) - C:\Users\madon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2023-06-09]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-02-04] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\AsusAppService\AsusAppService.exe [1159264 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkNear\AsusLinkNear.exe [1335432 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkRemote\AsusLinkRemote.exe [764552 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe [458848 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusScreenXpertHostService; C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe [1747088 2023-05-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManager.exe [1091720 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSwitch\AsusSwitch.exe [635528 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3697800 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [829064 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 C-MediaAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_56ce4d8646932f07\C-MediaAudioService.exe [309672 2022-08-26] (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11774392 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [241760 2022-04-29] (DTS, Inc. -> DTS Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.107.0521.0001\FileSyncHelper.exe [3445672 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-05-08] (HP Inc. -> HP Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.107.0521.0001\OneDriveUpdaterService.exe [3781512 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSAIO.sys [46736 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusWmiAcpi.sys [48776 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R3 iaLPSS2_GPIO2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_SPI_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_icl.inf_amd64_66a759065dfa6f64\iaLPSS2_SPI_ICL.sys [160024 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_icl.inf_amd64_b535659b9405201a\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 MpKsl1de4a6d4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{38132BB4-6004-4DE3-B4B7-21723D97C793}\MpKslDrv.sys [213288 2023-06-11] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-09] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-06-11 09:08 - 2023-06-11 09:08 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2023-06-11 09:08 - 2023-06-11 09:08 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2023-06-11 08:47 - 2023-06-11 08:47 - 012370384 _____ (McAfee, LLC) C:\Users\madon\Downloads\MCPR.exe
2023-06-09 21:26 - 2023-06-09 21:26 - 002383360 _____ (Farbar) C:\Users\madon\Downloads\FRST64 (1).exe
2023-06-09 13:21 - 2023-06-09 13:19 - 105161384 _____ (AO Kaspersky Lab) C:\Users\madon\Downloads\KVRT (1) - Copie.exe
2023-06-09 13:20 - 2023-06-09 21:25 - 000000000 ____D C:\KVRT2020_Data
2023-06-09 13:19 - 2023-06-09 13:19 - 105161384 _____ (AO Kaspersky Lab) C:\Users\madon\Downloads\KVRT.exe
2023-06-09 13:19 - 2023-06-09 13:19 - 105161384 _____ (AO Kaspersky Lab) C:\Users\madon\Downloads\KVRT (1).exe
2023-06-08 16:40 - 2023-06-11 09:08 - 000000000 ____D C:\FRST
2023-06-08 16:38 - 2023-06-08 16:38 - 002383360 _____ (Farbar) C:\Users\madon\Downloads\FRST64.exe
2023-06-08 16:30 - 2023-06-11 09:07 - 000000000 ____D C:\Users\madon\AppData\Roaming\ZHP
2023-06-08 16:30 - 2023-06-08 16:30 - 000000000 ____D C:\Users\madon\AppData\Local\ZHP
2023-06-08 16:29 - 2023-06-08 16:29 - 000001297 _____ C:\Users\madon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZHPSuite (3).lnk
2023-06-08 16:28 - 2023-06-08 16:28 - 003517128 _____ (Nicolas Coolman) C:\Users\madon\Downloads\ZHPSuite (3).exe
2023-06-08 16:22 - 2023-06-08 16:22 - 000000000 ____D C:\Users\madon\AppData\Local\CEF
2023-06-08 14:43 - 2023-06-08 14:43 - 001386328 _____ C:\Users\madon\Downloads\Photos-001 (7).zip
2023-06-07 15:16 - 2023-06-07 15:16 - 000036717 _____ C:\Users\madon\Downloads\FA158213.pdf
2023-06-07 13:47 - 2023-06-07 13:47 - 036366440 _____ C:\Users\madon\Downloads\Photos-001 (6).zip
2023-06-05 16:55 - 2023-06-05 16:55 - 000042598 _____ C:\Users\madon\Downloads\05062023_COMMANDE_C1968E984918O344917.pdf
2023-06-02 08:03 - 2023-06-02 08:03 - 000122363 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.c6699feb-de2f-4f6c-92a7-7cc64d79d286.pdf
2023-06-02 08:01 - 2023-06-02 08:01 - 000121154 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.24899a6e-5711-4812-b635-703f0096fa51.pdf
2023-05-31 07:27 - 2023-05-31 07:27 - 000122521 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.5b625ee3-8471-4a19-b32c-ab1f7bea4b9c.pdf
2023-05-30 22:33 - 2023-05-30 22:33 - 460476172 _____ C:\Users\madon\Downloads\Photos-001 (5).zip
2023-05-30 08:05 - 2023-05-30 08:05 - 000121051 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.a6b6838a-6cca-4ead-881a-838de9bc293e.pdf
2023-05-30 08:04 - 2023-05-30 08:04 - 000120946 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.67af3063-dd16-4844-9381-034afb001f75.pdf
2023-05-30 07:30 - 2023-05-30 07:30 - 000121001 _____ C:\Users\madon\Downloads\paje_bulletinsalaire.d26fcc15-3a18-41d8-a05c-a39cb8b379f8.pdf
2023-05-28 15:57 - 2023-05-28 15:57 - 058688422 _____ C:\Users\madon\Downloads\Photos-001 (4).zip
2023-05-28 15:44 - 2023-05-28 15:44 - 018064088 _____ C:\Users\madon\Downloads\Photos-001 (3).zip
2023-05-19 13:52 - 2023-05-19 13:53 - 000776451 _____ C:\Users\madon\Downloads\2023 BS COMPLET GROUPE Bloqué- 2023 version 5.xlsx
2023-05-17 19:07 - 2023-05-17 19:07 - 000218967 _____ C:\Users\madon\Downloads\rousseau thérèse 27.04.23.pdf
2023-05-17 14:42 - 2023-05-17 14:42 - 000312662 _____ C:\Users\madon\Downloads\Proposition de minoration ou report Agirc-Arrco (paiement provisoire effectué) (1).pdf
2023-05-17 14:40 - 2023-05-17 14:40 - 000196217 _____ C:\Users\madon\Downloads\normand (2).pdf
2023-05-17 13:50 - 2023-05-17 13:50 - 001344116 _____ C:\Users\madon\Downloads\a71348_108298.pdf
2023-05-17 08:56 - 2023-05-17 08:56 - 000884926 _____ C:\Users\madon\Downloads\a61424_108076.pdf
2023-05-17 08:22 - 2023-05-17 08:22 - 000994496 _____ C:\Users\madon\Downloads\a61423_108075 (1).pdf
2023-05-17 07:58 - 2023-05-17 07:58 - 000994496 _____ C:\Users\madon\Downloads\a61423_108075.pdf
2023-05-15 08:05 - 2023-05-15 08:05 - 000125459 _____ C:\Users\madon\Downloads\QGI23-145.pdf
2023-05-13 09:41 - 2023-05-13 09:41 - 000203180 _____ C:\Users\madon\Downloads\Réédition attestation paiement.pdf
2023-05-13 09:21 - 2023-05-13 09:21 - 000312662 _____ C:\Users\madon\Downloads\Proposition de minoration ou report Agirc-Arrco (paiement provisoire effectué).pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-06-11 09:09 - 2022-11-24 20:26 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2023-06-11 09:08 - 2022-11-24 20:30 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-11 09:08 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-06-11 09:05 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-11 09:03 - 2022-11-24 20:28 - 000000000 ____D C:\Users\madon\AppData\Local\MyASUS Update Messenger
2023-06-11 09:02 - 2023-02-04 15:04 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-11 09:02 - 2022-11-24 20:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-11 09:02 - 2022-11-24 20:22 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2023-06-11 09:02 - 2022-11-20 21:00 - 000000277 _____ C:\ProgramData\CMediaAudioControlPanelData.ini
2023-06-11 09:02 - 2022-11-20 20:57 - 000000000 __SHD C:\Users\madon\IntelGraphicsProfiles
2023-06-11 09:02 - 2022-07-25 16:33 - 000000000 ___HD C:\Intel
2023-06-11 09:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-06-11 09:02 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-11 09:02 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-06-11 09:02 - 2021-10-07 00:47 - 000012288 ___SH C:\DumpStack.log.tmp
2023-06-11 09:00 - 2022-11-20 20:57 - 000000000 ____D C:\Users\madon\AppData\Local\Packages
2023-06-11 09:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-11 09:00 - 2021-10-07 00:49 - 000000000 ____D C:\ProgramData\Packages
2023-06-10 10:02 - 2022-11-24 20:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-10 09:55 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-10 09:40 - 2021-10-07 00:47 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-09 14:16 - 2023-02-04 14:42 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2347074124-3702551152-1276553165-1001
2023-06-09 14:16 - 2023-02-04 14:42 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-09 14:16 - 2023-02-04 14:42 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-09 14:16 - 2022-11-20 20:59 - 000000000 ___RD C:\Users\madon\OneDrive
2023-06-09 13:29 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-06-09 08:59 - 2021-10-07 00:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-08 16:19 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-08 15:05 - 2023-02-04 14:27 - 000000000 ____D C:\Program Files\Microsoft Office
2023-06-06 10:29 - 2022-11-24 18:38 - 000000000 ____D C:\Users\madon\AppData\Roaming\Microsoft\Word
2023-05-31 09:44 - 2022-12-19 12:04 - 000000000 ____D C:\Users\madon\AppData\Roaming\Microsoft\Excel
2023-05-29 14:06 - 2022-11-20 20:57 - 000000000 ____D C:\Users\madon\AppData\Local\D3DSCache
2023-05-12 03:57 - 2022-11-24 20:26 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-12 03:57 - 2022-11-24 20:26 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================