RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 20-03-2022
ExÃ©cutÃ© par baque (administrateur) sur ASUS-NOTEBOOK (ASUSTeK COMPUTER INC. X540LJ) (22-03-2022 15:43:53)
ExÃ©cutÃ© depuis C:\Users\baque\Downloads
Profils chargÃ©s: baque
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1586 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: Edge
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\99.0.1150.46\identity_helper.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22022.147.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22022.147.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy\YourPhoneAppProxy.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\55.0.3.0\crashpad_handler.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <33>
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation) [Fichier non signÃ©] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (IntelÂ® Trusted Connect Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Orange -> Orange) C:\Users\baque\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2433055688-2841440216-1506561926-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35888256 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2433055688-2841440216-1506561926-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRHE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2433055688-2841440216-1506561926-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2433055688-2841440216-1506561926-1001\...\Run: [MicrosoftEdgeAutoLaunch_974AE43232C5804B3E9B6BC1F6E62CFB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-2433055688-2841440216-1506561926-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\EPSON XP-640 Series 64MonitorBE: C:\Windows\system32\E_YLMBRHE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signÃ©]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\99.0.4844.74\Installer\chrmstp.exe [2022-03-18] (Google LLC -> Google LLC)
Startup: C:\Users\baque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer Ã  OneNote.lnk [2022-01-27]
ShortcutTarget: Envoyer Ã  OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) ============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {1599944B-5C02-4445-BCF8-E79A0CC4F10C} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {172CCD03-0479-4B33-BDB6-439B5B74D86E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1C4C9F10-983D-4891-8EFF-409F47824F57} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B9ACDB2-369C-4432-BE62-45D9F231B80D} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {309E3EF8-8C76-4B15-8BA2-267A6707F7A7} - System32\Tasks\WpsKtpcntrQingTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\office6\ktpcntr.exe [1531136 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {34F10832-4BCD-4AD3-B825-9DAF263CDE2C} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2317480 2021-12-29] (CyberLink Corp. -> )
Task: {3D3FE8E5-278A-428C-BA32-9661CBEA5208} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-03-10] (Piriform Software Ltd -> Piriform)
Task: {526B461F-F78A-4DA3-BEE2-98A3AC71F919} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
Task: {5EE08B53-5F87-4A5E-86DF-72BD5B745C05} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1578784 2016-07-07] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signÃ©]
Task: {631E65B3-2A85-4641-8185-715925109B22} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506168 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6C415B35-6EE2-4640-A7E5-5521DD282C35} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7C79E77E-1E43-426B-80F3-EB4976480DA8} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {87AE957A-9884-4A20-880C-90F7D41B2094} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B56AA90-9058-4A10-AF1F-EEA1F518437A} - System32\Tasks\GoogleUpdateTaskMachineCore1d6a93bd6e96464 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-03] (Google Inc -> Google LLC)
Task: {8E8D64C1-F749-40F0-B3A8-3AC1712049CB} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506168 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8ED75364-6909-4924-BAD1-39560A4550E9} - System32\Tasks\UsbFix Monitor => C:\ProgramData\SosVirus\UsbFix\Modules\UsbFixMonitor.exe (Pas de fichier)
Task: {93DBE981-0F6C-49E1-B29A-E9837BF63222} - System32\Tasks\EPSON XP-640 Series Update {47E833CB-78FF-4BF3-8CE9-3E4395B2810C} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRHE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {9401EFFF-E929-4F65-A7EB-86DC8FF4A37A} - System32\Tasks\EPSON XP-640 Series Update {07DC6EBA-7B28-475C-B282-412CC772A700} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRHE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {9A9F535A-3F9C-4E88-B231-0B58D0270847} - System32\Tasks\WpsUpdateTask_baque => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdate.exe [566528 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {A12D9B5E-1FC6-4A3A-BA2B-221954DA95CC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A82FCB41-2B4D-4E50-8638-B7325FFC5F12} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2317480 2021-12-29] (CyberLink Corp. -> )
Task: {AD5338E9-E3B9-41EC-AE1E-5180DAD04993} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B2770D10-B13F-44A6-B7D3-0238CDAE98C5} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {B81DFC27-AE6E-419A-BB75-05C53A0F3996} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-03] (Google Inc -> Google LLC)
Task: {BD62CF0E-4ABE-4432-8B79-BF8FCD464CE9} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\baque\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1974064 2021-11-10] (Orange -> Orange)
Task: {BF15E5C3-114A-4691-BEC2-E48EEB17851B} - System32\Tasks\CCleanerSkipUAC - baque => C:\Program Files\CCleaner\CCleaner.exe [30053504 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C4698658-0322-438E-B95A-BE8770BE3B1E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA9FA6A9-0610-4407-954B-DCC44DDC07E5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CC2AE53F-7497-4804-9E4E-46DAF164D52F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CD031DBE-B04C-4256-8795-37928A092BEA} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [59232 2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {CEA5D835-BF59-4762-92E4-0C1E3329D551} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2015-12-02] (ASUS) [Fichier non signÃ©]
Task: {D6FDE83A-8B34-4ACC-B6AA-5E82EFAF7720} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {D8087517-9F0E-4223-BBB7-648DF13E2488} - System32\Tasks\ASUS Patch for Touch Panel => C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe [178128 2016-03-07] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {DB1394F1-1AD1-4648-A1B8-DDFD6FB73887} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {DE0ECDBA-A2ED-4136-A464-B717D72BC9E3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {E165BC5C-0B63-4AD3-8A6F-3FAFEE301958} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-03] (Google Inc -> Google LLC)
Task: {E3252433-32E7-47F5-80D2-0363A1C848EC} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18352 2019-08-19] (ASUSTek Computer Inc. -> AsusTek)
Task: {E39B04FB-3166-494E-B519-06F60D7B1BBC} - System32\Tasks\WpsExternal_20161111081738 => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe [516352 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {F1CCDC38-41F9-415D-AC9E-5388ED0BC7FF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {FEEBFA93-540C-4D7D-976B-761E6910D55F} - System32\Tasks\GoogleUpdateTaskMachineUA1d6a93bd763be69 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-03] (Google Inc -> Google LLC)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)

Task: C:\WINDOWS\Tasks\EPSON XP-640 Series Update {07DC6EBA-7B28-475C-B282-412CC772A700}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRHE.EXE:/EXE:{07DC6EBA-7B28-475C-B282-412CC772A700} /F:UpdateWORKGROUP\DESKTOP-SKVH4GI$ÄSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-640 Series Update {47E833CB-78FF-4BF3-8CE9-3E4395B2810C}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRHE.EXE:/EXE:{47E833CB-78FF-4BF3-8CE9-3E4395B2810C} /F:UpdateWORKGROUP\DESKTOP-SKVH4GI$ÄSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\WpsExternal_20161111081738.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe
Task: C:\WINDOWS\Tasks\WpsKtpcntrQingTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\office6\ktpcntr.exeÃqing 10.1.0.5644 xxx server_url=hxxp:/kdl1.cache.wps.com/ksodl/wpscfg/client/____client____html____service____bubble.html ic_server_url=hxxp:/info.kingsoftstore.com/wpsv6internet/infos.ads
Task: C:\WINDOWS\Tasks\WpsUpdateTask_baque.job => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{677d8671-fd66-41a2-ab13-5b2e29568002}: [DhcpNameServer] 40.51.1.14
Tcpip\..\Interfaces\{9d4d30fc-8ee4-4f13-90fc-c323dfe481dc}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvÃ©(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\baque\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-22]
Edge Notifications: Default -> hxxps://0.nextyourcontent.com; hxxps://1.nextyourcontent.com; hxxps://bingocaptchapoint.top; hxxps://defr.abcdef.wiki; hxxps://fr.cyberlink.com; hxxps://funtoday.info; hxxps://militaria1940.forumactif.com; hxxps://pushnott.com; hxxps://windows-protector.com; hxxps://www.astuces-aide-informatique.info; hxxps://www.facebook.com; hxxps://www.mister-auto.com; hxxps://www.morgandetoi.fr; hxxps://www.photoweb.fr; hxxps://www.youtube.com
Edge HomePage: Default -> hxxps://www.bing.com/?FORM=Z9FD1
Edge StartupUrls: Default -> "hxxps://www.bing.com/?FORM=Z9FD1"
Edge Extension: (Parameters Editor) - C:\Users\baque\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kpblfibnaphojoagpjnopmpiabanhpen [2022-03-22]

FireFox:
========
FF DefaultProfile: 4x44lyfi.default-1639050336303
FF ProfilePath: C:\Users\baque\AppData\Roaming\Mozilla\Firefox\Profiles\4x44lyfi.default-1639050336303 [2022-03-21]
FF Homepage: Mozilla\Firefox\Profiles\4x44lyfi.default-1639050336303 -> hxxps://r.orange.fr/r/Oodc_oi_promoHP|hxxps://www.orange.fr/portail?utm_source=oi&utm_medium=v3&utm_campaign=sc&utm_content=promoHP|hxxps://www.google.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2022-01-26] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2022-01-26] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\baque\AppData\Local\Google\Chrome\User Data\Default [2022-03-22]
CHR Notifications: Default -> hxxps://www.autonews.fr; hxxps://www.cuir-city.com; hxxps://www.dossierfamilial.com; hxxps://www.fnac.com; hxxps://www.galerieslafayette.com; hxxps://www.laredoute.fr; hxxps://www.site-annonce.fr
CHR HomePage: Default -> orange.fr
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Slides) - C:\Users\baque\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-20]
CHR Extension: (Docs) - C:\Users\baque\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-20]
CHR Extension: (GoogleÂ Drive) - C:\Users\baque\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-25]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\baque\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-16]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\baque\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2022-01-25]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\baque\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-25]
CHR Extension: (Orange page d'accueil) - C:\Users\baque\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2022-01-25]
CHR HKU\S-1-5-21-2433055688-2841440216-1506561926-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

S3 0308491563463184mcinstcleanup; C:\ProgramData\McInstTemp0308491563463184\McInst.exe [959224 2020-02-05] (McAfee, LLC -> McAfee, LLC.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11649952 2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signÃ©]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signÃ©]
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13252624 2020-04-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-01-23] (AnchorFree Inc -> The OpenVPN Project)
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R3 AsusSGDrv; C:\WINDOWS\System32\drivers\AsusSGDrv.sys [139208 2018-06-26] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-04-11] (Martin Malik - REALiX -> REALiX(tm))
S3 IMFEFSFileControl; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFEFSFileControl.sys [40824 2019-08-13] (IObit Information Technology -> IObit)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [36168 2019-10-18] (McAfee, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [439544 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
S3 MpKslf3dc663d; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AD5140CA-D108-42CF-B0B7-0B34B8AB4EE8}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-03-22 15:43 - 2022-03-22 15:46 - 000031068 _____ C:\Users\baque\Downloads\FRST.txt
2022-03-22 15:40 - 2022-03-22 15:45 - 000000000 ____D C:\FRST
2022-03-22 15:40 - 2022-03-22 15:40 - 002364928 _____ (Farbar) C:\Users\baque\Downloads\FRST64-2.1.exe
2022-03-22 15:40 - 2022-03-22 15:40 - 000000000 ____D C:\Users\baque\Downloads\FRST-OlderVersion
2022-03-22 14:57 - 2022-03-22 14:57 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-03-17 18:44 - 2022-03-17 18:44 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-03-17 18:42 - 2022-03-17 18:42 - 037889344 _____ (Piriform Software Ltd) C:\Users\baque\Downloads\ccsetup591.exe
2022-03-17 18:18 - 2022-03-17 18:18 - 000034943 _____ C:\Users\baque\Downloads\parcours-militaire_sources_serieW (2).pdf
2022-03-16 18:13 - 2022-03-16 18:13 - 000000000 ____D C:\Users\baque\AppData\Local\SolidDocuments
2022-03-16 18:12 - 2022-03-16 18:12 - 000508978 _____ C:\Users\baque\Downloads\Orientations-d-amenagement-et-de-programmation-Secteur-Mas-d-Astre.pdf
2022-03-16 14:15 - 2022-03-16 14:15 - 000000000 ____D C:\Program Files\Adobe
2022-03-16 14:12 - 2022-03-18 16:10 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-03-16 14:03 - 2022-03-16 14:03 - 000002248 _____ C:\Users\baque\Desktop\WhatsApp.lnk
2022-03-16 14:02 - 2022-03-16 14:03 - 000000000 ____D C:\Users\baque\AppData\Local\WhatsApp
2022-03-16 14:01 - 2022-03-16 14:01 - 150098128 _____ (WhatsApp) C:\Users\baque\Downloads\WhatsAppSetup (5).exe
2022-03-15 14:06 - 2022-03-15 14:06 - 002480071 _____ C:\Users\baque\Downloads\Orientations-d-amenagement-et-de-programmation-Secteur-Grisettes.pdf
2022-03-14 15:58 - 2022-03-17 18:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-03-12 12:50 - 2022-03-12 12:50 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2433055688-2841440216-1506561926-1001
2022-03-12 12:50 - 2022-03-12 12:50 - 000002468 _____ C:\Users\baque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-03-10 15:08 - 2022-03-10 15:08 - 000011911 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-03-10 15:07 - 2022-03-10 15:07 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-10 15:06 - 2022-03-10 15:06 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-10 15:04 - 2022-03-10 15:04 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-10 15:03 - 2022-03-10 15:03 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-03-10 14:09 - 2022-03-10 14:09 - 000000000 ___HD C:\$WinREAgent
2022-03-05 17:29 - 2022-03-05 17:30 - 000278487 _____ C:\Users\baque\Downloads\Logement mineurs Belgique.pdf
2022-03-05 11:52 - 2022-03-05 11:52 - 000034943 _____ C:\Users\baque\Downloads\parcours-militaire_sources_serieW (1).pdf
2022-03-05 11:44 - 2022-03-05 11:44 - 000034943 _____ C:\Users\baque\Downloads\parcours-militaire_sources_serieW.pdf
2022-02-28 18:18 - 2022-02-28 18:18 - 000000000 ____D C:\Users\baque\Documents\CyberLink
2022-02-28 16:07 - 2022-02-28 16:07 - 000003610 _____ C:\WINDOWS\system32\Tasks\CLToast
2022-02-28 16:07 - 2022-02-28 16:07 - 000003436 _____ C:\WINDOWS\system32\Tasks\CLToastRun
2022-02-28 16:07 - 2022-02-28 16:07 - 000001295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Notification Center.lnk
2022-02-28 16:06 - 2022-02-28 16:06 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 365.lnk
2022-02-28 16:06 - 2022-02-28 16:06 - 000002155 _____ C:\Users\Public\Desktop\CyberLink PhotoDirector 365.lnk
2022-02-28 16:06 - 2022-02-28 16:06 - 000000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2022-02-28 16:00 - 2022-02-28 16:07 - 000000000 ____D C:\ProgramData\CLSK
2022-02-28 16:00 - 2022-02-28 16:00 - 000000000 ____D C:\ProgramData\install_backup
2022-02-28 15:54 - 2022-02-28 15:58 - 469961552 _____ C:\Users\baque\Downloads\PhotoDirector_13.1.2429.83938_365_Essential_PTD211224-01.exe
2022-02-28 15:53 - 2022-02-28 15:54 - 001161312 _____ (CyberLink) C:\Users\baque\Downloads\CyberLink_PhotoDirector_Downloader.exe
2022-02-25 14:44 - 2022-02-25 14:44 - 001400471 _____ C:\Users\baque\Downloads\ListeAK_StalagXIID_Leg-AWelter.pdf
2022-02-25 14:44 - 2022-02-25 14:44 - 000118922 _____ C:\Users\baque\Downloads\fiche mÃ©dicales archives de Paris.pdf
2022-02-25 14:42 - 2022-02-25 14:42 - 000363462 _____ C:\Users\baque\Downloads\Liste PG Arolsen.pdf
2022-02-25 14:35 - 2022-02-25 14:35 - 000247797 _____ C:\Users\baque\Downloads\Recherches sur P.G. franÃ§ais_2021.03.pdf
2022-02-25 14:32 - 2022-02-25 14:32 - 000180161 _____ C:\Users\baque\Downloads\Fiches rapatriement PG.pdf
2022-02-22 18:33 - 2022-02-22 18:33 - 003481177 _____ C:\Users\baque\Downloads\Part3_TR-StalagXIID_AWelter_Fr_Chap10-14.pdf
2022-02-22 18:26 - 2022-02-22 18:26 - 003262720 _____ C:\Users\baque\Downloads\Part2_TR-StalagXIID_AWelter_Fr_Chap05-09.pdf
2022-02-22 18:04 - 2022-02-22 18:04 - 005912715 _____ C:\Users\baque\Downloads\TR-StalagXIID_AWelter_Fr_Chap1-4.pdf
2022-02-21 16:46 - 2022-02-21 16:46 - 110622400 _____ C:\Users\baque\Downloads\deces-2008.txt
2022-02-21 14:25 - 2022-02-21 14:25 - 000954645 _____ C:\Users\baque\Downloads\visuels-expomines.pdf
2022-02-20 13:54 - 2022-02-20 13:54 - 000165661 _____ C:\Users\baque\Downloads\metadonnees_deces.zip
2022-02-20 12:39 - 2022-02-20 12:39 - 000862343 _____ C:\Users\baque\Downloads\Pneus_Reliance_Ã©tÃ©_Tarif_Octobre_2021.pdf

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-03-22 15:39 - 2019-08-03 18:03 - 000000000 ____D C:\Program Files (x86)\Google
2022-03-22 15:05 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-03-22 15:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-03-22 15:02 - 2021-06-26 16:25 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-03-22 15:02 - 2019-12-07 15:49 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat
2022-03-22 15:02 - 2019-12-07 15:49 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat
2022-03-22 15:02 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-03-22 14:59 - 2019-12-19 16:19 - 000000000 ____D C:\Program Files\CCleaner
2022-03-22 14:59 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-22 14:57 - 2017-05-19 17:04 - 000000000 __SHD C:\Users\baque\IntelGraphicsProfiles
2022-03-22 14:55 - 2020-09-27 08:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-22 14:55 - 2020-09-27 06:51 - 000008192 ___SH C:\DumpStack.log.tmp
2022-03-22 14:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-03-22 14:55 - 2017-01-26 10:19 - 000000000 ____D C:\ProgramData\NVIDIA
2022-03-22 14:55 - 2016-11-11 09:17 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-03-22 14:54 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-03-22 13:58 - 2017-05-20 11:01 - 000000000 ____D C:\Users\baque\AppData\LocalLow\Mozilla
2022-03-21 17:45 - 2020-09-27 06:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-03-20 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-03-19 11:40 - 2020-09-27 08:54 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-03-19 11:40 - 2020-09-27 08:54 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-03-18 16:10 - 2020-09-26 07:40 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-17 18:44 - 2019-12-19 16:19 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2022-03-17 18:34 - 2017-05-20 11:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-03-17 18:32 - 2021-06-26 16:13 - 000000000 ____D C:\Users\baque
2022-03-17 14:56 - 2018-02-05 18:03 - 000000000 ____D C:\Users\baque\Documents\GENEALOGIE
2022-03-16 18:27 - 2019-08-03 18:11 - 000000000 ___RD C:\Users\baque\Google Drive
2022-03-16 18:13 - 2017-05-19 17:04 - 000000000 ____D C:\Users\baque\AppData\Roaming\Adobe
2022-03-16 15:39 - 2018-01-21 18:06 - 000000000 ____D C:\Users\baque\Documents\BSD Concept
2022-03-16 14:11 - 2021-07-26 14:10 - 000000000 ____D C:\Users\baque\AppData\Roaming\WhatsApp
2022-03-16 14:11 - 2018-02-18 16:38 - 000000000 ____D C:\ProgramData\Adobe
2022-03-16 14:03 - 2021-07-26 14:17 - 000000000 ____D C:\Users\baque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2022-03-16 14:03 - 2021-07-26 14:08 - 000000000 ____D C:\Users\baque\AppData\Local\SquirrelTemp
2022-03-16 11:43 - 2020-09-27 08:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-03-16 11:29 - 2018-12-11 16:08 - 000000000 ____D C:\Users\baque\Documents\DOSSIER MEDICAL
2022-03-15 16:29 - 2017-01-26 10:43 - 000000000 ____D C:\Program Files\Microsoft Office
2022-03-15 13:47 - 2021-12-09 13:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-03-15 13:47 - 2017-05-20 11:00 - 000001240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-03-14 17:33 - 2018-07-03 15:03 - 000000000 ____D C:\Users\baque\Documents\LABOSUD
2022-03-14 17:13 - 2017-05-19 17:12 - 000000000 ___RD C:\Users\baque\OneDrive
2022-03-12 12:50 - 2022-01-07 16:18 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2433055688-2841440216-1506561926-1001
2022-03-12 11:36 - 2020-05-14 14:25 - 000000000 ____D C:\Users\baque\AppData\Local\ElevatedDiagnostics
2022-03-10 16:11 - 2020-09-27 06:51 - 000448104 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-10 16:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-03-10 16:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-03-10 16:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-03-10 16:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-03-10 16:06 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-03-10 16:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-03-10 16:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-03-10 16:06 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-03-10 15:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-03-10 15:02 - 2020-09-27 08:53 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-03-10 14:08 - 2017-05-20 11:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-03-10 14:03 - 2017-05-20 11:55 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-03-09 14:03 - 2021-06-30 13:10 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d76a9f517dc011
2022-03-09 14:03 - 2020-09-27 08:53 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-03-08 16:50 - 2020-04-16 16:34 - 000000000 ____D C:\Users\baque\Downloads\GEOGRAPHIE HEREDIS
2022-03-03 18:47 - 2022-01-27 15:08 - 000000000 ____D C:\Users\baque\Documents\CAPTURES D'ECRAN
2022-03-01 18:10 - 2017-01-26 10:38 - 000000000 ___HD C:\ProgramData\CyberLink
2022-02-28 16:44 - 2017-09-11 15:57 - 000000000 ____D C:\Users\baque\AppData\Roaming\EPSON
2022-02-28 16:06 - 2017-01-26 10:13 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-02-28 16:02 - 2017-01-26 10:39 - 000000000 ____D C:\Program Files\CyberLink
2022-02-28 16:00 - 2017-01-26 10:38 - 000000000 ____D C:\ProgramData\install_clap
2022-02-24 15:26 - 2017-09-11 15:51 - 000000000 ____D C:\Program Files\UNP
2022-02-23 13:15 - 2018-05-27 11:32 - 000000446 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2022-02-23 12:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-02-20 17:30 - 2018-01-23 21:58 - 000000000 ____D C:\Users\baque\AppData\Local\Packages
2022-02-20 16:59 - 2018-02-24 13:55 - 000000000 ____D C:\Users\baque\AppData\Local\PlaceholderTileLogoFolder

==================== Fichiers Ã  la racine de certains dossiers ========

2017-05-19 17:06 - 2019-07-18 17:01 - 000000184 _____ () C:\Users\baque\AppData\Roaming\sp_data.sys
2019-12-19 17:35 - 2019-12-19 17:35 - 000000017 _____ () C:\Users\baque\AppData\Local\resmon.resmoncfg
2020-05-10 13:26 - 2020-05-10 13:26 - 000000000 _____ () C:\Users\baque\AppData\Local\{AA056D8B-95EE-4A4B-BF9E-8B1D90BDDBC4}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================