Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2023 Exécuté par Flavien (administrateur) sur LAPTOP-0TV008PC (HP HP Pavilion Notebook) (18-09-2023 11:20:09) Exécuté depuis C:\Users\Flavien\Downloads\FRST64.exe Profils chargés: Flavien Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2965 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Qustodio\qapp\QUpdateService.exe ->) (Qustodio Technologies SL -> ) C:\Program Files (x86)\Qustodio\qapp\crashpad_handler.exe <3> (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\Program Files\WindowsApps\Microsoft.BingNews_4.55.62231.0_x64__8wekyb3d8bbwe\Microsoft.Msn.News.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.31\msedgewebview2.exe <7> (Discord Inc. -> Discord Inc.) C:\ProgramData\Flavien\Discord\app-1.0.9017\Discord.exe <6> (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <43> (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\igfxEM.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.174.0820.0003\Microsoft.SharePoint.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe (Qustodio Technologies SL -> Qustodio Technologies) C:\Program Files (x86)\Qustodio\qapp\QAppTray.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (HP Inc. -> HP) C:\Windows\System32\hpservice.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_9f074a9de859939d\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Qustodio Technologies SL -> Qustodio Technologies) C:\Program Files (x86)\Qustodio\qapp\QUpdateService.exe (services.exe ->) (Qustodio Technologies SL -> Qustodio Technologies) C:\Program Files (x86)\Qustodio\qproxy\qengine.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (Hewlett-Packard Company -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe (svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.BingNews_4.55.62231.0_x64__8wekyb3d8bbwe\Microsoft.Msn.News.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269352 2019-04-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [705784 2016-06-20] (HP Inc. -> HP Inc.) HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324488 2016-08-02] (HP Inc. -> HP) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [QAppTray] => C:\Program Files (x86)\Qustodio\qapp\QAppTray.exe [6285856 2023-07-25] (Qustodio Technologies SL -> Qustodio Technologies) HKU\S-1-5-21-266307271-186719744-3698087808-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607632 2023-09-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-266307271-186719744-3698087808-1001\...\Run: [Discord] => C:\Users\Compte intermédiaire\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-266307271-186719744-3698087808-1001\...\Run: [Gaijin.Net Updater] => C:\Users\Compte intermédiaire\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2350824 2020-07-15] (Gaijin Network LTD -> Gaijin Entertainment) HKU\S-1-5-21-266307271-186719744-3698087808-1001\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe [24016392 2023-09-17] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-266307271-186719744-3698087808-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Compte intermédiaire\AppData\Local\Microsoft\Teams\Update.exe [2350752 2020-08-27] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-266307271-186719744-3698087808-1001\...\Run: [DeepL] => C:\Users\Compte intermédiaire\AppData\Local\DeepL\app-2.7.22108\DeepL.exe [134144 2021-08-18] (DeepL GmbH) [Fichier non signé] HKU\S-1-5-21-266307271-186719744-3698087808-1001\...\Run: [Grammarly] => C:\Users\Compte intermédiaire\AppData\Local\Grammarly\DesktopIntegrations\Grammarly.Desktop.exe [932848 2021-12-08] (Grammarly, Inc. -> ) HKU\S-1-5-21-266307271-186719744-3698087808-1001\...\Run: [GoogleChromeAutoLaunch_A2E916FC47B77597A4B193DAE63F9992] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [3219744 2023-09-09] (Google LLC -> Google LLC) HKU\S-1-5-21-266307271-186719744-3698087808-1023\...\Run: [MicrosoftEdgeAutoLaunch_530E4A4B6F60FBD9198E054FF967DB01] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4219448 2023-09-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-266307271-186719744-3698087808-1023\...\Run: [Windscribe] => C:\Program Files (x86)\Windscribe\Windscribe.exe [10106544 2019-01-19] (Windscribe Limited -> Windscribe Limited) HKU\S-1-5-21-266307271-186719744-3698087808-1023\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe [24016392 2023-09-17] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-266307271-186719744-3698087808-1023\...\Run: [Discord] => C:\ProgramData\Flavien\Discord\Update.exe [1525016 2023-08-28] (Discord Inc. -> GitHub) HKU\S-1-5-21-266307271-186719744-3698087808-1023\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11469784 2023-09-07] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-266307271-186719744-3698087808-1024\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607632 2023-09-08] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-14] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP JumpStart Launch.lnk [2017-02-07] ShortcutTarget: HP JumpStart Launch.lnk -> c:\Windows\Installer\{B90CB0DE-2E60-41C4-9857-466EB98192BF}\HPlogo_blue.ico () [Fichier non signé] Startup: C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2020-11-21] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {71542E40-2C3B-4CC6-A002-C3EF9312DCAF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-03] (Adobe Inc. -> Adobe Inc.) Task: {EF556E8E-9A13-4309-A564-C2EC6208CDAE} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [584488 2016-09-21] (Dropbox, Inc -> ) Task: {C1C5661E-75D8-44C2-BB80-B1D32F02CB30} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {DCB29DDD-580D-46F1-A608-A08BB4C2D32F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {D1AD33D0-6B8A-4C44-B571-A96C9861117F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-25] (Google LLC -> Google LLC) Task: {9EEBC09D-7F3F-42B1-B724-2B9910139BD5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-25] (Google LLC -> Google LLC) Task: {BBBFFB4A-4AC5-4635-A0E1-F7BDD2AACA5B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [106528 2016-09-22] (HP Inc. -> HP Inc.) Task: {3B758DE8-06F7-4075-B461-ED3ADCAD2A94} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [620064 2016-09-21] (HP Inc. -> HP Inc.) Task: {8544B48C-CEAA-4221-BCE4-B860D92A6A59} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (Pas de fichier) Task: {DC25D81B-A09D-4263-89CA-B076FAD5A513} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [1356008 2016-01-21] (Hewlett-Packard Company -> HP Development Company, L.P.) Task: {A61ACE3C-2B5C-414C-8DC3-23DF230C7CEB} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1657880 2016-10-04] (HP Inc. -> HP Inc.) Task: {E900B196-6FC7-4F1B-B13D-49979E8D350A} - System32\Tasks\HPEA3JOBS => C:\Program -> Files\HP\HP ePrint\hpeprint.exe /CheckJobs Task: {1AD4C1BC-19D6-40FD-ACAB-168AA46D46D1} - System32\Tasks\HPJumpStartProvider => C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartProvider.exe [843800 2016-08-05] (HP Inc. -> ) Task: {639A56B4-F804-4344-ACF9-C1420A5E460E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-17] (Microsoft Corporation -> Microsoft Corporation) Task: {4DA475E5-96DC-45EF-BBC7-FD3557727F22} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-17] (Microsoft Corporation -> Microsoft Corporation) Task: {B16DF7EE-AA4C-4E7E-B3A5-7EDFE4552D5E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-17] (Microsoft Corporation -> Microsoft Corporation) Task: {18BA2BD0-7636-4968-A149-197E45735ACB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-17] (Microsoft Corporation -> Microsoft Corporation) Task: {2143C8ED-DC19-4A86-BF66-6D3E54DEF84B} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4377392 2023-09-17] (Microsoft Corporation -> Microsoft Corporation) Task: {AC5B7D14-4E7A-47B5-B971-60A6AC0FFA19} - System32\Tasks\Microsoft\Windows\CloudRestore\Backup => {722D0F89-B69C-4700-AE8C-4A44350E4876} Task: {B9E764EA-B2AC-4959-9DDC-09CA52BC5D18} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C905A60F-2AE7-46FB-845A-99D655E5F81F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CE016DD6-751D-4B4B-9C2F-93EAF4EF3C2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8F4F1FF3-4030-424F-951C-F585A690A3FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0D974C8C-C211-435E-9393-E8CF97C2C033} - System32\Tasks\Mozilla\Firefox Default Browser Agent 784162C6AB236459 => C:\Users\Flavien\AppData\Local\Mozilla Firefox\default-browser-agent.exe [722336 2023-09-09] (Mozilla Corporation -> Mozilla Foundation) Task: {4271FA0A-BB1A-46B7-9CB4-74C6D223014B} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Pas de fichier) Task: {9528AB76-3815-4CB0-A80C-FB0AF10C27D6} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {A9208521-A731-4CB1-A6C7-4B5716589C0F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {B6F73CFA-DA36-479E-BDBD-86EBA79D9EAF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7B1C31E1-E1FA-4894-8DCC-7301CD20290F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2BFBAF35-157B-4A9B-8B5C-8B04EE6C9635} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2C13D47F-1BF5-42C7-8743-AD251D41A322} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {35627E55-D73A-4DE3-AA17-03CBE731BFB0} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {708CBF49-F075-46DF-93E9-C06180CC2D6D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2881362A-CED6-487D-B855-D499E18DDDD4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A95FB518-7046-4A51-90DE-178109BC0E95} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D6451917-4FE1-4CC9-A186-98D1F4FFCF07} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130336 2023-09-08] (Microsoft Corporation -> Microsoft Corporation) Task: {6A1B36A7-9618-48E4-A1AB-BF9D6F79D1E1} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-266307271-186719744-3698087808-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130336 2023-09-08] (Microsoft Corporation -> Microsoft Corporation) Task: {3F6BC2CB-3BDF-40AF-B7F1-2EA8BC32EDFB} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-266307271-186719744-3698087808-1023 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130336 2023-09-08] (Microsoft Corporation -> Microsoft Corporation) Task: {1EF35838-D51B-479E-BDF6-F3E782590477} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-266307271-186719744-3698087808-1024 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130336 2023-09-08] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) ProxyServer: [S-1-5-21-266307271-186719744-3698087808-1001] => 77.73.241.154:80 Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{32A42F55-118D-4FEE-A451-EE4FCF23AD79}: [NameServer] 10.255.255.2 Tcpip\..\Interfaces\{6759676c-02e4-4998-8b80-fc8aae7f4b14}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{ab25c061-795e-4863-875d-45951692714b}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-18] Edge NewTab: Default -> Not-active:"chrome-extension://fhfidmlnclkepgapcephbaciajegheco/newtab.html" Edge Extension: (Microsoft Rewards) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bnplfnhcidhhdapmblniehfaaompjlck [2023-06-15] Edge Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkkdbpgldnmkhcliffjpajcfdjkcaddf [2023-06-15] Edge Extension: (Ecosia) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fhfidmlnclkepgapcephbaciajegheco [2023-08-09] Edge Extension: (Google Docs hors connexion) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17] Edge Extension: (Edge relevant text changes) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13] FireFox: ======== FF DefaultProfile: 1ndu1c5q.default FF DefaultProfile: ne59uvga.default FF ProfilePath: C:\Users\Flavien\AppData\Roaming\Zotero\Zotero\Profiles\1ndu1c5q.default [2022-09-29] FF ProfilePath: C:\Users\Flavien\AppData\Roaming\Mozilla\Firefox\Profiles\ne59uvga.default [2022-09-03] FF ProfilePath: C:\Users\Flavien\AppData\Roaming\Mozilla\Firefox\Profiles\3s8v0kyt.default-release [2023-09-12] FF Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Flavien\AppData\Roaming\Mozilla\Firefox\Profiles\3s8v0kyt.default-release\Extensions\@windscribeff.xpi [2023-03-12] FF Extension: (SwagButton) - C:\Users\Flavien\AppData\Roaming\Mozilla\Firefox\Profiles\3s8v0kyt.default-release\Extensions\shopearn@prodege.com.xpi [2023-03-11] [UpdateUrl:hxxps://ucontent.prdg.io/extensions/sb/install/ff-update-manifest.json] FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-09-16] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Default [2023-08-09] CHR Extension: (Ecosia) - C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2023-08-09] CHR Extension: (Google Docs hors connexion) - C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-09] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-26] CHR Profile: C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-08-26] CHR HKLM\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] CHR HKLM\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-03] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817040 2023-09-17] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2019-08-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.174.0820.0003\FileSyncHelper.exe [3516960 2023-09-08] (Microsoft Corporation -> Microsoft Corporation) R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [461848 2016-08-05] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-10] (HP Inc. -> HP Inc.) R2 hpsrv; C:\windows\system32\Hpservice.exe [38752 2016-09-26] (HP Inc. -> HP) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-09-22] (HP Inc. -> HP Inc.) R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [631800 2016-06-20] (HP Inc. -> HP Inc.) S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2023-05-05] (Microsoft Windows -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.174.0820.0003\OneDriveUpdaterService.exe [3853752 2023-09-08] (Microsoft Corporation -> Microsoft Corporation) R2 qengine; C:\Program Files (x86)\Qustodio\qproxy\qengine.exe [5621288 2022-12-14] (Qustodio Technologies SL -> Qustodio Technologies) R2 qupdate; C:\Program Files (x86)\Qustodio\qapp\QUpdateService.exe [3313696 2023-07-25] (Qustodio Technologies SL -> Qustodio Technologies) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2016-03-23] (CyberLink Corp. -> CyberLink) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_9f074a9de859939d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_9f074a9de859939d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [118088 2019-04-23] (Alcorlink Corp. -> ) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-07-02] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-07-02] (Disc Soft Ltd -> Disc Soft Ltd) R3 MpKsl53c54fc2; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{699FE1B8-A2CB-4554-B7A3-5386718662A7}\MpKslDrv.sys [222464 2023-09-18] (Microsoft Windows -> Microsoft Corporation) R1 qwdf64; C:\WINDOWS\system32\Drivers\qwdf64.sys [41872 2022-12-14] (Qustodio Technologies, SL -> Qustodio Technologies) R1 qwdr64; C:\WINDOWS\system32\Drivers\qwdr64.sys [55696 2022-12-14] (Qustodio Technologies, SL -> Qustodio Technologies) R2 qwfp; C:\Windows\system32\Drivers\qwfp64.sys [47640 2022-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Qustodio Technologies) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2019-04-23] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2018-07-31] (TunnelBear, Inc. -> The OpenVPN Project) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-02-02] (Windscribe Limited -> The OpenVPN Project) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-08-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-08-31] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-31] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP) S3 MpKsl5dbb8b9a; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5F0DA600-E029-497D-80EB-00E8768401AF}\MpKslDrv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-09-18 11:20 - 2023-09-18 11:21 - 000033792 _____ C:\Users\Flavien\Downloads\FRST.txt 2023-09-18 11:19 - 2023-09-18 11:19 - 002382848 _____ (Farbar) C:\Users\Flavien\Downloads\FRST64.exe 2023-09-18 11:05 - 2023-09-18 11:05 - 000000000 ___HD C:\$WinREAgent 2023-09-18 11:04 - 2023-09-18 11:04 - 000004032 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-266307271-186719744-3698087808-1023_0 2023-09-18 11:03 - 2023-09-18 11:04 - 001388448 _____ C:\Users\Public\VOIP.dat 2023-09-17 19:01 - 2023-09-17 19:01 - 001284228 _____ C:\WINDOWS\Minidump\091723-35515-01.dmp 2023-09-17 19:01 - 2023-09-17 19:01 - 000000000 ____D C:\WINDOWS\Minidump 2023-09-17 18:57 - 2023-09-17 18:59 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2023-09-17 18:56 - 2023-09-17 18:57 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2023-09-17 18:56 - 2023-09-17 18:56 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2023-09-17 18:53 - 2023-09-17 18:53 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification 2023-09-17 18:51 - 2023-09-17 18:57 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2023-09-17 18:51 - 2023-09-17 18:51 - 000000000 ____D C:\Program Files\Reference Assemblies 2023-09-17 18:51 - 2023-09-17 18:51 - 000000000 ____D C:\Program Files\MSBuild 2023-09-17 18:51 - 2023-09-17 18:51 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2023-09-17 18:51 - 2023-09-17 18:51 - 000000000 ____D C:\Program Files (x86)\MSBuild 2023-09-17 18:40 - 2023-09-17 18:40 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2023-09-17 18:38 - 2023-09-17 18:38 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2023-09-17 18:38 - 2023-09-17 18:38 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2023-09-17 18:27 - 2023-09-17 18:28 - 000002024 _____ C:\Users\Flavien\Desktop\Discord.lnk 2023-09-17 18:27 - 2023-09-17 18:28 - 000000000 ____D C:\Users\Flavien\AppData\Local\Discord 2023-09-17 18:27 - 2023-09-17 18:27 - 095775520 _____ (Discord Inc.) C:\Users\Flavien\Downloads\DiscordSetup.exe 2023-09-17 18:27 - 2023-09-17 18:27 - 000000000 ____D C:\ProgramData\Flavien 2023-09-17 18:17 - 2023-09-17 18:17 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2023-09-17 18:15 - 2023-09-17 18:15 - 000000020 ___SH C:\Users\Flavien\ntuser.ini 2023-09-17 18:14 - 2023-09-17 19:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-09-17 18:14 - 2023-09-17 18:14 - 000003740 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2023-09-17 18:14 - 2023-09-17 18:14 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-09-17 18:14 - 2023-09-17 18:14 - 000003526 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-09-17 18:14 - 2023-09-17 18:14 - 000003516 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2023-09-17 18:14 - 2023-09-17 18:14 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-09-17 18:14 - 2023-09-17 18:14 - 000003302 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-09-17 18:14 - 2023-09-17 18:14 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-266307271-186719744-3698087808-1024 2023-09-17 18:14 - 2023-09-17 18:14 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-266307271-186719744-3698087808-1023 2023-09-17 18:14 - 2023-09-17 18:14 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-266307271-186719744-3698087808-1001 2023-09-17 18:14 - 2023-09-17 18:14 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-09-17 18:14 - 2023-09-17 18:14 - 000002560 _____ C:\WINDOWS\system32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-09-17 18:14 - 2023-09-17 18:14 - 000002496 _____ C:\WINDOWS\system32\Tasks\HPEA3JOBS 2023-09-17 18:14 - 2023-09-17 18:14 - 000002488 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch 2023-09-17 18:14 - 2023-09-17 18:14 - 000002262 _____ C:\WINDOWS\system32\Tasks\DropboxOEM 2023-09-17 18:14 - 2023-09-17 18:14 - 000002252 _____ C:\WINDOWS\system32\Tasks\HPJumpStartProvider 2023-09-17 18:14 - 2023-09-17 18:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2023-09-17 18:14 - 2023-09-17 18:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2023-09-17 18:14 - 2023-09-17 18:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-09-17 18:14 - 2023-09-17 18:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard 2023-09-17 18:14 - 2023-09-17 18:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2023-09-17 18:11 - 2023-09-17 19:21 - 001771878 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-09-17 18:11 - 2023-09-17 18:13 - 000019053 _____ C:\WINDOWS\diagwrn.xml 2023-09-17 18:11 - 2023-09-17 18:13 - 000019053 _____ C:\WINDOWS\diagerr.xml 2023-09-17 18:07 - 2023-09-17 18:07 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\Microsoft\SystemCertificates 2023-09-17 18:07 - 2023-09-17 18:07 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\Microsoft\Network 2023-09-17 18:07 - 2023-09-17 18:07 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\Microsoft\Crypto 2023-09-17 18:06 - 2023-09-17 18:06 - 000000000 ____D C:\Users\Jocelyne\AppData\Roaming\Microsoft\SystemCertificates 2023-09-17 18:06 - 2023-09-17 18:06 - 000000000 ____D C:\Users\Jocelyne\AppData\Roaming\Microsoft\Network 2023-09-17 18:06 - 2023-09-17 18:06 - 000000000 ____D C:\Users\Jocelyne\AppData\Roaming\Microsoft\Crypto 2023-09-17 18:05 - 2023-09-17 18:05 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\SystemCertificates 2023-09-17 18:05 - 2023-09-17 18:05 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Network 2023-09-17 18:05 - 2023-09-17 18:05 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Crypto 2023-09-17 18:05 - 2023-09-17 18:05 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network 2023-09-17 18:05 - 2023-09-17 18:05 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\SystemCertificates 2023-09-17 18:05 - 2023-09-17 18:05 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Network 2023-09-17 18:05 - 2023-09-17 18:05 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Crypto 2023-09-17 18:02 - 2023-09-18 11:02 - 000000000 ____D C:\Users\Flavien 2023-09-17 18:02 - 2023-09-17 18:16 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\Microsoft\Windows 2023-09-17 18:02 - 2023-09-17 18:11 - 000000000 ____D C:\Users\Compte intermédiaire 2023-09-17 18:02 - 2023-09-17 18:06 - 000000000 ____D C:\Users\Jocelyne\AppData\Roaming\Microsoft\Windows 2023-09-17 18:02 - 2023-09-17 18:06 - 000000000 ____D C:\Users\Jocelyne 2023-09-17 18:02 - 2023-09-17 18:06 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows 2023-09-17 18:02 - 2023-09-17 18:05 - 000000000 ____D C:\Users\defaultuser100000 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\Voisinage réseau 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\Voisinage d'impression 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\Modèles 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\Mes documents 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\Menu Démarrer 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\Documents\Mes vidéos 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\Documents\Mes images 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\Documents\Ma musique 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Jocelyne\AppData\Local\Historique 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\Voisinage réseau 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\Voisinage d'impression 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\Modèles 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\Mes documents 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\Menu Démarrer 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\Documents\Mes vidéos 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\Documents\Mes images 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\Documents\Ma musique 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Flavien\AppData\Local\Historique 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\Voisinage réseau 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\Voisinage d'impression 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\Modèles 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\Mes documents 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\Menu Démarrer 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Mes vidéos 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Mes images 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Ma musique 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Historique 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\Voisinage réseau 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\Voisinage d'impression 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\Modèles 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\Mes documents 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\Menu Démarrer 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\Documents\Mes vidéos 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\Documents\Mes images 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\Documents\Ma musique 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 _SHDL C:\Users\Compte intermédiaire\AppData\Local\Historique 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows 2023-09-17 18:02 - 2023-09-17 18:02 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\CLR Security Config 2023-09-17 18:01 - 2023-09-17 18:01 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\B&O Play Audio Control.lnk 2023-09-17 18:00 - 2023-09-18 11:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-09-17 18:00 - 2023-09-17 18:00 - 000471488 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-09-17 17:17 - 2023-09-17 18:15 - 000000000 ___DC C:\WINDOWS\Panther 2023-09-17 17:00 - 2023-09-17 17:17 - 000000000 ____D C:\ESD 2023-09-17 16:59 - 2023-09-17 16:59 - 000000000 ___HD C:\$Windows.~WS 2023-09-17 16:10 - 2023-09-17 16:10 - 000000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2023-09-17 15:00 - 2023-09-17 15:00 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccount.TokenProvider.Core.dll 2023-09-17 15:00 - 2023-09-17 15:00 - 000212480 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll 2023-09-17 14:59 - 2023-09-17 14:59 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudRestoreLauncher.dll 2023-09-09 12:13 - 2023-09-12 13:21 - 000000000 ____D C:\Users\Flavien\AppData\Local\Mozilla Firefox 2023-09-03 12:22 - 2023-09-17 16:53 - 000000000 ___RD C:\Users\Flavien\Downloads\Microsoft.BingNews_8wekyb3d8bbwe!AppexNews 2023-08-30 21:30 - 2023-09-18 11:20 - 000000000 ____D C:\FRST 2023-08-24 17:25 - 2023-09-17 18:53 - 000002442 _____ C:\Users\Flavien\Desktop\Travail - Edge.lnk 2023-08-21 17:34 - 2023-08-21 19:05 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\Microsoft\Teams ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-09-18 11:24 - 2020-07-17 08:14 - 000013176 _____ C:\WINDOWS\SysWOW64\qengineOff.ini 2023-09-18 11:22 - 2020-07-17 08:14 - 000013176 _____ C:\WINDOWS\system32\qengineOff.ini 2023-09-18 11:20 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-09-18 11:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-09-18 11:15 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-09-18 11:06 - 2023-05-05 14:28 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-09-18 11:06 - 2020-02-25 20:15 - 000000000 ____D C:\Program Files (x86)\Google 2023-09-18 11:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat 2023-09-18 11:03 - 2022-08-30 17:19 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\discord 2023-09-18 11:03 - 2022-08-22 09:19 - 000000000 __SHD C:\Users\Flavien\IntelGraphicsProfiles 2023-09-18 11:03 - 2020-07-17 08:14 - 000000000 ____D C:\ProgramData\boost_interprocess 2023-09-18 11:02 - 2019-10-04 22:04 - 000000000 ____D C:\ProgramData\NVIDIA 2023-09-18 09:33 - 2022-08-28 08:40 - 000000000 ____D C:\ProgramData\Qustodio 2023-09-17 21:14 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-09-17 21:06 - 2020-08-25 20:15 - 000737928 _____ C:\WINDOWS\system32\perfh007.dat 2023-09-17 21:06 - 2020-08-25 20:15 - 000151970 _____ C:\WINDOWS\system32\perfc007.dat 2023-09-17 21:06 - 2020-08-25 20:15 - 000000000 ____D C:\WINDOWS\SysWOW64\de 2023-09-17 21:06 - 2020-08-25 20:15 - 000000000 ____D C:\WINDOWS\system32\de 2023-09-17 21:06 - 2019-12-07 16:49 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat 2023-09-17 21:06 - 2019-12-07 16:49 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat 2023-09-17 21:06 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-09-17 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2023-09-17 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2023-09-17 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-09-17 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com 2023-09-17 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender 2023-09-17 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2023-09-17 21:06 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2023-09-17 21:05 - 2020-08-25 20:15 - 000306166 _____ C:\WINDOWS\system32\perfi007.dat 2023-09-17 21:05 - 2020-08-25 20:15 - 000040520 _____ C:\WINDOWS\system32\perfd007.dat 2023-09-17 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-09-17 20:50 - 2023-01-08 11:11 - 000000000 ____D C:\Users\Flavien\Desktop\Identité 2023-09-17 19:18 - 2022-08-22 09:19 - 000000000 ____D C:\Users\Flavien\AppData\Local\ConnectedDevicesPlatform 2023-09-17 19:00 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2023-09-17 19:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2023-09-17 18:59 - 2021-07-18 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2023-09-17 18:59 - 2021-03-29 23:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2023-09-17 18:59 - 2020-07-17 08:14 - 000000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin 2023-09-17 18:59 - 2020-05-30 19:59 - 000000000 ____D C:\Program Files\UNP 2023-09-17 18:59 - 2020-05-16 19:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-09-17 18:59 - 2020-02-09 21:31 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.7 2023-09-17 18:59 - 2019-12-22 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windscribe 2023-09-17 18:59 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2023-09-17 18:59 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\WCN 2023-09-17 18:59 - 2019-12-07 11:18 - 000000000 ____D C:\WINDOWS\Setup 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 __RHD C:\Users\Public\Libraries 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\spool 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate 2023-09-17 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2023-09-17 18:59 - 2019-10-04 22:03 - 000000000 ____D C:\Program Files\Intel 2023-09-17 18:59 - 2019-10-04 19:26 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2023-09-17 18:59 - 2017-02-07 16:18 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2023-09-17 18:59 - 2017-02-07 16:14 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles 2023-09-17 18:59 - 2017-02-07 16:14 - 000000000 ____D C:\WINDOWS\SysWOW64\sda 2023-09-17 18:59 - 2016-10-19 11:23 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support 2023-09-17 18:57 - 2020-08-25 20:40 - 000000000 ____D C:\WINDOWS\system32\Intel 2023-09-17 18:57 - 2020-05-18 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2023-09-17 18:57 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2023-09-17 18:57 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2023-09-17 18:57 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\OCR 2023-09-17 18:57 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2023-09-17 18:57 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2023-09-17 18:57 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2023-09-17 18:57 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\winrm 2023-09-17 18:57 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\slmgr 2023-09-17 18:57 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\dsc 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Resources 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help 2023-09-17 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2023-09-17 18:57 - 2019-10-04 22:03 - 000000000 ____D C:\WINDOWS\system32\SRSLabs 2023-09-17 18:57 - 2019-10-04 22:03 - 000000000 ____D C:\Program Files\Realtek 2023-09-17 18:57 - 2019-10-04 19:31 - 000000000 ____D C:\Program Files\Synaptics 2023-09-17 18:52 - 2020-08-25 21:23 - 000008192 ___SH C:\DumpStack.log.tmp 2023-09-17 18:47 - 2022-08-23 20:47 - 000000000 ____D C:\Users\Flavien\AppData\Local\Adobe 2023-09-17 18:36 - 2022-04-30 08:10 - 000000000 ____D C:\Program Files\Common Files\Adobe 2023-09-17 18:33 - 2022-08-22 09:22 - 000000000 ____D C:\Users\Flavien\AppData\Local\D3DSCache 2023-09-17 18:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-09-17 18:28 - 2022-08-30 17:19 - 000000000 ____D C:\Users\Flavien\AppData\Local\SquirrelTemp 2023-09-17 18:27 - 2023-04-02 17:04 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2023-09-17 18:16 - 2022-08-22 09:20 - 000000000 ___RD C:\Users\Flavien\3D Objects 2023-09-17 18:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration 2023-09-17 18:16 - 2016-07-29 14:33 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-09-17 18:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-09-17 18:14 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT 2023-09-17 18:14 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2023-09-17 18:07 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media 2023-09-17 18:07 - 2019-10-04 22:12 - 000024008 _____ C:\WINDOWS\system32\emptyregdb.dat 2023-09-17 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows 2023-09-17 18:04 - 2021-02-18 22:49 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2023-09-17 18:04 - 2020-12-06 22:21 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2023-09-17 18:04 - 2020-05-16 19:50 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-09-17 18:04 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2023-09-17 18:03 - 2022-08-27 19:59 - 000000000 ____D C:\Users\Jocelyne\AppData\Local\Packages 2023-09-17 18:03 - 2022-08-22 09:19 - 000000000 ____D C:\Users\Flavien\AppData\Local\Packages 2023-09-17 18:02 - 2021-08-02 14:50 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages 2023-09-17 18:02 - 2020-11-12 19:56 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL GmbH 2023-09-17 18:02 - 2020-03-25 20:20 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2023-09-17 18:02 - 2020-03-16 12:00 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2023-09-17 18:02 - 2019-10-04 22:21 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Local\Packages 2023-09-17 18:01 - 2020-08-12 10:08 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2023-09-17 18:01 - 2019-10-04 22:03 - 000360738 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip 2023-09-17 18:01 - 2019-10-04 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2023-09-17 16:50 - 2023-04-24 17:53 - 000000000 ____D C:\Users\Flavien\Documents\Enregistrements audio 2023-09-17 16:50 - 2023-01-28 16:22 - 000000000 ___RD C:\Users\Flavien\Documents\Scanned Documents 2023-09-17 16:21 - 2022-11-11 16:24 - 000000000 ____D C:\Users\Flavien\AppData\Local\CrashDumps 2023-09-17 15:49 - 2023-01-18 19:25 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-09-17 15:49 - 2020-07-11 00:54 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-09-17 15:49 - 2019-10-05 14:06 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-09-17 15:02 - 2019-10-04 22:21 - 000000000 __SHD C:\Users\Compte intermédiaire\IntelGraphicsProfiles 2023-09-17 14:32 - 2019-11-09 11:43 - 000000000 ____D C:\Users\Compte intermédiaire\AppData\Local\D3DSCache 2023-09-17 11:21 - 2016-10-19 11:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2023-09-14 13:30 - 2016-10-19 11:26 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2023-09-14 13:30 - 2016-10-19 11:26 - 000001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2023-09-13 21:23 - 2020-08-13 08:40 - 000000588 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2023-09-13 18:00 - 2019-10-09 12:48 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-09-13 17:57 - 2019-10-09 12:48 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-09-12 13:28 - 2022-08-29 17:31 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\Microsoft\Word 2023-09-12 13:23 - 2019-10-04 22:21 - 000000000 ____D C:\ProgramData\Packages 2023-09-12 13:21 - 2022-09-03 15:42 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-09-12 13:02 - 2022-09-11 12:40 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\com.adobe.dunamis 2023-09-10 10:09 - 2022-01-23 11:24 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-09-09 22:55 - 2021-06-16 22:07 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-09-08 20:50 - 2020-03-26 11:05 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-09-06 17:45 - 2020-08-23 11:39 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-09-01 21:43 - 2022-08-22 09:19 - 000000000 ___RD C:\Users\Flavien\OneDrive 2023-08-31 19:51 - 2019-10-04 22:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-08-31 19:50 - 2022-08-22 09:24 - 000000000 ____D C:\Users\Flavien\AppData\Local\PlaceholderTileLogoFolder 2023-08-24 19:25 - 2022-08-26 22:53 - 000000000 ____D C:\Users\Flavien\AppData\Local\Comms 2023-08-21 18:32 - 2023-05-29 13:49 - 000000000 ___RD C:\Users\Flavien\OneDrive - Education Vaud 2023-08-21 17:47 - 2022-08-22 09:19 - 000000000 ___SD C:\Users\Flavien\AppData\Roaming\Microsoft\Credentials ==================== Fichiers à la racine de certains dossiers ======== 2023-09-18 11:03 - 2023-09-18 11:04 - 001388448 _____ () C:\Users\Public\VOIP.dat 2022-08-26 16:54 - 2022-08-26 16:54 - 000000017 _____ () C:\Users\Flavien\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================