Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2025
Exécuté par Gabriel (administrateur) sur EAGLE (ASUS System Product Name) (04-12-2025 12:01:36)
Exécuté depuis C:\Users\Gabriel\Downloads\FRST64.exe
Profils chargés: Gabriel
Plate-forme: Microsoft Windows 11 Pro Version 25H2 26200.7171 (X64) Langue: Anglais (Royaume-Uni) -> Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\PersistentWindows\PersistentWindows.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(Cyberlink Corp.) [Fichier non signé] C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe
(DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcacheSvc.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcacheUser.exe
(DriverStore\FileRepository\u0400644.inf_amd64_9691c8ee1bbfcbb7\B399690\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0400644.inf_amd64_9691c8ee1bbfcbb7\B399690\atieclxx.exe
(explorer.exe ->) (AutoHotkey Foundation LLC) [Fichier non signé] C:\Program Files\AutoHotkey\AutoHotkey.exe
(explorer.exe ->) (FastStone Corporation -> FastStone Corporation) C:\Program Files (x86)\FastStone Capture\FSCapture.exe
(explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(explorer.exe ->) (The qBittorrent Project) [Fichier non signé] C:\Program Files\qBittorrent\qbittorrent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <18>
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0400644.inf_amd64_9691c8ee1bbfcbb7\B399690\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.03.25\atkexComSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcacheSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_33559cc6c2fd215a\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Open Source Developer, Károly Dávid Pados -> Károly Pados) C:\Program Files (x86)\TinyWall\TinyWall.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_cfe2ca03fab15f4c\RtkAudUService64.exe <2>
(services.exe ->) (S4M Tech, Inc. -> Seed4.Me) C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\CrossDeviceResume.exe
(svchost.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (By ZhongYang) [Fichier non signé] C:\Program Files (x86)\TrafficMonitor\TrafficMonitor.exe
(svchost.exe ->) (Henry++) [Fichier non signé] C:\Program Files\Mem Reduct\memreduct.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4>

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_cfe2ca03fab15f4c\RtkAudUService64.exe [2361296 2024-11-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32...\Run: [RemoteControl] => C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe [30208 2005-12-07] (Cyberlink Corp.) [Fichier non signé]
HKLM-x32...\Run: [LanguageShortcut] => C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe [49152 2006-04-13] () [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2569377943-3445633808-4058255826-1001...\Run: [Seed4Me] => C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe [31258632 2024-11-08] (S4M Tech, Inc. -> Seed4.Me)
HKU\S-1-5-21-2569377943-3445633808-4058255826-1001...\Run: [Mem Reduct] => C:\Program Files\Mem Reduct\memreduct.exe [396288 2025-11-06] (Henry++) [Fichier non signé]
HKU\S-1-5-21-2569377943-3445633808-4058255826-1001...\MountPoints2: {255dd74c-8340-11f0-bc97-001a7dda7113} - "G:\stp-mplus.exe"
HKU\S-1-5-21-2569377943-3445633808-4058255826-1001...\MountPoints2: {3c0ff0ca-c92a-11f0-bcc2-001a7dda7113} - "G:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-2569377943-3445633808-4058255826-1001...\MountPoints2: {3c0ff1cc-c92a-11f0-bcc2-001a7dda7113} - "G:\HonorSuiteOnlineInstaller.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\133.0.6943.142\Installer\chrmstp.exe [2025-02-28] (Google LLC -> Google LLC)
HKLM\Software...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\Gabriel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FastStone Capture.lnk [2025-08-02]
ShortcutTarget: FastStone Capture.lnk -> C:\Program Files (x86)\FastStone Capture\FSCapture.exe (FastStone Corporation -> FastStone Corporation)
Startup: C:\Users\Gabriel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PersistentWindows - Raccourci.lnk [2025-05-18]
ShortcutTarget: PersistentWindows - Raccourci.lnk -> C:\Program Files (x86)\PersistentWindows\PersistentWindows.exe () [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {953B18E4-5C65-4193-9A83-E30AD1784397} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [672064 2023-11-21] (Advanced Micro Devices Inc. -> )
Task: {4D7321BD-C8DC-4148-B6BD-D9AB8691C5B9} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (Pas de fichier)
Task: {EC986474-26FE-42C3-B25E-DE24A8736146} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (Pas de fichier)
Task: {A5D0CF63-7335-4A93-9804-9291A822E7B8} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe --delay (Pas de fichier)
Task: {4A56998E-F281-4654-856D-B9C916446072} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe (Pas de fichier)
Task: {5E62585A-0E39-49D6-97B6-DC5D5C4BEFF8} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Pas de fichier)
Task: {FF4770F7-5D43-4AE9-8368-E33E31AABE4E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6985.0{2EF275A5-45EF-4990-B46E-4A6FA1BEE3AB} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe [5672544 2025-01-28] (Google LLC -> Google LLC)
Task: {BF7A69F6-22FC-402B-996A-E48B2B881F47} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{C3AB701A-95EA-43C0-A44E-337691D4D831} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {68852630-6654-49CC-8146-42B7C4CB5347} - System32\Tasks\memreductTask => C:\Program Files\Mem Reduct\memreduct.exe [396288 2025-11-06] (Henry++) [Fichier non signé] -> C:\Program Files\Mem Reduct$(Arg0)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Pas de fichier)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {A791D85F-B798-460F-86B7-CF9B4091E231} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {3740ECDA-A90B-47A9-8492-D791AEA66A6E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {BF8CE793-E91E-4B05-9744-5419B8B44C2C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MpCmdRun.exe [1790656 2025-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0F71D9CE-6520-494B-8FC4-13A55D83C22F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MpCmdRun.exe [1790656 2025-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {18EDC26B-E79E-4535-9FB2-184553C03FB5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MpCmdRun.exe [1790656 2025-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8F3983BA-F102-43EE-8131-B514542A5979} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MpCmdRun.exe [1790656 2025-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {980E843E-96EF-4AA6-A39B-27FBB71B6CAC} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [695424 2025-11-26] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {19159B84-5964-41E2-A49C-1F3A2927B945} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2569377943-3445633808-4058255826-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [695424 2025-11-26] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {7F940CEE-DA83-4C0F-A4B2-D89931A4C8B3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34944 2025-11-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {B6C5D1EF-747E-4432-AB9C-FC57E2D76662} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [828296 2025-09-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {74F11B3D-B66F-4A79-9A28-022A8E828F80} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2569377943-3445633808-4058255826-1001 => C:\Users\Gabriel\AppData\Local\Microsoft\OneDrive\25.206.1021.0003\OneDriveLauncher.exe [727440 2025-11-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E914FCE-259C-4BCD-8357-B6DE6CD759C1} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [154438440 2025-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) -> C:\Program Files (x86)\Samsung\Samsung Magician\--disable-gpu-sandbox /AUTOHIDE
Task: {DDEE948C-BDD7-4D7E-A28C-605D04D4DA74} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [728504 2023-08-04] (Advanced Micro Devices Inc. -> AMD)
Task: {C7B9AA8C-18F2-478C-8444-22A61A422224} - System32\Tasks\StartPersistentWindowsGabriel => C:\Program Files (x86)\PersistentWindows\PersistentWindows.exe [180736 2024-09-16] () [Fichier non signé]
Task: {D1AEED41-4845-4C6D-9F26-0D557CF1566F} - System32\Tasks\TinyWall Controller => C:\Program Files (x86)\TinyWall\TinyWall.exe [1175200 2025-04-06] (Open Source Developer, Károly Dávid Pados -> Károly Pados)
Task: {384467BB-41F7-42B7-B30B-2400C3A57C98} - System32\Tasks\TrafficMonitor\Autorun for Gabriel => C:\Program Files (x86)\TrafficMonitor\TrafficMonitor.exe [1716224 2022-10-05] (By ZhongYang) [Fichier non signé]
Task: {9B4822BB-8DE4-4A73-9652-B0B546BD52D3} - System32\Tasks\Ubisoft\Ubisoft Connect Background Update => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe [17270968 2025-11-02] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip..\Interfaces{86d2dff5-31b5-4a1e-a6f9-a8d6b0508cb9}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip..\Interfaces{86d2dff5-31b5-4a1e-a6f9-a8d6b0508cb9}: [DhcpNameServer] 192.168.1.254
Tcpip..\Interfaces{86d2dff5-31b5-4a1e-a6f9-a8d6b0508cb9}: [DhcpDomain] lan

Edge:

Edge DefaultProfile: Default
Edge Profile: C:\Users\Gabriel\AppData\Local\Microsoft\Edge\User Data\Default [2025-11-12]
Edge Extension: (Google Docs hors connexion) - C:\Users\Gabriel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-10-05]
Edge Extension: (Edge relevant text changes) - C:\Users\Gabriel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-01]

FireFox:

FF DefaultProfile: cbkpbm31.default
FF ProfilePath: C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\cbkpbm31.default [2024-02-10]
FF ProfilePath: C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release [2025-12-04]
FF Homepage: Mozilla\Firefox\Profiles\ffxxdy5k.default-release -> about:blank
FF Extension: (Search Result Previews) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected]_SearchResultPreviews.xpi [2025-09-29]
FF Extension: (Keepa - Amazon Price Tracker) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected].xpi [2025-11-28]
FF Extension: (Back to Close WE) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected].xpi [2024-04-26]
FF Extension: (Ghostery Bloqueur de Traqueurs et de Publicités - confidentialité) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected].xpi [2025-11-23]
FF Extension: (Google Image Search) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected] [2024-04-26]
FF Extension: (Infy Scroll - A Next Page AutoPager) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected] [2025-10-02]
FF Extension: (Notifier for Gmail™) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected] [2025-07-23]
FF Extension: (Copy Selected Links) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected] [2024-02-10]
FF Extension: (New Tab) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected].xpi [2025-11-29]
FF Extension: (SponsorBlock pour YouTube - Supprime les publicités intégrées) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected].xpi [2025-11-04]
FF Extension: (Tree Style Tab) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected].xpi [2025-10-28]
FF Extension: (uBlock Origin) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected].xpi [2025-10-23]
FF Extension: (YouTube Anti Translate - mv3) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions\[email protected].xpi [2025-10-23]
FF Extension: (TWP - Translate Web Pages) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2025-03-28]
FF Extension: (Search by Image) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions{2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c}.xpi [2025-10-16]
FF Extension: (xIFr) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions{5e71bed2-2b15-40b8-a15b-ba89563aaf73}.xpi [2025-11-23]
FF Extension: (Video DownloadHelper) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2025-06-19]
FF Extension: (Behind The Overlay Revival) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions{c0e1baea-b4cb-4b62-97f0-278392ff8c37}.xpi [2024-02-10]
FF Extension: (Greasemonkey) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ffxxdy5k.default-release\Extensions{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2024-08-08]
FF HKU\S-1-5-21-2569377943-3445633808-4058255826-1001...\Firefox\Extensions: [[email protected]] - C:\Users\Gabriel\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: (Ace Script) - C:\Users\Gabriel\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2018-11-26]
FF Plugin HKU\S-1-5-21-2569377943-3445633808-4058255826-1001: @acestream.net/acestreamplugin,version=3.1.74 -> C:\Users\Gabriel\AppData\Roaming\ACEStream\player\npace_plugin.dll [2017-01-13] (Innovative Digital Technologies -> Innovative Digital Technologies)

Chrome:

CHR Profile: C:\Users\Gabriel\AppData\Local\Google\Chrome\User Data\Default [2025-12-02]
CHR Extension: (Google Traduction) - C:\Users\Gabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-12-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Gabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-23]
CHR Extension: (Widilo Cashback) - C:\Users\Gabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlcaefilcommembbekhjjkibeieffchd [2025-11-05]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Gabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2025-10-09]
CHR Extension: (Ace Script) - C:\Users\Gabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2025-08-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Gabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-10]
CHR HKU\S-1-5-21-2569377943-3445633808-4058255826-1001\SOFTWARE\Google\Chrome\Extensions...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 amd3dvcacheSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcacheSvc.exe [154552 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.03.25\atkexComSvc.exe [939872 2025-02-12] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [503144 2024-09-25] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [845256 2025-12-03] (ASUSTeK Computer Inc. -> )
R2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe [527800 2023-08-04] (Advanced Micro Devices Inc. -> AMD)
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [765736 2025-11-11] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [456592 2024-06-18] (DTS, Inc. -> DTS Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10962688 2024-02-10] (Logitech Inc -> Logitech, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MpDefenderCoreService.exe [2026184 2025-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_33559cc6c2fd215a\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [167936 2005-08-08] () [Fichier non signé]
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [497448 2025-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 Seed4.Me Service; C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_service.exe [6172176 2024-11-08] (S4M Tech, Inc. -> Seed4.Me)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803088 2025-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TinyWall; C:\Program Files (x86)\TinyWall\TinyWall.exe [1175200 2025-04-06] (Open Source Developer, Károly Dávid Pados -> Károly Pados)
S3 UpcElevationService; C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher Core\UpcElevationService.exe [382136 2025-11-02] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\NisSrv.exe [4414480 2025-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MsMpEng.exe [282440 2025-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 amd3dvcache; C:\WINDOWS\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcache.sys [40536 2022-12-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [56504 2024-02-27] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0400644.inf_amd64_9691c8ee1bbfcbb7\B399690\amdkmdag.sys [100084632 2024-02-27] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [58936 2024-09-24] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333192 2025-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2024-02-10] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2024-02-10] (Logitech Inc -> Logitech)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 R0TrafficMonitor; C:\Program Files (x86)\TrafficMonitor\TrafficMonitor.sys [14544 2025-12-03] (Noriyuki MIYAZAKI -> OpenLibSys.org)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_8e61b4ea25373168\rt25cx21x64.sys [887776 2024-10-21] (Realtek Semiconductor Corp. -> Realtek)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [40688 2024-05-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_feec7a9662e785f0\rtcx21x64.sys [539648 2024-03-28] (Microsoft Windows -> Realtek)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2021-11-28] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20904 2025-11-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [629168 2025-11-14] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102792 2025-11-14] (Microsoft Windows -> Microsoft Corporation)
S3 WSDPrintDevice; C:\WINDOWS\System32\DriverStore\FileRepository\wsdprint.inf_amd64_1f9e32519098c0b6\WSDPrint.sys [57344 2025-01-14] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz158; ??\C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [X] <==== ATTENTION
S1 lxjjmlqm; ??\C:\WINDOWS\system32\drivers\lxjjmlqm.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2025-12-04 12:01 - 2025-12-04 12:02 - 000029949 _____ C:\Users\Gabriel\Downloads\FRST.txt
2025-12-04 12:01 - 2025-12-04 12:02 - 000000000 ____D C:\FRST
2025-12-04 12:01 - 2025-12-04 12:01 - 002444288 _____ (Farbar) C:\Users\Gabriel\Downloads\FRST64.exe
2025-12-03 23:23 - 2025-12-03 23:23 - 007644602 _____ C:\Users\Gabriel\Downloads\Santa Paws Dog Helps Sending Christmas Card By Licking Envelope .mp4
2025-12-03 22:45 - 2025-12-03 22:45 - 000743052 _____ C:\WINDOWS\system32\perfh00C.dat
2025-12-03 22:45 - 2025-12-03 22:45 - 000149940 _____ C:\WINDOWS\system32\perfc00C.dat
2025-12-02 12:55 - 2025-12-02 12:55 - 000012788 _____ C:\Users\Gabriel\Downloads\Enquete.exclusive.S2025E41.Operation.Tronconneuse.l.Argentine.selon.Javier.Milei.DOC.FRENCH.1080p.WEB.H264-BOUBA.mkv.torrent
2025-12-01 23:24 - 2025-12-01 23:24 - 008007232 _____ C:\Users\Gabriel\Downloads\snaptik_7575003257538497823_v2.mp4
2025-12-01 22:38 - 2025-12-01 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2025-11-30 13:22 - 2025-12-04 00:38 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-11-26 21:10 - 2025-11-29 23:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-11-25 16:28 - 2025-11-25 16:28 - 005693120 _____ (WiseCleaner.com ) C:\Users\Gabriel\Downloads\WMOSetup_4.2.4.132.exe
2025-11-24 13:21 - 2025-11-24 13:22 - 000000000 ____D C:\android-sdk
2025-11-24 13:21 - 2025-11-24 13:21 - 007138784 _____ C:\Users\Gabriel\Downloads\platform-tools-latest-windows.zip
2025-11-24 13:07 - 2025-11-24 13:07 - 006996777 _____ C:\Users\Gabriel\Downloads\apk-editor-1-9-0.apk
2025-11-24 13:05 - 2025-11-24 13:06 - 001053464 _____ (Samuel Rodberg ) C:\Users\Gabriel\Downloads\minimal_adb_fastboot_v1.4.3_setup(1).exe
2025-11-24 12:22 - 2025-11-24 12:22 - 000002681 _____ C:\Users\Gabriel\Downloads\VpnMobile.ovpn
2025-11-23 20:22 - 2025-11-23 20:22 - 000012317 _____ C:\Users\Gabriel\Downloads\Extreme.Cheapskates.S03E03.MULTi.1080p.WEB.x264-FW.torrent
2025-11-23 20:21 - 2025-11-23 20:21 - 000014037 _____ C:\Users\Gabriel\Downloads\Extreme.Cheapskates.S03E02.MULTi.1080p.WEB.x264-FW.torrent
2025-11-23 20:21 - 2025-11-23 20:21 - 000013657 _____ C:\Users\Gabriel\Downloads\Extreme.Cheapskates.S03E01.MULTi.1080p.WEB.x264-FW.torrent
2025-11-23 16:02 - 2025-11-29 21:23 - 000000000 ___D C:\ProgramData\Whesvc
2025-11-23 15:32 - 2025-11-23 15:32 - 4236781048 _____ C:\Users\Gabriel\Downloads\Certains.l.aiment.chauve.2025.FRENCH.1080p.WEB-DL.H264-Slay3R.mkv
2025-11-12 23:02 - 2025-11-12 23:02 - 008064376 _____ C:\Users\Gabriel\Downloads\snaptik_7424101155745074464_v2.mp4
2025-11-11 21:50 - 2025-11-11 21:50 - 000079894 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-11-11 21:50 - 2025-11-11 21:50 - 000079894 _____ C:\WINDOWS\system32\ctac.json
2025-11-11 21:50 - 2025-11-11 21:50 - 000035082 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-11-11 21:50 - 2025-11-11 21:50 - 000035082 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-11-09 22:49 - 2025-11-09 22:49 - 001603399 _____ C:\Users\Gabriel\Downloads\Cpasdeslol-___Paris_malgre__un_train_bonde__et_des_passagers_debout_une_femme_s..._ihCsUX.mp4
2025-11-09 13:49 - 2025-11-09 13:49 - 000003422 _____ C:\WINDOWS\system32\Tasks\memreductTask
2025-11-07 23:32 - 2025-11-07 23:32 - 007853717 _____ C:\Users\Gabriel\Downloads\YTDown.com_YouTube_Media_a7qRuUAyqCg_001_720p.mp4
2025-11-07 23:30 - 2025-11-07 23:30 - 006397471 _____ C:\Users\Gabriel\Downloads\Red Panda Stands up After Being Scared by Rock.mp4
2025-11-06 18:34 - 2025-11-06 18:34 - 000000872 _____ C:\Users\Gabriel\Desktop\Mem Reduct.lnk
2025-11-06 18:34 - 2025-11-06 18:34 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mem Reduct
2025-11-06 18:34 - 2025-11-06 18:34 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\Henry++
2025-11-06 18:34 - 2025-11-06 18:34 - 000000000 ____D C:\Program Files\Mem Reduct

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2025-12-04 11:54 - 2024-02-10 17:04 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\qBittorrent
2025-12-04 10:43 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-12-04 10:39 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-12-04 09:09 - 2025-03-22 19:41 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\Samsung Magician
2025-12-03 23:35 - 2024-02-10 18:37 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\FileZilla
2025-12-03 23:24 - 2024-10-16 21:55 - 000000000 ____D C:\Users\Gabriel\dwhelper
2025-12-03 22:45 - 2025-01-14 12:41 - 001684128 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-12-03 22:45 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-12-03 22:40 - 2024-02-10 13:50 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-12-03 22:39 - 2024-02-02 10:38 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2025-12-03 22:38 - 2025-01-14 12:36 - 000017520 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-12-03 22:38 - 2025-01-14 12:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-12-03 22:38 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-12-03 22:38 - 2024-02-01 15:26 - 000000000 ____D C:\ProgramData\NVIDIA
2025-12-03 22:38 - 2024-02-01 14:07 - 000901328 _____ () C:\WINDOWS\system32\wpbbin.exe
2025-12-03 22:38 - 2024-02-01 14:07 - 000845256 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2025-12-03 22:38 - 2024-02-01 14:07 - 000012288 ___SH C:\DumpStack.log.tmp
2025-12-03 22:37 - 2025-01-14 12:36 - 000003126 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2025-12-03 22:37 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-12-03 19:01 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-12-03 15:10 - 2024-02-10 13:48 - 000000000 ____D C:\ProgramData\TinyWall
2025-12-02 20:24 - 2024-02-10 17:41 - 000000000 ____D C:\Users\Gabriel\Documents\Captvty
2025-12-01 22:40 - 2025-03-15 19:48 - 000000000 ____D C:\Users\Gabriel\AppData\Local\D3DSCache
2025-12-01 22:38 - 2025-03-22 19:41 - 000003380 _____ C:\WINDOWS\system32\Tasks\SamsungMagician
2025-11-29 23:31 - 2024-02-10 13:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-11-29 11:13 - 2025-01-14 12:36 - 000003534 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-11-29 11:13 - 2025-01-14 12:36 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-11-27 22:36 - 2025-01-14 12:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-11-27 22:36 - 2024-02-10 13:50 - 000001069 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-11-26 22:58 - 2024-02-10 20:52 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming.ACEStream
2025-11-24 19:58 - 2024-07-20 17:14 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\audacity
2025-11-24 19:27 - 2024-02-10 17:06 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\foobar2000-v2
2025-11-24 13:41 - 2024-02-16 09:50 - 000000000 ____D C:\Users\Gabriel.android
2025-11-24 13:25 - 2025-01-14 12:33 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\Microsoft\Windows
2025-11-24 13:19 - 2024-02-16 09:49 - 000000000 ____D C:\Program Files (x86)\Minimal ADB and Fastboot
2025-11-23 15:14 - 2024-02-01 14:07 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-11-23 15:13 - 2025-02-05 22:22 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-2569377943-3445633808-4058255826-1001
2025-11-23 15:13 - 2025-01-14 12:36 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2569377943-3445633808-4058255826-1001
2025-11-23 15:13 - 2025-01-14 12:36 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2569377943-3445633808-4058255826-1001
2025-11-23 15:13 - 2024-02-01 13:31 - 000002424 _____ C:\Users\Gabriel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-11-14 03:48 - 2024-02-01 14:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-11-13 04:53 - 2024-02-01 13:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-11-12 03:35 - 2025-01-14 12:24 - 000481752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-11-12 03:34 - 2025-06-27 02:40 - 000000000 ____D C:\WINDOWS\system32\ruxim
2025-11-12 03:34 - 2025-01-14 13:16 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2025-11-12 03:34 - 2025-01-14 13:16 - 000000000 ____D C:\WINDOWS\system32\fr
2025-11-12 03:34 - 2024-04-01 17:16 - 000000000 ____D C:\WINDOWS\InboxApps
2025-11-12 03:34 - 2024-04-01 17:16 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-11-12 03:34 - 2024-04-01 17:15 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-11-12 03:34 - 2024-04-01 17:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\te-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\qps-plocm
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\qps-ploc
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\or-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\km-KH
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\is-IS
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\id-ID
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\et-EE
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\es-MX
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\be-BY
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\as-IN
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\am-ET
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-11-12 03:34 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-11-11 22:51 - 2024-02-01 13:42 - 215625816 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-11-11 21:49 - 2025-01-14 12:26 - 003277824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-11-11 14:44 - 2024-02-10 17:42 - 000000000 ____D C:\Users\Gabriel\Documents\Scan
2025-11-08 20:30 - 2024-02-11 16:02 - 000000000 ____D C:\Users\Gabriel\AppData\Roaming\HandBrake
2025-11-06 18:27 - 2024-02-01 13:32 - 000000000 ____D C:\Users\Gabriel\AppData\Local\Packages
2025-11-06 18:27 - 2024-02-01 13:32 - 000000000 ____D C:\ProgramData\Packages

==================== Fichiers à la racine de certains dossiers ========

2024-02-26 10:29 - 2024-02-26 10:29 - 000000218 _____ () C:\Users\Gabriel\AppData\Local\recently-used.xbel
2024-02-10 20:10 - 2025-06-30 17:47 - 000007622 _____ () C:\Users\Gabriel\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================