Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23.02.2024
Exécuté par Courant (administrateur) sur DESKTOP-Q8C8GMR (ASUSTeK COMPUTER INC. X555LB) (25-02-2024 10:55:22)
Exécuté depuis C:\Users\Courant\Desktop\FRST64.exe
Profils chargés: Lemien & Courant
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.3086 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe <2>
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe <2>
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe <2>
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe <2>
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieCrypto.exe
(C:\Program Files\Sandboxie\SandboxieRpcSs.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe
(C:\Program Files\Sandboxie\SbieSvc.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieRpcSs.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE <2>
(explorer.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SbieCtrl.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <32>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <3>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe <2>
(RuntimeBroker.exe ->) (Intel Corporation -> ) C:\Windows\System32\igfxTray.exe <2>
(RuntimeBroker.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe <2>
(RuntimeBroker.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe <2>
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe <2>
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (ICEpower a/s -> ICEpower a/s) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe <3>
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (RealityMine Limited -> RealityMine Ltd) [Fichier non signé] C:\Program Files\YouGovPulse\UsageMonitor.WindowsService.exe
(services.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SbieSvc.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe <2>
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1220128 2015-09-18] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1380384 2015-09-18] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler (Pas de fichier)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3405264 2024-02-06] (Tonalio GmbH -> Sandboxie-Plus.com)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Pas de fichier)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe [471656 2023-04-19] (Proton Technologies AG -> ProtonVPN)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe"
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [YouGovPulse] => C:\Program Files\YouGovPulse\UsageMonitor.UI.App.exe [477528 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé]
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [YouGovPulseHealthcheck] => C:\Program Files\YouGovPulse\UsageMonitor.HealthCheck.exe [13656 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé]
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe"
HKLM\...\Print\Monitors\EPSON XP-322 323 325 Series 64MonitorBE: C:\Windows\system32\E_YLMBNEE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {C22251FB-2AF6-4215-82B4-3CAB2564CD80} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {AA6AF033-A569-46A4-8E50-AF0B0D4CBDA1} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {EC1B70F6-8CD3-4A66-BF77-3D88539F568E} - System32\Tasks\EPSON XP-322 323 325 Series Update {7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {9826681A-71CB-41BA-991E-617AB779EBA1} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6288.0{6673CA82-56AD-487B-8AEF-AEA76E854202} => "C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe" --wake --system --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 (Pas de fichier) <==== ATTENTION
Task: {2D538744-17B9-4AFE-8627-17FCA81AFD84} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27ED3DC0-97A7-4A9C-8CDF-FA4127B1A858} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AEB6D72E-8842-4BC3-83B4-CC01891908F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {727443D9-FEC3-4C09-A1A0-B683F69F96BB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC47DDD2-3157-45F8-BC5C-2458F52BBAC7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-02-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {58F00E73-AE1D-411C-9079-4B5DFE9824AA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FADA0A09-ACA5-4D98-9E40-52CD4650AA2E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
Task: {83B86134-7BFE-470C-9B48-D22425019B8E} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7055A812-6208-4EE7-96DD-71D4032DC2C0} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {F4A4A040-B654-4825-BCB4-E44530577EBC} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [149712 2021-10-14] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\EPSON XP-322 323 325 Series Update {7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE:/EXE:{7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F} /F:UpdateWORKGROUP\DESKTOP-Q8C8GMR$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{215f8b0a-11a1-4afe-b758-169315f1f59a}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{215f8b0a-11a1-4afe-b758-169315f1f59a}: [DhcpDomain] numericable.fr
FireFox:
========
FF DefaultProfile: h5iumreo.default
FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\h5iumreo.default [2023-05-21]
FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\hjjd6z35.default-release-1661500184285 [2024-02-25]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [pfcgjlglddicjopgimohdcbmabacamll] -
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
S4 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2438128 2023-11-11] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.0.5\ProtonVPNService.exe [472168 2023-04-19] (Proton Technologies AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.0.5\ProtonVPN.WireGuardService.exe [471656 2023-04-19] (Proton Technologies AG -> ProtonVPN)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [410576 2024-02-06] (Tonalio GmbH -> Sandboxie-Plus.com)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YouGovPulseSvc; C:\Program Files\YouGovPulse\UsageMonitor.WindowsService.exe [23896 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé]
S2 GoogleUpdaterInternalService123.0.6288.0; "C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe" --system --windows-service --service=update-internal --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 [X] <==== ATTENTION
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.0.5\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [865216 2022-05-23] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [242328 2024-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Sandboxie-Plus.com)
S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2022-07-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-25 10:55 - 2024-02-25 10:56 - 000019960 _____ C:\Users\Courant\Desktop\FRST.txt
2024-02-25 10:53 - 2024-02-25 10:53 - 002386944 _____ (Farbar) C:\Users\Courant\Desktop\FRST64.exe
2024-02-24 18:53 - 2024-02-24 18:53 - 000000643 _____ C:\Users\Courant\Documents\suite.txt
2024-02-24 18:23 - 2024-02-24 18:23 - 000000408 _____ C:\Users\Courant\Documents\sfcscannow.txt
2024-02-24 18:17 - 2024-02-24 18:17 - 000000000 ____D C:\Users\Courant\AppData\Roaming\Thunderbird
2024-02-24 18:17 - 2024-02-24 18:17 - 000000000 ____D C:\Users\Courant\AppData\Local\Thunderbird
2024-02-24 16:25 - 2024-02-25 10:56 - 000000000 ____D C:\FRST
2024-02-24 14:51 - 2024-02-24 14:51 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-02-24 14:50 - 2024-02-24 15:06 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-02-24 14:40 - 2024-02-24 16:58 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-02-24 11:47 - 2024-02-24 11:47 - 000000000 ___HD C:\$WinREAgent
2024-02-20 15:57 - 2024-02-20 15:57 - 001077690 _____ C:\Users\Lemien\Desktop\MVI - justificatif handicap.pdf
2024-02-09 09:44 - 2024-02-09 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2024-02-03 10:52 - 2024-02-11 11:37 - 000000000 ____D C:\Users\Lemien\Desktop\photos appart
2024-01-31 10:56 - 2024-02-23 17:36 - 000191156 _____ C:\Users\Lemien\Desktop\Planning février 2024.docx - Planning février 2024.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-25 10:52 - 2022-05-22 23:11 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-02-25 10:51 - 2022-05-23 21:01 - 000000000 __SHD C:\Users\Courant\IntelGraphicsProfiles
2024-02-25 10:51 - 2022-05-22 22:07 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-02-25 10:51 - 2022-05-22 22:04 - 000000000 ____D C:\ProgramData\NVIDIA
2024-02-25 10:49 - 2024-01-05 20:05 - 000020399 _____ C:\Users\Lemien\Desktop\Liste achats.ods
2024-02-25 10:49 - 2024-01-05 11:32 - 000080055 _____ C:\Users\Lemien\Desktop\Budgets.ods
2024-02-25 10:47 - 2022-05-22 17:57 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-02-25 10:36 - 2022-05-22 18:41 - 000000000 ____D C:\Users\Lemien\AppData\Local\D3DSCache
2024-02-25 09:47 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-25 09:46 - 2022-05-22 22:07 - 000000000 __SHD C:\Users\Lemien\IntelGraphicsProfiles
2024-02-25 09:45 - 2022-05-22 17:58 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-02-25 09:45 - 2022-05-22 17:57 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-25 09:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2024-02-24 23:42 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-02-24 21:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-02-24 21:24 - 2022-10-24 07:28 - 000000000 ____D C:\Users\Courant\AppData\Local\ElevatedDiagnostics
2024-02-24 21:22 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-02-24 20:56 - 2022-05-28 14:53 - 000000000 ____D C:\Users\Courant\AppData\Local\PlaceholderTileLogoFolder
2024-02-24 20:54 - 2023-02-23 15:17 - 000004182 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{D4C11611-6B50-4DFC-9A6E-813F417CE57A}
2024-02-24 20:32 - 2015-11-09 21:23 - 000000000 ___RD C:\Users\Lemien\Desktop\Mes téléchargements
2024-02-24 20:13 - 2022-05-22 23:18 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-24 20:13 - 2022-05-22 22:57 - 000000000 ____D C:\Windows\SystemTemp
2024-02-24 18:11 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2024-02-24 18:11 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2024-02-24 18:00 - 2022-05-22 22:17 - 000000000 ____D C:\Program Files (x86)\ASUS
2024-02-24 17:22 - 2022-05-22 22:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-02-24 17:22 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-02-24 17:15 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-24 16:58 - 2022-05-22 23:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-02-24 16:00 - 2024-01-04 22:17 - 000001057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-02-24 15:59 - 2023-09-25 19:27 - 000001816 _____ C:\Windows\Sandboxie.ini
2024-02-24 15:02 - 2022-05-22 19:45 - 000000000 ____D C:\Users\Lemien\AppData\Local\Opera Software
2024-02-24 14:59 - 2022-05-22 19:44 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\Opera Software
2024-02-24 14:58 - 2022-05-22 23:11 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-02-24 14:48 - 2022-05-22 21:10 - 000000000 ____D C:\Users\Courant\AppData\Local\Packages
2024-02-24 14:43 - 2022-05-22 18:41 - 000000000 ____D C:\Users\Lemien\AppData\Local\Packages
2024-02-24 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2024-02-24 14:22 - 2022-05-22 18:39 - 000000000 ____D C:\Users\Lemien
2024-02-24 14:06 - 2022-05-22 21:09 - 000000000 ____D C:\Users\Courant
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-02-24 14:05 - 2019-12-07 15:52 - 000000000 ____D C:\Windows\SysWOW64\MailContactsCalendarSync
2024-02-24 14:05 - 2019-12-07 15:52 - 000000000 ____D C:\Windows\system32\MailContactsCalendarSync
2024-02-24 14:05 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\system32\OpenSSH
2024-02-24 14:05 - 2019-12-07 15:49 - 000000000 ____D C:\Windows\SysWOW64\fr
2024-02-24 14:05 - 2019-12-07 15:49 - 000000000 ____D C:\Windows\system32\fr
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 __RSD C:\Windows\Media
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\Nui
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\Nui
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\dsc
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\ras
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\InstallShield
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\icsxml
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\downlevel
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Bthprops
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ras
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\icsxml
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ias
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\downlevel
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ContainerSettingsProviders
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Bthprops
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\L2Schemas
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IdentityCRL
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Cursors
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\Services
2024-02-24 14:05 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2024-02-24 13:59 - 2022-06-01 10:59 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\vlc
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\InputMethod
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\IME
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemApps
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\InputMethod
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\schemas
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Help
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Containers
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Branding
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Security
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-02-24 13:20 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\registration
2024-02-24 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Web
2024-02-24 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Vss
2024-02-24 12:54 - 2022-05-25 20:59 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\Foxit Software
2024-02-24 12:54 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2024-02-24 10:36 - 2024-01-05 11:32 - 000026429 _____ C:\Users\Lemien\Desktop\Comptes financiers.ods
2024-02-23 15:39 - 2024-01-04 23:08 - 000012373 _____ C:\Users\Lemien\Desktop\vrst devises.ods
2024-02-22 11:58 - 2024-01-04 23:08 - 000018040 _____ C:\Users\Lemien\Desktop\suivi conseil.ods
2024-02-21 13:53 - 2024-01-04 23:08 - 000052569 _____ C:\Users\Lemien\Desktop\Eau - Gaz - Elec.ods
2024-02-19 21:16 - 2024-01-05 11:33 - 000105497 _____ C:\Users\Lemien\Desktop\Santé.ods
2024-02-18 21:39 - 2024-01-05 18:38 - 000029015 _____ C:\Users\Lemien\Desktop\Suivi consommables.ods
2024-02-17 14:03 - 2022-05-22 18:35 - 001775332 _____ C:\Windows\system32\PerfStringBackup.INI
2024-02-17 14:03 - 2019-12-07 15:49 - 000795764 _____ C:\Windows\system32\perfh00C.dat
2024-02-17 14:03 - 2019-12-07 15:49 - 000151376 _____ C:\Windows\system32\perfc00C.dat
2024-02-17 11:54 - 2024-01-05 11:33 - 000031480 _____ C:\Users\Lemien\Desktop\Prix aliments.ods
2024-02-15 09:39 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-02-14 11:42 - 2022-05-22 21:49 - 000000000 ____D C:\Windows\system32\MRT
2024-02-14 11:36 - 2022-05-22 21:49 - 191155960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-01-29 22:00 - 2023-04-10 09:31 - 000000000 ____D C:\Users\Lemien\Desktop\Mooc en cours
==================== Fichiers à la racine de certains dossiers ========
2022-06-27 10:53 - 2022-06-27 16:06 - 000035321 _____ () C:\Users\Courant\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Courant (administrateur) sur DESKTOP-Q8C8GMR (ASUSTeK COMPUTER INC. X555LB) (25-02-2024 10:55:22)
Exécuté depuis C:\Users\Courant\Desktop\FRST64.exe
Profils chargés: Lemien & Courant
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.3086 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe <2>
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe <2>
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe <2>
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe <2>
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieCrypto.exe
(C:\Program Files\Sandboxie\SandboxieRpcSs.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe
(C:\Program Files\Sandboxie\SbieSvc.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieRpcSs.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE <2>
(explorer.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SbieCtrl.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <32>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <3>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe <2>
(RuntimeBroker.exe ->) (Intel Corporation -> ) C:\Windows\System32\igfxTray.exe <2>
(RuntimeBroker.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe <2>
(RuntimeBroker.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe <2>
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe <2>
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (ICEpower a/s -> ICEpower a/s) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe <3>
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (RealityMine Limited -> RealityMine Ltd) [Fichier non signé] C:\Program Files\YouGovPulse\UsageMonitor.WindowsService.exe
(services.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SbieSvc.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe <2>
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1220128 2015-09-18] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1380384 2015-09-18] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler (Pas de fichier)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3405264 2024-02-06] (Tonalio GmbH -> Sandboxie-Plus.com)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Pas de fichier)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe [471656 2023-04-19] (Proton Technologies AG -> ProtonVPN)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe"
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [YouGovPulse] => C:\Program Files\YouGovPulse\UsageMonitor.UI.App.exe [477528 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé]
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [YouGovPulseHealthcheck] => C:\Program Files\YouGovPulse\UsageMonitor.HealthCheck.exe [13656 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé]
HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe"
HKLM\...\Print\Monitors\EPSON XP-322 323 325 Series 64MonitorBE: C:\Windows\system32\E_YLMBNEE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {C22251FB-2AF6-4215-82B4-3CAB2564CD80} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {AA6AF033-A569-46A4-8E50-AF0B0D4CBDA1} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {EC1B70F6-8CD3-4A66-BF77-3D88539F568E} - System32\Tasks\EPSON XP-322 323 325 Series Update {7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {9826681A-71CB-41BA-991E-617AB779EBA1} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6288.0{6673CA82-56AD-487B-8AEF-AEA76E854202} => "C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe" --wake --system --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 (Pas de fichier) <==== ATTENTION
Task: {2D538744-17B9-4AFE-8627-17FCA81AFD84} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27ED3DC0-97A7-4A9C-8CDF-FA4127B1A858} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AEB6D72E-8842-4BC3-83B4-CC01891908F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {727443D9-FEC3-4C09-A1A0-B683F69F96BB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC47DDD2-3157-45F8-BC5C-2458F52BBAC7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-02-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {58F00E73-AE1D-411C-9079-4B5DFE9824AA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FADA0A09-ACA5-4D98-9E40-52CD4650AA2E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
Task: {83B86134-7BFE-470C-9B48-D22425019B8E} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7055A812-6208-4EE7-96DD-71D4032DC2C0} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {F4A4A040-B654-4825-BCB4-E44530577EBC} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [149712 2021-10-14] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\EPSON XP-322 323 325 Series Update {7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE:/EXE:{7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F} /F:UpdateWORKGROUP\DESKTOP-Q8C8GMR$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{215f8b0a-11a1-4afe-b758-169315f1f59a}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{215f8b0a-11a1-4afe-b758-169315f1f59a}: [DhcpDomain] numericable.fr
FireFox:
========
FF DefaultProfile: h5iumreo.default
FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\h5iumreo.default [2023-05-21]
FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\hjjd6z35.default-release-1661500184285 [2024-02-25]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [pfcgjlglddicjopgimohdcbmabacamll] -
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
S4 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2438128 2023-11-11] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.0.5\ProtonVPNService.exe [472168 2023-04-19] (Proton Technologies AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.0.5\ProtonVPN.WireGuardService.exe [471656 2023-04-19] (Proton Technologies AG -> ProtonVPN)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [410576 2024-02-06] (Tonalio GmbH -> Sandboxie-Plus.com)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YouGovPulseSvc; C:\Program Files\YouGovPulse\UsageMonitor.WindowsService.exe [23896 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé]
S2 GoogleUpdaterInternalService123.0.6288.0; "C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe" --system --windows-service --service=update-internal --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 [X] <==== ATTENTION
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.0.5\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [865216 2022-05-23] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [242328 2024-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Sandboxie-Plus.com)
S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2022-07-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-25 10:55 - 2024-02-25 10:56 - 000019960 _____ C:\Users\Courant\Desktop\FRST.txt
2024-02-25 10:53 - 2024-02-25 10:53 - 002386944 _____ (Farbar) C:\Users\Courant\Desktop\FRST64.exe
2024-02-24 18:53 - 2024-02-24 18:53 - 000000643 _____ C:\Users\Courant\Documents\suite.txt
2024-02-24 18:23 - 2024-02-24 18:23 - 000000408 _____ C:\Users\Courant\Documents\sfcscannow.txt
2024-02-24 18:17 - 2024-02-24 18:17 - 000000000 ____D C:\Users\Courant\AppData\Roaming\Thunderbird
2024-02-24 18:17 - 2024-02-24 18:17 - 000000000 ____D C:\Users\Courant\AppData\Local\Thunderbird
2024-02-24 16:25 - 2024-02-25 10:56 - 000000000 ____D C:\FRST
2024-02-24 14:51 - 2024-02-24 14:51 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-02-24 14:50 - 2024-02-24 15:06 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-02-24 14:40 - 2024-02-24 16:58 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-02-24 11:47 - 2024-02-24 11:47 - 000000000 ___HD C:\$WinREAgent
2024-02-20 15:57 - 2024-02-20 15:57 - 001077690 _____ C:\Users\Lemien\Desktop\MVI - justificatif handicap.pdf
2024-02-09 09:44 - 2024-02-09 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2024-02-03 10:52 - 2024-02-11 11:37 - 000000000 ____D C:\Users\Lemien\Desktop\photos appart
2024-01-31 10:56 - 2024-02-23 17:36 - 000191156 _____ C:\Users\Lemien\Desktop\Planning février 2024.docx - Planning février 2024.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-25 10:52 - 2022-05-22 23:11 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-02-25 10:51 - 2022-05-23 21:01 - 000000000 __SHD C:\Users\Courant\IntelGraphicsProfiles
2024-02-25 10:51 - 2022-05-22 22:07 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-02-25 10:51 - 2022-05-22 22:04 - 000000000 ____D C:\ProgramData\NVIDIA
2024-02-25 10:49 - 2024-01-05 20:05 - 000020399 _____ C:\Users\Lemien\Desktop\Liste achats.ods
2024-02-25 10:49 - 2024-01-05 11:32 - 000080055 _____ C:\Users\Lemien\Desktop\Budgets.ods
2024-02-25 10:47 - 2022-05-22 17:57 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-02-25 10:36 - 2022-05-22 18:41 - 000000000 ____D C:\Users\Lemien\AppData\Local\D3DSCache
2024-02-25 09:47 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-25 09:46 - 2022-05-22 22:07 - 000000000 __SHD C:\Users\Lemien\IntelGraphicsProfiles
2024-02-25 09:45 - 2022-05-22 17:58 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-02-25 09:45 - 2022-05-22 17:57 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-25 09:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2024-02-24 23:42 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-02-24 21:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-02-24 21:24 - 2022-10-24 07:28 - 000000000 ____D C:\Users\Courant\AppData\Local\ElevatedDiagnostics
2024-02-24 21:22 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-02-24 20:56 - 2022-05-28 14:53 - 000000000 ____D C:\Users\Courant\AppData\Local\PlaceholderTileLogoFolder
2024-02-24 20:54 - 2023-02-23 15:17 - 000004182 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{D4C11611-6B50-4DFC-9A6E-813F417CE57A}
2024-02-24 20:32 - 2015-11-09 21:23 - 000000000 ___RD C:\Users\Lemien\Desktop\Mes téléchargements
2024-02-24 20:13 - 2022-05-22 23:18 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-24 20:13 - 2022-05-22 22:57 - 000000000 ____D C:\Windows\SystemTemp
2024-02-24 18:11 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2024-02-24 18:11 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2024-02-24 18:00 - 2022-05-22 22:17 - 000000000 ____D C:\Program Files (x86)\ASUS
2024-02-24 17:22 - 2022-05-22 22:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-02-24 17:22 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-02-24 17:15 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-24 16:58 - 2022-05-22 23:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-02-24 16:00 - 2024-01-04 22:17 - 000001057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-02-24 15:59 - 2023-09-25 19:27 - 000001816 _____ C:\Windows\Sandboxie.ini
2024-02-24 15:02 - 2022-05-22 19:45 - 000000000 ____D C:\Users\Lemien\AppData\Local\Opera Software
2024-02-24 14:59 - 2022-05-22 19:44 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\Opera Software
2024-02-24 14:58 - 2022-05-22 23:11 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-02-24 14:48 - 2022-05-22 21:10 - 000000000 ____D C:\Users\Courant\AppData\Local\Packages
2024-02-24 14:43 - 2022-05-22 18:41 - 000000000 ____D C:\Users\Lemien\AppData\Local\Packages
2024-02-24 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2024-02-24 14:22 - 2022-05-22 18:39 - 000000000 ____D C:\Users\Lemien
2024-02-24 14:06 - 2022-05-22 21:09 - 000000000 ____D C:\Users\Courant
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-02-24 14:05 - 2019-12-07 15:52 - 000000000 ____D C:\Windows\SysWOW64\MailContactsCalendarSync
2024-02-24 14:05 - 2019-12-07 15:52 - 000000000 ____D C:\Windows\system32\MailContactsCalendarSync
2024-02-24 14:05 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\system32\OpenSSH
2024-02-24 14:05 - 2019-12-07 15:49 - 000000000 ____D C:\Windows\SysWOW64\fr
2024-02-24 14:05 - 2019-12-07 15:49 - 000000000 ____D C:\Windows\system32\fr
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 __RSD C:\Windows\Media
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\Nui
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\Nui
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\dsc
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\ras
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\InstallShield
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\icsxml
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\downlevel
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Bthprops
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ras
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\icsxml
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ias
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\downlevel
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ContainerSettingsProviders
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Bthprops
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\L2Schemas
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IdentityCRL
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Cursors
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\Services
2024-02-24 14:05 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2024-02-24 13:59 - 2022-06-01 10:59 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\vlc
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\InputMethod
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\IME
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemApps
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\InputMethod
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\schemas
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Help
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Containers
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Branding
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Security
2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-02-24 13:20 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\registration
2024-02-24 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Web
2024-02-24 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Vss
2024-02-24 12:54 - 2022-05-25 20:59 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\Foxit Software
2024-02-24 12:54 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2024-02-24 10:36 - 2024-01-05 11:32 - 000026429 _____ C:\Users\Lemien\Desktop\Comptes financiers.ods
2024-02-23 15:39 - 2024-01-04 23:08 - 000012373 _____ C:\Users\Lemien\Desktop\vrst devises.ods
2024-02-22 11:58 - 2024-01-04 23:08 - 000018040 _____ C:\Users\Lemien\Desktop\suivi conseil.ods
2024-02-21 13:53 - 2024-01-04 23:08 - 000052569 _____ C:\Users\Lemien\Desktop\Eau - Gaz - Elec.ods
2024-02-19 21:16 - 2024-01-05 11:33 - 000105497 _____ C:\Users\Lemien\Desktop\Santé.ods
2024-02-18 21:39 - 2024-01-05 18:38 - 000029015 _____ C:\Users\Lemien\Desktop\Suivi consommables.ods
2024-02-17 14:03 - 2022-05-22 18:35 - 001775332 _____ C:\Windows\system32\PerfStringBackup.INI
2024-02-17 14:03 - 2019-12-07 15:49 - 000795764 _____ C:\Windows\system32\perfh00C.dat
2024-02-17 14:03 - 2019-12-07 15:49 - 000151376 _____ C:\Windows\system32\perfc00C.dat
2024-02-17 11:54 - 2024-01-05 11:33 - 000031480 _____ C:\Users\Lemien\Desktop\Prix aliments.ods
2024-02-15 09:39 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-02-14 11:42 - 2022-05-22 21:49 - 000000000 ____D C:\Windows\system32\MRT
2024-02-14 11:36 - 2022-05-22 21:49 - 191155960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-01-29 22:00 - 2023-04-10 09:31 - 000000000 ____D C:\Users\Lemien\Desktop\Mooc en cours
==================== Fichiers à la racine de certains dossiers ========
2022-06-27 10:53 - 2022-06-27 16:06 - 000035321 _____ () C:\Users\Courant\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================