Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-12-2023 Exécuté par jaybe (administrateur) sur JEAN-NOMADE (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X515JAB_F515JA) (15-12-2023 22:49:53) Exécuté depuis C:\Users\jaybe\Downloads\FRST64.exe Profils chargés: jaybe Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.2861 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOSD.exe (C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files (x86)\epson\MyEpson Portal\mep.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\64DriverLoad.exe (C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe (C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe (C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertReunion.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.61\msedgewebview2.exe <12> (C:\Users\jaybe\AppData\Local\Apps\2.0\C2H82ZTC.GDN\HT7ATK1N.PC5\scre..tion_2c2536e5112611c9_0006.0003_96ee7988859c3835\ScreenConnect.ClientService.exe ->) (ScreenConnect Software -> ScreenConnect Software) C:\Users\jaybe\AppData\Local\Apps\2.0\C2H82ZTC.GDN\HT7ATK1N.PC5\scre..tion_2c2536e5112611c9_0006.0003_96ee7988859c3835\ScreenConnect.WindowsClient.exe (DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimizationStartupTask.exe (DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe (DriverStore\FileRepository\cui_dch.inf_amd64_19c2c86110716a54\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_19c2c86110716a54\igfxEMN.exe (explorer.exe ->) (CERTIF_NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] C:\Users\jaybe\AppData\Roaming\ZHP\ZHPDiag3.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <47> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.1214.201_x64__8wekyb3d8bbwe\olk.exe (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE (explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATINFE.EXE (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemote.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\AsusAppService\AsusAppService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitch.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe (services.exe ->) (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.) C:\Windows\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_56ce4d8646932f07\C-MediaAudioService.exe (services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_19c2c86110716a54\igfxCUIServiceN.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_64d7fcfcde9b9c10\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_3cbddcc68b1c0da2\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_07fa4837b9b8203d\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_269da44064f4461c\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_f3c201b4c28c14d0\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_e72614dff5a8a910\Intel_PIE_Service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\DriverStore\FileRepository\bluetoothmousethemenotificationdriver.inf_amd64_2e0b64a02f0c9539\BluetoothMouseThemeNotificationService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe (services.exe ->) (ScreenConnect Software -> ) C:\Users\jaybe\AppData\Local\Apps\2.0\C2H82ZTC.GDN\HT7ATK1N.PC5\scre..tion_2c2536e5112611c9_0006.0003_96ee7988859c3835\ScreenConnect.ClientService.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe (services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (sihost.exe ->) (5E725061-EB4B-47FD-B309-0B1348500865 -> C-Media Electronics, Inc.) C:\Program Files\WindowsApps\E2B691C9.C-Media6549AudioControlPanel_1.0.37.0_x64__y9kx1840xc4zw\VFS\ProgramFilesX86\C-Media Audio Control Panel\CMediaAudioControlPanel.exe (sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5287.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5287.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-2815031777-2845104462-3638993774-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATINFE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-2815031777-2845104462-3638993774-1001\...\Run: [Opera Stable] => C:\Users\jaybe\AppData\Local\Programs\Opera\launcher.exe (Pas de fichier) HKU\S-1-5-21-2815031777-2845104462-3638993774-1001\...\Run: [EPSDNMON] => "" (Pas de fichier) HKU\S-1-5-21-2815031777-2845104462-3638993774-1001\...\Run: [MicrosoftEdgeAutoLaunch_290951278149BD824BA4F6EAC3992DE4] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788736 2023-12-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2815031777-2845104462-3638993774-1001\...\Run: [PCPrivacyShield2018] => "C:\Program Files (x86)\PC Privacy Shield 2018\PCPrivacyShield2018.exe" minimized (Pas de fichier) HKU\S-1-5-21-2815031777-2845104462-3638993774-1001\...\MountPoints2: {4248e63d-093d-11ee-bb61-c8cb9e0f82c2} - "D:\AutoRun.exe" HKLM\...\Print\Monitors\EPSON XP-225 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBNFE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.109\Installer\chrmstp.exe [2023-12-15] (Google LLC -> Google LLC) Startup: C:\Users\jaybe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2022-10-14] ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé] Startup: C:\Users\jaybe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2023-08-31] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {BEE4FCBD-B168-4D11-B379-99B4507E3A89} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.) Task: {3967EF61-2A87-440D-89E1-489E0FE50716} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusHotkey.exe [310912 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {8EC462C3-A268-4106-B31D-86E1497CE2FE} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusUpdateChecker.exe [797816 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {4C680226-6EE9-4C07-A15A-C8871C8F7D44} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4147944 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {2F40CFA7-BBBD-49A1-B8F0-5E920FC7BA23} - System32\Tasks\EPSON XP-225 Series Update {99B98520-57FC-4582-8681-A4881FE3BE33} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {4DB3ADAB-4BDA-4543-83D9-B8156E569825} - System32\Tasks\GoogleUpdateTaskMachineCore{DDFA3E83-7B25-48F3-892D-90CD43B4748A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-12] (Google LLC -> Google LLC) Task: {BD01C0C6-C94F-4665-83AF-FBB3B58425C1} - System32\Tasks\GoogleUpdateTaskMachineUA{F7BDD792-D527-4D2A-9885-71F9D065053C} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-12] (Google LLC -> Google LLC) Task: {4E03EA50-EFCF-4291-9109-251CE722E535} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2815031777-2845104462-3638993774-1001Core{9971E82C-0C0C-4B71-9CE5-3A733B6FFF50} => C:\Users\jaybe\AppData\Local\Google\Update\GoogleUpdate.exe /c (Pas de fichier) Task: {D2BECB13-7D21-4D8F-A1AB-373D1A0F8F0D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2815031777-2845104462-3638993774-1001UA{BE005987-E007-4A01-BE58-19C414CAA461} => C:\Users\jaybe\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Pas de fichier) Task: {685D276D-0041-4405-9D65-D8AA08EFBEC4} - System32\Tasks\McAfeeTsk\OOBEUpgrader => C:\Program Files\McAfee\MSC\OOBE_Upgrader.exe /Run (Pas de fichier) Task: {B3C8C6B3-6335-4B6F-94E2-B5A02F863975} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-09-27] (Microsoft Corporation -> Microsoft Corporation) Task: {64DE4AF2-73BB-41FA-983A-DFDCD2528E8F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-09-27] (Microsoft Corporation -> Microsoft Corporation) Task: {E5265E58-ED2C-4BC6-8561-AD1113721DDF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-11] (Microsoft Corporation -> Microsoft Corporation) Task: {F081BA6F-C033-4D50-A172-B1F244FFF151} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-11] (Microsoft Corporation -> Microsoft Corporation) Task: {56427329-4D4B-408B-8F34-4506DB46DCCF} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169136 2023-10-11] (Microsoft Corporation -> Microsoft Corporation) Task: {0A003C76-0ED9-4B1D-9D8A-F7CABFE0764B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\root\Office15\msoia.exe [374832 2023-10-11] (Microsoft Corporation -> Microsoft Corporation) Task: {1A275F91-2783-4628-859B-F77C7D5753B5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\root\Office15\msoia.exe [374832 2023-10-11] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {027C9B38-C0DC-465F-AB7A-E3F6099840E6} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {5F59B5DA-2ED2-479F-8CFC-53A902627EF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {991596A4-92F1-4388-A753-A132AE33B79B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {42E56EDC-D9FF-406A-BA5C-98460D03AD33} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C8F1D76C-CE4F-4BC8-AEC6-8667495DFF96} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6E66A943-1863-4037-B3CF-9B490A08FB61} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [137176 2023-12-15] (Microsoft Windows -> Microsoft Corporation) Task: {664DCB52-9928-4A9A-AE5F-4F3E435ADFCA} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674208 2023-12-15] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {3D7985B6-160A-4C3A-8FE2-991CC17B0561} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2023-12-15] (Mozilla Corporation -> Mozilla Foundation) Task: {03474F96-39C2-471E-8F4F-F03CD9B850B4} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2815031777-2845104462-3638993774-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON XP-225 Series Update {99B98520-57FC-4582-8681-A4881FE3BE33}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE:/EXE:{99B98520-57FC-4582-8681-A4881FE3BE33} /F:UpdateWORKGROUP\JEAN-NOMADE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{196eef2b-0d27-4de2-b7a5-6ffd2dad375d}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{3d9e1169-df49-4eac-8631-d4ef1719c709}: [DhcpNameServer] 40.52.1.12 Tcpip\..\Interfaces\{76059e3f-35b5-418d-83db-fb4c059d4f1f}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\jaybe\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-15] Edge Extension: (Google Docs hors connexion) - C:\Users\jaybe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-09] Edge Extension: (Edge relevant text changes) - C:\Users\jaybe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-28] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF DefaultProfile: 1h5n4789.default FF ProfilePath: C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\1h5n4789.default [2022-10-19] FF ProfilePath: C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release [2023-12-15] FF Extension: (Ghostery Bloqueur de Traqueurs et de Publicités - confidentialité) - C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release\Extensions\firefox@ghostery.com.xpi [2023-12-15] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2023-12-15] FF Extension: (Google Translator for Firefox) - C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release\Extensions\translator@zoli.bod.xpi [2022-10-19] FF Extension: (Dark-ish Rainbow) - C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release\Extensions\{21f69c5d-b9e1-470f-a890-74454e954eee}.xpi [2022-10-19] FF Extension: (fractal summer colors) - C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release\Extensions\{4d723626-21f9-4179-b157-5fd7094ba414}.xpi [2022-10-19] FF Extension: (Video DownloadHelper) - C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-09-18] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-12] FF Extension: (Dark Fox) - C:\Users\jaybe\AppData\Roaming\Mozilla\Firefox\Profiles\fl848u4j.default-release\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2022-10-19] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-11] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default [2023-12-15] CHR Notifications: Default -> hxxps://messages.google.com; hxxps://mingle.respondi.fr; hxxps://www.lemonde.fr CHR HomePage: Default -> hxxps://www.google.fr/?gws_rd=ssl CHR StartupUrls: Default -> "hxxps://www.facebook.com/","hxxps://www.google.fr/?gws_rd=ssl" CHR Extension: (DuckDuckGo) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2023-12-15] CHR Extension: (Liner GPT: Copilote IA pour le Web et YouTube) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmhcbmnbenmcecpmpepghooflbehcack [2023-12-15] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-29] CHR Extension: (Pinky) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\eijmklfnehnnkbfcoabieogaomookbna [2022-10-12] CHR Extension: (Video Downloader Professional) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2023-04-20] CHR Extension: (Google Docs hors connexion) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-12-15] CHR Extension: (YouGov Safe) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbenbpjiigbogcmofbmoojbkojdmojfl [2023-12-15] CHR Extension: (LifeConnect) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\mceamflcjngafepgplglhfincpaameeh [2023-09-05] CHR Extension: (Guitar Chords) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\megglpjmadjmghjegnallnhiknjnnjhh [2022-10-12] CHR Extension: (Traduction One Click) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhncgbfifjnhlilpnccgbimimkjejada [2023-02-08] CHR Extension: (Google Maps Platform API Checker) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlikepnkghhlnkgeejmlkfeheihlehne [2022-10-12] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-12] CHR Extension: (Clavier virtuel) - C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojodoncimdcjibigapbjcgeicgeecanl [2022-10-12] CHR Profile: C:\Users\jaybe\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-10-12] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKU\S-1-5-21-2815031777-2845104462-3638993774-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= OPR Profile: C:\Users\jaybe\AppData\Roaming\Opera Software\Opera Stable [2023-01-07] OPR DefaultSuggestURL: Opera Stable -> hxxps://ac.duckduckgo.com/ac/?q={searchTerms}&type=list&t={opera:vpnClient} OPR Extension: (Rich Hints Agent) - C:\Users\jaybe\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-01-06] OPR Extension: (Opera Wallet) - C:\Users\jaybe\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-01-06] OPR Extension: (Amazon Assistant Promotion) - C:\Users\jaybe\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2023-01-06] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2022-10-14] (Adobe Systems) [Fichier non signé] R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.) R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\AsusAppService\AsusAppService.exe [1177320 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe [1631976 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemote.exe [772840 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe [508032 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 AsusScreenXpertHostService; C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe [1715344 2023-09-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe [1111160 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitch.exe [641144 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4147944 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [834280 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R2 BluetoothMouseThemeNotificationService; C:\WINDOWS\System32\DriverStore\FileRepository\bluetoothmousethemenotificationdriver.inf_amd64_2e0b64a02f0c9539\BluetoothMouseThemeNotificationService.exe [1071432 2021-10-24] (Microsoft Corporation -> Microsoft Corporation) R2 C-MediaAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_56ce4d8646932f07\C-MediaAudioService.exe [309672 2022-08-25] (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12859472 2023-09-27] (Microsoft Corporation -> Microsoft Corporation) S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1376256 2023-12-15] (Microsoft Windows -> Microsoft Corporation) R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [241760 2022-04-29] (DTS, Inc. -> DTS Inc.) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation) S3 GameInputSvc; C:\WINDOWS\System32\GameInputSvc.exe [71288 2023-12-15] (Microsoft Corporation -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9405400 2023-12-15] (Malwarebytes Inc. -> Malwarebytes) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 ScreenConnect Client (00e3484b-f2a1-4729-8721-199e4a4bc501); C:\Users\jaybe\AppData\Local\Apps\2.0\C2H82ZTC.GDN\HT7ATK1N.PC5\scre..tion_2c2536e5112611c9_0006.0003_96ee7988859c3835\ScreenConnect.ClientService.exe [90768 2023-12-15] (ScreenConnect Software -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSAIO.sys [49312 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusWmiAcpi.sys [48808 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218592 2023-11-04] (Microsoft Windows -> Microsoft Corporation) R3 iaLPSS2_GPIO2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_SPI_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_icl.inf_amd64_66a759065dfa6f64\iaLPSS2_SPI_ICL.sys [160024 2020-04-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_UART2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_icl.inf_amd64_b535659b9405201a\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222784 2023-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-12-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2023-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MpKsl81bf9a59; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7D9BA60F-B402-422C-BFA5-C913014294BD}\MpKslDrv.sys [263560 2023-12-15] (Microsoft Windows -> Microsoft Corporation) S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 qcusbnet; C:\WINDOWS\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project) S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [33792 2023-12-15] (Microsoft Windows -> Microsoft Corporation) S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [81920 2022-10-12] (Microsoft Corporation) [Fichier non signé] S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-11-04] (Microsoft Windows -> ) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-15] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-12-15 22:49 - 2023-12-15 22:50 - 000038112 _____ C:\Users\jaybe\Downloads\FRST.txt 2023-12-15 22:49 - 2023-12-15 22:50 - 000000000 ____D C:\FRST 2023-12-15 22:45 - 2023-12-15 22:45 - 002386432 _____ (Farbar) C:\Users\jaybe\Downloads\FRST64.exe 2023-12-15 20:59 - 2023-12-15 20:59 - 000409114 _____ C:\Users\jaybe\Desktop\ZHPDiag.html 2023-12-15 19:48 - 2023-12-15 20:58 - 000409114 _____ C:\Users\jaybe\Downloads\ZHPDiag.html 2023-12-15 19:45 - 2023-12-15 19:45 - 000331025 _____ C:\Users\jaybe\Desktop\ZHPDiag.txt 2023-12-15 19:40 - 2023-12-15 21:17 - 000000000 ____D C:\Users\jaybe\AppData\Roaming\ZHP 2023-12-15 19:40 - 2023-12-15 19:40 - 003368608 _____ (Nicolas Coolman) C:\Users\jaybe\Downloads\ZHPDiag3.exe 2023-12-15 19:40 - 2023-12-15 19:40 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat 2023-12-15 19:40 - 2023-12-15 19:40 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat 2023-12-15 19:40 - 2023-12-15 19:40 - 000000867 _____ C:\Users\jaybe\Desktop\ZHPDiag.lnk 2023-12-15 19:40 - 2023-12-15 19:40 - 000000000 ____D C:\Users\jaybe\AppData\Local\ZHP 2023-12-15 19:34 - 2023-12-15 19:34 - 000000000 ____D C:\WINDOWS\InboxApps 2023-12-15 19:07 - 2023-12-15 19:38 - 000000000 ____D C:\Users\jaybe\AppData\Local\Malwarebytes 2023-12-15 19:07 - 2023-12-15 19:07 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-12-15 19:07 - 2023-12-15 19:07 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2023-12-15 19:06 - 2023-12-15 19:06 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-12-15 19:05 - 2023-12-15 19:05 - 002606880 _____ (Malwarebytes) C:\Users\jaybe\Downloads\MBSetup.exe 2023-12-15 18:59 - 2023-12-15 18:59 - 000061165 _____ C:\WINDOWS\system32\WebCacheV01_Copy.INTEG.RAW 2023-12-15 17:08 - 2023-12-15 19:35 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-12-15 17:06 - 2023-12-15 19:35 - 000000000 ____D C:\ProgramData\scre..tion_2c2536e5112611c9_0006.0003_96ee7988859c3835 2023-12-15 17:06 - 2023-12-15 17:06 - 000000000 ____D C:\Users\jaybe\AppData\Local\Deployment 2023-12-15 17:06 - 2023-12-15 17:06 - 000000000 ____D C:\Users\jaybe\AppData\Local\Apps\2.0 2023-12-15 17:02 - 2023-12-15 17:06 - 000086672 _____ C:\Users\jaybe\Downloads\ConnectWiseControl.Client.exe 2023-12-15 16:52 - 2023-12-15 18:58 - 000000000 ____D C:\XboxGames 2023-12-15 16:52 - 2023-12-15 16:52 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2023-12-15 16:52 - 2023-12-15 16:52 - 000000028 ____H C:\.GamingRoot 2023-12-15 16:52 - 2023-12-15 16:52 - 000000000 ____D C:\Users\jaybe\AppData\Local\INetHistory 2023-12-15 16:52 - 2023-12-15 16:52 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2023-12-15 16:52 - 2023-12-15 16:52 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput 2023-11-25 14:40 - 2023-11-25 14:40 - 000225009 _____ C:\Users\jaybe\Downloads\3112513147_résultat patient.pdf 2023-11-21 19:44 - 2023-11-21 19:44 - 003147448 _____ (OneLaunch ) C:\Users\jaybe\Downloads\OneLaunch - Easy PDF_i52ok.exe 2023-11-18 13:46 - 2023-11-18 13:46 - 000010378 _____ C:\Users\jaybe\Downloads\leboncoin_bon-d-envoi_c3d31ed9-c143-4d5b-bdc9-40cb9f0e0915.pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-12-15 22:50 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-12-15 22:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-12-15 22:40 - 2022-10-12 21:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-12-15 22:40 - 2022-10-12 14:59 - 000000000 ____D C:\Program Files (x86)\Google 2023-12-15 20:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-12-15 19:51 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-12-15 19:42 - 2022-10-12 21:11 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 2023-12-15 19:40 - 2022-10-12 21:15 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-12-15 19:40 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2023-12-15 19:39 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-12-15 19:38 - 2022-10-12 14:47 - 000000294 _____ C:\ProgramData\CMediaAudioControlPanelData.ini 2023-12-15 19:38 - 2022-10-12 14:45 - 000000000 __SHD C:\Users\jaybe\IntelGraphicsProfiles 2023-12-15 19:35 - 2022-10-19 13:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-12-15 19:35 - 2022-10-12 21:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-12-15 19:35 - 2022-10-12 21:07 - 000519672 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-12-15 19:35 - 2022-10-12 21:07 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK 2023-12-15 19:35 - 2022-07-16 01:34 - 000000000 ___HD C:\Intel 2023-12-15 19:35 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-12-15 19:35 - 2022-05-07 06:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-12-15 19:35 - 2021-10-06 23:47 - 000012288 ___SH C:\DumpStack.log.tmp 2023-12-15 19:34 - 2023-09-28 15:17 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2023-12-15 19:34 - 2022-10-12 21:08 - 000000000 ____D C:\Users\jaybe 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-12-15 19:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-12-15 19:34 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing 2023-12-15 19:32 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-12-15 19:29 - 2022-10-12 21:10 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-12-15 19:08 - 2022-10-19 13:03 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-12-15 19:07 - 2022-10-19 13:03 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-12-15 19:07 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-12-15 19:06 - 2023-01-16 01:14 - 000000000 ____D C:\Program Files\Malwarebytes 2023-12-15 17:18 - 2022-10-14 14:51 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-12-15 17:06 - 2021-10-06 23:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-12-15 17:00 - 2022-10-12 14:45 - 000000000 ____D C:\Users\jaybe\AppData\Local\D3DSCache 2023-12-15 16:53 - 2022-10-12 14:45 - 000000000 ____D C:\Users\jaybe\AppData\Local\Packages 2023-12-15 16:52 - 2022-10-12 14:46 - 000000000 ____D C:\Users\jaybe\AppData\Local\PlaceholderTileLogoFolder 2023-12-15 16:52 - 2021-10-06 23:49 - 000000000 ____D C:\ProgramData\Packages 2023-12-09 22:37 - 2021-10-06 23:47 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-12-09 22:35 - 2022-10-12 21:11 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{F7BDD792-D527-4D2A-9885-71F9D065053C} 2023-12-09 22:35 - 2022-10-12 21:11 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{DDFA3E83-7B25-48F3-892D-90CD43B4748A} 2023-11-18 14:04 - 2022-10-14 14:51 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Fichiers à la racine de certains dossiers ======== 2023-08-03 23:20 - 2023-08-03 23:20 - 000000865 _____ () C:\Users\jaybe\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================