Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23.02.2024 Exécuté par Courant (administrateur) sur DESKTOP-Q8C8GMR (ASUSTeK COMPUTER INC. X555LB) (25-02-2024 10:55:22) Exécuté depuis C:\Users\Courant\Desktop\FRST64.exe Profils chargés: Lemien & Courant Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.3086 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe <2> (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe <2> (C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe <2> (C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe <2> (C:\Program Files\Mozilla Firefox\firefox.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieCrypto.exe (C:\Program Files\Sandboxie\SandboxieRpcSs.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe (C:\Program Files\Sandboxie\SbieSvc.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SandboxieRpcSs.exe (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE <2> (explorer.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SbieCtrl.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <32> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <3> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe <2> (RuntimeBroker.exe ->) (Intel Corporation -> ) C:\Windows\System32\igfxTray.exe <2> (RuntimeBroker.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe <2> (RuntimeBroker.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe <2> (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe <2> (services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe (services.exe ->) (ICEpower a/s -> ICEpower a/s) C:\Windows\System32\ICEsoundService64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe <3> (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (RealityMine Limited -> RealityMine Ltd) [Fichier non signé] C:\Program Files\YouGovPulse\UsageMonitor.WindowsService.exe (services.exe ->) (Tonalio GmbH -> Sandboxie-Plus.com) C:\Program Files\Sandboxie\SbieSvc.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe <2> (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1220128 2015-09-18] (Druide informatique inc. -> Druide informatique inc.) HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1380384 2015-09-18] (Druide informatique inc. -> Druide informatique inc.) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler (Pas de fichier) HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3405264 2024-02-06] (Tonalio GmbH -> Sandboxie-Plus.com) HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Pas de fichier) HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe [471656 2023-04-19] (Proton Technologies AG -> ProtonVPN) HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1985202621-3165059007-2146112226-1001\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe" HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [YouGovPulse] => C:\Program Files\YouGovPulse\UsageMonitor.UI.App.exe [477528 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé] HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\Run: [YouGovPulseHealthcheck] => C:\Program Files\YouGovPulse\UsageMonitor.HealthCheck.exe [13656 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé] HKU\S-1-5-21-1985202621-3165059007-2146112226-1002\...\MountPoints2: {9d415e9a-d9fa-11ec-92db-40e230f2920a} - "F:\AutoRun.exe" HKLM\...\Print\Monitors\EPSON XP-322 323 325 Series 64MonitorBE: C:\Windows\system32\E_YLMBNEE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {C22251FB-2AF6-4215-82B4-3CAB2564CD80} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {AA6AF033-A569-46A4-8E50-AF0B0D4CBDA1} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {EC1B70F6-8CD3-4A66-BF77-3D88539F568E} - System32\Tasks\EPSON XP-322 323 325 Series Update {7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {9826681A-71CB-41BA-991E-617AB779EBA1} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6288.0{6673CA82-56AD-487B-8AEF-AEA76E854202} => "C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe" --wake --system --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 (Pas de fichier) <==== ATTENTION Task: {2D538744-17B9-4AFE-8627-17FCA81AFD84} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {27ED3DC0-97A7-4A9C-8CDF-FA4127B1A858} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {AEB6D72E-8842-4BC3-83B4-CC01891908F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {727443D9-FEC3-4C09-A1A0-B683F69F96BB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EC47DDD2-3157-45F8-BC5C-2458F52BBAC7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-02-24] (Mozilla Corporation -> Mozilla Foundation) Task: {58F00E73-AE1D-411C-9079-4B5DFE9824AA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) Task: {FADA0A09-ACA5-4D98-9E40-52CD4650AA2E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) Task: {83B86134-7BFE-470C-9B48-D22425019B8E} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {7055A812-6208-4EE7-96DD-71D4032DC2C0} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2023-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {F4A4A040-B654-4825-BCB4-E44530577EBC} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [149712 2021-10-14] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\EPSON XP-322 323 325 Series Update {7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE:/EXE:{7CE801B2-E120-4A36-90EB-CEFD3AD9FA8F} /F:UpdateWORKGROUP\DESKTOP-Q8C8GMR$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2 Tcpip\..\Interfaces\{215f8b0a-11a1-4afe-b758-169315f1f59a}: [DhcpNameServer] 89.2.0.1 89.2.0.2 Tcpip\..\Interfaces\{215f8b0a-11a1-4afe-b758-169315f1f59a}: [DhcpDomain] numericable.fr FireFox: ======== FF DefaultProfile: h5iumreo.default FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\h5iumreo.default [2023-05-21] FF ProfilePath: C:\Users\Courant\AppData\Roaming\Mozilla\Firefox\Profiles\hjjd6z35.default-release-1661500184285 [2024-02-25] FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier] FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier] FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) Chrome: ======= CHR HKLM\...\Chrome\Extension: [pfcgjlglddicjopgimohdcbmabacamll] - ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> ) S4 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation) R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2438128 2023-11-11] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.0.5\ProtonVPNService.exe [472168 2023-04-19] (Proton Technologies AG -> ProtonVPN) S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.0.5\ProtonVPN.WireGuardService.exe [471656 2023-04-19] (Proton Technologies AG -> ProtonVPN) R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [410576 2024-02-06] (Tonalio GmbH -> Sandboxie-Plus.com) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 YouGovPulseSvc; C:\Program Files\YouGovPulse\UsageMonitor.WindowsService.exe [23896 2020-09-03] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé] S2 GoogleUpdaterInternalService123.0.6288.0; "C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe" --system --windows-service --service=update-internal --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 [X] <==== ATTENTION R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_cb8516b2a1164875\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation) R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS) S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.0.5\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG) U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [865216 2022-05-23] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [242328 2024-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Sandboxie-Plus.com) S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2022-07-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-02-25 10:55 - 2024-02-25 10:56 - 000019960 _____ C:\Users\Courant\Desktop\FRST.txt 2024-02-25 10:53 - 2024-02-25 10:53 - 002386944 _____ (Farbar) C:\Users\Courant\Desktop\FRST64.exe 2024-02-24 18:53 - 2024-02-24 18:53 - 000000643 _____ C:\Users\Courant\Documents\suite.txt 2024-02-24 18:23 - 2024-02-24 18:23 - 000000408 _____ C:\Users\Courant\Documents\sfcscannow.txt 2024-02-24 18:17 - 2024-02-24 18:17 - 000000000 ____D C:\Users\Courant\AppData\Roaming\Thunderbird 2024-02-24 18:17 - 2024-02-24 18:17 - 000000000 ____D C:\Users\Courant\AppData\Local\Thunderbird 2024-02-24 16:25 - 2024-02-25 10:56 - 000000000 ____D C:\FRST 2024-02-24 14:51 - 2024-02-24 14:51 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem 2024-02-24 14:50 - 2024-02-24 15:06 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-02-24 14:40 - 2024-02-24 16:58 - 000000000 ____D C:\Program Files\Mozilla Thunderbird 2024-02-24 11:47 - 2024-02-24 11:47 - 000000000 ___HD C:\$WinREAgent 2024-02-20 15:57 - 2024-02-20 15:57 - 001077690 _____ C:\Users\Lemien\Desktop\MVI - justificatif handicap.pdf 2024-02-09 09:44 - 2024-02-09 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie 2024-02-03 10:52 - 2024-02-11 11:37 - 000000000 ____D C:\Users\Lemien\Desktop\photos appart 2024-01-31 10:56 - 2024-02-23 17:36 - 000191156 _____ C:\Users\Lemien\Desktop\Planning février 2024.docx - Planning février 2024.pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-02-25 10:52 - 2022-05-22 23:11 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-02-25 10:51 - 2022-05-23 21:01 - 000000000 __SHD C:\Users\Courant\IntelGraphicsProfiles 2024-02-25 10:51 - 2022-05-22 22:07 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2024-02-25 10:51 - 2022-05-22 22:04 - 000000000 ____D C:\ProgramData\NVIDIA 2024-02-25 10:49 - 2024-01-05 20:05 - 000020399 _____ C:\Users\Lemien\Desktop\Liste achats.ods 2024-02-25 10:49 - 2024-01-05 11:32 - 000080055 _____ C:\Users\Lemien\Desktop\Budgets.ods 2024-02-25 10:47 - 2022-05-22 17:57 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-02-25 10:36 - 2022-05-22 18:41 - 000000000 ____D C:\Users\Lemien\AppData\Local\D3DSCache 2024-02-25 09:47 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-02-25 09:46 - 2022-05-22 22:07 - 000000000 __SHD C:\Users\Lemien\IntelGraphicsProfiles 2024-02-25 09:45 - 2022-05-22 17:58 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-02-25 09:45 - 2022-05-22 17:57 - 000008192 ___SH C:\DumpStack.log.tmp 2024-02-25 09:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState 2024-02-24 23:42 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI 2024-02-24 21:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2024-02-24 21:24 - 2022-10-24 07:28 - 000000000 ____D C:\Users\Courant\AppData\Local\ElevatedDiagnostics 2024-02-24 21:22 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2024-02-24 20:56 - 2022-05-28 14:53 - 000000000 ____D C:\Users\Courant\AppData\Local\PlaceholderTileLogoFolder 2024-02-24 20:54 - 2023-02-23 15:17 - 000004182 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{D4C11611-6B50-4DFC-9A6E-813F417CE57A} 2024-02-24 20:32 - 2015-11-09 21:23 - 000000000 ___RD C:\Users\Lemien\Desktop\Mes téléchargements 2024-02-24 20:13 - 2022-05-22 23:18 - 000000000 ____D C:\Program Files (x86)\Google 2024-02-24 20:13 - 2022-05-22 22:57 - 000000000 ____D C:\Windows\SystemTemp 2024-02-24 18:11 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2024-02-24 18:11 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2024-02-24 18:00 - 2022-05-22 22:17 - 000000000 ____D C:\Program Files (x86)\ASUS 2024-02-24 17:22 - 2022-05-22 22:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2024-02-24 17:22 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2024-02-24 17:15 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-02-24 16:58 - 2022-05-22 23:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-02-24 16:00 - 2024-01-04 22:17 - 000001057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk 2024-02-24 15:59 - 2023-09-25 19:27 - 000001816 _____ C:\Windows\Sandboxie.ini 2024-02-24 15:02 - 2022-05-22 19:45 - 000000000 ____D C:\Users\Lemien\AppData\Local\Opera Software 2024-02-24 14:59 - 2022-05-22 19:44 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\Opera Software 2024-02-24 14:58 - 2022-05-22 23:11 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-02-24 14:48 - 2022-05-22 21:10 - 000000000 ____D C:\Users\Courant\AppData\Local\Packages 2024-02-24 14:43 - 2022-05-22 18:41 - 000000000 ____D C:\Users\Lemien\AppData\Local\Packages 2024-02-24 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF 2024-02-24 14:22 - 2022-05-22 18:39 - 000000000 ____D C:\Users\Lemien 2024-02-24 14:06 - 2022-05-22 21:09 - 000000000 ____D C:\Users\Courant 2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Portable Devices 2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform 2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices 2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-02-24 14:05 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform 2024-02-24 14:05 - 2019-12-07 15:52 - 000000000 ____D C:\Windows\SysWOW64\MailContactsCalendarSync 2024-02-24 14:05 - 2019-12-07 15:52 - 000000000 ____D C:\Windows\system32\MailContactsCalendarSync 2024-02-24 14:05 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\system32\OpenSSH 2024-02-24 14:05 - 2019-12-07 15:49 - 000000000 ____D C:\Windows\SysWOW64\fr 2024-02-24 14:05 - 2019-12-07 15:49 - 000000000 ____D C:\Windows\system32\fr 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 __RSD C:\Windows\Media 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\Nui 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\Nui 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\dsc 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\ras 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\InstallShield 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\icsxml 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\downlevel 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Bthprops 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ras 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\icsxml 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ias 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\downlevel 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\DDFs 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ContainerSettingsProviders 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Bthprops 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\L2Schemas 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IdentityCRL 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Cursors 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2024-02-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\Services 2024-02-24 14:05 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing 2024-02-24 13:59 - 2022-06-01 10:59 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\vlc 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\InputMethod 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\IME 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemApps 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\InputMethod 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\schemas 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Help 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Containers 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Branding 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Security 2024-02-24 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-02-24 13:20 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\registration 2024-02-24 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Web 2024-02-24 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Vss 2024-02-24 12:54 - 2022-05-25 20:59 - 000000000 ____D C:\Users\Lemien\AppData\Roaming\Foxit Software 2024-02-24 12:54 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat 2024-02-24 10:36 - 2024-01-05 11:32 - 000026429 _____ C:\Users\Lemien\Desktop\Comptes financiers.ods 2024-02-23 15:39 - 2024-01-04 23:08 - 000012373 _____ C:\Users\Lemien\Desktop\vrst devises.ods 2024-02-22 11:58 - 2024-01-04 23:08 - 000018040 _____ C:\Users\Lemien\Desktop\suivi conseil.ods 2024-02-21 13:53 - 2024-01-04 23:08 - 000052569 _____ C:\Users\Lemien\Desktop\Eau - Gaz - Elec.ods 2024-02-19 21:16 - 2024-01-05 11:33 - 000105497 _____ C:\Users\Lemien\Desktop\Santé.ods 2024-02-18 21:39 - 2024-01-05 18:38 - 000029015 _____ C:\Users\Lemien\Desktop\Suivi consommables.ods 2024-02-17 14:03 - 2022-05-22 18:35 - 001775332 _____ C:\Windows\system32\PerfStringBackup.INI 2024-02-17 14:03 - 2019-12-07 15:49 - 000795764 _____ C:\Windows\system32\perfh00C.dat 2024-02-17 14:03 - 2019-12-07 15:49 - 000151376 _____ C:\Windows\system32\perfc00C.dat 2024-02-17 11:54 - 2024-01-05 11:33 - 000031480 _____ C:\Users\Lemien\Desktop\Prix aliments.ods 2024-02-15 09:39 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2024-02-14 11:42 - 2022-05-22 21:49 - 000000000 ____D C:\Windows\system32\MRT 2024-02-14 11:36 - 2022-05-22 21:49 - 191155960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-01-29 22:00 - 2023-04-10 09:31 - 000000000 ____D C:\Users\Lemien\Desktop\Mooc en cours ==================== Fichiers à la racine de certains dossiers ======== 2022-06-27 10:53 - 2022-06-27 16:06 - 000035321 _____ () C:\Users\Courant\AppData\Local\PlariumPlay.log ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================