RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
ExÃ©cutÃ© par Quadman (administrateur) sur PC-DE-JM (MSI MS-7735) (11-05-2024 19:49:33)
ExÃ©cutÃ© depuis C:\Users\Quadman\Desktop\FRST64.exe
Profils chargÃ©s: Quadman
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4355 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: Chrome
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

() [Fichier non signÃ©] C:\Users\Quadman\AppData\Roaming\Intel\dllhost.exe
() [Fichier non signÃ©] C:\Users\Quadman\AppData\Roaming\system32\svchosts.exe
(C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.863.1\DropboxCrashHandler.exe
(C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\SnagitEditor.exe
(C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\SnagPriv.exe
(C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe ->) (TechSmith Corporation) [Fichier non signÃ©] C:\Program Files (x86)\TechSmith\Snagit 11\TscHelp.exe
(C:\Users\Quadman\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge-monitor.exe ->) (OneSpan North America Inc. -> VASCO Data Security) C:\Users\Quadman\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge.exe
(C:\Windows\Microsoft.NET\Framework64\v4.0.30319\MSBuild.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\AddInProcess.exe <2>
(conhost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_compiler.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(explorer.exe ->) () [Fichier non signÃ©] C:\Program Files (x86)\RocketDock\RocketDock.exe
(explorer.exe ->) () [Fichier non signÃ©] C:\Windows\System\HsMgr64.exe
(explorer.exe ->) () [Fichier non signÃ©] C:\Windows\SysWOW64\HsMgr.exe
(explorer.exe ->) (Microsoft Corporation) [Fichier non signÃ©] [Fichier en cours d'utilisation] C:\Program Files\Windows Sidebar\sidebar.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(explorer.exe ->) (Nenad Hrg -> Nenad Hrg SoftwareOK) C:\Program Files\DesktopOK\DesktopOK_x64.exe
(explorer.exe ->) (OneSpan North America Inc. -> VASCO Data Security) C:\Users\Quadman\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge-monitor.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe
(Google LLC -> Google LLC) [Fichier non signÃ©] C:\Users\Quadman\AppData\Roaming\chromeapp.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\MSBuild.exe
(Microsoft) [Fichier non signÃ©] C:\Users\Quadman\AppData\Roaming\temp\csrss.exe
(Microsoft) [Fichier non signÃ©] C:\Windows\System32\webs\conhost.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(services.exe ->) (@ByELDI -> @ByELDI) [Fichier non signÃ©] C:\Program Files\KMSpico\Service_KMS.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2417.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.3DBuilder_20.0.4.0_x64__8wekyb3d8bbwe\Builder3D.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe <79>
(svchost.exe ->) (PC HELPSOFT LABS INC. -> PC HelpSoft) C:\Program Files (x86)\PC HelpSoft Driver Updater\PCHelpSoftDriverUpdater.exe
(svchost.exe ->) (Tweaking LLC -> Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [CmPCIaudio] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CMICNFG3.dll,CMICtrlWnd [12935168 2022-12-18] (C-Media Corporation) [Fichier non signÃ©]
HKLM\...\Run: [Cmaudio8768GX] => C:\Windows\syswow64\HsMgr.exe [200704 2022-12-18] () [Fichier non signÃ©]
HKLM\...\Run: [Cmaudio8768GX64] => C:\Windows\system\HsMgr64.exe [282112 2022-12-18] () [Fichier non signÃ©]
HKLM\...\Run: [DataCollectionAgentController] => C:\Program Files\EPSON\Epson Data Collection Agent\DataCollectionAgentController.exe [397656 2023-05-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11551624 2024-05-02] (Dropbox, Inc -> Dropbox, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-2566435625-1799573850-1386347091-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] () [Fichier non signÃ©]
HKU\S-1-5-21-2566435625-1799573850-1386347091-1001\...\Run: [DesktopOK] => C:\Program Files\DesktopOK\DesktopOK_x64.exe [1561840 2022-12-16] (Nenad Hrg -> Nenad Hrg SoftwareOK)
HKU\S-1-5-21-2566435625-1799573850-1386347091-1001\...\Run: [DigipassNativeBridge] => C:\Users\Quadman\AppData\Local\OneSpan\NativeBridge\digipass-nativebridge-monitor.exe [165128 2023-02-24] (OneSpan North America Inc. -> VASCO Data Security)
HKU\S-1-5-21-2566435625-1799573850-1386347091-1001\...\Run: [chromeapp] => C:\Users\Quadman\AppData\Roaming\chromeapp.exe [361248 2023-12-07] (Google LLC -> Google LLC) [Fichier non signÃ©] <==== ATTENTION
HKU\S-1-5-21-2566435625-1799573850-1386347091-1001\...\Run: [MicrosoftEdgeAutoLaunch_C1A63E0D3E9E4EFAC62BD695BD9B3C1D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2566435625-1799573850-1386347091-1001\...\Run: [WINDOWS UP] => powershell.exe -w 1 -exec bypass -f "C:\Users\Quadman\AppData\Local\00.ps1" [1863872 2024-04-12] () [Fichier non signÃ©]
HKU\S-1-5-21-2566435625-1799573850-1386347091-1001\...\Run: [svchosts] => C:\Users\Quadman\AppData\Roaming\system32\svchosts.exe [356352 2024-02-21] () [Fichier non signÃ©] <==== ATTENTION
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIYSE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\Brother QL-500 Monitor: C:\Windows\system32\PTQL5L.DLL [54272 2010-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries, Ltd.)
HKLM\...\Print\Monitors\EPSON ET-2820 Series 64MonitorBE: C:\Windows\system32\E_YLMBYSE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON Universal Print Driver 64MonitorBE: C:\Windows\system32\E_2LM0DE.DLL [237568 2021-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signÃ©]
HKLM\...\Print\Monitors\Nitro PDF Port 14 Monitor: C:\Windows\system32\NxPrinterMonitor14.dll [341448 2023-09-23] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\124.0.6367.158\Installer\chrmstp.exe [2024-05-10] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\108.0.5359.125\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable
Startup: C:\Users\Quadman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar662.lnk [2024-05-08]
ShortcutTarget: Sidebar662.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [Fichier non signÃ©] [Fichier en cours d'utilisation]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 11.lnk [2024-05-04]
ShortcutTarget: Snagit 11.lnk -> C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe (TechSmith Corporation -> TechSmith Corporation)
BootExecute: autocheck autochk /p \??\Volume
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {3CD88291-34FE-4FF1-A4FF-BA063E7C42AE} - System32\Tasks\AdvancedWindowsManager #1 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 116 -t 8080 <==== ATTENTION
Task: {F0BDA9F0-2CE1-41BB-A5E9-702B1FE71337} - System32\Tasks\AdvancedWindowsManager #2 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 117 -t 8080 <==== ATTENTION
Task: {42320DB1-B167-4FBF-AD62-402EF1F72517} - System32\Tasks\AdvancedWindowsManager #3 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 118 -t 8080 <==== ATTENTION
Task: {7B34E9DA-6850-40AE-B249-20C2E78455B6} - System32\Tasks\AdvancedWindowsManager #4 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 119 -t 8080 <==== ATTENTION
Task: {CFE976C7-5234-4D59-84F0-5525982FBA7E} - System32\Tasks\AdvancedWindowsManager #5 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 120 -t 8080 <==== ATTENTION
Task: {A1D1A090-1C8E-46E0-8D86-1677ED8D633E} - System32\Tasks\AdvancedWindowsManager #6 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 121 -t 8080 <==== ATTENTION
Task: {43A62262-5C2E-4D1A-9E1A-9CC18A8F6CDA} - System32\Tasks\AdvancedWindowsManager #7 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 122 -t 8080 <==== ATTENTION
Task: {FC91BA9A-E793-4B64-88DA-79593493338D} - System32\Tasks\AdvancedWindowsManager #8 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 123-t 8080 <==== ATTENTION
Task: {AB54A37E-AB1B-4D7D-981E-CCE1AAE2D83E} - System32\Tasks\AdvancedWindowsManager #9 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) -> C:\Program Files (x86)\AW Manager\Windows Manager\\-v 124 -t 8080 <==== ATTENTION
Task: {728F6C48-A8DB-4ACA-803E-37EFB9B99106} - System32\Tasks\AOMEI Disk Backup(12) 2024-01-21, 08-19-37 => C:\Program Files (x86)\AOMEI\AOMEI Backupper\ABLaucher.exe [497096 2022-08-31] (AOMEI International Network Limited -> AOMEI International Network Limited)
Task: {816F2DCB-33FD-49FD-A8D6-B3339F359A58} - System32\Tasks\AOMEI Mirror Sync 2023-12-15, 03-15-31 => C:\Program Files (x86)\AOMEI\AOMEI Backupper\ABLaucher.exe [497096 2022-08-31] (AOMEI International Network Limited -> AOMEI International Network Limited)
Task: {8304669E-7290-4ED5-AED4-38F05239FCDE} - System32\Tasks\Check system => C:\Windows\system32\WindowsPowerShell\v1.0\PowerShell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -windowstyle Hidden C:\ProgramData\updates.ps1 <==== ATTENTION
Task: {9EF28EDA-F616-4E3D-9864-26DE0A705EF6} - System32\Tasks\Chrome => C:\Users\Quadman\AppData\Roaming\Google  -> Chrome\Chrome.exe <==== ATTENTION
Task: {26F8FA08-3331-44D0-ABC6-285D40F09418} - System32\Tasks\conhost => C:\Windows\System32\webs\conhost.exe [3265536 2024-04-28] (Microsoft) [Fichier non signÃ©] ->  <==== ATTENTION
Task: {C7D67E10-B6CE-4663-A8CD-9780CCD9D30D} - System32\Tasks\csrss => C:\Users\Quadman\AppData\Roaming\temp\csrss.exe [3266048 2024-02-18] (Microsoft) [Fichier non signÃ©] <==== ATTENTION
Task: {5EB01707-C054-4B57-9130-2B9BAD1FFBD7} - System32\Tasks\dllhost => C:\Users\Quadman\AppData\Roaming\Intel\dllhost.exe [3265536 2024-04-20] () [Fichier non signÃ©] <==== ATTENTION
Task: {7133E3B4-5AC3-40A0-A046-15BFA6ACF135} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-10-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F8C75C8C-204D-46B1-955C-0C7DFC9E57D7} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-10-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5BE0C5E7-DDA1-4C30-99ED-7124F9585901} - System32\Tasks\EPSON ET-2820 Series Update {472A54BF-065C-4E3A-8F12-C030AEBA1B2C} => C:\Windows\System32\spool\drivers\x64\3\E_YTSYSE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {7FEDB7EF-BE48-42D4-A224-705284F7651E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6462.0{C73A800D-7744-48AE-B13B-DDBEE14BE321} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC)
Task: {C7D059E6-5175-4124-90A9-0902862CB942} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {38DD77DB-CB10-4BA0-A979-B08933D4A128} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {2356B886-6EE8-4E69-A953-AEAF1C92B704} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {36AAB2EC-248B-4CA6-80CF-56D4DFA191C9} - System32\Tasks\Microsoft\Windows\Bluetooth\Chromeniumscrypt => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -File C:\Users\Public\updates.ps1
Task: {DEC8DCC0-5128-454A-92A4-00E1DC001229} - System32\Tasks\Microsoft\Windows\Bluetooth\CLEANTASK => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Users\Quadman\AppData\Local\Temp\0bd7a664-85ab-426e-bcef-ec7424c3074a.ps1" <==== ATTENTION
Task: {B5DC9B21-DF75-417A-9057-9EC90F5789FC} - System32\Tasks\Microsoft\Windows\Bluetooth\java => C:\ProgramData\java.exe [219136 2024-04-22] () [Fichier non signÃ©] <==== ATTENTION
Task: {EF6A8281-26D1-472F-A23D-3AB96830DDC1} - System32\Tasks\Microsoft\Windows\Bluetooth\office => C:\Users\Public\powersheell.exe [219136 2024-04-19] () [Fichier non signÃ©]
Task: {479B094D-49FC-4734-8412-62152DA15A18} - System32\Tasks\Microsoft\Windows\Bluetooth\schosts => C:\Windows\schost.exe [738416 2024-04-06] (Epukefokeceqi) [Fichier non signÃ©]
Task: {A492A65A-6488-468C-8043-E77DFDAE5486} - System32\Tasks\Microsoft\Windows\Bluetooth\svchost => C:\Windows\powershells.exe [356352 2024-03-24] () [Fichier non signÃ©]
Task: {595ADAE0-97BD-4775-A7AE-7D4B1832A8A1} - System32\Tasks\Microsoft\Windows\Bluetooth\system32 => C:\Windows\wins32.exe [217088 2024-04-07] () [Fichier non signÃ©]
Task: {DD0ED3D2-8765-4194-9416-E1FD3EA312D5} - System32\Tasks\Microsoft\Windows\Bluetooth\time => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -File C:\C:\Windows\updates.ps1
Task: {CA7CB10C-BFC4-46CC-86CA-DA1DCBC5ADDC} - System32\Tasks\Microsoft\Windows\Bluetooth\windowsupdate => C:\Windows\windowsupdate.exe [741488 2024-04-01] (Ukepuhumelu) [Fichier non signÃ©] <==== ATTENTION
Task: {B409F015-2B6B-465D-BC2C-C77A278A3782} - System32\Tasks\Microsoft\Windows\Bluetooth\winupdates => C:\Windows\winupdates.exe [749904 2024-03-31] (Microsoft Code Signing PCA 2011 -> Ugiticipo) [Fichier non signÃ©] <==== ATTENTION
Task: {A077D158-8C63-4490-929F-A73C044D27BE} - System32\Tasks\Microsoft\Windows\Delta\Name => C:\Users\Quadman\AppData\Roaming\Delta\Name.exe [1035320 2023-12-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> GitHub) [Fichier non signÃ©]
Task: {AE96C0F0-1F2E-4C2C-B5B1-7D59AE550684} - System32\Tasks\Microsoft\Windows\HostContext\Method => C:\Users\Quadman\AppData\Roaming\HostContext\Method.exe [3086080 2024-04-12] (Open Source Developer, Martin Kleusberg -> DB Browser for SQLite Team) [Fichier non signÃ©]
Task: {48EB0580-04FE-47D5-8866-14027CDF57DD} - System32\Tasks\Microsoft\Windows\RetailDemo\UKODZr => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\B648.tmp\B649.tmp.ps1" <==== ATTENTION
Task: {70BCA395-51A0-421F-BF73-2CC7FE265120} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTaskb2TcA => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\D006.tmp\D007.tmp.ps1" <==== ATTENTION
Task: {5A98D61D-CB29-4592-9CBB-2F9086CFD31D} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTaskb2TcA6mlQX78xy => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\A190.tmp\A191.tmp.ps1" <==== ATTENTION
Task: {D971C3B9-295F-46B1-A8AF-31A166E00164} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTaskskYEkcnS => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\6D20.tmp\6D31.tmp.ps1" <==== ATTENTION
Task: {56C56B20-C9CD-4284-A2B0-5662A669A504} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management InitializationtSdJJK => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Users\Quadman\AppData\Roaming\WinRAR\FSgXnC.ps1" <==== ATTENTION
Task: {8B08F1B9-005B-40A3-BCCE-94607B324CA1} - System32\Tasks\Microsoft\Windows\TaskScheduler\SsRURS0 => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-01-25] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\DF54.tmp\DF55.tmp.ps1" <==== ATTENTION
Task: {5A84D538-0D8F-44F2-B461-9361DE05EEDB} - System32\Tasks\Microsoft\Windows\TypeId\Source => C:\Users\Quadman\AppData\Local\TypeId\xymlydkn\Source.exe [1578664 2023-11-15] (Discord Inc. -> ) [Fichier non signÃ©]
Task: {BDD1EC06-90D6-4CBA-8725-1CF1696501E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {95CE8967-0500-40D0-B5B5-93BB787F3CB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {285AAF9A-2D6E-4C60-8321-582BFD4BF887} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {45307BAF-263C-4B2C-B8FA-1A31F8DF1356} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D9B577EB-1E93-4462-AAED-CD673CBD4D52} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F20B68E8-70C3-4B89-AECC-103442BF9AC1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {027932E9-2A8E-4E88-802F-E91771F794A6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {5C305EDD-3D7F-4340-BF59-FCFE3E7D6072} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {41EF40B4-370C-4962-A68E-5D2A80123A9C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {874B912D-9EC7-4DA9-BA9A-D642C1586110} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {69AB5580-05A6-44C0-BDE7-E91D258A5189} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B3CC056A-F55E-4815-9D96-90E4FC09B68F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {97FD199A-3CDA-4195-ADC7-675825F69637} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C9737CC9-DB2F-438B-88B6-5400B365D91F} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {B656BDAB-6A50-44BB-8D0F-66C2F0D14E93} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2566435625-1799573850-1386347091-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {45D1FC99-4A42-4F6C-BCD5-30990F8E15C8} - System32\Tasks\PC HelpSoft Driver Updater automatic scan and new device notifications => C:\Program Files (x86)\PC HelpSoft Driver Updater\PCHelpSoftDriverUpdater.exe [8577648 2023-12-04] (PC HELPSOFT LABS INC. -> PC HelpSoft) -> C:\Program Files (x86)\PC HelpSoft Driver Updater\/TRAY <==== ATTENTION
Task: {B77B5BB8-812F-4220-9B9F-C112FCCA841C} - System32\Tasks\svchosts => C:\Users\Quadman\AppData\Roaming\system32\svchosts.exe [356352 2024-02-21] () [Fichier non signÃ©] <==== ATTENTION
Task: {444C8568-CD25-455E-A8A6-F0972B6B22FA} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\EPSON ET-2820 Series Update {472A54BF-065C-4E3A-8F12-C030AEBA1B2C}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSYSE.EXE:/EXE:{472A54BF-065C-4E3A-8F12-C030AEBA1B2C} /F:UpdateWORKGROUP\PC-DE-JM$ÄSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 62.197.111.140 109.88.203.3
Tcpip\..\Interfaces\{1b5e4acc-ab46-4568-9576-ea5b855b04cc}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{1b5e4acc-ab46-4568-9576-ea5b855b04cc}: [DhcpNameServer] 62.197.111.140 109.88.203.3
Tcpip\..\Interfaces\{e3c2ed4b-6ad6-413e-b63f-9e514a81e67d}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{e3c2ed4b-6ad6-413e-b63f-9e514a81e67d}: [DhcpNameServer] 62.197.111.140 109.88.203.3

Edge: 
=======
Edge Profile: C:\Users\Quadman\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-11]
Edge Notifications: Default -> hxxps://best.aliexpress.com
Edge Extension: (GoogleÂ Docs hors connexion) - C:\Users\Quadman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-12]
Edge Extension: (Edge relevant text changes) - C:\Users\Quadman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-25]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Default [2024-05-11]
CHR Notifications: Default -> hxxps://armes-et-tirs.forumpro.fr; hxxps://drive.google.com; hxxps://mail.google.com; hxxps://newmy.voo.be; hxxps://www.commentcamarche.net; hxxps://www.lesnumeriques.com
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/2/#inbox","hxxps://mail.google.com/mail/u/0/?tab=cm#inbox","hxxps://drive.google.com/drive/u/0/folders/1nKM1eRWcuukK2GnDOeR-mCDIZnXtCtE0","hxxps://mail.google.com/mail/u/1/#inbox","hxxps://www.messenger.com/e2ee/t/8093441147350337","hxxps://www.facebook.com/quadman.jansen/","hxxps://www.ipscstore.com/fr/index.php?fc=module&module=czproductsearch&controller=productsearch&cate=&search_query=57-104192","hxxps://cajungunworks.com/product/recoil-spring-for-p-07-09-and-p-10-c/","hxxps://forums.automobile-propre.com/topic/mise-a-jour-cartographie-48120/?page=13&tab=comments#comment-1570653","hxxps://forums.commentcamarche.net/forum/affich-38044261-deconnection-reguliere-et-ponctuelle-de-mon-pc#","hxxps://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/","hxxps://www.swisstransfer.com/fr-be","hxxps://support.google.com/drive/answer/2494822?hl=fr#zippy=%2Cpartager-plusieurs-fichiers%2Cpartager-avec-des-personnes-en-particulier"
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-22]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2024-05-07]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-11-26]
CHR Extension: (Google Sheets) - C:\Extension\7.6.4._0 [2024-02-05]
CHR Profile: C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-17]
CHR Profile: C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-04-18]
CHR Notifications: Profile 2 -> hxxps://armes-et-tirs.forumpro.fr; hxxps://mail.google.com; hxxps://newmy.voo.be; hxxps://www.facebook.com; hxxps://www.futura-sciences.com; hxxps://www.youtube.com
CHR Extension: (Just Black) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-12-19]
CHR Extension: (eID Chrome Extension) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2024-01-14]
CHR Extension: (Open in new tab) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cplillmhmcegjlhcbedmgmalbgjpmlkh [2022-12-19]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-18]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2024-04-18]
CHR Extension: (eidReader Plugin Chrome Extension) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kcnofmiceklfkodhdhhjcfjhdepfobaf [2022-12-19]
CHR Extension: (MYDIGIPASS eID card reader extension) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lnplogpjijindegfgdcimondiomejhdl [2022-12-19]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-19]
CHR Extension: (Avast AntiTrack Premium) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2022-12-21]
CHR Profile: C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-01-14]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-25]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-19]
CHR Profile: C:\Users\Quadman\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-07]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe [1102320 2023-10-30] (AOMEI International Network Limited -> AOMEI International Network Limited)
S4 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [Fichier non signÃ©]
S4 CupDBService; C:\Program Files (x86)\Cupdb 1.0\cupdb.exe [2654208 2023-12-03] () [Fichier non signÃ©]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-10-24] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-10-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46824 2024-05-02] (Dropbox, Inc -> Dropbox, Inc.)
S4 DCAgent; C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe [19288 2023-05-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2021-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signÃ©]
S3 EPMVssEaseusProvider; C:\Windows\system32\dllhost.exe /Processid:{BD3B7DD3-9E37-4530-9658-91DA87017E36} [22384 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2021-06-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncHelper.exe [3507728 2024-04-27] (Microsoft Corporation -> Microsoft Corporation)
S2 GoogleUpdaterInternalService126.0.6462.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6462.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC)
S4 iReboot; C:\Program Files (x86)\NeoSmart Technologies\iReboot\iRebootd.exe [34488 2015-05-02] (NeoSmart Technologies -> NeoSmart Technologies)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe [1459968 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.070.0407.0003\OneDriveUpdaterService.exe [3848208 2024-04-27] (Microsoft Corporation -> Microsoft Corporation)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.2.11\ProtonVPNService.exe [474824 2024-03-27] (Proton AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.WireGuardService.exe [474312 2024-02-01] (Proton AG -> ProtonVPN)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [734912 2015-08-16] (@ByELDI -> @ByELDI) [Fichier non signÃ©]
S4 TeraCopyService.exe; C:\Program Files\TeraCopy\TeraCopyService.exe [315720 2023-06-29] (Code Sector -> )
S4 VPN by Google One Service; C:\Program Files\Google\VPN by Google One\1.9.0.6\VpnByGoogleOneService.exe [5496096 2024-03-07] (Google LLC -> Google LLC)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 windowsnetservicehelper.exe; C:\Program Files (x86)\WindowsNetService\windowsnetservicehelper.exe [121344 2022-06-27] () [Fichier non signÃ©]
S3 Browser; %SystemRoot%\System32\browser.dll [X]
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] <==== ATTENTION
S4 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdsig.inf_amd64_fe354dfce3aefac6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdsig.inf_amd64_fe354dfce3aefac6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [X] <==== ATTENTION

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R3 A38CCID; C:\Windows\system32\DRIVERS\a38ccid.sys [78816 2023-08-14] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2023-12-06] (AOMEI International Network Limited -> )
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [232792 2023-11-26] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2023-12-06] (AOMEI International Network Limited -> )
R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [367096 2023-07-14] (Bitdefender SRL -> Bitdefender)
R3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R3 cmuda3; C:\Windows\system32\drivers\cmudax3.sys [3848192 2022-12-18] (C-MEDIA ELECTRONICS INC. -> C-Media Inc)
R1 cupdbdrv; C:\Windows\System32\drivers\cupdbdrv.sys [89808 2019-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 epmdkdrv; C:\Windows\system32\epmdkdrv.sys [36280 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [30136 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R0 EUDCPEPM; C:\Windows\System32\drivers\EUDCPEPM.sys [76344 2020-12-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUEDKEPM; C:\Windows\system32\drivers\EUEDKEPM.sys [33712 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
R0 firedrv; C:\Windows\System32\drivers\firedrv.sys [145928 2023-11-25] (Allied Vision Technologies GmbH -> intek (Darmstadt))
S3 GridinSoftInetSecurityDriver; C:\Windows\system32\DRIVERS\gsInetSecurity.sys [107784 2020-12-19] (GridinSoft, LLC -> GridinSoft LLC)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2023-07-11] (Malwarebytes Corporation -> Malwarebytes)
R3 MSHUSBVideo; C:\Windows\System32\Drivers\nx6000.sys [31744 2010-12-02] (Hardware Group Test Cert -> Microsoft Corporation)
R0 mvs91xx; C:\Windows\System32\drivers\mvs91xx.sys [342760 2016-04-11] (Marvell Semiconductor, Inc. -> Marvell Semiconductor, Inc.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-12-06] (Nvidia Corporation -> NVIDIA Corporation)
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.2.11\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-11-20] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
R0 SI3124; C:\Windows\System32\DRIVERS\SI3124.sys [92200 2009-10-30] (Silicon Image, Inc. -> Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [22056 2009-10-30] (Silicon Image, Inc. -> Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\DRIVERS\SiRemFil.sys [17448 2009-10-30] (Silicon Image, Inc. -> Silicon Image, Inc)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2022-10-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 TrdHCap64; C:\Windows\system32\DRIVERS\TrdHCap64.sys [2012000 2011-05-31] (Trident Microsystems, Inc -> Trident Microelectronics, Ltd.)
S3 TrojanKillerDriver; C:\Windows\System32\DRIVERS\gtkdrv.sys [38216 2020-12-19] (GridinSoft, LLC -> GridinSoft LLC)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-09] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29592 2023-05-15] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2022-12-19] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
S3 HWiNFO_178; \??\C:\Users\Quadman\AppData\Local\Temp\HWiNFO64A_178.SYS [X] <==== ATTENTION

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2024-05-11 19:49 - 2024-05-11 19:50 - 000045717 _____ C:\Users\Quadman\Desktop\FRST.txt
2024-05-11 19:47 - 2024-05-11 19:49 - 000000000 ____D C:\FRST
2024-05-11 19:45 - 2024-05-11 19:45 - 002394112 _____ (Farbar) C:\Users\Quadman\Desktop\FRST64.exe
2024-05-11 03:33 - 2024-05-11 05:02 - 000550178 _____ C:\Users\Quadman\Desktop\ZHPDiag.txt
2024-05-11 03:27 - 2024-05-11 03:27 - 000000292 _____ C:\Users\Quadman\Desktop\Ariane.txt
2024-05-10 04:18 - 2024-05-10 04:18 - 000812344 _____ (Trend Micro Inc.) C:\Users\Quadman\Desktop\hijackthis-400.exe
2024-05-10 04:18 - 2024-05-10 04:18 - 000002185 _____ C:\Users\Quadman\Desktop\HijackThis.lnk
2024-05-10 04:18 - 2024-05-10 04:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis
2024-05-10 04:18 - 2024-05-10 04:18 - 000000000 ____D C:\Program Files (x86)\Trend Micro
2024-05-10 03:12 - 2024-05-10 04:01 - 000000875 _____ C:\Users\Quadman\Desktop\ZHPFix2.lnk
2024-05-10 03:11 - 2024-05-10 03:11 - 001772744 _____ (Nicolas Coolman) C:\Users\Quadman\Desktop\ZHPFix2.exe
2024-05-10 02:36 - 2024-05-11 05:04 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\ZHP
2024-05-10 02:36 - 2024-05-11 04:57 - 000000882 _____ C:\Users\Quadman\Desktop\ZHPDiag.lnk
2024-05-10 02:36 - 2024-05-10 03:12 - 000000000 ____D C:\Users\Quadman\AppData\Local\ZHP
2024-05-10 02:35 - 2024-05-10 02:35 - 003370144 _____ (Nicolas Coolman) C:\Users\Quadman\Desktop\ZHPDiag3.exe
2024-05-08 13:25 - 2024-05-08 13:25 - 001015132 _____ C:\Windows\Minidump\050824-63968-01.dmp
2024-05-06 22:38 - 2024-05-06 22:38 - 000320972 _____ C:\Users\Quadman\Desktop\Proposition de dÃ©claration simplifiÃ©e 2024.pdf
2024-05-06 14:13 - 2024-05-06 14:14 - 001047220 _____ C:\Windows\Minidump\050624-63953-01.dmp
2024-05-04 18:35 - 2024-05-04 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2024-05-04 18:21 - 2024-05-04 18:21 - 001045172 _____ C:\Windows\Minidump\050424-106140-01.dmp
2024-05-02 22:33 - 2024-05-02 22:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2024-05-02 08:33 - 2024-05-02 08:33 - 000046824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2024-04-30 00:19 - 2024-04-30 00:19 - 001020796 _____ C:\Windows\Minidump\043024-64156-01.dmp
2024-04-29 17:15 - 2024-04-29 17:15 - 001057332 _____ C:\Windows\Minidump\042924-75546-01.dmp
2024-04-28 08:58 - 2024-04-28 08:58 - 000000923 _____ C:\Users\Public\Desktop\Repetier-Host.lnk
2024-04-28 08:58 - 2024-04-28 08:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Repetier-Host
2024-04-28 08:57 - 2024-05-02 05:17 - 000000000 ____D C:\Users\Quadman\AppData\Local\RepetierHost
2024-04-28 08:57 - 2024-04-28 08:58 - 000000000 ____D C:\Program Files\Repetier-Host
2024-04-28 05:17 - 2024-04-28 05:17 - 000000000 ____D C:\Users\Quadman\Downloads\[Tuto] - Repetier-Host - Configurer une imprimante
2024-04-28 05:15 - 2024-04-28 05:15 - 000000000 ____D C:\Users\Quadman\Downloads\[Tuto] - Repetier-Host - PrÃ©sentation
2024-04-28 05:11 - 2024-04-28 05:13 - 000000000 ____D C:\Users\Quadman\Downloads\repetier host tuto debutan  part 3 fr
2024-04-28 04:53 - 2024-04-28 04:53 - 000000000 ____D C:\Users\Quadman\Downloads\repetier host intro debutant , part 2
2024-04-28 04:52 - 2024-04-28 04:52 - 048197800 _____ C:\Users\Quadman\Downloads\repetier host intro debutant , part 1 (1080p_24fps_H264-128kbit_AAC).mp4
2024-04-28 00:12 - 2024-05-11 19:48 - 000003278 _____ C:\Windows\system32\Tasks\conhost
2024-04-28 00:12 - 2024-04-28 00:12 - 003265536 ____H (Microsoft) C:\Users\Quadman\AppData\Roaming\conhost.exe
2024-04-28 00:12 - 2024-04-28 00:12 - 000000000 ___HD C:\Windows\system32\webs
2024-04-27 04:50 - 2024-04-27 04:50 - 000001091 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arduino.lnk
2024-04-27 04:50 - 2024-04-27 04:50 - 000001079 _____ C:\Users\Public\Desktop\Arduino.lnk
2024-04-27 04:50 - 2024-04-27 04:50 - 000000000 ____D C:\ProgramData\Oracle
2024-04-27 04:49 - 2024-04-27 04:50 - 000000000 ____D C:\Program Files (x86)\Arduino
2024-04-27 03:09 - 2024-04-27 05:08 - 000000000 ____D C:\Users\Quadman\AppData\Local\Arduino15
2024-04-27 03:09 - 2024-04-27 04:48 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\arduino-ide
2024-04-27 03:09 - 2024-04-27 04:24 - 000000000 ____D C:\Users\Quadman\Documents\Arduino
2024-04-27 03:09 - 2024-04-27 04:12 - 000000000 ____D C:\Users\Quadman\.arduinoIDE
2024-04-27 03:09 - 2024-04-27 03:09 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\Arduino IDE
2024-04-27 03:09 - 2024-04-27 03:09 - 000000000 ____D C:\Users\Quadman\AppData\Local\arduino-ide-updater
2024-04-25 06:11 - 2024-04-25 06:11 - 000395776 ____H C:\Users\Quadman\AppData\Roaming\win32.exe
2024-04-25 06:11 - 2024-04-25 06:11 - 000338432 ____H C:\ProgramData\Svchost.exe
2024-04-25 06:11 - 2024-04-25 06:11 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2024-04-25 06:11 - 2024-04-25 06:11 - 000052224 _____ C:\ProgramData\System32.exe
2024-04-25 06:11 - 2024-04-25 06:11 - 000046277 ____H C:\ProgramData\updates.ps1
2024-04-25 06:11 - 2024-04-25 06:11 - 000044084 _____ C:\Users\Public\updates.ps1
2024-04-25 06:11 - 2024-04-25 06:11 - 000003388 _____ C:\Windows\system32\Tasks\Check system
2024-04-25 01:23 - 2024-05-05 04:25 - 000000000 ____D C:\Users\Quadman\Desktop\Print Ã  tester
2024-04-24 17:48 - 2024-04-25 16:47 - 000000000 ____D C:\Users\Quadman\Desktop\Litige Meranger
2024-04-24 11:07 - 2024-04-24 11:07 - 000000000 ___HD C:\$WinREAgent
2024-04-22 04:53 - 2024-04-22 04:53 - 000000769 _____ C:\Users\Quadman\Documents\Bureau - Raccourci.lnk
2024-04-22 02:52 - 2024-04-22 02:52 - 000219136 _____ () C:\ProgramData\java.exe
2024-04-20 04:12 - 2024-05-11 19:48 - 000003306 _____ C:\Windows\system32\Tasks\dllhost
2024-04-20 04:12 - 2024-04-20 04:12 - 003265536 ____H () C:\Users\Quadman\AppData\Roaming\dllhost.exe
2024-04-20 04:12 - 2024-04-20 04:12 - 000000000 ___HD C:\Users\Quadman\AppData\Roaming\Intel
2024-04-19 23:26 - 2024-04-19 23:26 - 000219136 _____ () C:\Users\Public\powersheell.exe
2024-04-19 05:26 - 2024-04-19 05:26 - 000052567 _____ C:\Users\Quadman\Desktop\Tension.pdf
2024-04-17 23:09 - 2024-04-17 23:09 - 000006958 _____ C:\Users\Quadman\Desktop\daa-c-more-rts2-sig-romeo-3max-scope-mount.webp
2024-04-13 03:11 - 2024-04-13 03:11 - 004388120 _____ (KC Softwares ) C:\Users\Quadman\Downloads\videoinspector_lite.exe
2024-04-13 03:11 - 2024-04-13 03:11 - 000001464 _____ C:\Users\Quadman\Desktop\VideoInspector.lnk
2024-04-13 03:11 - 2024-04-13 03:11 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\KC Softwares
2024-04-13 03:11 - 2024-04-13 03:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KC Softwares
2024-04-13 03:11 - 2024-04-13 03:11 - 000000000 ____D C:\Program Files (x86)\KC Softwares
2024-04-12 15:04 - 2024-04-12 15:04 - 001863872 _____ C:\Users\Quadman\AppData\Local\00.ps1
2024-04-12 14:00 - 2024-04-12 14:00 - 000000000 ___HD C:\Users\Quadman\AppData\Roaming\HostContext
2024-04-11 03:44 - 2024-04-11 06:05 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\foobar2000-v2
2024-04-11 03:44 - 2024-04-11 03:44 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2024-04-11 03:44 - 2024-04-11 03:44 - 000001077 _____ C:\Users\Public\Desktop\foobar2000.lnk
2024-04-11 03:44 - 2024-04-11 03:44 - 000000000 ____D C:\Program Files\foobar2000

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2024-05-11 19:50 - 2023-12-02 21:51 - 023157955 _____ C:\Windows\ZAM.krnl.trace
2024-05-11 19:48 - 2024-02-21 17:34 - 000003316 _____ C:\Windows\system32\Tasks\svchosts
2024-05-11 19:48 - 2024-02-18 15:57 - 000003296 _____ C:\Windows\system32\Tasks\csrss
2024-05-11 19:48 - 2022-12-19 05:49 - 000000000 ____D C:\Users\Quadman\AppData\Local\CrashDumps
2024-05-11 19:43 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-11 15:14 - 2024-03-04 23:24 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\PC HelpSoft Driver Updater
2024-05-11 12:25 - 2022-12-18 00:54 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-11 09:43 - 2020-09-27 07:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-11 05:22 - 2022-12-18 03:05 - 000004182 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{604D9446-97EA-4185-A50A-211AECECE5DE}
2024-05-11 04:08 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-11 04:08 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-05-10 22:06 - 2023-01-19 05:49 - 000000000 ____D C:\ProgramData\AomeiBR
2024-05-10 22:00 - 2023-11-04 09:22 - 000001144 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2024-05-10 22:00 - 2023-01-19 07:04 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2024-05-10 22:00 - 2023-01-19 05:51 - 000001024 ____H C:\SYSTAG.BIN
2024-05-10 03:29 - 2022-12-18 02:25 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\vlc
2024-05-10 01:33 - 2022-12-18 01:03 - 000000000 ____D C:\Windows\SystemTemp
2024-05-08 14:01 - 2020-09-27 09:36 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-05-08 14:01 - 2020-09-27 09:36 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-05-08 13:32 - 2023-10-24 20:53 - 000000000 ____D C:\Users\Quadman\AppData\Local\Dropbox
2024-05-08 13:32 - 2023-10-24 20:52 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\Dropbox
2024-05-08 13:29 - 2022-12-18 00:42 - 001761484 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-08 13:29 - 2019-12-07 16:50 - 000774544 _____ C:\Windows\system32\perfh00C.dat
2024-05-08 13:29 - 2019-12-07 16:50 - 000144692 _____ C:\Windows\system32\perfc00C.dat
2024-05-08 13:29 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-05-08 13:26 - 2022-12-26 05:48 - 000000000 ____D C:\Windows\Minidump
2024-05-08 13:25 - 2023-11-26 07:32 - 699449878 _____ C:\Windows\MEMORY.DMP
2024-05-08 13:25 - 2023-07-14 04:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-08 13:25 - 2020-09-27 07:33 - 000008192 ___SH C:\DumpStack.log.tmp
2024-05-08 09:47 - 2022-12-19 02:56 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\qBittorrent
2024-05-08 09:47 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-05-06 17:38 - 2022-12-18 04:32 - 000000000 ___RD C:\Users\Quadman\Documents\Scanned Documents
2024-05-04 18:35 - 2022-12-18 00:40 - 000000000 ____D C:\Users\Quadman
2024-05-04 15:02 - 2023-01-21 06:47 - 000002539 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-04 14:03 - 2024-03-05 00:14 - 000000000 ____D C:\Users\Quadman\Desktop\Maladies JiJi
2024-05-03 15:56 - 2024-01-02 02:39 - 000000000 ____D C:\Users\Quadman\Desktop\Fort Lier 22 au 30-11
2024-05-02 22:33 - 2023-10-24 20:52 - 000000000 ____D C:\Program Files (x86)\Dropbox
2024-05-02 05:09 - 2022-12-19 17:33 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\Microsoft\Excel
2024-04-29 09:00 - 2022-12-19 02:51 - 000000000 ____D C:\Users\Quadman\AppData\Local\JDownloader 2.0
2024-04-29 01:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2024-04-28 14:56 - 2022-12-18 01:56 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\Microsoft\Word
2024-04-27 19:22 - 2022-12-20 05:46 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-27 17:25 - 2022-12-18 00:41 - 000000000 ____D C:\Users\Quadman\AppData\Local\D3DSCache
2024-04-27 05:40 - 2022-12-20 05:46 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-27 05:40 - 2022-12-20 05:46 - 000002185 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-27 05:40 - 2022-12-18 00:43 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2566435625-1799573850-1386347091-1001
2024-04-26 20:03 - 2024-02-09 22:23 - 000000000 ____D C:\Users\Quadman\Desktop\Commandes pieces CZ Compact
2024-04-24 11:28 - 2023-01-19 01:54 - 000559632 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-24 11:23 - 2019-12-07 16:53 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2024-04-24 11:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-04-24 11:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-04-24 11:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-24 11:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-04-24 11:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\F12
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2024-04-24 11:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-04-24 11:23 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2024-04-24 11:20 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-04-24 11:14 - 2020-09-27 09:36 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-24 10:46 - 2023-12-21 15:20 - 000170236 _____ C:\Users\Quadman\Desktop\Solde Visa.pdf
2024-04-23 18:55 - 2022-12-19 12:45 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\Microsoft\UProof
2024-04-23 03:18 - 2024-01-21 09:23 - 000003700 _____ C:\Windows\system32\Tasks\AOMEI Disk Backup(12) 2024-01-21, 08-19-37
2024-04-20 22:57 - 2024-01-02 02:35 - 000000000 ____D C:\Users\Quadman\Desktop\EBSA 9 au 12-05
2024-04-20 18:35 - 2024-03-14 03:18 - 000000000 ____D C:\Users\Quadman\Desktop\Panier IPSC Store
2024-04-19 22:11 - 2023-05-15 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton
2024-04-15 23:53 - 2024-03-30 18:47 - 000000000 ____D C:\Users\Quadman\Desktop\Bauffe 3 au 5 Mai 2024
2024-04-14 09:34 - 2022-12-26 18:44 - 000000000 ____D C:\Users\Quadman\AppData\Local\ElevatedDiagnostics
2024-04-14 00:12 - 2022-12-18 20:07 - 000000000 ____D C:\Users\Quadman\Desktop\Gedinne Classic 2022
2024-04-13 17:13 - 2022-12-18 20:08 - 000000000 ____D C:\Users\Quadman\Desktop\Ordonances
2024-04-13 13:06 - 2023-06-27 23:57 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\dvdcss
2024-04-13 07:38 - 2023-10-09 20:32 - 000000000 ____D C:\Users\Quadman\.fontconfig
2024-04-12 15:01 - 2022-12-18 01:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2024-04-12 15:01 - 2022-12-18 01:56 - 000000000 ____D C:\Program Files\KMSpico
2024-04-11 22:31 - 2023-07-04 15:40 - 000000000 ____D C:\Users\Quadman\AppData\Roaming\Movavi Video Suite 22
2024-04-11 03:30 - 2022-12-19 22:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother P-touch

==================== Fichiers Ã  la racine de certains dossiers ========

2024-04-22 02:52 - 2024-04-22 02:52 - 000219136 _____ () C:\ProgramData\java.exe
2024-04-25 06:11 - 2024-04-25 06:11 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2024-04-25 06:11 - 2024-04-25 06:11 - 000338432 ____H () C:\ProgramData\Svchost.exe
2024-04-25 06:11 - 2024-04-25 06:11 - 000052224 _____ () C:\ProgramData\System32.exe
2024-02-26 22:09 - 2024-02-26 22:09 - 000356352 ____H () C:\Users\Public\chrome.exe
2024-04-19 23:26 - 2024-04-19 23:26 - 000219136 _____ () C:\Users\Public\powersheell.exe
2024-02-21 17:34 - 2024-02-21 17:34 - 000356352 ____H () C:\Users\Quadman\AppData\Roaming\4.exe
2023-12-07 21:48 - 2023-12-07 21:47 - 000361248 _____ (Google LLC) C:\Users\Quadman\AppData\Roaming\chromeapp.exe
2024-04-28 00:12 - 2024-04-28 00:12 - 003265536 ____H (Microsoft) C:\Users\Quadman\AppData\Roaming\conhost.exe
2024-04-20 04:12 - 2024-04-20 04:12 - 003265536 ____H () C:\Users\Quadman\AppData\Roaming\dllhost.exe
2022-12-19 01:01 - 2022-12-19 01:01 - 000099384 _____ () C:\Users\Quadman\AppData\Roaming\inst.exe
2022-12-19 01:01 - 2022-12-19 01:01 - 000007859 _____ () C:\Users\Quadman\AppData\Roaming\pcouffin.cat
2022-12-19 01:01 - 2022-12-19 01:01 - 000001167 _____ () C:\Users\Quadman\AppData\Roaming\pcouffin.inf
2022-12-19 01:01 - 2022-12-19 01:01 - 000000034 _____ () C:\Users\Quadman\AppData\Roaming\pcouffin.log
2022-12-19 01:01 - 2022-12-19 01:01 - 000082816 _____ (VSO Software) C:\Users\Quadman\AppData\Roaming\pcouffin.sys
2024-02-18 15:57 - 2024-02-18 15:57 - 003266048 ____H (Microsoft) C:\Users\Quadman\AppData\Roaming\update.exe
2024-04-25 06:11 - 2024-04-25 06:11 - 000395776 ____H () C:\Users\Quadman\AppData\Roaming\win32.exe
2022-12-19 07:59 - 2022-12-19 07:56 - 000010238 _____ () C:\Users\Quadman\AppData\Roaming\xregistry.bin
2024-04-12 15:04 - 2024-04-12 15:04 - 001863872 _____ () C:\Users\Quadman\AppData\Local\00.ps1
2023-02-22 03:39 - 2023-06-28 08:47 - 000004608 _____ () C:\Users\Quadman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2024-01-10 06:43 - 2024-01-10 06:43 - 000002046 _____ () C:\Users\Quadman\AppData\Local\F7CB7791927B49c3B3711475BE8B7ECC.Mise en page2.lbx
2023-12-01 03:59 - 2023-12-01 04:02 - 000007597 _____ () C:\Users\Quadman\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)


BCD (recoveryenabled=No -> recoveryenabled=Yes) <==== restaurÃ©(es) avec succÃ¨s
==================== Fin de FRST.txt ========================