Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-09-2023
Exécuté par latcher (administrateur) sur DESKTOP-J3O3ES0 (HP 550-142nf) (21-09-2023 15:07:08)
Exécuté depuis C:\Users\latcher\AppData\Roaming\Microsoft\Windows\Network Shortcuts\FRST64.exe
Profils chargés: latcher
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3448 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe <2>
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) H:\Garmin\Garmin\Express\express.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(H:\Garmin\Garmin\Express\express.exe ->) (The CefSharp Authors) [Fichier non signé] H:\Garmin\Garmin\Express\CefSharp.BrowserSubprocess.exe <2>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(services.exe ->) (TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(services.exe ->) (WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21570.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21570.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21570.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8790264 2016-01-15] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3365840 2020-02-11] (Valve -> Valve Corporation)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [255224 2016-11-29] (TomTom International BV -> TomTom)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [MyDriveConnect.exe] => C:\Users\latcher\Downloads\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA (Pas de fichier)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-07-14] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2017-07-14] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2017-07-14] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [EPLTarget\P0000000000000003] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIPDE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [EpicGamesLauncher] => "J:\game\battle royal\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent (Pas de fichier)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [Spotify] => C:\Users\latcher\AppData\Roaming\Spotify\Spotify.exe [22151072 2019-12-19] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [GarminExpress] => H:\Garmin\Garmin\Express\express.exe [31341344 2023-08-28] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [MicrosoftEdgeAutoLaunch_AF929A6C210519B3F9A6EE0BB1DFFF37] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210216 2023-09-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\MountPoints2: {e69af4c5-dfd1-11eb-8813-0071c20adbd6} - "K:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\EPSON XP-432 435 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBPDE.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2015-06-17] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [432648 2015-07-11] (Microsoft Windows Hardware Compatibility Publisher -> HP)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-17] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {A4A41706-234C-4A8A-81BD-EAD9998D97CE} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {4ECFD30C-1FBB-4663-A81D-D1AA2D8BBC07} - System32\Tasks\{C65B6320-7543-4620-846D-6DFE07D4D561} => C:\windows\system32\pcalua.exe [53760 2023-09-17] (Microsoft Windows -> Microsoft Corporation) -> -a E:\Driver\Printer\Driver\WINX86\SETUP\SETUP.EXE
Task: {FF97A26D-7466-41BD-BA05-6744D04BFCFE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {B53A3343-656B-4EC0-BA3C-87CE9DCC5C12} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_Plugin.exe [1457720 2019-11-13] (Adobe Inc. -> Adobe)
Task: {47689B45-9EEE-48A1-8E14-DD7C666CE6A1} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-11-13] (Adobe Inc. -> Adobe)
Task: {80BC3D49-EC65-4F7D-B8D1-8656D36C254A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {8230EB70-369D-424A-B3D4-47E0EC444608} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (Pas de fichier)
Task: {320B2219-B9A5-4E01-B315-D7FADBCB9250} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {603299BF-3BAE-4964-A145-FC6B5C412755} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "9b2dbb87-0a58-4789-8323-58f811fda800" --version "6.16.10662" --silent
Task: {5330C15D-C38F-4D15-9B26-870C123989C9} - System32\Tasks\CCleanerSkipUAC - latcher => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {17F13F2C-0237-4001-9FD5-72790A3DF41D} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [511344 2015-06-19] (Dropbox, Inc -> )
Task: {5759778D-1918-4F0D-8CA3-838883F519B8} - System32\Tasks\EPSON XP-432 435 Series Update {2829BC5C-C5F3-4C21-A11F-8C0B79D8622E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {FF3EB062-301E-4D48-8B8F-545148EBC64D} - System32\Tasks\EPSON XP-432 435 Series Update {305D7C1A-46C3-4E50-A37F-D4F4E6172807} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {AB5DEAF2-8305-4B0C-8A18-FB8889A79743} - System32\Tasks\EPSON XP-432 435 Series Update {3B9B8968-453D-443A-8938-7756A73037DC} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {7DFAC79E-0925-4832-8FC0-268D03F474D5} - System32\Tasks\EPSON XP-432 435 Series Update {534E5CDD-1A01-4E04-B3C4-0F0204D08041} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {A92E9B18-6746-4596-8F9D-92C0EA4630E0} - System32\Tasks\EPSON XP-432 435 Series Update {792FE13C-F490-4128-8E5D-E1FF9C47FBA5} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {554F0C6E-E88D-4F73-B080-B47A9F3EB996} - System32\Tasks\GarminUpdaterTask => H:\Garmin\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31008 2023-08-28] (Garmin International, Inc. -> )
Task: {BA8377CF-3277-40B5-8836-3842D516DA6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-10] (Google Inc -> Google Inc.)
Task: {5E3E0D7E-01EE-402D-A3F2-CC41DA23E798} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-10] (Google Inc -> Google Inc.)
Task: {4528F592-72E4-4203-8408-7F9AA91D2DD6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-21] (HP Inc. -> )
Task: {0A48F24B-06FB-48B5-A174-6CE22882242A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506136 2020-07-01] (HP Inc. -> HP Inc.)
Task: {CDFF955E-94AF-460E-9317-4E0D51F804EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [135000 2020-06-22] (HP Inc. -> HP Inc.)
Task: {07B87F30-0B04-41EE-A731-9B4137327D9B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {409CA08B-47C9-4786-A8C0-87F85E027632} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506136 2020-07-01] (HP Inc. -> HP Inc.)
Task: {C2DC64C9-6995-4D3B-9B32-0E1FA7834B89} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [324952 2020-06-19] (HP Inc. -> HP Inc.)
Task: {6014918C-EA5C-40CD-B542-A851ED4ADED2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1133912 2020-06-19] (HP Inc. -> HP Inc.)
Task: {423F3A21-FE05-47CF-A321-401979BB408D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1133912 2020-06-19] (HP Inc. -> HP Inc.)
Task: {9984BD70-5572-41D7-BD3A-637A70A7C6A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CEA3D7C8-E542-42AC-A2BE-F1163ECEDD1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B5F10D9C-32E7-4A0C-9E3A-324D2D7FD02D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {15F28CF3-97FF-4D2F-93C7-7D273473966F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4E49135-8C68-4ABF-BB9D-F6ADEF426D00} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [675232 2023-09-18] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {353B366A-1C87-47AB-A84D-526AE3DDB9B0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [722336 2023-09-18] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {2829BC5C-C5F3-4C21-A11F-8C0B79D8622E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{2829BC5C-C5F3-4C21-A11F-8C0B79D8622E} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {305D7C1A-46C3-4E50-A37F-D4F4E6172807}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{305D7C1A-46C3-4E50-A37F-D4F4E6172807} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {3B9B8968-453D-443A-8938-7756A73037DC}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{3B9B8968-453D-443A-8938-7756A73037DC} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {534E5CDD-1A01-4E04-B3C4-0F0204D08041}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{534E5CDD-1A01-4E04-B3C4-0F0204D08041} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {792FE13C-F490-4128-8E5D-E1FF9C47FBA5}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{792FE13C-F490-4128-8E5D-E1FF9C47FBA5} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1c90e045-ed70-44d6-9c85-51e1e9213f78}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1c90e045-ed70-44d6-9c85-51e1e9213f78}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{5d58e77b-7c04-4c5d-824f-dd5a1afc8f8c}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a63053a6-bc5b-4edc-9de9-a6bd49c76707}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{cb87dd22-313d-4816-872f-5894e952c0c6}: [DhcpNameServer] 172.20.10.1
Edge:
=======
DownloadDir: C:\Users\latcher\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-1199283992-1914110528-778468464-1001 -> hxxp://www.google.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\latcher\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-21]
Edge DownloadDir: Default -> C:\Users\latcher\Downloads
Edge HomePage: Default -> hxxps://www.google.fr/
Edge Extension: (Google Docs hors connexion) - C:\Users\latcher\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-01]
Edge Extension: (Edge relevant text changes) - C:\Users\latcher\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-20]
Edge HKLM-x32\...\Edge\Extension: [kajikgogckeajjplomldcempamhidmcc]
FireFox:
========
FF DefaultProfile: olb92zt3.default
FF ProfilePath: C:\Users\latcher\AppData\Roaming\TomTom\HOME\Profiles\1kq5jabv.default [2017-07-18]
FF Extension: (MazdaTheme) - C:\Users\latcher\AppData\Roaming\TomTom\HOME\Profiles\1kq5jabv.default\Extensions\MazdaTheme@mazda.com [2015-12-17] [] [non signé]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2017-07-18] [] [non signé]
FF ProfilePath: C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\4vur9jua.Ordilatcher [2022-11-29]
FF Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\rapportext@trusteer.com.xpi [2022-01-16] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\4vur9jua.Ordilatcher\Extensions\rapportext@trusteer.com.xpi [2023-09-21] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (uBlock Origin) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\4vur9jua.Ordilatcher\Extensions\uBlock0@raymondhill.net.xpi [2022-10-24]
FF ProfilePath: C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\olb92zt3.default [2022-04-08]
FF Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\olb92zt3.default\Extensions\rapportext@trusteer.com.xpi [2023-09-21] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF ProfilePath: C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\q0o2noxq.default-release [2021-12-29]
FF Homepage: Mozilla\Firefox\Profiles\q0o2noxq.default-release -> hxxps://webmail.sfr.fr/fr_FR/main.html#inbox/VF_pertinent
FF Extension: (Bloqueur de chatbot) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\q0o2noxq.default-release\Extensions\app@bloqueurchatbot.xpi [2019-12-10]
FF Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\q0o2noxq.default-release\Extensions\rapportext@trusteer.com.xpi [2023-09-21] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_293.dll [2019-11-13] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_293.dll [2019-11-13] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN -> VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2015-11-23] (WildTangent Inc -> )
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default [2023-09-21]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://www.decitre.fr; hxxps://www.sncf-connect.com
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "chrome://apps/","hxxp://www.google.com","hxxps://www.google.fr/"
CHR Extension: (Google Traduction) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-23]
CHR Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2022-02-15]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-08-28]
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-04-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-09]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-09-21]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-01-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-11]
CHR Profile: C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-10-30]
CHR Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2022-08-08]
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-08-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-29]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-10-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-08]
CHR Profile: C:\Users\latcher\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-11]
CHR HKU\S-1-5-21-1199283992-1914110528-778468464-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-11-13] (Adobe Inc. -> Adobe)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
S3 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-04] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-04] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5745672 2018-04-28] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-04-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-11-23] (WildTangent Inc -> WildTangent)
R2 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [387928 2020-06-30] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-23] (HP Inc. -> HP Inc.)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3028304 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-11-22] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47160 2015-11-22] (Disc Soft Ltd -> Disc Soft Ltd)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2019-12-07] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl1393168d; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{29717A70-7DC6-497D-B258-4915D6A84050}\MpKslDrv.sys [222464 2023-09-21] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [437128 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R1 RapportCerberus_2209173; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_2209173.sys [1429384 2023-08-29] (International Business Machines Corporation -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [529800 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R0 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [383832 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R0 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [434008 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [542552 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2020-09-01] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-08-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-08-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-30] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-09-21 11:37 - 2023-09-21 11:37 - 000496117 _____ C:\Users\latcher\Documents\Passeport Philippe409.pdf
2023-09-21 11:21 - 2023-09-21 11:21 - 001272920 _____ C:\Users\latcher\Documents\Attestation Nantes408.pdf
2023-09-18 11:34 - 2023-09-20 20:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-09-17 17:48 - 2023-09-17 17:48 - 000000000 ___HD C:\$WinREAgent
2023-09-04 16:59 - 2023-09-04 16:59 - 000646874 _____ C:\Users\latcher\Documents\Devis chauffe-eau407.pdf
2023-09-01 11:15 - 2023-09-20 20:13 - 000000951 _____ C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {305D7C1A-46C3-4E50-A37F-D4F4E6172807}.job
2023-09-01 11:15 - 2023-09-01 11:15 - 000004156 _____ C:\WINDOWS\system32\Tasks\EPSON XP-432 435 Series Update {305D7C1A-46C3-4E50-A37F-D4F4E6172807}
2023-09-01 10:48 - 2023-09-01 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2023-09-01 09:31 - 2023-09-01 10:53 - 000000000 ____D C:\Users\latcher\AppData\Local\Garmin
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-09-21 15:08 - 2016-10-10 19:56 - 000000000 ____D C:\FRST
2023-09-21 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-21 14:36 - 2021-12-15 21:20 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-09-21 14:36 - 2015-11-22 01:49 - 000000000 ____D C:\Program Files (x86)\Google
2023-09-21 14:17 - 2020-09-01 22:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-09-21 11:00 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-21 11:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-09-21 10:06 - 2020-06-20 11:46 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-21 10:06 - 2020-06-20 11:46 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-09-21 10:01 - 2020-09-01 23:11 - 001924270 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-09-21 10:01 - 2019-12-07 16:49 - 000831884 _____ C:\WINDOWS\system32\perfh00C.dat
2023-09-21 10:01 - 2019-12-07 16:49 - 000167650 _____ C:\WINDOWS\system32\perfc00C.dat
2023-09-21 10:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-09-21 09:58 - 2017-07-18 20:49 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-09-21 09:58 - 2015-11-22 00:51 - 000000000 __SHD C:\Users\latcher\IntelGraphicsProfiles
2023-09-20 20:13 - 2022-12-18 13:46 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-09-20 20:13 - 2020-09-01 23:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-09-20 20:13 - 2020-09-01 22:58 - 000461488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-20 20:13 - 2020-09-01 22:58 - 000008192 ___SH C:\DumpStack.log.tmp
2023-09-20 20:13 - 2019-12-02 21:17 - 000000000 ____D C:\Program Files\CCleaner
2023-09-20 20:13 - 2015-11-22 01:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-09-20 20:12 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-19 11:30 - 2020-09-01 23:33 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-09-19 11:30 - 2020-09-01 23:33 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-09-19 11:22 - 2022-12-18 13:46 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-09-19 11:22 - 2020-09-01 23:33 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-09-18 20:37 - 2021-12-12 20:54 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1199283992-1914110528-778468464-1001
2023-09-18 20:37 - 2020-09-01 23:33 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1199283992-1914110528-778468464-1001
2023-09-18 20:37 - 2020-09-01 23:02 - 000002430 _____ C:\Users\latcher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-18 13:10 - 2015-11-22 01:42 - 000000000 ____D C:\Users\latcher\Documents\Papa
2023-09-18 12:13 - 2019-12-07 18:24 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-09-18 11:30 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-09-17 19:59 - 2020-09-01 23:03 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-17 17:24 - 2019-08-28 13:19 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-09-17 17:24 - 2016-10-10 19:50 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-09-17 16:59 - 2015-11-22 03:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-09-17 16:36 - 2015-11-22 03:15 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-08 21:30 - 2020-09-01 23:33 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-09-01 17:15 - 2015-11-22 19:20 - 000000000 ____D C:\Users\latcher\AppData\Roaming\Microsoft\Word
2023-09-01 11:10 - 2016-02-15 23:26 - 000000000 ____D C:\Users\latcher\AppData\Local\ElevatedDiagnostics
2023-09-01 11:05 - 2017-05-08 12:53 - 000000000 ____D C:\ProgramData\Garmin
2023-09-01 10:49 - 2015-07-16 16:01 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-01 10:47 - 2020-09-01 23:33 - 000003600 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2023-08-31 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-08-30 12:46 - 2018-06-01 11:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-30 12:45 - 2021-01-22 12:41 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-08-29 21:25 - 2021-12-29 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Sécurité des points d'accès
2023-08-29 21:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-08-29 21:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-08-29 21:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-08-29 21:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-29 21:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par latcher (administrateur) sur DESKTOP-J3O3ES0 (HP 550-142nf) (21-09-2023 15:07:08)
Exécuté depuis C:\Users\latcher\AppData\Roaming\Microsoft\Windows\Network Shortcuts\FRST64.exe
Profils chargés: latcher
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3448 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe <2>
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) H:\Garmin\Garmin\Express\express.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(H:\Garmin\Garmin\Express\express.exe ->) (The CefSharp Authors) [Fichier non signé] H:\Garmin\Garmin\Express\CefSharp.BrowserSubprocess.exe <2>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(services.exe ->) (TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(services.exe ->) (WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21570.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21570.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21570.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8790264 2016-01-15] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3365840 2020-02-11] (Valve -> Valve Corporation)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [255224 2016-11-29] (TomTom International BV -> TomTom)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [MyDriveConnect.exe] => C:\Users\latcher\Downloads\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA (Pas de fichier)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-07-14] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2017-07-14] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2017-07-14] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [EPLTarget\P0000000000000003] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIPDE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [EpicGamesLauncher] => "J:\game\battle royal\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent (Pas de fichier)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [Spotify] => C:\Users\latcher\AppData\Roaming\Spotify\Spotify.exe [22151072 2019-12-19] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [GarminExpress] => H:\Garmin\Garmin\Express\express.exe [31341344 2023-08-28] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\Run: [MicrosoftEdgeAutoLaunch_AF929A6C210519B3F9A6EE0BB1DFFF37] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210216 2023-09-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1199283992-1914110528-778468464-1001\...\MountPoints2: {e69af4c5-dfd1-11eb-8813-0071c20adbd6} - "K:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\EPSON XP-432 435 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBPDE.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2015-06-17] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [432648 2015-07-11] (Microsoft Windows Hardware Compatibility Publisher -> HP)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-17] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {A4A41706-234C-4A8A-81BD-EAD9998D97CE} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {4ECFD30C-1FBB-4663-A81D-D1AA2D8BBC07} - System32\Tasks\{C65B6320-7543-4620-846D-6DFE07D4D561} => C:\windows\system32\pcalua.exe [53760 2023-09-17] (Microsoft Windows -> Microsoft Corporation) -> -a E:\Driver\Printer\Driver\WINX86\SETUP\SETUP.EXE
Task: {FF97A26D-7466-41BD-BA05-6744D04BFCFE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {B53A3343-656B-4EC0-BA3C-87CE9DCC5C12} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_Plugin.exe [1457720 2019-11-13] (Adobe Inc. -> Adobe)
Task: {47689B45-9EEE-48A1-8E14-DD7C666CE6A1} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-11-13] (Adobe Inc. -> Adobe)
Task: {80BC3D49-EC65-4F7D-B8D1-8656D36C254A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {8230EB70-369D-424A-B3D4-47E0EC444608} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (Pas de fichier)
Task: {320B2219-B9A5-4E01-B315-D7FADBCB9250} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {603299BF-3BAE-4964-A145-FC6B5C412755} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "9b2dbb87-0a58-4789-8323-58f811fda800" --version "6.16.10662" --silent
Task: {5330C15D-C38F-4D15-9B26-870C123989C9} - System32\Tasks\CCleanerSkipUAC - latcher => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {17F13F2C-0237-4001-9FD5-72790A3DF41D} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [511344 2015-06-19] (Dropbox, Inc -> )
Task: {5759778D-1918-4F0D-8CA3-838883F519B8} - System32\Tasks\EPSON XP-432 435 Series Update {2829BC5C-C5F3-4C21-A11F-8C0B79D8622E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {FF3EB062-301E-4D48-8B8F-545148EBC64D} - System32\Tasks\EPSON XP-432 435 Series Update {305D7C1A-46C3-4E50-A37F-D4F4E6172807} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {AB5DEAF2-8305-4B0C-8A18-FB8889A79743} - System32\Tasks\EPSON XP-432 435 Series Update {3B9B8968-453D-443A-8938-7756A73037DC} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {7DFAC79E-0925-4832-8FC0-268D03F474D5} - System32\Tasks\EPSON XP-432 435 Series Update {534E5CDD-1A01-4E04-B3C4-0F0204D08041} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {A92E9B18-6746-4596-8F9D-92C0EA4630E0} - System32\Tasks\EPSON XP-432 435 Series Update {792FE13C-F490-4128-8E5D-E1FF9C47FBA5} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {554F0C6E-E88D-4F73-B080-B47A9F3EB996} - System32\Tasks\GarminUpdaterTask => H:\Garmin\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31008 2023-08-28] (Garmin International, Inc. -> )
Task: {BA8377CF-3277-40B5-8836-3842D516DA6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-10] (Google Inc -> Google Inc.)
Task: {5E3E0D7E-01EE-402D-A3F2-CC41DA23E798} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-10] (Google Inc -> Google Inc.)
Task: {4528F592-72E4-4203-8408-7F9AA91D2DD6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-21] (HP Inc. -> )
Task: {0A48F24B-06FB-48B5-A174-6CE22882242A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506136 2020-07-01] (HP Inc. -> HP Inc.)
Task: {CDFF955E-94AF-460E-9317-4E0D51F804EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [135000 2020-06-22] (HP Inc. -> HP Inc.)
Task: {07B87F30-0B04-41EE-A731-9B4137327D9B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {409CA08B-47C9-4786-A8C0-87F85E027632} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506136 2020-07-01] (HP Inc. -> HP Inc.)
Task: {C2DC64C9-6995-4D3B-9B32-0E1FA7834B89} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [324952 2020-06-19] (HP Inc. -> HP Inc.)
Task: {6014918C-EA5C-40CD-B542-A851ED4ADED2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1133912 2020-06-19] (HP Inc. -> HP Inc.)
Task: {423F3A21-FE05-47CF-A321-401979BB408D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1133912 2020-06-19] (HP Inc. -> HP Inc.)
Task: {9984BD70-5572-41D7-BD3A-637A70A7C6A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CEA3D7C8-E542-42AC-A2BE-F1163ECEDD1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B5F10D9C-32E7-4A0C-9E3A-324D2D7FD02D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {15F28CF3-97FF-4D2F-93C7-7D273473966F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4E49135-8C68-4ABF-BB9D-F6ADEF426D00} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [675232 2023-09-18] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {353B366A-1C87-47AB-A84D-526AE3DDB9B0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [722336 2023-09-18] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {2829BC5C-C5F3-4C21-A11F-8C0B79D8622E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{2829BC5C-C5F3-4C21-A11F-8C0B79D8622E} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {305D7C1A-46C3-4E50-A37F-D4F4E6172807}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{305D7C1A-46C3-4E50-A37F-D4F4E6172807} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {3B9B8968-453D-443A-8938-7756A73037DC}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{3B9B8968-453D-443A-8938-7756A73037DC} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {534E5CDD-1A01-4E04-B3C4-0F0204D08041}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{534E5CDD-1A01-4E04-B3C4-0F0204D08041} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {792FE13C-F490-4128-8E5D-E1FF9C47FBA5}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{792FE13C-F490-4128-8E5D-E1FF9C47FBA5} /F:UpdateWORKGROUP\DESKTOP-J3O3ES0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1c90e045-ed70-44d6-9c85-51e1e9213f78}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1c90e045-ed70-44d6-9c85-51e1e9213f78}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{5d58e77b-7c04-4c5d-824f-dd5a1afc8f8c}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a63053a6-bc5b-4edc-9de9-a6bd49c76707}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{cb87dd22-313d-4816-872f-5894e952c0c6}: [DhcpNameServer] 172.20.10.1
Edge:
=======
DownloadDir: C:\Users\latcher\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-1199283992-1914110528-778468464-1001 -> hxxp://www.google.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\latcher\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-21]
Edge DownloadDir: Default -> C:\Users\latcher\Downloads
Edge HomePage: Default -> hxxps://www.google.fr/
Edge Extension: (Google Docs hors connexion) - C:\Users\latcher\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-01]
Edge Extension: (Edge relevant text changes) - C:\Users\latcher\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-20]
Edge HKLM-x32\...\Edge\Extension: [kajikgogckeajjplomldcempamhidmcc]
FireFox:
========
FF DefaultProfile: olb92zt3.default
FF ProfilePath: C:\Users\latcher\AppData\Roaming\TomTom\HOME\Profiles\1kq5jabv.default [2017-07-18]
FF Extension: (MazdaTheme) - C:\Users\latcher\AppData\Roaming\TomTom\HOME\Profiles\1kq5jabv.default\Extensions\MazdaTheme@mazda.com [2015-12-17] [] [non signé]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2017-07-18] [] [non signé]
FF ProfilePath: C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\4vur9jua.Ordilatcher [2022-11-29]
FF Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\rapportext@trusteer.com.xpi [2022-01-16] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\4vur9jua.Ordilatcher\Extensions\rapportext@trusteer.com.xpi [2023-09-21] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (uBlock Origin) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\4vur9jua.Ordilatcher\Extensions\uBlock0@raymondhill.net.xpi [2022-10-24]
FF ProfilePath: C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\olb92zt3.default [2022-04-08]
FF Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\olb92zt3.default\Extensions\rapportext@trusteer.com.xpi [2023-09-21] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF ProfilePath: C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\q0o2noxq.default-release [2021-12-29]
FF Homepage: Mozilla\Firefox\Profiles\q0o2noxq.default-release -> hxxps://webmail.sfr.fr/fr_FR/main.html#inbox/VF_pertinent
FF Extension: (Bloqueur de chatbot) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\q0o2noxq.default-release\Extensions\app@bloqueurchatbot.xpi [2019-12-10]
FF Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Roaming\Mozilla\Firefox\Profiles\q0o2noxq.default-release\Extensions\rapportext@trusteer.com.xpi [2023-09-21] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_293.dll [2019-11-13] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_293.dll [2019-11-13] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN -> VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2015-11-23] (WildTangent Inc -> )
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default [2023-09-21]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://www.decitre.fr; hxxps://www.sncf-connect.com
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "chrome://apps/","hxxp://www.google.com","hxxps://www.google.fr/"
CHR Extension: (Google Traduction) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-23]
CHR Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2022-02-15]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-08-28]
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-04-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-09]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-09-21]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-01-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-11]
CHR Profile: C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-10-30]
CHR Extension: (IBM Security Rapport) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2022-08-08]
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-08-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-29]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-10-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\latcher\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-08]
CHR Profile: C:\Users\latcher\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-11]
CHR HKU\S-1-5-21-1199283992-1914110528-778468464-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-11-13] (Adobe Inc. -> Adobe)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
S3 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-04] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-04] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5745672 2018-04-28] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-04-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-11-23] (WildTangent Inc -> WildTangent)
R2 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [387928 2020-06-30] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-23] (HP Inc. -> HP Inc.)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3028304 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-11-22] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47160 2015-11-22] (Disc Soft Ltd -> Disc Soft Ltd)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2019-12-07] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl1393168d; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{29717A70-7DC6-497D-B258-4915D6A84050}\MpKslDrv.sys [222464 2023-09-21] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [437128 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R1 RapportCerberus_2209173; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_2209173.sys [1429384 2023-08-29] (International Business Machines Corporation -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [529800 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R0 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [383832 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R0 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [434008 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [542552 2023-05-17] (International Business Machines Corporation -> IBM Corp.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2020-09-01] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-08-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-08-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-30] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-09-21 11:37 - 2023-09-21 11:37 - 000496117 _____ C:\Users\latcher\Documents\Passeport Philippe409.pdf
2023-09-21 11:21 - 2023-09-21 11:21 - 001272920 _____ C:\Users\latcher\Documents\Attestation Nantes408.pdf
2023-09-18 11:34 - 2023-09-20 20:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-09-17 17:48 - 2023-09-17 17:48 - 000000000 ___HD C:\$WinREAgent
2023-09-04 16:59 - 2023-09-04 16:59 - 000646874 _____ C:\Users\latcher\Documents\Devis chauffe-eau407.pdf
2023-09-01 11:15 - 2023-09-20 20:13 - 000000951 _____ C:\WINDOWS\Tasks\EPSON XP-432 435 Series Update {305D7C1A-46C3-4E50-A37F-D4F4E6172807}.job
2023-09-01 11:15 - 2023-09-01 11:15 - 000004156 _____ C:\WINDOWS\system32\Tasks\EPSON XP-432 435 Series Update {305D7C1A-46C3-4E50-A37F-D4F4E6172807}
2023-09-01 10:48 - 2023-09-01 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2023-09-01 09:31 - 2023-09-01 10:53 - 000000000 ____D C:\Users\latcher\AppData\Local\Garmin
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-09-21 15:08 - 2016-10-10 19:56 - 000000000 ____D C:\FRST
2023-09-21 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-21 14:36 - 2021-12-15 21:20 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-09-21 14:36 - 2015-11-22 01:49 - 000000000 ____D C:\Program Files (x86)\Google
2023-09-21 14:17 - 2020-09-01 22:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-09-21 11:00 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-21 11:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-09-21 10:06 - 2020-06-20 11:46 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-21 10:06 - 2020-06-20 11:46 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-09-21 10:01 - 2020-09-01 23:11 - 001924270 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-09-21 10:01 - 2019-12-07 16:49 - 000831884 _____ C:\WINDOWS\system32\perfh00C.dat
2023-09-21 10:01 - 2019-12-07 16:49 - 000167650 _____ C:\WINDOWS\system32\perfc00C.dat
2023-09-21 10:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-09-21 09:58 - 2017-07-18 20:49 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-09-21 09:58 - 2015-11-22 00:51 - 000000000 __SHD C:\Users\latcher\IntelGraphicsProfiles
2023-09-20 20:13 - 2022-12-18 13:46 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-09-20 20:13 - 2020-09-01 23:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-09-20 20:13 - 2020-09-01 22:58 - 000461488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-20 20:13 - 2020-09-01 22:58 - 000008192 ___SH C:\DumpStack.log.tmp
2023-09-20 20:13 - 2019-12-02 21:17 - 000000000 ____D C:\Program Files\CCleaner
2023-09-20 20:13 - 2015-11-22 01:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-09-20 20:12 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-20 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-19 11:30 - 2020-09-01 23:33 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-09-19 11:30 - 2020-09-01 23:33 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-09-19 11:22 - 2022-12-18 13:46 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-09-19 11:22 - 2020-09-01 23:33 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-09-18 20:37 - 2021-12-12 20:54 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1199283992-1914110528-778468464-1001
2023-09-18 20:37 - 2020-09-01 23:33 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1199283992-1914110528-778468464-1001
2023-09-18 20:37 - 2020-09-01 23:02 - 000002430 _____ C:\Users\latcher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-18 13:10 - 2015-11-22 01:42 - 000000000 ____D C:\Users\latcher\Documents\Papa
2023-09-18 12:13 - 2019-12-07 18:24 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-09-18 11:30 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-09-17 19:59 - 2020-09-01 23:03 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-17 17:24 - 2019-08-28 13:19 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-09-17 17:24 - 2016-10-10 19:50 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-09-17 16:59 - 2015-11-22 03:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-09-17 16:36 - 2015-11-22 03:15 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-08 21:30 - 2020-09-01 23:33 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-09-01 17:15 - 2015-11-22 19:20 - 000000000 ____D C:\Users\latcher\AppData\Roaming\Microsoft\Word
2023-09-01 11:10 - 2016-02-15 23:26 - 000000000 ____D C:\Users\latcher\AppData\Local\ElevatedDiagnostics
2023-09-01 11:05 - 2017-05-08 12:53 - 000000000 ____D C:\ProgramData\Garmin
2023-09-01 10:49 - 2015-07-16 16:01 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-01 10:47 - 2020-09-01 23:33 - 000003600 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2023-08-31 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-08-30 12:46 - 2018-06-01 11:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-30 12:45 - 2021-01-22 12:41 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-08-29 21:25 - 2021-12-29 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Sécurité des points d'accès
2023-08-29 21:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-08-29 21:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-08-29 21:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-08-29 21:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-29 21:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================