Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-02-2025
Exécuté par Guywa (administrateur) sur GUYWA-PC (03-02-2025 13:33:58)
Exécuté depuis C:\Users\Guywa\Desktop\FRST64.exe
Profils chargés: Guywa
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.5371 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Applications Windows\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Applications Windows\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (VIA Technologies, Inc.) [Fichier non signé] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(services.exe ->) (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Applications Windows\ATI Drivers\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Applications Windows\COMODO\COMODO Internet Security\cmdagent.exe <2>
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Applications Windows\COMODO\COMODO Internet Security\cmdvirth.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Editor\FoxitPDFEditorUpdateService.exe
(services.exe ->) (Foxit Software Incorporated -> Foxit Software Inc.) C:\Applications Windows\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Synology Inc. -> ) [Fichier non signé] C:\Applications Windows\Synology Assistant\UsbClientService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2411.1.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Applications Windows\COMODO\COMODO Internet Security\cavwp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Applications Windows\COMODO\COMODO Internet Security\cis.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Guywa\AppData\Local\Microsoft\OneDrive\25.005.0112.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5363_none_7e1ab0d27c839437\TiWorker.exe
(Valve Corp. -> Valve Corporation) C:\Applications Windows\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [Fichier non signé]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Applications Windows\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5204968 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [Steam] => C:\Applications Windows\Steam\steam.exe [4435552 2025-01-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [911160 2012-01-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILEE.EXE [297024 2013-01-24] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [Discord] => C:\Users\Guywa\AppData\Local\Discord\Update.exe [1525024 2024-03-18] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [org.whispersystems.signal-desktop] => C:\Users\Guywa\AppData\Local\Programs\signal-desktop\Signal.exe --start-in-tray (Pas de fichier)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [Microsoft Edge Update] => C:\Users\Guywa\AppData\Local\Microsoft\EdgeUpdate\1.3.195.43\MicrosoftEdgeUpdateCore.exe [268360 2024-12-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [809984 2024-11-27] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\RXEG2IPPR: C:\Windows\System32\spool\prtprocs\x64\RXEG2IPPR.dll [77312 2017-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Monotype Imaging Inc.)
HKLM\...\Print\Monitors\EPSON XP-412 413 415 Series 64MonitorBE: C:\Windows\system32\E_ILMBLEE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\RXEG2 PJL Monitor: C:\Windows\system32\RXEG2LMON.dll [73728 2017-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Teco Image Systems Co., Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\132.0.6834.160\Installer\chrmstp.exe [2025-01-30] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {8405070A-D616-4A1C-8A33-90E11C9A021D} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {F1159427-73F5-4B6A-8C52-CBEB0B0E18EE} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {F09B89F7-F45A-45CC-BC0F-8A95AA56526C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7456984 2017-04-10] (Piriform Ltd -> Piriform Ltd)
Task: {3ED593AE-1BAF-4F3C-A972-3583B0F65905} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Applications Windows\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {344183C3-E941-446C-A258-F6CAD5EFF3C2} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {CEFE99F2-4082-438D-B32A-D486D10ACB46} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {BFBD2D5A-EFAD-4B15-A72D-AA9B7E4BD58D} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {BE934964-4CD1-418F-AB77-6A948C33A304} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {FCD38E68-94C8-417B-89FF-36E817EFA6D4} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {8467D384-C67F-44E1-8838-70F3D0FDB390} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Applications Windows\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {10DA8473-2A30-488E-A848-9EC46715151A} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {DAB84AB2-B993-4957-88F9-979891DFB326} - System32\Tasks\EPSON XP-412 413 415 Series Invitation {C085A223-6F12-4628-A358-EDDE73838F6A} => C:\Windows\System32\spool\drivers\x64\3\E_ITSLEE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {4E63F22D-BAA3-4979-912E-DF43C018F1C0} - System32\Tasks\EPSON XP-412 413 415 Series Update {C085A223-6F12-4628-A358-EDDE73838F6A} => C:\Windows\System32\spool\drivers\x64\3\E_ITSLEE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {EED72B98-9BD9-43B2-9E54-E0044961F853} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6985.0{82262928-5F5C-4160-9149-0ABFA5ABD35D} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe [5672544 2025-01-28] (Google LLC -> Google LLC)
Task: {1298CB12-3ABB-465E-896C-410852A5829A} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé]
Task: {02EB065F-946E-40FB-A686-DA7DE818EB99} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé]
Task: {CC4C9F25-8098-41D5-8180-8FC3A1078AE0} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier)
Task: {8A837455-FC5C-44B9-86DC-094D24356A45} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier)
Task: {633F3998-4D01-4479-A36D-7C67773737CA} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier)
Task: {693F1D99-5422-4627-8ECA-2E025B930DDA} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe /DRMInit (Pas de fichier)
Task: {FB58AAA2-3C9E-4952-A2D4-168F860DE940} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier)
Task: {CCECA7B6-F13A-4207-9365-A3DBFED481D2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate $(Arg0) (Pas de fichier)
Task: {AC2A1C23-2F5E-4EE2-AED4-F22D0DB277CC} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier)
Task: {59E61A02-9E60-446C-90F7-619C254F9205} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier)
Task: {0DC4AEDD-81F2-4104-ADAB-737B1A7814BC} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier)
Task: {C9B98065-A5F5-46EA-B977-3D2E338EEF1F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier)
Task: {03269620-E906-4B92-BF65-00895DC83603} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier)
Task: {D5A6D8AA-FEF9-4651-8B96-ECC20BE7C446} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier)
Task: {F6CEE3FC-9B3D-48B7-8A14-DA654B97E7A9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier)
Task: {CFD6071C-8F86-4A98-B289-9343DD702827} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe -pscn 0 (Pas de fichier)
Task: {E0F8F305-01BB-46D1-A6A2-F5EBBFEB8179} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier)
Task: {961A73E7-CE3F-4742-BDBE-0A41F366A8C8} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe -PvrSchedule (Pas de fichier)
Task: {DD62B81E-47BA-4516-B2AF-CB4D4D9838EB} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec /RestartRecording (Pas de fichier)
Task: {4546A32C-A975-45CC-9107-059FA90C3445} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier)
Task: {E2E1BCF6-E884-48D3-B0A8-8EA9341FB2B1} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier)
Task: {489EF433-D743-4CCD-AC13-F910147C5FF1} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier)
Task: {288AE000-9F5C-46E0-9E8B-EEDFD68BB5A4} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier)
Task: {D46B78C2-117C-4320-AC40-5DA56D9ACE17} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {C0FDD301-E1D9-4A64-B6A3-B12AC68DD069} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {66C3BFE7-6890-4EAC-9714-CE1D7C475D1A} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {3D1D274F-7B28-4F5B-B5D0-4B1113A336C1} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {24B24F24-24E0-45B3-BCEF-D0004C5892A6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {067D311B-BDF9-4BEB-97A5-51B6762F00EB} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4143966812-1698740524-2400192780-1000Core{42C89995-B85C-4046-886D-139F6E7841BE} => C:\Users\Guywa\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206416 2024-11-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {2D228916-201D-4C9F-BDBD-99CFF6AC3024} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4143966812-1698740524-2400192780-1000UA{5DF646A8-B95E-45E9-926C-6D9EF4AFF456} => C:\Users\Guywa\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206416 2024-11-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {B36FA2EA-BE92-4F3A-9A77-7E89D41D01A5} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [676416 2025-01-07] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {E80ED7D3-0545-4444-A8BB-5417792AF970} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4143966812-1698740524-2400192780-1000 E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [676416 2025-01-07] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {44169A5F-0AF8-44C7-B9C2-2502AF4008CF} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [34368 2025-01-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {2E57F2F5-A45F-4C45-B60B-206C1CE69C8E} - System32\Tasks\OneDrive Startup Task-S-1-5-21-4143966812-1698740524-2400192780-1000 => C:\Users\Guywa\AppData\Local\Microsoft\OneDrive\25.005.0112.0003\OneDriveLauncher.exe [447032 2025-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {85FAA050-D82A-449A-9B72-D19FECAA140E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [5363552 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {CCF2A0C5-328A-41D4-94A3-0C40DE9A88B1} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5629064 2021-11-23] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {339677B7-E75C-4704-A8EC-09A7AD27A383} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6093928 2021-12-20] (Safer-Networking Limited -> Safer-Networking Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Invitation {C085A223-6F12-4628-A358-EDDE73838F6A}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Update {C085A223-6F12-4628-A358-EDDE73838F6A}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE:/EXE:{C085A223-6F12-4628-A358-EDDE73838F6A} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\wshbth.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\NLAapi.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\winrnr.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 14 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [0 2024-11-27] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{A2031AE5-00B7-4C3D-BB94-3E86F0E5D597}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{A2031AE5-00B7-4C3D-BB94-3E86F0E5D597}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Profile: C:\Users\Guywa\AppData\Local\Microsoft\Edge\User Data\Default [2025-02-03]
FireFox:
========
FF DefaultProfile: bcuhn4xh.default-1642063448719
FF ProfilePath: C:\Users\Guywa\AppData\Roaming\Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719 [2025-02-03]
FF DownloadDir: D:\___DownLoad from Web___
FF Homepage: Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719 -> www.google.fr
FF Session Restore: Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719 -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719 -> hxxps://patient.qare.fr
FF Extension: (AdBlocker Ultimate) - C:\Users\Guywa\AppData\Roaming\Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719\Extensions\adblockultimate@adblockultimate.net.xpi [2024-07-19]
FF Extension: (Extension AllDebrid ) - C:\Users\Guywa\AppData\Roaming\Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719\Extensions\alldebrid@alldebrid.com.xpi [2024-12-28]
FF Extension: (uBlock Origin) - C:\Users\Guywa\AppData\Roaming\Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719\Extensions\uBlock0@raymondhill.net.xpi [2025-01-18]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2023-02-08] []
FF HKLM\...\Firefox\Extensions: [FireFoxNew-WebExtensions@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi [2023-02-08]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKLM-x32\...\Firefox\Extensions: [FireFoxNew-WebExtensions@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
Chrome:
=======
CHR Profile: C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default [2024-12-20]
CHR DownloadDir: D:\___DownLoad from Web___
CHR Notifications: Default -> hxxps://www.facebook.com
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-12-20]
CHR Extension: (uBlock Origin) - C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-12-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-16]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\ChromeAddin\ChromeAddin.crx [2023-02-08]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\ChromeAddin\ChromeAddin.crx [2023-02-08]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AMD FUEL Service; C:\Applications Windows\ATI Drivers\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [Fichier non signé]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-01-09] (BattlEye Innovations e.K. -> )
R2 CmdAgent; C:\Applications Windows\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Applications Windows\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R3 cmdvirth; C:\Applications Windows\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 FoxitCloudUpdateService; C:\Applications Windows\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242912 2014-09-11] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 FoxitPhantomPDFUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Editor\FoxitPDFEditorUpdateService.exe [2437616 2023-11-11] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2782080 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4605312 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UsbClientService; C:\Applications Windows\Synology Assistant\UsbClientService.exe [248856 2017-01-18] (Synology Inc. -> ) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AODDriver4.2; C:\Applications Windows\ATI Drivers\ATI.ACE\Fuel\amd64\AODDriver2.sys [57512 2012-11-20] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [55776 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2019-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdHlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 gdrv; C:\Windows\gdrv.sys [25640 2017-04-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [41792 2024-05-07] (nordvpn s.a. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\DRIVERS\wintun.sys [29680 2024-09-03] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
U3 idsvc; pas de ImagePath
S3 RTVLANPT; \SystemRoot\system32\DRIVERS\RtVlan620.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-02-03 13:16 - 2025-02-03 13:34 - 000039411 _____ C:\Users\Guywa\Desktop\FRST.txt
2025-02-03 13:15 - 2025-02-03 13:34 - 000000000 ____D C:\FRST
2025-02-03 13:09 - 2025-02-03 13:10 - 002403328 _____ (Farbar) C:\Users\Guywa\Desktop\FRST64.exe
2025-01-31 22:49 - 2025-02-03 01:31 - 000003576 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-4143966812-1698740524-2400192780-1000
2025-01-17 12:57 - 2025-01-17 12:57 - 000000000 ___HD C:\$Windows.~WS
2025-01-17 12:57 - 2025-01-17 12:57 - 000000000 ____D C:\$WINDOWS.~BT
2025-01-15 11:01 - 2025-01-15 11:01 - 000000000 ___HD C:\$WinREAgent
2025-01-08 01:07 - 2025-01-08 01:07 - 000000000 ____D C:\Users\Guywa\AppData\Local\OneDrive
2025-01-07 19:42 - 2025-01-13 22:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-02-03 13:31 - 2022-07-20 17:30 - 000000000 ____D C:\Program Files\Macrium
2025-02-03 13:30 - 2024-11-27 21:08 - 000000000 ____D C:\Users\Guywa\AppData\Local\Packages
2025-02-03 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-02-03 13:29 - 2017-03-26 23:50 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-02-03 13:28 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-02-03 13:28 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-02-03 13:27 - 2017-03-26 23:16 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2025-02-03 13:26 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-02-03 13:26 - 2017-11-17 20:23 - 000000000 ____D C:\Users\Guywa\AppData\Local\Ubisoft Game Launcher
2025-02-03 13:26 - 2017-11-17 20:23 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2025-02-03 13:25 - 2024-04-25 08:42 - 000078204 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2025-02-03 13:25 - 2022-02-17 11:16 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-02-03 12:55 - 2020-08-17 18:33 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\uTorrent
2025-02-03 12:11 - 2017-05-04 17:48 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\vlc
2025-02-03 12:06 - 2024-03-22 20:50 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\discord
2025-02-03 11:53 - 2024-11-27 20:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-02-03 11:35 - 2024-03-22 20:50 - 000000000 ____D C:\Users\Guywa\AppData\Local\Discord
2025-02-03 03:03 - 2017-03-26 22:59 - 000000000 ____D C:\ProgramData\NVIDIA
2025-02-03 02:35 - 2023-12-04 03:53 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-02-03 01:31 - 2024-11-27 21:13 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4143966812-1698740524-2400192780-1000
2025-02-03 01:31 - 2024-11-27 21:12 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4143966812-1698740524-2400192780-1000
2025-02-03 01:31 - 2024-11-27 21:11 - 000000000 ____D C:\Users\Guywa\AppData\Local\D3DSCache
2025-02-03 01:31 - 2024-11-27 21:02 - 000002421 _____ C:\Users\Guywa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-02-03 01:31 - 2024-03-22 20:50 - 000002247 _____ C:\Users\Guywa\Desktop\Discord.lnk
2025-01-31 10:20 - 2017-05-09 15:24 - 000126757 _____ C:\Users\Public\WIA20_LOG.txt
2025-01-30 23:04 - 2017-04-19 01:26 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-30 23:04 - 2017-04-19 01:26 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-01-30 18:32 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-25 15:46 - 2017-06-11 12:19 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Microsoft\Word
2025-01-25 15:46 - 2017-05-09 15:11 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Microsoft\Excel
2025-01-23 11:59 - 2022-10-27 17:22 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Factorio
2025-01-17 13:29 - 2024-11-27 18:49 - 000000000 ____D C:\ESD
2025-01-17 13:28 - 2024-11-27 18:54 - 000000000 ___DC C:\WINDOWS\Panther
2025-01-15 15:40 - 2024-11-27 21:02 - 001975298 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-01-15 15:40 - 2019-12-07 15:50 - 000866462 _____ C:\WINDOWS\system32\perfh00C.dat
2025-01-15 15:40 - 2019-12-07 15:50 - 000183256 _____ C:\WINDOWS\system32\perfc00C.dat
2025-01-15 15:34 - 2024-11-27 21:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-01-15 15:34 - 2017-04-01 12:44 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2025-01-15 15:33 - 2024-11-27 20:55 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-15 12:08 - 2019-12-07 10:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2025-01-15 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-01-15 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-01-15 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-01-15 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-01-15 11:14 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-01-15 11:10 - 2024-11-27 20:56 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-01-15 11:00 - 2017-04-18 11:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-01-15 10:54 - 2017-03-26 22:17 - 206927936 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-01-14 23:07 - 2017-03-27 15:45 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\BSplayer
2025-01-13 23:29 - 2024-11-27 21:02 - 000000000 ____D C:\Users\Guywa
2025-01-13 22:20 - 2017-03-26 23:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-01-11 14:00 - 2024-11-27 21:02 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Microsoft\Windows
2025-01-08 00:16 - 2017-03-26 23:29 - 000001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-01-05 23:07 - 2020-08-17 18:34 - 000000000 ____D C:\Users\Guywa\AppData\Local\BitTorrentHelper
==================== Fichiers à la racine de certains dossiers ========
2017-04-18 16:15 - 2017-04-18 16:15 - 000000000 _____ () C:\Program Files (x86)\GUTFAA6.tmp
2021-06-01 17:45 - 2024-05-05 09:32 - 000010250 _____ () C:\Users\Guywa\AppData\Local\PlariumPlay.log
2021-01-03 15:33 - 2021-01-03 15:33 - 000004567 _____ () C:\Users\Guywa\AppData\Local\recently-used.xbel
2018-05-10 14:47 - 2024-12-15 17:09 - 000007642 _____ () C:\Users\Guywa\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Guywa (administrateur) sur GUYWA-PC (03-02-2025 13:33:58)
Exécuté depuis C:\Users\Guywa\Desktop\FRST64.exe
Profils chargés: Guywa
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.5371 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Applications Windows\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Applications Windows\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (VIA Technologies, Inc.) [Fichier non signé] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(services.exe ->) (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Applications Windows\ATI Drivers\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Applications Windows\COMODO\COMODO Internet Security\cmdagent.exe <2>
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Applications Windows\COMODO\COMODO Internet Security\cmdvirth.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Editor\FoxitPDFEditorUpdateService.exe
(services.exe ->) (Foxit Software Incorporated -> Foxit Software Inc.) C:\Applications Windows\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Synology Inc. -> ) [Fichier non signé] C:\Applications Windows\Synology Assistant\UsbClientService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2411.1.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Applications Windows\COMODO\COMODO Internet Security\cavwp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Applications Windows\COMODO\COMODO Internet Security\cis.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Guywa\AppData\Local\Microsoft\OneDrive\25.005.0112.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5363_none_7e1ab0d27c839437\TiWorker.exe
(Valve Corp. -> Valve Corporation) C:\Applications Windows\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [Fichier non signé]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Applications Windows\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5204968 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [Steam] => C:\Applications Windows\Steam\steam.exe [4435552 2025-01-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [911160 2012-01-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILEE.EXE [297024 2013-01-24] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [Discord] => C:\Users\Guywa\AppData\Local\Discord\Update.exe [1525024 2024-03-18] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [org.whispersystems.signal-desktop] => C:\Users\Guywa\AppData\Local\Programs\signal-desktop\Signal.exe --start-in-tray (Pas de fichier)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\...\Run: [Microsoft Edge Update] => C:\Users\Guywa\AppData\Local\Microsoft\EdgeUpdate\1.3.195.43\MicrosoftEdgeUpdateCore.exe [268360 2024-12-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4143966812-1698740524-2400192780-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [809984 2024-11-27] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\RXEG2IPPR: C:\Windows\System32\spool\prtprocs\x64\RXEG2IPPR.dll [77312 2017-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Monotype Imaging Inc.)
HKLM\...\Print\Monitors\EPSON XP-412 413 415 Series 64MonitorBE: C:\Windows\system32\E_ILMBLEE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\RXEG2 PJL Monitor: C:\Windows\system32\RXEG2LMON.dll [73728 2017-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Teco Image Systems Co., Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\132.0.6834.160\Installer\chrmstp.exe [2025-01-30] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {8405070A-D616-4A1C-8A33-90E11C9A021D} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {F1159427-73F5-4B6A-8C52-CBEB0B0E18EE} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {F09B89F7-F45A-45CC-BC0F-8A95AA56526C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7456984 2017-04-10] (Piriform Ltd -> Piriform Ltd)
Task: {3ED593AE-1BAF-4F3C-A972-3583B0F65905} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Applications Windows\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {344183C3-E941-446C-A258-F6CAD5EFF3C2} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {CEFE99F2-4082-438D-B32A-D486D10ACB46} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {BFBD2D5A-EFAD-4B15-A72D-AA9B7E4BD58D} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {BE934964-4CD1-418F-AB77-6A948C33A304} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {FCD38E68-94C8-417B-89FF-36E817EFA6D4} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {8467D384-C67F-44E1-8838-70F3D0FDB390} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Applications Windows\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {10DA8473-2A30-488E-A848-9EC46715151A} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Applications Windows\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {DAB84AB2-B993-4957-88F9-979891DFB326} - System32\Tasks\EPSON XP-412 413 415 Series Invitation {C085A223-6F12-4628-A358-EDDE73838F6A} => C:\Windows\System32\spool\drivers\x64\3\E_ITSLEE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {4E63F22D-BAA3-4979-912E-DF43C018F1C0} - System32\Tasks\EPSON XP-412 413 415 Series Update {C085A223-6F12-4628-A358-EDDE73838F6A} => C:\Windows\System32\spool\drivers\x64\3\E_ITSLEE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {EED72B98-9BD9-43B2-9E54-E0044961F853} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6985.0{82262928-5F5C-4160-9149-0ABFA5ABD35D} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe [5672544 2025-01-28] (Google LLC -> Google LLC)
Task: {1298CB12-3ABB-465E-896C-410852A5829A} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé]
Task: {02EB065F-946E-40FB-A686-DA7DE818EB99} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé]
Task: {CC4C9F25-8098-41D5-8180-8FC3A1078AE0} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier)
Task: {8A837455-FC5C-44B9-86DC-094D24356A45} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier)
Task: {633F3998-4D01-4479-A36D-7C67773737CA} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier)
Task: {693F1D99-5422-4627-8ECA-2E025B930DDA} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe /DRMInit (Pas de fichier)
Task: {FB58AAA2-3C9E-4952-A2D4-168F860DE940} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier)
Task: {CCECA7B6-F13A-4207-9365-A3DBFED481D2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate $(Arg0) (Pas de fichier)
Task: {AC2A1C23-2F5E-4EE2-AED4-F22D0DB277CC} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier)
Task: {59E61A02-9E60-446C-90F7-619C254F9205} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier)
Task: {0DC4AEDD-81F2-4104-ADAB-737B1A7814BC} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier)
Task: {C9B98065-A5F5-46EA-B977-3D2E338EEF1F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier)
Task: {03269620-E906-4B92-BF65-00895DC83603} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier)
Task: {D5A6D8AA-FEF9-4651-8B96-ECC20BE7C446} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier)
Task: {F6CEE3FC-9B3D-48B7-8A14-DA654B97E7A9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier)
Task: {CFD6071C-8F86-4A98-B289-9343DD702827} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe -pscn 0 (Pas de fichier)
Task: {E0F8F305-01BB-46D1-A6A2-F5EBBFEB8179} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier)
Task: {961A73E7-CE3F-4742-BDBE-0A41F366A8C8} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe -PvrSchedule (Pas de fichier)
Task: {DD62B81E-47BA-4516-B2AF-CB4D4D9838EB} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec /RestartRecording (Pas de fichier)
Task: {4546A32C-A975-45CC-9107-059FA90C3445} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier)
Task: {E2E1BCF6-E884-48D3-B0A8-8EA9341FB2B1} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier)
Task: {489EF433-D743-4CCD-AC13-F910147C5FF1} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier)
Task: {288AE000-9F5C-46E0-9E8B-EEDFD68BB5A4} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier)
Task: {D46B78C2-117C-4320-AC40-5DA56D9ACE17} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {C0FDD301-E1D9-4A64-B6A3-B12AC68DD069} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {66C3BFE7-6890-4EAC-9714-CE1D7C475D1A} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {3D1D274F-7B28-4F5B-B5D0-4B1113A336C1} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {24B24F24-24E0-45B3-BCEF-D0004C5892A6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {067D311B-BDF9-4BEB-97A5-51B6762F00EB} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4143966812-1698740524-2400192780-1000Core{42C89995-B85C-4046-886D-139F6E7841BE} => C:\Users\Guywa\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206416 2024-11-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {2D228916-201D-4C9F-BDBD-99CFF6AC3024} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4143966812-1698740524-2400192780-1000UA{5DF646A8-B95E-45E9-926C-6D9EF4AFF456} => C:\Users\Guywa\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206416 2024-11-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {B36FA2EA-BE92-4F3A-9A77-7E89D41D01A5} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [676416 2025-01-07] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {E80ED7D3-0545-4444-A8BB-5417792AF970} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4143966812-1698740524-2400192780-1000 E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [676416 2025-01-07] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {44169A5F-0AF8-44C7-B9C2-2502AF4008CF} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [34368 2025-01-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {2E57F2F5-A45F-4C45-B60B-206C1CE69C8E} - System32\Tasks\OneDrive Startup Task-S-1-5-21-4143966812-1698740524-2400192780-1000 => C:\Users\Guywa\AppData\Local\Microsoft\OneDrive\25.005.0112.0003\OneDriveLauncher.exe [447032 2025-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {85FAA050-D82A-449A-9B72-D19FECAA140E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [5363552 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {CCF2A0C5-328A-41D4-94A3-0C40DE9A88B1} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5629064 2021-11-23] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {339677B7-E75C-4704-A8EC-09A7AD27A383} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6093928 2021-12-20] (Safer-Networking Limited -> Safer-Networking Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Invitation {C085A223-6F12-4628-A358-EDDE73838F6A}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Update {C085A223-6F12-4628-A358-EDDE73838F6A}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE:/EXE:{C085A223-6F12-4628-A358-EDDE73838F6A} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\wshbth.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\NLAapi.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\winrnr.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9 14 C:\WINDOWS\SysWOW64\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [0 2024-11-27] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [0 2023-12-04] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{A2031AE5-00B7-4C3D-BB94-3E86F0E5D597}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{A2031AE5-00B7-4C3D-BB94-3E86F0E5D597}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Profile: C:\Users\Guywa\AppData\Local\Microsoft\Edge\User Data\Default [2025-02-03]
FireFox:
========
FF DefaultProfile: bcuhn4xh.default-1642063448719
FF ProfilePath: C:\Users\Guywa\AppData\Roaming\Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719 [2025-02-03]
FF DownloadDir: D:\___DownLoad from Web___
FF Homepage: Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719 -> www.google.fr
FF Session Restore: Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719 -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719 -> hxxps://patient.qare.fr
FF Extension: (AdBlocker Ultimate) - C:\Users\Guywa\AppData\Roaming\Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719\Extensions\adblockultimate@adblockultimate.net.xpi [2024-07-19]
FF Extension: (Extension AllDebrid ) - C:\Users\Guywa\AppData\Roaming\Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719\Extensions\alldebrid@alldebrid.com.xpi [2024-12-28]
FF Extension: (uBlock Origin) - C:\Users\Guywa\AppData\Roaming\Mozilla\Firefox\Profiles\bcuhn4xh.default-1642063448719\Extensions\uBlock0@raymondhill.net.xpi [2025-01-18]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2023-02-08] []
FF HKLM\...\Firefox\Extensions: [FireFoxNew-WebExtensions@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi [2023-02-08]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKLM-x32\...\Firefox\Extensions: [FireFoxNew-WebExtensions@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Applications Windows\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zéro octet Fichier/Dossier]
Chrome:
=======
CHR Profile: C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default [2024-12-20]
CHR DownloadDir: D:\___DownLoad from Web___
CHR Notifications: Default -> hxxps://www.facebook.com
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-12-20]
CHR Extension: (uBlock Origin) - C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-12-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Guywa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-16]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\ChromeAddin\ChromeAddin.crx [2023-02-08]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\ChromeAddin\ChromeAddin.crx [2023-02-08]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AMD FUEL Service; C:\Applications Windows\ATI Drivers\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [Fichier non signé]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-01-09] (BattlEye Innovations e.K. -> )
R2 CmdAgent; C:\Applications Windows\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Applications Windows\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R3 cmdvirth; C:\Applications Windows\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 FoxitCloudUpdateService; C:\Applications Windows\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242912 2014-09-11] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 FoxitPhantomPDFUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Editor\FoxitPDFEditorUpdateService.exe [2437616 2023-11-11] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2782080 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4605312 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UsbClientService; C:\Applications Windows\Synology Assistant\UsbClientService.exe [248856 2017-01-18] (Synology Inc. -> ) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AODDriver4.2; C:\Applications Windows\ATI Drivers\ATI.ACE\Fuel\amd64\AODDriver2.sys [57512 2012-11-20] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [55776 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2019-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdHlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 gdrv; C:\Windows\gdrv.sys [25640 2017-04-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [41792 2024-05-07] (nordvpn s.a. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\DRIVERS\wintun.sys [29680 2024-09-03] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
U3 idsvc; pas de ImagePath
S3 RTVLANPT; \SystemRoot\system32\DRIVERS\RtVlan620.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-02-03 13:16 - 2025-02-03 13:34 - 000039411 _____ C:\Users\Guywa\Desktop\FRST.txt
2025-02-03 13:15 - 2025-02-03 13:34 - 000000000 ____D C:\FRST
2025-02-03 13:09 - 2025-02-03 13:10 - 002403328 _____ (Farbar) C:\Users\Guywa\Desktop\FRST64.exe
2025-01-31 22:49 - 2025-02-03 01:31 - 000003576 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-4143966812-1698740524-2400192780-1000
2025-01-17 12:57 - 2025-01-17 12:57 - 000000000 ___HD C:\$Windows.~WS
2025-01-17 12:57 - 2025-01-17 12:57 - 000000000 ____D C:\$WINDOWS.~BT
2025-01-15 11:01 - 2025-01-15 11:01 - 000000000 ___HD C:\$WinREAgent
2025-01-08 01:07 - 2025-01-08 01:07 - 000000000 ____D C:\Users\Guywa\AppData\Local\OneDrive
2025-01-07 19:42 - 2025-01-13 22:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-02-03 13:31 - 2022-07-20 17:30 - 000000000 ____D C:\Program Files\Macrium
2025-02-03 13:30 - 2024-11-27 21:08 - 000000000 ____D C:\Users\Guywa\AppData\Local\Packages
2025-02-03 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-02-03 13:29 - 2017-03-26 23:50 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-02-03 13:28 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-02-03 13:28 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-02-03 13:27 - 2017-03-26 23:16 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2025-02-03 13:26 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-02-03 13:26 - 2017-11-17 20:23 - 000000000 ____D C:\Users\Guywa\AppData\Local\Ubisoft Game Launcher
2025-02-03 13:26 - 2017-11-17 20:23 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2025-02-03 13:25 - 2024-04-25 08:42 - 000078204 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2025-02-03 13:25 - 2022-02-17 11:16 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-02-03 12:55 - 2020-08-17 18:33 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\uTorrent
2025-02-03 12:11 - 2017-05-04 17:48 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\vlc
2025-02-03 12:06 - 2024-03-22 20:50 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\discord
2025-02-03 11:53 - 2024-11-27 20:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-02-03 11:35 - 2024-03-22 20:50 - 000000000 ____D C:\Users\Guywa\AppData\Local\Discord
2025-02-03 03:03 - 2017-03-26 22:59 - 000000000 ____D C:\ProgramData\NVIDIA
2025-02-03 02:35 - 2023-12-04 03:53 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-02-03 01:31 - 2024-11-27 21:13 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4143966812-1698740524-2400192780-1000
2025-02-03 01:31 - 2024-11-27 21:12 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4143966812-1698740524-2400192780-1000
2025-02-03 01:31 - 2024-11-27 21:11 - 000000000 ____D C:\Users\Guywa\AppData\Local\D3DSCache
2025-02-03 01:31 - 2024-11-27 21:02 - 000002421 _____ C:\Users\Guywa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-02-03 01:31 - 2024-03-22 20:50 - 000002247 _____ C:\Users\Guywa\Desktop\Discord.lnk
2025-01-31 10:20 - 2017-05-09 15:24 - 000126757 _____ C:\Users\Public\WIA20_LOG.txt
2025-01-30 23:04 - 2017-04-19 01:26 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-30 23:04 - 2017-04-19 01:26 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-01-30 18:32 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-25 15:46 - 2017-06-11 12:19 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Microsoft\Word
2025-01-25 15:46 - 2017-05-09 15:11 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Microsoft\Excel
2025-01-23 11:59 - 2022-10-27 17:22 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Factorio
2025-01-17 13:29 - 2024-11-27 18:49 - 000000000 ____D C:\ESD
2025-01-17 13:28 - 2024-11-27 18:54 - 000000000 ___DC C:\WINDOWS\Panther
2025-01-15 15:40 - 2024-11-27 21:02 - 001975298 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-01-15 15:40 - 2019-12-07 15:50 - 000866462 _____ C:\WINDOWS\system32\perfh00C.dat
2025-01-15 15:40 - 2019-12-07 15:50 - 000183256 _____ C:\WINDOWS\system32\perfc00C.dat
2025-01-15 15:34 - 2024-11-27 21:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-01-15 15:34 - 2017-04-01 12:44 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2025-01-15 15:33 - 2024-11-27 20:55 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-15 12:08 - 2019-12-07 10:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2025-01-15 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-01-15 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-01-15 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-01-15 12:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-01-15 11:14 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-01-15 11:10 - 2024-11-27 20:56 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-01-15 11:00 - 2017-04-18 11:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-01-15 10:54 - 2017-03-26 22:17 - 206927936 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-01-14 23:07 - 2017-03-27 15:45 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\BSplayer
2025-01-13 23:29 - 2024-11-27 21:02 - 000000000 ____D C:\Users\Guywa
2025-01-13 22:20 - 2017-03-26 23:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-01-11 14:00 - 2024-11-27 21:02 - 000000000 ____D C:\Users\Guywa\AppData\Roaming\Microsoft\Windows
2025-01-08 00:16 - 2017-03-26 23:29 - 000001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-01-05 23:07 - 2020-08-17 18:34 - 000000000 ____D C:\Users\Guywa\AppData\Local\BitTorrentHelper
==================== Fichiers à la racine de certains dossiers ========
2017-04-18 16:15 - 2017-04-18 16:15 - 000000000 _____ () C:\Program Files (x86)\GUTFAA6.tmp
2021-06-01 17:45 - 2024-05-05 09:32 - 000010250 _____ () C:\Users\Guywa\AppData\Local\PlariumPlay.log
2021-01-03 15:33 - 2021-01-03 15:33 - 000004567 _____ () C:\Users\Guywa\AppData\Local\recently-used.xbel
2018-05-10 14:47 - 2024-12-15 17:09 - 000007642 _____ () C:\Users\Guywa\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================