Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-11-2024 Exécuté par marin (administrateur) sur LAPTOP-9INAGOBN (ASUSTeK COMPUTER INC. ZenBook UX333FA_UX333FA) (03-11-2024 01:24:21) Exécuté depuis C:\Users\marin\Desktop\FRST64.exe Profils chargés: marin Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.5011 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2> (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe (C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe ->) (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBox.Agent.exe (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe (C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe (C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\iCloudHome.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe (C:\ProgramData\myCANAL\nssm.exe ->) (Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe (DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSupportService.exe (DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe (DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe (DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2350.5.3.0_x64__8j3eq9eme6ctt\PrivacyIconClientGui\PrivacyIconClient.exe (explorer.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\B9ECED6F.ASUSKeyboardHotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\iCloudHome.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe (explorer.exe ->) (7270356 Canada Inc. -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe (explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <38> (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11100.16009.0_x64__8wekyb3d8bbwe\Photos.exe <4> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) () [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe (services.exe ->) (7270356 Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\AsusAppService\AsusAppService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\AsusOptimization\AsusOptimization.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManager.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSwitch\AsusSwitch.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2> (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe (services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe (services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_db704b106aae3892\ICEsoundService64.exe (services.exe ->) (INDEX EDUCATION SAS -> Index Education) C:\Program Files (x86)\index education\mise a jour automatique\ServiceMiseAJourIndex.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_b43f5856b08c04dc\Intel_PIE_Service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e9b40d45ab4dc6b8\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e9b40d45ab4dc6b8\IntelCpHeciSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_570a90d182f53fa5\AsusPTPService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2443.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\iCloudOutlookConfig64.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.2.157.0_x64__nzyj5cx40ttqa\iCloud\secd.exe (svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (Avaya Inc. -> Avaya, Inc.) C:\Users\marin\AppData\Local\Radvision\Conference Client\8.3.912.4\CUCore.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marin\AppData\Local\Microsoft\OneDrive\24.201.1006.0005\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9235336 2024-10-29] (Dropbox, Inc -> Dropbox, Inc.) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\Installer\setup.exe [6813760 2024-10-30] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [9234328 2024-10-22] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\Run: [CUCore Agent] => C:\Users\marin\AppData\Local\Radvision\Conference Client\8.3.912.4\ConfAgent.exe [622888 2020-06-08] (Avaya Inc. -> Avaya, Inc.) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9249944 2024-08-13] (7270356 Canada Inc. -> Lavasoft) <==== ATTENTION HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\Run: [MicrosoftEdgeAutoLaunch_773EB89D0548EBFC7C66E974F1D07AB7] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3856456 2024-10-24] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\Run: [GoogleChromeAutoLaunch_E57A6B4367A084755D0F018EFBDE109E] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2850400 2024-10-15] (Google LLC -> Google LLC) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marin\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [82235960 2024-10-31] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marin\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_Plugin.exe [1458232 2020-01-22] (Adobe Inc. -> Adobe) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\RunOnce: [Uninstall 24.186.0915.0004] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marin\AppData\Local\Microsoft\OneDrive\24.186.0915.0004" [0 2024-10-19] () <==== ATTENTION [zéro octet Fichier/Dossier] HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\RunOnce: [Uninstall 24.192.0923.0006] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marin\AppData\Local\Microsoft\OneDrive\24.192.0923.0006" (Pas de fichier) HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\RunOnce: [Uninstall 24.196.0929.0005\i386] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marin\AppData\Local\Microsoft\OneDrive\24.196.0929.0005\i386" [0 2024-10-31] () <==== ATTENTION [zéro octet Fichier/Dossier] HKU\S-1-5-21-1043941932-3518940302-1686436534-1001\...\RunOnce: [Uninstall 24.196.0929.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marin\AppData\Local\Microsoft\OneDrive\24.196.0929.0005" [0 2024-10-31] () <==== ATTENTION [zéro octet Fichier/Dossier] HKLM\...\Windows x64\Print Processors\Canon MG5700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCS.DLL [30208 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\WINDOWS\system32\CNMLMCS.DLL [406528 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-03-23] (pdfforge GmbH) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\130.0.6723.92\Installer\chrmstp.exe [2024-11-01] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {518BF08C-5F5E-4727-8A64-889D4EBEBA32} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.) Task: {33006CEA-1294-4786-B15A-B34B8389974E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_Plugin.exe [1458232 2020-01-22] (Adobe Inc. -> Adobe) Task: {A04CDB7D-46FB-459C-B066-D270DF38FF74} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusUpdateChecker.exe [793040 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {955025EB-D1FB-405B-A9AF-F06CDC06ABF4} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5007312 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {CD5FFEEE-7C70-451F-8BB8-67115DC3FC82} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) Task: {DD937154-BBA7-47FD-9CC8-008DEB500A46} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {BB14624E-1C38-4365-9D57-B9F02E322360} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {53B478C5-6FFC-43BB-B925-DD143F8B93FF} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{3DEECEBF-FE7F-4374-8FEF-304027A0EA6E} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC) Task: {28A34F5D-CF77-4552-A119-2CBBE5831297} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28643008 2024-10-27] (Microsoft Corporation -> Microsoft Corporation) Task: {86C175BB-4B58-48B5-92B7-B504078192EA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28643008 2024-10-27] (Microsoft Corporation -> Microsoft Corporation) Task: {96E83133-A357-4FB0-84F7-2BEC8E1E0607} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312464 2024-10-30] (Microsoft Corporation -> Microsoft Corporation) Task: {2D0B2468-EBDE-4C01-9CB4-AE590F058EFF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312464 2024-10-30] (Microsoft Corporation -> Microsoft Corporation) Task: {78323BE9-FA09-4CAD-98F9-F3F91A56E67D} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [187600 2024-10-30] (Microsoft Corporation -> Microsoft Corporation) Task: {203C79E7-193C-4609-83F7-AF636E147153} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8893232C-3C77-45A0-AEE6-80C8E3F72546} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B3A42748-F81E-49CF-9CCA-E3D2D2C0F8C0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {64BA7DC5-63FB-45A7-A824-874EE23B7854} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2745D81E-56CC-4659-AB29-619CE21F8836} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672320 2024-10-26] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {B51AE19D-37D2-4A1B-BE8F-13177A6BE2A3} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1043941932-3518940302-1686436534-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672320 2024-10-26] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {01C9E48B-7FAE-4936-A414-8BCDBB33D8A9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-10-26] (Mozilla Corporation -> Mozilla Foundation) Task: {38A951D6-F95A-4477-AC74-279A37277E45} - System32\Tasks\Opera scheduled assistant Autoupdate 1609795369 => C:\Users\marin\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\marin\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {FE9CA8D1-FD86-4CA5-AE3F-2ACFD069A3C8} - System32\Tasks\Opera scheduled Autoupdate 1609795362 => C:\Users\marin\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) Task: {50A7202F-0FCC-4679-B3F4-419CEE38E078} - System32\Tasks\RtkAudUService64_BG => C:\Windows\System32\RtkAudUService64.exe [956704 2019-12-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {A54E7C2D-1D55-4DF4-8E69-1469FA9CF073} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-1043941932-3518940302-1686436534-1001 => C:\Users\marin\AppData\Roaming\Zoom\bin\Zoom.exe [435016 2024-10-17] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{14db4372-5179-42f9-a9cb-93461d51e0b9}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{14db4372-5179-42f9-a9cb-93461d51e0b9}: [DhcpDomain] lan Tcpip\..\Interfaces\{14db4372-5179-42f9-a9cb-93461d51e0b9}\34843565D275966496D294E667964756: [DhcpNameServer] 10.10.10.254 Tcpip\..\Interfaces\{14db4372-5179-42f9-a9cb-93461d51e0b9}\34843565D275966496D294E667964756: [DhcpDomain] access.network Tcpip\..\Interfaces\{14db4372-5179-42f9-a9cb-93461d51e0b9}\960586F6E656: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{14db4372-5179-42f9-a9cb-93461d51e0b9}\C496675626F687D213337303: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{14db4372-5179-42f9-a9cb-93461d51e0b9}\C496675626F687D213337303: [DhcpDomain] home Tcpip\..\Interfaces\{33cb74b5-d08e-4b5b-9df9-829e55403a08}: [DhcpNameServer] 10.66.128.1 Edge: ======= Edge Profile: C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default [2024-11-03] Edge HomePage: Default -> hxxps://? Edge StartupUrls: Default -> "hxxps://?" Edge DefaultSearchURL: Default -> hxxps://af.xdock.co?keyword={searchTerms}&pid=490&subid=4902 Edge DefaultSearchKeyword: Default -> yahoosearch Edge DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms} Edge Extension: (Pearltrees Extension) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bgngjfgpahnnncnimlhjgjhdajmaeeoa [2024-10-01] Edge Extension: (PDF Converter Tool) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bljnfoneaklnbiffnenphbigihigbnhk [2023-10-15] Edge Extension: (Avast Passwords) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2024-06-05] Edge Extension: (Barre de Confiance CM-CIC) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ffjkhaeogkeelkioellpgcebmekedpag [2023-10-15] Edge Extension: (Ecosia) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fhfidmlnclkepgapcephbaciajegheco [2024-10-30] Edge Extension: (Éditeur Office pour Docs, Sheets et Slides) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gbkeegbaiigmenfmjfclcdgdpimamgkj [2024-10-15] Edge Extension: (Microsoft 365) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2023-12-13] Edge Extension: (Google Docs hors connexion) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-13] Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-09-27] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-10-23] Edge Extension: (Cisco Webex Extension) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ikdddppdhmjcdfgilpnbkdeggoiicjgo [2023-10-15] Edge Extension: (Edge relevant text changes) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Edge Extension: (AdBlock - bloquez les publicités sur le web) - C:\Users\marin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-10-23] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: muq56f3d.default FF ProfilePath: C:\Users\marin\AppData\Roaming\Mozilla\Firefox\Profiles\muq56f3d.default [2024-09-21] FF Homepage: Mozilla\Firefox\Profiles\muq56f3d.default -> hxxps://? FF NewTab: Mozilla\Firefox\Profiles\muq56f3d.default -> hxxps://? FF ProfilePath: C:\Users\marin\AppData\Roaming\Mozilla\Firefox\Profiles\llh0n90x.default-release [2024-10-25] FF Homepage: Mozilla\Firefox\Profiles\llh0n90x.default-release -> hxxps://? FF NewTab: Mozilla\Firefox\Profiles\llh0n90x.default-release -> hxxps://? FF Extension: (Privacy Badger) - C:\Users\marin\AppData\Roaming\Mozilla\Firefox\Profiles\llh0n90x.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2024-07-25] FF Extension: (uBlock Origin) - C:\Users\marin\AppData\Roaming\Mozilla\Firefox\Profiles\llh0n90x.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-10-19] FF SearchPlugin: C:\Users\marin\AppData\Roaming\Mozilla\Firefox\Profiles\llh0n90x.default-release\searchplugins\My Yahoo Search.xml [2024-08-24] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_321.dll [2020-01-22] (Adobe Inc. -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_321.dll [2020-01-22] (Adobe Inc. -> ) FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-09-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-10-22] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default [2024-11-03] CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com; hxxps://www.dedoles.fr; hxxps://www.lemonde.fr CHR HomePage: Default -> hxxps://? CHR StartupUrls: Default -> "hxxps://?" CHR Extension: (Pearltrees Extension) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgngjfgpahnnncnimlhjgjhdajmaeeoa [2024-10-16] CHR Extension: (PDF Converter Tool) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bljnfoneaklnbiffnenphbigihigbnhk [2020-05-08] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-11-02] CHR Extension: (Ecosia) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2024-10-16] CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-10-24] CHR Extension: (Avast Passwords) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2024-06-19] CHR Extension: (Barre de Confiance CM-CIC) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjkhaeogkeelkioellpgcebmekedpag [2022-09-13] CHR Extension: (Signets iCloud) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2023-12-29] CHR Extension: (Éditeur Office pour Docs, Sheets et Slides) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbkeegbaiigmenfmjfclcdgdpimamgkj [2024-10-22] CHR Extension: (Google Docs hors connexion) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-16] CHR Extension: (AdBlock - bloquez les publicités sur le web) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-10-24] CHR Extension: (Cisco Webex Extension) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2022-07-25] CHR Extension: (Microsoft 365) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2024-01-02] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR Extension: (Mots de passe iCloud) - C:\Users\marin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pejdijmoenmkgeppbflobdenhhabjlaj [2024-08-02] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.) R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\AsusAppService\AsusAppService.exe [1176016 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManager.exe [1389008 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\AsusOptimization\AsusOptimization.exe [206568 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 AsusPTPService; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_570a90d182f53fa5\AsusPTPService.exe [207248 2021-07-07] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSwitch\AsusSwitch.exe [650704 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5007312 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [599784 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13650648 2024-10-27] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-12] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-12] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-10-29] (Dropbox, Inc -> Dropbox, Inc.) S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3420376 2024-08-13] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\211.4.6008\DropboxElevationService.exe [1659280 2024-10-29] (Dropbox, Inc -> Dropbox, Inc.) R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [299320 2019-04-09] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) R2 MajIndexEducationService; C:\program files (x86)\index education\mise a jour automatique\ServiceMiseAJourIndex.exe [5137520 2024-07-24] (INDEX EDUCATION SAS -> Index Education) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2022-09-01] () [Fichier non signé] <==== ATTENTION S2 riseupvpn-helper; C:\Program Files\RiseupVPN\nssm.exe [294912 2014-08-31] () [Fichier non signé] <==== ATTENTION R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [27800 2024-08-13] (7270356 Canada Inc. -> ) <==== ATTENTION R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.) S3 AsusNumpadKbd; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilterkbd.inf_amd64_33fae209850d2cb7\AsusDigiFilter.sys [144344 2021-07-07] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R3 AsusNumpadPTP; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_570a90d182f53fa5\AsusDigiFilter.sys [144344 2021-07-07] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemAnalysis\AsusSAIO.sys [49312 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-10-03] (Bitdefender SRL -> Bitdefender) R3 MpKsle0e749ba; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3ED1C282-A0EA-45C3-ADFA-CECA461896BD}\MpKslDrv.sys [267552 2024-11-02] (Microsoft Windows -> Microsoft Corporation) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2020-10-12] (Microsoft Corporation) [Fichier non signé] S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)