Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-07-2021
Exécuté par MAC (administrateur) sur ASUS-TONIA (ASUSTeK COMPUTER INC. N750JK) (14-07-2021 15:34:20)
Exécuté depuis C:\Users\MAC\Desktop
Profils chargés: MAC
Platform: Windows 10 Home Version 20H2 19042.1052 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS Console\ASUS Console Starter.exe
(Atheros) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Corel Corporation -> ) C:\Windows\SysWOW64\PSIService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <11>
(Nitro Software, Inc. -> ) C:\Program Files\NitroPDF\Pro 10\Nitro_UpdateService.exe
(Nitro Software, Inc. -> Nitro PDF Software) C:\Program Files\NitroPDF\Pro 10\NitroPDFDriverService10x64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync.exe <3>
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync-inotify.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WDDiscoveryMonitor.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files\WD Desktop App\kdd.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-10-20] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [38840 2009-12-22] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640440 2009-12-21] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [vspdfprsrv.exe] => C:\Program Files (x86)\PDF Pro 10\vspdfprsrv.exe [6221312 2012-10-26] (Visagesoft) [Fichier non signé]
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81373696 2021-01-18] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-01-15] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49925280 2021-06-18] (Google LLC -> )
HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\...\Run: [Spotify] => C:\Users\MAC\AppData\Roaming\Spotify\Spotify.exe [25932192 2019-08-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\...\MountPoints2: {3ad4bb77-53f0-11eb-82e2-6c71d9d423e6} - "H:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [52568 2009-08-19] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\WINDOWS\system32\hpinkstsC211LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\WINDOWS\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\WINDOWS\system32\nitrolocalmon10.dll [31896 2015-05-06] (Nitro Software, Inc. -> Nitro PDF Software)
HKLM\...\Print\Monitors\VSP1:: C:\WINDOWS\system32\vsmon1.dll [23552 2011-04-11] (Visagesoft) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\90.1.9508.212\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-06-28] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7844.104\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3018.3\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-01-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-01-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {087B48FC-7D2C-440F-9FF7-E8A955DB66BA} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55368 2013-08-19] (ASUSTeK Computer Inc. -> ASUS)
Task: {0B934F37-2550-4BDC-A238-F9A249EAA855} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0C35A856-BA34-4BF2-9FCA-30F7C3B13240} - System32\Tasks\WD Discovery Service Task mac => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [72704 2021-01-18] (Western Digital Technologies, Inc. -> )
Task: {0CDF0CFE-8545-4448-B7E6-74BE321BE31A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [746104 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E9FBA73-E1E0-46C6-8591-D33D702F38F2} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2013-11-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {13E182CC-7ACA-4CC2-A531-F872E54039F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1B8B7110-90D8-4A55-8842-830ACA11EE8B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [658040 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {37E832F0-32A3-42CC-838F-5297727D001C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3B1022E4-37A8-4BF6-BAD3-B96E3A33CA77} - System32\Tasks\HP AR Program Upload - 3a48538c0894458eae4e2a2280fe29016d733ae5c6e949ee9e675cbe4a9ce411 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: <Company name>)
Task: {3E204FA2-5134-4EE4-8D5A-02A36DB6F5D1} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [521336 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {415E43A2-8F16-44D7-A963-FB7FD54A7EF1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864824 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4D530093-C8F3-4477-92CB-78E9E6DFB46E} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {56F11693-DA79-4960-8425-9B79E13F8ACB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {5B3029E1-128F-4005-9EEE-AB54AA189034} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519288 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {615EDFB3-F952-4503-87F6-4B5397ED3570} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {65F4CE51-0A45-4B8A-BB55-8AF43CC197FE} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18232 2013-12-12] (ASUSTeK Computer Inc. -> AsusTek)
Task: {67111D9F-A3B6-49FD-996D-8FD7179F4967} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7A63F064-50F5-4DC8-9C45-FED6E5059AA3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {922A47A5-0DD8-4E31-B319-322CAA4D420F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F490455-524D-49FE-903B-1F16145D1813} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19723888 2014-03-27] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {9FAF4001-482D-4003-ABEF-358E2C95BF6E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {9FF4B606-2509-41C6-A5A6-9C4D085CF86B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [658040 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B6320651-19F1-458A-B3DC-1FDC924447A3} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [1957040 2013-11-04] (ASUSTeK Computer Inc. -> ) [Fichier non signé]
Task: {B8A8EECB-6C29-46AD-9521-47421BB56130} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {BCCCF372-5009-4F6B-9EF2-7FFFB15B3BE8} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe
Task: {C03445B7-4618-4350-B592-22CBFA7E1CBF} - System32\Tasks\ASUS Console => C:\Program Files\ASUS\ASUS Console\ASUS Console Starter.exe [2278168 2014-02-06] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {C0B88770-6950-4ECF-BE1D-27EFE7EAAF18} - System32\Tasks\P4GIntlCtrl => C:\Program Files\ASUS\P4G\IntlDPST.exe [74112 2014-02-11] (ASUSTeK Computer Inc. -> )
Task: {C8E75F56-85CB-4639-B1EF-0C4C0CDB6041} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {CB5CE9E4-77CA-4599-87C5-48A2372BB455} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [183408 2013-08-16] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CE4E256D-4DEF-4468-947C-CA2E89B90AB4} - System32\Tasks\BlueStacksHelper => C:\ProgramData\Bitmoji\BlueStacks\Client\Helper\BlueStacksHelper.exe (Accès refusé) <==== ATTENTION
Task: {D2CF6961-9A77-4CA7-8FE0-C16542735945} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-28] (Google Inc -> Google Inc.)
Task: {D31E40AD-E917-4CEE-82C6-60406156793C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964728 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5284859-27CE-494A-AB4C-6FAC4E2F8688} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-28] (Google Inc -> Google Inc.)
Task: {D75554BA-8B05-4167-A879-2CE4A1FCE695} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1038648 2014-02-11] (ASUSTeK Computer Inc. -> ASUS)
Task: {D8680549-0D07-4381-8F90-B25189EFD60F} - System32\Tasks\WD Device Agent Task mac => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [717824 2021-01-18] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {E16E3AB5-5BE4-4F26-A680-CED99F2DEA13} - System32\Tasks\HP AR Program Upload - 3c6498f9a24449bbb1ce34fa1023e8ab240a03ebc56b44f49aef58c72487cb2c => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: <Company name>)
Task: {F07A1E11-5F9A-43B2-A60C-42FD37BEFC2E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-12-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {F157AA87-2F8E-47A7-B671-EB31F8AEA9C2} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [746104 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F4C4FFDA-BDE0-41D8-A66D-3F60B2259255} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F545551D-69A2-40B7-8ECE-2E4BDA92F679} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Flash Player NPAPI Notifier" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\ASUS Console" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\ASUS P4G" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\ASUS USB Charger Plus" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\BlueStacksHelper" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\HP AR Program Upload - 3a48538c0894458eae4e2a2280fe29016d733ae5c6e949ee9e675cbe4a9ce411" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\HP AR Program Upload - 3c6498f9a24449bbb1ce34fa1023e8ab240a03ebc56b44f49aef58c72487cb2c" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(21): schtasks.exe -> /Change /TN "\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(22): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3382590871-3823213782-2396755087-1002" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(23): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3382590871-3823213782-2396755087-500" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(24): schtasks.exe -> /Change /TN "\P4GIntlCtrl" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(25): schtasks.exe -> /Change /TN "\RtHDVBg" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(26): schtasks.exe -> /Change /TN "\RTKCPL" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(27): schtasks.exe -> /Change /TN "\WD Device Agent Task mac" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(28): schtasks.exe -> /Change /TN "\WD Discovery Service Task mac" /ENABLE
Task: {FEF9D8CF-906E-4056-B08D-1F4564A1DBFA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(29): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{AE298F62-73CB-4E23-8F54-D3A14E6FFE13}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Profile: C:\Users\MAC\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-14]

FireFox:
========
FF DefaultProfile: yf62nl8w.default
FF ProfilePath: C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default [2021-07-14]
FF Homepage: Mozilla\Firefox\Profiles\yf62nl8w.default -> hxxps://www.google.be/
FF Notifications: Mozilla\Firefox\Profiles\yf62nl8w.default -> hxxps://1fichier.com
FF Extension: (Firefox Multi-Account Containers) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\@testpilot-containers.xpi [2018-01-23]
FF Extension: (AdBlocker Ultimate) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\adblockultimate@adblockultimate.net.xpi [2021-01-12]
FF Extension: (eID Belgique) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\belgiumeid@eid.belgium.be.xpi [2021-03-04]
FF Extension: (Browsec VPN - Free VPN for Firefox) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\browsec@browsec.com.xpi [2021-06-22]
FF Extension: (Spanish (Spain) Dictionary) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\es-es@dictionaries.addons.mozilla.org.xpi [2021-01-18]
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\firefox@ghostery.com.xpi [2021-06-30]
FF Extension: (Español (España) Language Pack) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2021-06-23]
FF Extension: (Multifox Toolbar Button) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\multifox-toolbar-button@rbaldwin.xpi [2017-03-05] []
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\sp@avast.com.xpi [2020-07-03]
FF Extension: (Avast Online Security) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\wrc@avast.com.xpi [2021-02-23]
FF Extension: (Video DownloadHelper) - C:\Users\MAC\AppData\Roaming\Mozilla\Firefox\Profiles\yf62nl8w.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_445.dll [2020-11-04] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_445.dll [2020-11-04] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-10-23] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-10-23] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-11-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-11-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2015-05-06] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin HKU\.DEFAULT: @hola.org/FlashPlayer -> C:\Users\MAC\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll [Pas de fichier]
FF Plugin HKU\.DEFAULT: @hola.org/vlc -> C:\Users\MAC\AppData\Local\Hola\firefox_hola\app\vlc\npvlc.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-3382590871-3823213782-2396755087-1002: @tools.google.com/Google Update;version=3 -> C:\Users\MAC\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-3382590871-3823213782-2396755087-1002: @tools.google.com/Google Update;version=9 -> C:\Users\MAC\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-3382590871-3823213782-2396755087-1002: connective.be/BrowserPlugin -> C:\Users\MAC\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-06-14] (Connective n.v.) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3382590871-3823213782-2396755087-1002: www.mydlink.com/Uplayer -> C:\Users\MAC\AppData\Roaming\D-Link\mydlink services plugin\1.0.2.7\npUplayer.dll [2015-12-11] (D-LINK CORPORATION -> D-Link Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\MAC\AppData\Local\Google\Chrome\User Data\Default [2021-06-28]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\MAC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-05-27]
CHR Extension: (Avast Online Security) - C:\Users\MAC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-06-28]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\MAC\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-05-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\MAC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-28]
CHR Extension: (Chrome Media Router) - C:\Users\MAC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-28]
CHR HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\MAC\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2019-01-31]
CHR HKU\S-1-5-21-3382590871-3823213782-2396755087-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-10-11] (Apple Inc. -> Apple Inc.)
S3 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe [71680 2014-02-25] (ASUS Cloud Corporation) [Fichier non signé]
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-07-25] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2016-04-08] (Macrovision Corporation -> Macrovision Europe Ltd.) [Fichier non signé]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> )
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NitroDriverReadSpool10; C:\Program Files\NitroPDF\Pro 10\NitroPDFDriverService10x64.exe [324760 2015-05-06] (Nitro Software, Inc. -> Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\NitroPDF\Pro 10\Nitro_UpdateService.exe [418968 2015-05-06] (Nitro Software, Inc. -> )
R2 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [177704 2007-06-05] (Corel Corporation -> )
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-01-02] (Atheros) [Fichier non signé]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 09C74B12; C:\WINDOWS\System32\drivers\09C74B12.sys [478392 2019-02-09] (Kaspersky Lab -> Kaspersky Lab ZAO)
S3 ACSSCR; C:\WINDOWS\system32\DRIVERS\a38usb.sys [44672 2017-09-20] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd)
R3 Apowersoft_AudioDevice; C:\WINDOWS\system32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (APOWERSOFT LIMITED -> Wondershare)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [70928 2013-12-12] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc.)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [24056 2016-01-14] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
S3 Netaapl; C:\WINDOWS\system32\DRIVERS\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2014-02-11] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-07-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425192 2021-07-14] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-14] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-07-14 15:13 - 2021-07-14 15:28 - 000054545 _____ C:\Users\MAC\Desktop\Addition.txt
2021-07-14 15:08 - 2021-07-14 15:35 - 000039872 _____ C:\Users\MAC\Desktop\FRST.txt
2021-07-14 15:03 - 2021-07-14 15:03 - 002301440 _____ (Farbar) C:\Users\MAC\Desktop\FRST64.exe
2021-07-14 14:54 - 2021-07-14 14:54 - 000001212 _____ C:\Users\MAC\Desktop\M. A.'s My Cloud Home.lnk
2021-06-28 15:14 - 2021-06-28 15:14 - 003257496 _____ (Nicolas Coolman) C:\Users\MAC\Downloads\ZHPCleaner (1).exe
2021-06-28 14:10 - 2021-06-28 14:10 - 000007720 _____ C:\Users\MAC\Documents\cc_20210628_141002.reg
2021-06-28 14:10 - 2021-06-28 14:10 - 000000552 _____ C:\Users\MAC\Documents\cc_20210628_141032.reg
2021-06-23 22:56 - 2021-06-23 22:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-23 21:04 - 2021-06-23 21:04 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-23 21:04 - 2021-06-23 21:04 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-23 21:04 - 2021-06-23 21:04 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-23 21:04 - 2021-06-23 21:04 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-23 21:03 - 2021-06-23 21:03 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-23 21:03 - 2021-06-23 21:03 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-23 21:03 - 2021-06-23 21:03 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-23 21:03 - 2021-06-23 21:03 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-23 21:03 - 2021-06-23 21:03 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-23 21:03 - 2021-06-23 21:03 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-23 21:02 - 2021-06-23 21:02 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-23 21:02 - 2021-06-23 21:02 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-23 21:02 - 2021-06-23 21:02 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-23 21:01 - 2021-06-23 21:01 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-23 21:01 - 2021-06-23 21:01 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-23 21:01 - 2021-06-23 21:01 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-23 21:01 - 2021-06-23 21:01 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-23 21:01 - 2021-06-23 21:01 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-23 19:18 - 2021-07-14 14:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-07-14 15:35 - 2019-02-05 19:15 - 000000000 ____D C:\FRST
2021-07-14 15:20 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-14 15:19 - 2020-11-04 16:19 - 000000000 ____D C:\ProgramData\Mozilla
2021-07-14 15:18 - 2017-02-28 18:04 - 000000000 ____D C:\Users\MAC\AppData\LocalLow\Mozilla
2021-07-14 14:54 - 2014-07-30 12:36 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-14 14:53 - 2021-01-18 23:43 - 000000000 ____D C:\Users\MAC\.wdc
2021-07-14 14:52 - 2021-01-18 23:46 - 000000000 ____D C:\Users\MAC\AppData\Roaming\WD Discovery
2021-07-14 14:51 - 2021-01-18 14:21 - 000000000 __SHD C:\Users\MAC\IntelGraphicsProfiles
2021-07-14 14:51 - 2014-10-29 10:14 - 000000000 ____D C:\Users\MAC\AppData\Local\CrashDumps
2021-07-14 14:50 - 2021-01-18 13:49 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-07-14 14:49 - 2020-11-19 01:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-07-14 14:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-07-14 14:40 - 2015-02-24 01:55 - 000000000 ____D C:\Program Files\CCleaner
2021-07-14 14:33 - 2021-01-18 14:13 - 002703174 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-14 14:33 - 2021-01-18 12:54 - 000777160 _____ C:\WINDOWS\system32\perfh00A.dat
2021-07-14 14:33 - 2021-01-18 12:54 - 000155290 _____ C:\WINDOWS\system32\perfc00A.dat
2021-07-14 14:33 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-07-14 14:33 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-07-14 14:33 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-14 14:29 - 2020-11-19 01:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-14 14:28 - 2021-01-18 13:44 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-14 14:28 - 2020-11-04 17:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-14 14:28 - 2018-06-08 17:36 - 000000000 ____D C:\Users\MAC\AppData\Local\AVAST Software
2021-07-14 14:28 - 2014-10-19 16:41 - 000000000 ____D C:\ProgramData\AVAST Software
2021-07-14 14:27 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-07-14 14:21 - 2014-10-13 12:48 - 000000000 ____D C:\Users\MAC\AppData\Local\Corel
2021-07-14 14:20 - 2021-01-18 14:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-07-14 14:07 - 2020-11-19 00:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-14 14:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-14 11:51 - 2020-11-19 01:31 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-14 11:51 - 2020-11-19 01:31 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-07-14 11:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-14 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-14 11:47 - 2021-01-18 14:34 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3382590871-3823213782-2396755087-1002
2021-07-14 11:47 - 2021-01-18 14:34 - 000000000 ___RD C:\Users\MAC\OneDrive
2021-07-14 11:47 - 2021-01-18 14:00 - 000002459 _____ C:\Users\MAC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-03 10:34 - 2014-10-13 12:48 - 000002828 ___SH C:\WINDOWS\SysWOW64\KGyGaAvL.sys
2021-07-03 10:34 - 2014-10-13 12:45 - 000000000 ____D C:\Users\MAC\Documents\My PSP Files
2021-07-03 01:01 - 2019-01-31 19:11 - 000002075 _____ C:\Users\Public\Desktop\Google Slides.lnk
2021-07-03 01:01 - 2019-01-31 19:11 - 000002073 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2021-07-03 01:01 - 2019-01-31 19:11 - 000002063 _____ C:\Users\Public\Desktop\Google Docs.lnk
2021-07-03 01:01 - 2019-01-31 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-07-02 03:01 - 2020-11-19 01:31 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-02 03:01 - 2020-11-19 01:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-28 15:13 - 2017-02-28 11:57 - 000000000 ____D C:\Users\MAC\AppData\Roaming\ZHP
2021-06-28 14:09 - 2021-01-18 11:50 - 000000000 ___DC C:\WINDOWS\Panther
2021-06-28 14:00 - 2021-01-18 14:18 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-23 22:55 - 2017-06-12 19:22 - 000001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-23 22:54 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-23 22:42 - 2020-11-19 00:28 - 000471208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-23 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-23 22:36 - 2021-01-18 14:00 - 000000000 ____D C:\Users\MAC
2021-06-23 20:23 - 2021-03-01 10:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-23 20:23 - 2021-01-18 19:27 - 000000000 ___HD C:\$WinREAgent
2021-06-23 20:21 - 2014-10-12 11:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-23 20:17 - 2014-10-12 11:04 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-22 10:43 - 2015-09-22 09:36 - 000000000 ____D C:\Users\MAC\AppData\Local\ElevatedDiagnostics
2021-06-22 10:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports

==================== Fichiers à la racine de certains dossiers ========

2020-06-07 20:34 - 2020-06-07 20:34 - 024166400 _____ () C:\Program Files (x86)\GUT11CF.tmp
2020-06-06 09:09 - 2020-06-06 09:09 - 024166400 _____ () C:\Program Files (x86)\GUT531.tmp
2020-06-07 09:33 - 2020-06-07 09:33 - 024166400 _____ () C:\Program Files (x86)\GUT724D.tmp
2020-06-05 10:05 - 2020-06-05 10:05 - 024166400 _____ () C:\Program Files (x86)\GUT7F0C.tmp
2020-06-05 20:45 - 2020-06-05 20:45 - 024166400 _____ () C:\Program Files (x86)\GUT8003.tmp
2020-06-06 01:45 - 2020-06-06 01:45 - 024166400 _____ () C:\Program Files (x86)\GUT8039.tmp
2020-06-08 13:44 - 2020-06-08 13:44 - 024166400 _____ () C:\Program Files (x86)\GUTDDA0.tmp
2020-06-05 15:45 - 2020-06-05 15:45 - 024166400 _____ () C:\Program Files (x86)\GUTFA8C.tmp
2019-11-28 13:19 - 2019-11-28 13:28 - 000000096 _____ () C:\Users\MAC\AppData\Roaming\Camdata.ini
2019-11-28 13:19 - 2019-11-28 13:28 - 000000408 _____ () C:\Users\MAC\AppData\Roaming\CamLayout.ini
2019-11-28 13:19 - 2019-11-28 13:28 - 000000408 _____ () C:\Users\MAC\AppData\Roaming\CamShapes.ini
2019-11-28 13:19 - 2019-11-28 13:28 - 000004520 _____ () C:\Users\MAC\AppData\Roaming\CamStudio.cfg
2014-10-12 10:01 - 2017-10-10 09:10 - 000000074 _____ () C:\Users\MAC\AppData\Roaming\sp_data.sys
2016-10-16 21:35 - 2016-10-16 21:35 - 000120661 _____ () C:\Users\MAC\AppData\Local\ars.cache
2016-10-16 21:35 - 2016-10-16 21:35 - 000342164 _____ () C:\Users\MAC\AppData\Local\census.cache
2018-12-02 12:01 - 2019-05-21 09:09 - 000003584 _____ () C:\Users\MAC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-16 21:19 - 2016-10-16 21:19 - 000000036 _____ () C:\Users\MAC\AppData\Local\housecall.guid.cache
2018-03-12 12:27 - 2018-03-12 12:27 - 000000218 _____ () C:\Users\MAC\AppData\Local\recently-used.xbel
2019-06-21 15:11 - 2019-11-08 18:16 - 000007605 _____ () C:\Users\MAC\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================