Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01-09-2021
Exécuté par philippe (administrateur) sur PHILIPPE-PC (06-09-2021 09:57:12)
Exécuté depuis C:\Users\philippe\Desktop
Profils chargés: philippe & DefaultAppPool
Platform: Windows 10 Home Version 21H1 19043.1165 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(F.lux Software LLC -> f.lux Software LLC) C:\Users\philippe\AppData\Local\FluxSoftware\Flux\flux.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Protexis Inc. -> Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [Ulead AutoDetector v2] => C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\monitor.exe [90112 2006-11-29] (Ulead Systems, Inc.) [Fichier non signé]
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1761120 2015-03-22] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-02-12] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1890664 2016-01-14] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-12-09] (Apple Inc.) [Fichier non signé]
HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-4103417561-3460595043-3021655710-1000\...\Run: [f.lux] => C:\Users\philippe\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-4103417561-3460595043-3021655710-1000\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30919232 2019-03-19] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-4103417561-3460595043-3021655710-1000\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5550304 2021-07-24] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM\...\Windows x64\Print Processors\Canon TS6300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDFQ.DLL [529408 2020-06-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6300 series: C:\WINDOWS\system32\CNMLMFQ.DLL [959488 2020-06-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\WINDOWS\system32\EP0SLM01.DLL [77824 2009-07-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\EPSON Stylus Photo RX700 Series 64MonitorBE: C:\WINDOWS\system32\E_ILM9IE.DLL [119808 2005-06-09] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\EPSON XP-600 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMJCE.DLL [120320 2011-04-20] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {04872382-8B62-4EE5-BE81-3338CD79E345} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {0BB3090A-F64B-4101-8EBF-4329447B9760} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4902680 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
Task: {0EC3D0E9-616D-47F8-A4D7-E64677773740} - System32\Tasks\{ADB1D03C-1D47-4B00-B910-A1B7BB5D50EF} => C:\Windows\twain_32\escndv\escndv.exe [212504 2012-09-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORP.)
Task: {1404E0A6-EEF7-467E-9CDB-CA35EC625DCE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {17809B99-8CB3-4CFE-8304-9D8AA34F5349} - System32\Tasks\{B2F06813-3136-4E8A-83A7-B95BDD6F431F} => C:\Windows\system32\pcalua.exe -a C:\WINDOWS\ISUN040C.EXE -c -f"C:\Program Files (x86)\Adobe\Photoshop Elements 2\Uninst.isu" -c"C:\Program Files (x86)\Adobe\Photoshop Elements 2\Uninst.dll"
Task: {178BB5AD-8FCF-4FC0-88EF-4012CB3F8F3B} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [39920 2019-03-19] (Garmin International, Inc. -> )
Task: {1BF6BAAF-5D1F-41F1-BBF5-4598BB7F0FEE} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {2D1B7936-C965-46CE-BD35-F32C29C8545E} - System32\Tasks\{F14494DF-27D3-4AC9-BE3D-53E4A8FE35C2} => C:\Windows\twain_32\escndv\escndv.exe [212504 2012-09-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORP.)
Task: {2D57F62B-2CED-4673-9470-0844151826F2} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {30B032C7-9E3B-4A10-811D-0B5C6AE0771A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {319F7576-77EB-47FD-838D-B85C92AC797C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {320ACAA3-8A71-4E40-80A6-9D03F4BA6082} - System32\Tasks\{2E5DA296-3982-4244-B360-485A1B3E768E} => C:\Windows\twain_32\escndv\escndv.exe [212504 2012-09-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORP.)
Task: {3236DECD-6596-4E52-89FE-70F365A232FF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {373D7877-732B-44FA-AEBE-149966F6E110} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3E697E9A-3BEB-43C8-BD12-3A026B392031} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
Task: {437DA7A9-4FFC-4953-8A13-E3D659AFBF76} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {43969241-8A56-4E20-AA71-A397439A7C7B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4CB5701B-96BC-4C74-BFDC-EF7CBFCDA895} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {58B04E05-2FAE-4A91-976C-515E467424FB} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {59D7C070-92A8-4EA1-AC10-44A2946020E3} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {5A96780B-AA9C-4F55-9990-EF354D4F7B29} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {612AB65C-E5D6-4F81-BA27-DBF1A2A68D4E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6B19D9E3-3758-4B1C-AC31-03B28764F542} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {6F0375E9-6B6B-43C5-874C-CA340B2CB977} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {70C7A02B-38E5-4BC8-8F10-A2F309CC6591} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {710DA60E-F827-4D8B-856A-119B8A9204F5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {731F403E-9E24-4122-9FFF-2A6ECA2DAA9A} - System32\Tasks\{99E93FDE-4A3F-4736-8486-5BE7210ED6CA} => C:\Windows\twain_32\escndv\escndv.exe [212504 2012-09-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORP.)
Task: {7AAF3919-9D19-4DC7-AF35-FA03025F878A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {7AB26AA8-7170-4162-B9E8-981DCBEBE523} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {7F352D01-F7C4-48F1-8130-589523EDA762} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [673720 2021-08-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {82CB425F-46F5-413F-B314-3B6D1A745D80} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {84A644B0-83A5-4BF7-A800-2FD465FC8D8D} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {88C6E284-62DD-40CC-AFA0-F7A4EE68FC9E} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {8ECF2E36-2281-479A-9D6A-6076A6345318} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {8EE430CA-20A3-4B47-A2AF-E98984E5A146} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {99376C9B-CAE9-4D3C-9400-F68E8F6FF963} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {9F129743-0094-484C-B393-5EB34C511862} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {A48A8DB9-1567-450E-A1C7-B57BDBE4F315} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {A4B8755C-96DE-491A-8ACF-6A609C6F47B0} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION
Task: {AC6C480E-AAED-4EBB-AAB0-FBE335D7656F} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {AFE6EB23-94FD-4BF0-A1E0-EC87B8A719D6} - System32\Tasks\{5D558117-5638-4966-9EEE-FE6788039633} => C:\Windows\twain_32\escndv\escndv.exe [212504 2012-09-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORP.)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B565B542-DA03-4DAA-B39A-D768C6FE59FF} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {B6492B63-BD56-4334-82C6-83225CB42924} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B74A45D8-0F2A-4CC0-A6ED-FD3132255EF8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {C0D2E1BF-983E-437E-845A-904D1AEA59C5} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {D1942D56-378A-481D-86E1-0138262B9BA3} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D29A4038-63E5-4EAC-902B-65F428444E70} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D941F33F-7D85-4852-AC09-67310ACDC285} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DB2EC25C-C3D4-4D07-A179-AE9B7036BEC0} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E089C142-1CE9-4916-8241-06B02652FF32} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E4D72137-0DB4-41A6-872F-5C95DC69BD44} - System32\Tasks\{E421E2E7-5764-4215-8921-BF38B2BDEDFB} => C:\Windows\twain_32\escndv\escndv.exe [212504 2012-09-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORP.)
Task: {E5D61433-C8C6-4AC6-98A6-B2EF4B94C281} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E829E5F9-B497-406A-A50F-058699A83BD8} - System32\Tasks\{35E572A4-6447-410A-BC98-1BF95DFD8A74} => C:\Windows\system32\pcalua.exe -a C:\Users\philippe\Downloads\jre-8u45-windows-i586-iftw.exe -d C:\Users\philippe\Downloads
Task: {EAD62876-7296-42FF-B3ED-D2C0D678B0D7} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {F4361408-98E7-4066-A96B-EBFB33F4113F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {F861708D-604F-4D0B-849E-EAE0F42F9EBF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {F984C0E6-C6A2-45B3-83BA-ED3DCDDEDB0C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FB1600B2-1C87-4DD3-9D76-3F21C86E2DD4} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {FE63FC66-CA9E-4A92-8D08-1C4165B7405A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FE8FA290-F858-4468-834F-EF7E8CEC84BF} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{54ed0bab-ca8a-447d-88f0-d557f04126b5}: [DhcpNameServer] 192.168.0.254

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\philippe\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-05]
Edge StartupUrls: Default -> "hxxp://google.fr/"
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: vy3ps3wn.default-1584093330016
FF ProfilePath: C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016 [2021-09-06]
FF Extension: (I don't care about cookies) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2021-08-11]
FF Extension: (Avast Online Security) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016\Extensions\wrc@avast.com.xpi [2021-02-26]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-08-29]
FF Extension: (Fairytale Of Nature) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2021-06-03]
FF Extension: (Purpling bubbles) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016\Extensions\{69ab6730-1a1a-4d27-8aa4-f27a0e5f2de8}.xpi [2021-06-17]
FF Extension: (Video DownloadHelper) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-02]
FF Extension: (Google Analytics Blocker) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016\Extensions\{c7c3483c-0e96-45f4-8772-f84462cdc047}.xpi [2021-04-30]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\vy3ps3wn.default-1584093330016\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-01]
FF Plugin-x32: @Diginext.fr/VirtualGeoGP -> C:\Program Files (x86)\VirtualGeo3-GP\WebPlugin\Win32\npQtAPI3DPlugin.dll [2015-05-07] (DIGINEXT) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-06-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-06-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default [2018-07-30]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2017-06-12]
CHR Extension: (Avast SafePrice) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-06-12]
CHR Extension: (Avast Online Security) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-06-12]
CHR Extension: (Chrome Media Router) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-12]
CHR Profile: C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1 [2018-07-30]
CHR Extension: (Google Slides) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-07-08]
CHR Extension: (Google Docs) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-08]
CHR Extension: (Google Drive) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-08]
CHR Extension: (YouTube) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-08]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2017-07-08]
CHR Extension: (Avast SafePrice) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-07-08]
CHR Extension: (Avast SafePrice (BETA)) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fcoadmpfijfcmokecmkgolhbaeclfage [2017-07-08]
CHR Extension: (Google Sheets) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-07-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-08]
CHR Extension: (Avast Online Security) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-07-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-07-08]
CHR Extension: (Gmail) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-08]
CHR Extension: (Chrome Media Router) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-08]
CHR Profile: C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-08-08]
CHR StartupUrls: Profile 2 -> "hxxp://google.fr/","hxxps://drive.google.com/drive/folders/0B2bNwfiszqVqdUg0MUhHNF8zSmc"
CHR Extension: (Slides) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-01]
CHR Extension: (Docs) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-01]
CHR Extension: (Google Drive) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-28]
CHR Extension: (YouTube) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-08]
CHR Extension: (Sheets) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-01]
CHR Extension: (Protection Web Avira) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-08-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-08]
CHR Extension: (Avast Online Security) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-08-08]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-08-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-08]
CHR Extension: (Gmail) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-08]
CHR Extension: (Chrome Media Router) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-08]
CHR Profile: C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-04-06]
CHR StartupUrls: Profile 3 -> "hxxps://www.google.fr/","hxxps://drive.google.com/drive/my-drive"
CHR Extension: (Slides) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-20]
CHR Extension: (Docs) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-20]
CHR Extension: (Google Drive) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-28]
CHR Extension: (YouTube) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-08]
CHR Extension: (Sheets) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-06]
CHR Extension: (Gmail) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-28]
CHR Extension: (Chrome Media Router) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-06]
CHR Profile: C:\Users\philippe\AppData\Local\Google\Chrome\User Data\System Profile [2018-07-30]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8262736 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [627480 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [374552 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-26] (Avast Software s.r.o. -> AVAST Software)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> )
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19256 2020-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19256 2020-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [308088 2016-01-14] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [218976 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [367640 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17344 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [184648 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559816 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108408 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82904 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851704 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215392 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [328568 2021-08-05] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376032 2020-02-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-01] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-06 09:41 - 2021-09-06 09:44 - 000036923 _____ C:\Users\philippe\Desktop\Addition.txt
2021-09-06 09:37 - 2021-09-06 09:58 - 000037070 _____ C:\Users\philippe\Desktop\FRST.txt
2021-09-06 09:36 - 2021-09-06 09:58 - 000000000 ____D C:\FRST
2021-09-06 09:33 - 2021-09-06 09:34 - 002302464 _____ (Farbar) C:\Users\philippe\Desktop\FRST64.exe
2021-09-06 09:24 - 2021-09-06 09:24 - 000065485 _____ C:\Users\philippe\AppData\Local\recently-used.xbel
2021-09-05 19:14 - 2021-09-05 19:14 - 000053630 _____ C:\Users\philippe\Desktop\LISTING SEZ A sup (MAJ 04-09-2021).ods
2021-08-25 10:23 - 2021-08-25 10:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-08-25 09:45 - 2021-08-25 10:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-08-21 14:28 - 2021-08-21 14:28 - 011014728 _____ (David THOIRON ) C:\Users\philippe\Downloads\fotosketcher_3-80_en_122900_64.exe
2021-08-21 11:23 - 2021-08-21 11:27 - 000000000 ____D C:\Users\philippe\AppData\Local\darktable
2021-08-21 11:17 - 2021-08-21 11:18 - 090290931 _____ C:\Users\philippe\Downloads\darktable-3.6.0.1-win64.exe
2021-08-20 20:06 - 2021-08-20 20:06 - 000000000 ____D C:\Program Files\mypaint-w64
2021-08-20 19:54 - 2021-08-20 19:54 - 000000000 ____D C:\Users\philippe\AppData\Local\gtk-3.0
2021-08-20 19:53 - 2021-08-20 19:54 - 000000000 ____D C:\Users\philippe\AppData\Local\mypaint
2021-08-20 19:49 - 2021-08-20 19:50 - 038782051 _____ C:\Users\philippe\Downloads\mypaint-w64-2.0.1-installer.exe
2021-08-19 16:37 - 2021-08-19 16:37 - 000035489 _____ C:\Users\philippe\Downloads\circuit-vtt-n-13-le-pre-jacquot-la-bresse-hautes-vosges-gpx-128700.gpx
2021-08-19 16:33 - 2021-08-19 16:33 - 000077402 _____ C:\Users\philippe\Downloads\circuit-vtt-n-15-tour-de-la-bresse-hautes-vosges-gpx-128702.gpx
2021-08-19 16:25 - 2021-08-19 16:25 - 004712495 _____ C:\Users\philippe\Downloads\carte-des-circuits-vtt-des-hautes-vosges-25213.pdf
2021-08-19 15:59 - 2021-08-19 15:59 - 000033050 _____ C:\Users\philippe\Downloads\utgtrack-3976(1).gpx
2021-08-19 15:47 - 2021-08-19 15:47 - 000036472 _____ C:\Users\philippe\Downloads\utgtrack-3872.gpx
2021-08-19 15:40 - 2021-08-19 15:40 - 000033050 _____ C:\Users\philippe\Downloads\utgtrack-3976.gpx
2021-08-16 14:34 - 2021-08-16 14:34 - 005283870 _____ C:\Users\philippe\Desktop\brochure-vtt-bussang-stmaurice-ventron-cornimont.pdf
2021-08-13 17:29 - 2021-08-13 17:29 - 000047717 _____ C:\Users\philippe\Downloads\9d172d2ffc05e98b2d1c711cd74199355bf0559d.gpx
2021-08-13 17:10 - 2021-08-13 17:10 - 000190179 _____ C:\Users\philippe\Downloads\600844b6b2788c41458588f9b79de5fc778c34dd.gpx
2021-08-12 11:57 - 2021-08-12 11:57 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-08-11 09:31 - 2021-08-11 09:31 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-11 09:31 - 2021-08-11 09:31 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-11 09:31 - 2021-08-11 09:31 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-08-11 09:30 - 2021-08-11 09:30 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-08-11 09:30 - 2021-08-11 09:30 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-08-11 09:30 - 2021-08-11 09:30 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-08-11 09:28 - 2021-08-11 09:28 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-11 08:50 - 2021-08-11 08:50 - 000000000 ___HD C:\$WinREAgent
2021-08-10 08:31 - 2021-08-10 08:31 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2021-08-10 08:31 - 2021-08-10 08:31 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2021-08-10 08:31 - 2021-08-10 08:31 - 000000000 ____D C:\Program Files\Google
2021-08-08 20:51 - 2021-08-08 20:51 - 000031565 _____ C:\Users\philippe\Downloads\t128359894_vtt de bussang au.gpx

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-06 09:56 - 2020-09-25 10:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-06 09:45 - 2013-06-09 22:59 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-06 09:34 - 2016-11-20 19:55 - 000000000 ____D C:\Users\philippe\AppData\LocalLow\Mozilla
2021-09-06 09:33 - 2013-06-09 23:40 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-06 09:28 - 2021-06-14 11:54 - 000000000 ____D C:\ProgramData\CanonIJPLM
2021-09-06 09:24 - 2018-12-26 19:56 - 000000000 ____D C:\Users\philippe\AppData\Local\gtk-2.0
2021-09-06 09:24 - 2018-12-26 19:53 - 000000000 ____D C:\Users\philippe\AppData\Local\babl-0.1
2021-09-06 09:16 - 2013-06-13 20:18 - 000000000 ____D C:\Users\philippe\AppData\Roaming\vlc
2021-09-06 09:14 - 2020-09-25 11:11 - 000002456 _____ C:\WINDOWS\system32\Tasks\{B2F06813-3136-4E8A-83A7-B95BDD6F431F}
2021-09-06 09:14 - 2020-09-25 11:11 - 000002090 _____ C:\WINDOWS\system32\Tasks\{F14494DF-27D3-4AC9-BE3D-53E4A8FE35C2}
2021-09-06 09:14 - 2020-09-25 11:11 - 000002090 _____ C:\WINDOWS\system32\Tasks\{E421E2E7-5764-4215-8921-BF38B2BDEDFB}
2021-09-06 09:13 - 2020-09-25 11:11 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-09-06 09:13 - 2020-09-25 11:11 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-09-06 09:13 - 2020-09-25 11:11 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-06 09:13 - 2020-09-25 11:11 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-09-06 09:13 - 2020-09-25 11:11 - 000003318 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{CD8CB33D-7D2D-42B5-A1EC-DFF58CDCD816}
2021-09-06 09:13 - 2020-09-25 11:11 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-06 09:13 - 2020-09-25 11:11 - 000003094 _____ C:\WINDOWS\system32\Tasks\Java Platform SE Auto Updater
2021-09-06 09:13 - 2020-09-25 11:11 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4103417561-3460595043-3021655710-1000
2021-09-06 09:13 - 2020-09-25 11:11 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2021-09-06 09:13 - 2020-09-25 11:11 - 000002322 _____ C:\WINDOWS\system32\Tasks\{35E572A4-6447-410A-BC98-1BF95DFD8A74}
2021-09-06 09:13 - 2020-09-25 11:11 - 000002090 _____ C:\WINDOWS\system32\Tasks\{ADB1D03C-1D47-4B00-B910-A1B7BB5D50EF}
2021-09-06 09:13 - 2020-09-25 11:11 - 000002090 _____ C:\WINDOWS\system32\Tasks\{99E93FDE-4A3F-4736-8486-5BE7210ED6CA}
2021-09-06 09:13 - 2020-09-25 11:11 - 000002090 _____ C:\WINDOWS\system32\Tasks\{5D558117-5638-4966-9EEE-FE6788039633}
2021-09-06 09:13 - 2020-09-25 11:11 - 000002090 _____ C:\WINDOWS\system32\Tasks\{2E5DA296-3982-4244-B360-485A1B3E768E}
2021-09-06 09:13 - 2020-09-25 11:11 - 000002038 _____ C:\WINDOWS\system32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2021-09-06 09:10 - 2020-09-25 11:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-09-06 08:16 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-05 16:30 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-05 13:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-09-05 09:16 - 2018-06-24 08:33 - 000000000 ____D C:\Users\philippe\AppData\Local\AVAST Software
2021-09-05 08:45 - 2020-09-25 11:11 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-09-04 19:46 - 2020-07-24 08:40 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-04 19:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-04 19:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-01 13:18 - 2017-12-13 02:07 - 000000000 ____D C:\Users\philippe\AppData\Local\Packages
2021-08-31 09:15 - 2021-04-08 11:40 - 000000000 ____D C:\Users\philippe\.iphigenie
2021-08-25 14:16 - 2020-03-24 09:59 - 000000000 ____D C:\Program Files\Captvty
2021-08-25 10:23 - 2013-06-09 23:40 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-08-25 10:23 - 2013-06-09 23:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-08-24 17:51 - 2019-04-04 11:08 - 000000000 ____D C:\Users\philippe\.dbus-keyrings
2021-08-21 11:23 - 2018-06-25 23:10 - 000000000 ____D C:\Users\philippe\AppData\Local\CrashDumps
2021-08-21 10:40 - 2018-05-22 12:02 - 000000000 ____D C:\Users\philippe\AppData\Local\PlaceholderTileLogoFolder
2021-08-21 10:24 - 2018-12-26 18:39 - 000000000 ____D C:\Program Files\paint.net
2021-08-21 09:58 - 2018-07-11 08:39 - 000000000 ____D C:\ProgramData\Packages
2021-08-20 18:42 - 2020-09-25 10:58 - 002004550 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-08-20 18:42 - 2019-12-07 16:49 - 000865300 _____ C:\WINDOWS\system32\perfh00C.dat
2021-08-20 18:42 - 2019-12-07 16:49 - 000177650 _____ C:\WINDOWS\system32\perfc00C.dat
2021-08-20 18:36 - 2013-06-09 23:33 - 000000000 ____D C:\ProgramData\AVAST Software
2021-08-20 18:35 - 2020-09-25 11:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-20 18:34 - 2019-12-07 11:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-08-16 16:07 - 2020-09-25 10:45 - 000002471 _____ C:\Users\philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-16 15:36 - 2020-09-25 10:45 - 000000000 ____D C:\Users\philippe
2021-08-14 08:58 - 2020-11-21 09:35 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-08-11 20:30 - 2020-09-25 10:37 - 002329168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-11 20:25 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-08-11 20:25 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-08-11 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-08-11 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-08-11 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-08-11 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-08-11 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-08-11 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-08-11 20:25 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-08-11 09:42 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-11 08:40 - 2013-08-06 20:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-11 08:30 - 2013-06-10 03:20 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-08 18:12 - 2016-05-11 00:19 - 000000000 ___RD C:\Users\philippe\OneDrive

==================== Fichiers à la racine de certains dossiers ========

2016-04-03 12:35 - 2016-03-29 18:41 - 132342915 _____ () C:\Program Files (x86)\Apache_OpenOffice_4.1.2_Win_x86_install_fr.exe
2014-06-05 10:17 - 2019-10-04 15:01 - 000009728 _____ () C:\Users\philippe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-09-06 09:24 - 2021-09-06 09:24 - 000065485 _____ () C:\Users\philippe\AppData\Local\recently-used.xbel
2018-07-30 09:19 - 2018-07-30 09:19 - 000000017 _____ () C:\Users\philippe\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================