Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-09-2021
Exécuté par Alfred (administrateur) sur ALFRED-PC (ASUSTeK Computer Inc. N90SC) (11-09-2021 08:56:30)
Exécuté depuis C:\Users\Alfred\Desktop
Profils chargés: Alfred
Platform: Windows 10 Home Version 1607 14393.953 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Windows\AsScrPro.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(Boingo Wireless -> Boingo Wireless, Inc.) C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Device Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Device Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Alfred\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1051_none_7f2bf7ea21d201b2\TiWorker.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <11>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.1000_x64__kzf8qxf38zg5c\SkypeHost.exe
(SRS Labs, Inc -> SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1813288 2009-08-17] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [IntelliType Pro] => C:\Program Files\Microsoft Device Center\itype.exe [1464928 2012-06-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft Device Center\ipoint.exe [2004584 2012-06-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1803976 2016-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Run: [Boingo Wi-Fi] => C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2429 2010-08-26] () [Fichier non signé]
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [6937216 2009-10-09] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [170624 2009-08-20] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM\...\Print\Monitors\HP a211 Status Monitor: C:\WINDOWS\system32\hpinkstsa211LM.dll [354152 2011-06-08] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\WINDOWS\system32\hpinkstsB011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\WINDOWS\system32\HPDiscoPMB011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> %SystemRoot%\inf\unregmp2.exe /ShowWMP
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk [2010-08-26]
ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{D42F84B6-3709-4A50-8502-6719D16AE6C8}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe (SRS Labs, Inc -> Acresso Software Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {16C686BB-011A-4C44-8941-40D2CC2D982F} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {16DEA092-FB0C-40D0-AE20-0536BECC21D9} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task => {35EF4182-F900-4632-B072-8639E4478A61}
Task: {1B65DD58-D16B-45E8-BEB4-94D7E4D64DF7} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task => {35EF4182-F900-4632-B072-8639E4478A61}
Task: {1D761B05-E716-4A24-96D0-171B35EC5882} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Device Center\itype.exe [1464928 2012-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {31FCCC89-DACE-42DA-BDF1-1921DB9D244E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {49E783E7-50CD-4F30-A1CA-ED742D400095} - System32\Tasks\P4GIntlCtrl => C:\Program Files\P4G\IntlCtrl.exe [58496 2009-08-11] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {562A0C4C-ED86-4947-83AA-AF0E65609BD1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [468616 2018-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {576AF74A-291D-4586-993B-27D19393C2C0} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Device Center\ipoint.exe [2004584 2012-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A9B0FF7-A121-43E9-9D24-F818E6179DCA} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {686EA971-2A85-4D9A-873C-5B8AB73AAC9F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [468616 2018-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C17198A-095F-423E-922A-EE17026E5FEF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {76FCAD3B-FBB7-4FE5-B40A-309A60CE96AC} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [279168 2009-09-08] (ASUSTeK Computer Inc. -> ATK)
Task: {78823C90-9A38-4B3A-A476-4FD59D7C0A70} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {7A106B2A-12B0-482D-8D49-900A593899A6} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1593344 2009-09-16] () [Fichier non signé]
Task: {7CE3F3E0-3E4E-47D1-9EDA-BC6D0E9CE54C} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8F1AAAA4-CF45-4A75-A60D-2012AF0FEF1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [468616 2018-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {99ADB0CA-672E-4FEC-86C4-E8DC868BFA5F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {9EA31B79-22A7-4A2C-BE4A-9F1C2D4709E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [468616 2018-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Flash Player NPAPI Notifier" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\CCleanerSkipUAC - Alfred" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Microsoft_Hardware_Launch_devicecenter_exe" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\Microsoft_Hardware_Launch_ipoint_exe" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\Microsoft_Hardware_Launch_itype_exe" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3534274226-2401977303-1354857025-1000" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\P4GIntlCtrl" /ENABLE
Task: {A5A8A677-979E-461C-A697-F67CD758BBDA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {A87756E7-0DB6-4C23-A8A4-0BBAE3E3A27E} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {AA89CB2B-0734-4DFD-8F2E-85E2CE6E50E5} - System32\Tasks\Microsoft\Windows\ErrorDetails\ErrorDetailsUpdate => {9CDA66BE-3271-4723-8D35-DD834C58AD92} C:\Windows\System32\ErrorDetailsUpdate.dll [72704 2016-11-02] (Microsoft Windows -> Microsoft Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B3ABAEE7-F911-44A0-A071-D85DCE62749E} - System32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe => C:\Program Files\Microsoft Device Center\devicecenter.exe [2084944 2012-06-26] (Microsoft Corporation -> Microsoft)
Task: {C0B618C8-20DE-4DBB-B800-3891D496D66D} - System32\Tasks\ASPG => C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe [163384 2009-06-29] (ASUSTeK Computer Inc. -> ASUS)
Task: {CE746D1D-E448-45EB-9ECF-4904CACD51A7} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {DB1E8FF1-0121-4263-B37E-90C71B276FCE} - System32\Tasks\Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate => {FE285C8C-5360-41C1-A700-045501C740DE} C:\Windows\System32\ErrorDetailsUpdate.dll [72704 2016-11-02] (Microsoft Windows -> Microsoft Corporation)
Task: {E2C9DB2C-E6DF-4214-9035-617D37295C1D} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {EE6987E5-CBBD-4F5D-A2E4-BB7645F84D3B} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Alfred\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {F1B171B1-D018-4A80-8647-47ABE9C4EA28} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ad80b0a6-50d8-4dc8-ad1c-bf28ee3875f7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d9c0cfe5-8ff7-4009-a227-9decc34a715f}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF DefaultProfile: zbajkqvz.default-1591294177307
FF ProfilePath: C:\Users\Alfred\AppData\Roaming\Mozilla\Firefox\Profiles\zbajkqvz.default-1591294177307 [2021-09-11]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Alfred\AppData\Roaming\Mozilla\Firefox\Profiles\zbajkqvz.default-1591294177307\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-08-27]
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: (HP Smart Print) - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2012-08-28] [] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3534274226-2401977303-1354857025-1000: mychic.com/VimGlasses -> C:\Users\Alfred\AppData\Roaming\Mychic\VimGlasses\1.0.0.88\npVimGlasses.dll [2015-12-19] (Mychic) [Fichier non signé]

Chrome:
=======
CHR Profile: C:\Users\Alfred\AppData\Local\Google\Chrome\User Data\Default [2021-06-14]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Slides) - C:\Users\Alfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-03]
CHR Extension: (Docs) - C:\Users\Alfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-03]
CHR Extension: (Google Drive) - C:\Users\Alfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-07-03]
CHR Extension: (Sheets) - C:\Users\Alfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Alfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-03]
CHR Extension: (Gmail) - C:\Users\Alfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-07-03]
CHR Extension: (Chrome Media Router) - C:\Users\Alfred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-03]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] () [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7785656 2021-09-09] (Malwarebytes Inc -> Malwarebytes)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-18] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-18] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ASMMAP64; C:\Program Files\ATKGFNEX\ASMMAP64.sys [14904 2007-07-24] (ASUSTeK Computer Inc. -> )
S3 bcmfn; C:\WINDOWS\System32\drivers\bcmfn.sys [9728 2016-07-16] (Microsoft Windows -> Windows (R) Win 7 DDK provider)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [15416 2009-07-20] (ASUSTeK Computer Inc. -> )
R0 lullaby; C:\WINDOWS\System32\DRIVERS\lullaby.sys [15928 2009-06-18] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
S3 massfilter; C:\WINDOWS\System32\drivers\massfilter.sys [11776 2010-06-24] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-09-09] (Malwarebytes Inc -> Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] (Microsoft Windows -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46680 2018-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330936 2018-12-18] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-18] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation -> Microsoft Corporation)
S3 MpKsl4d280473; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{20087D4E-E42C-470B-9DCD-32B0F32287F7}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-11 08:56 - 2021-09-11 08:58 - 000023060 _____ C:\Users\Alfred\Desktop\FRST.txt
2021-09-11 08:53 - 2021-09-11 08:55 - 002302976 _____ (Farbar) C:\Users\Alfred\Desktop\FRST64.exe
2021-09-11 08:42 - 2021-09-11 08:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-09-11 08:12 - 2021-09-11 08:12 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-09-11 06:56 - 2021-09-11 07:57 - 000000000 ____D C:\$WINDOWS.~BT
2021-09-11 06:43 - 2021-09-11 08:09 - 000000000 ___HD C:\$GetCurrent
2021-09-09 16:41 - 2021-09-10 07:08 - 000000000 ____D C:\Windows10Upgrade
2021-09-09 16:41 - 2021-09-09 16:41 - 000000721 _____ C:\Users\Alfred\Desktop\Assistant Mise à jour de Windows 10.lnk
2021-09-09 12:35 - 2021-09-09 12:35 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-09-09 12:35 - 2021-09-09 12:35 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-09 12:35 - 2021-09-09 12:35 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-09-09 12:34 - 2021-09-09 12:34 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-09-09 12:34 - 2021-09-09 12:34 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-09-07 07:34 - 2021-09-07 07:33 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-11 08:57 - 2017-12-13 21:21 - 000000000 ____D C:\FRST
2021-09-11 08:43 - 2012-06-21 10:27 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-11 08:42 - 2017-01-24 20:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-09-11 08:42 - 2016-11-22 09:07 - 000000000 ____D C:\Users\Alfred\AppData\LocalLow\Mozilla
2021-09-11 08:42 - 2015-08-08 11:32 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-11 08:41 - 2016-12-03 05:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-11 08:28 - 2016-07-16 13:36 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-11 08:14 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-11 08:11 - 2016-12-03 05:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-11 08:11 - 2016-12-03 05:27 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-11 08:10 - 2016-07-16 08:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-09-11 08:09 - 2017-12-16 19:32 - 000000036 _____ C:\WINDOWS\progress.ini
2021-09-11 08:09 - 2016-12-03 06:01 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2021-09-11 08:09 - 2016-12-03 06:01 - 000001908 _____ C:\WINDOWS\diagerr.xml
2021-09-11 08:09 - 2016-12-03 05:22 - 000000000 ___DC C:\WINDOWS\Panther
2021-09-11 07:40 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\Registration
2021-09-10 07:36 - 2017-12-14 14:07 - 000000000 ____D C:\Users\Alfred\AppData\Local\CrashDumps
2021-09-10 07:36 - 2017-07-27 20:29 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3534274226-2401977303-1354857025-1000
2021-09-10 07:36 - 2016-03-01 18:41 - 000002410 _____ C:\Users\Alfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-09 16:41 - 2017-12-16 18:24 - 000000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2021-09-09 12:34 - 2016-07-16 13:47 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-09-09 12:34 - 2012-06-21 11:08 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-09-09 12:23 - 2017-12-22 12:37 - 000000000 ____D C:\Users\Alfred\AppData\Local\ElevatedDiagnostics
2021-09-09 12:22 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-09 11:52 - 2021-02-20 19:32 - 000000000 ____D C:\ProgramData\Avast Software
2021-09-09 11:51 - 2021-05-27 19:23 - 000000000 ____D C:\Users\Alfred\AppData\Local\Avast Software
2021-09-09 11:47 - 2021-02-20 19:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-09-09 11:47 - 2016-12-08 20:34 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-09-04 11:16 - 2016-07-16 08:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-09-04 01:11 - 2016-12-03 05:32 - 000000000 ____D C:\Users\Alfred
2021-09-03 19:17 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-03 19:02 - 2021-06-19 09:49 - 523412331 _____ C:\WINDOWS\MEMORY.DMP
2021-09-03 19:02 - 2016-12-08 19:58 - 000000000 ____D C:\WINDOWS\Minidump
2021-08-31 09:39 - 2018-03-19 09:26 - 000003924 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2021-08-31 09:39 - 2016-12-03 05:59 - 000003494 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2021-08-31 09:39 - 2016-12-03 05:59 - 000002826 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task
2021-08-31 09:39 - 2016-12-03 05:59 - 000002330 _____ C:\WINDOWS\system32\Tasks\P4GIntlCtrl
2021-08-31 09:39 - 2016-12-03 05:59 - 000002302 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe
2021-08-31 09:39 - 2016-12-03 05:59 - 000002290 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2021-08-31 09:39 - 2016-12-03 05:59 - 000002288 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_itype_exe
2021-08-28 11:54 - 2013-08-16 20:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-28 11:51 - 2012-09-10 08:54 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Fichiers à la racine de certains dossiers ========

2007-06-12 18:34 - 2007-06-12 18:34 - 000035822 _____ () C:\Program Files (x86)\Common Files\ASPG_icon.ico
2008-05-22 17:35 - 2008-05-22 17:35 - 000051962 _____ () C:\Program Files (x86)\Common Files\banner.jpg
2009-04-08 19:31 - 2009-04-08 19:31 - 000106496 _____ () C:\Program Files (x86)\Common Files\CPInstallAction.dll
2008-08-12 06:45 - 2008-08-12 06:45 - 000155648 _____ (ASUS) C:\Program Files (x86)\Common Files\MSIactionall.dll

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2021-09-10 07:16
==================== Fin de FRST.txt ========================