RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 28-08-2023
ExÃ©cutÃ© par THIBAUT (administrateur) sur DESKTOP-AN6C557 (ASUSTeK COMPUTER INC. X756UQ) (29-08-2023 22:28:19)
ExÃ©cutÃ© depuis C:\Users\THIBAUT\Desktop\FRST64.exe
Profils chargÃ©s: THIBAUT
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3324 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(ASUS) [Fichier non signÃ©] C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Google\Update\Install\{552E4FA4-58DB-4D43-876A-7036C72E798F}\116.0.5845.111_116.0.5845.97_chrome_updater.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\Install\{552E4FA4-58DB-4D43-876A-7036C72E798F}\CR_96F84.tmp\setup.exe <2>
(C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsHelper.exe
(C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe ->) (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\ReasonLabs\Common\Client\v1.2.0\rsAppUI.exe <4>
(C:\Windows\SysWOW64\cmd.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe <2>
(C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(cmd.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnNM.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <25>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\Install\{552E4FA4-58DB-4D43-876A-7036C72E798F}\116.0.5845.111_116.0.5845.97_chrome_updater.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe <6>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\timeout.exe <4>
(Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\ReasonLabs\Common\Client\v1.0.7\rsAppUI.exe <5>
(services.exe ->) (ASUS Cloud Corporation) [Fichier non signÃ©] C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation) [Fichier non signÃ©] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 9\activation-service.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\DNS\rsDNSClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\DNS\rsDNSResolver.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\DNS\rsDNSSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsWSC.exe
(services.exe ->) (TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2305.4.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [604496 2017-11-24] (Conexant Systems LLC -> Conexant Systems, Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2771576 2015-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart [1846016 2015-12-09] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signÃ©]
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\ASUSWSLoader.exe [63272 2015-12-24] (ASUS Cloud Corporation -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\RunOnce: [ccleaner_update_helper] => C:\Program Files\CCleaner\ccleaner_update_helper.exe [752952 2023-08-21] (PIRIFORM SOFTWARE LIMITED -> Piriform)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3412233684-4028641307-2621551426-1001\...\Run: [Discord] => C:\Users\THIBAUT\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3412233684-4028641307-2621551426-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3412233684-4028641307-2621551426-1001\...\Run: [Boom 3D] => "C:\Program Files\Global Delight\Boom 3D\Boom3D.exe" --tray (Pas de fichier)
HKU\S-1-5-21-3412233684-4028641307-2621551426-1001\...\Run: [utweb] => C:\Users\THIBAUT\AppData\Roaming\uTorrent Web\utweb.exe [6418944 2023-04-04] (Rainberry Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3412233684-4028641307-2621551426-1001\...\Run: [AvastBrowserAutoLaunch_2C50341463DEBD8790707980E9712318] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3355424 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3412233684-4028641307-2621551426-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\THIBAUT\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-3412233684-4028641307-2621551426-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\THIBAUT\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [63018400 2023-08-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3412233684-4028641307-2621551426-1001\...\RunOnce: [Uninstall 23.153.0724.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\THIBAUT\AppData\Local\Microsoft\OneDrive\23.153.0724.0003" [0 2023-08-29] () <==== ATTENTION [zÃ©ro octet Fichier/Dossier]
HKLM\...\Windows x64\Print Processors\Canon TS6100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDP.DLL [482816 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6100 series: C:\Windows\system32\CNMLMDP.DLL [1302016 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PDF Architect 9 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.23.0.2.dll [974120 2023-08-22] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.97\Installer\chrmstp.exe [2023-08-22] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\115.0.21984.171\Installer\chrmstp.exe [2023-08-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-05-17]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
GroupPolicy: Restriction - Edge <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {2C389306-244A-4110-97CB-594D5A467287} - \Microsoft\Windows\Setup\SetupCleanupTask -> Pas de fichier <==== ATTENTION
Task: {317107BF-13F6-48B4-AA5A-BA0B03A02F4B} - \Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate -> Pas de fichier <==== ATTENTION
Task: {48A98229-5C8E-4DDD-8139-CF35F7262A95} - \Microsoft\Windows\Plug and Play\Plug and Play Cleanup -> Pas de fichier <==== ATTENTION
Task: {523F5687-D9CD-4734-8E2F-81D937655347} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display -> Pas de fichier <==== ATTENTION
Task: {5499FBAB-5FAB-45C6-AF5B-EFAF4EBCF68C} - \Microsoft\Windows\UpdateOrchestrator\Policy Install -> Pas de fichier <==== ATTENTION
Task: {5587F1DC-15D0-4331-A673-6EF75E5CD9C0} - \Microsoft\Windows\AppID\SmartScreenSpecific -> Pas de fichier <==== ATTENTION
Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - \ASUS\ASUS Product Register Service -> Pas de fichier <==== ATTENTION
Task: {6C7E462D-5ADA-412E-B391-D60DA0F23B65} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot -> Pas de fichier <==== ATTENTION
Task: {71E53243-3A2D-47EE-9DAB-6D71B2366657} - \Microsoft\Windows\ErrorDetails\ErrorDetailsUpdate -> Pas de fichier <==== ATTENTION
Task: {A2AB61D5-D872-47C1-967A-EAD1E3C91A7B} - \ASUS\ASUS GIFTBOX -> Pas de fichier <==== ATTENTION
Task: {B8F1709B-849F-4A0F-BFB9-8D1FFAF48AC3} - \Microsoft\Windows\UpdateOrchestrator\Maintenance Install -> Pas de fichier <==== ATTENTION
Task: {C349BB67-3672-4975-AE02-517BAD9318EE} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION
Task: {C1691B7C-A780-4298-B219-ECAB115D6354} - System32\Tasks\AdvancedUpdater => C:\Program Files (x86)\AW Manager\Windows Manager\Windows Updater.exe  /silentall -nofreqcheck -nogui (Pas de fichier) <==== ATTENTION
Task: {C01821B8-C697-4402-8ADA-B4EE76F3A510} - System32\Tasks\AdvancedWindowsManager #1 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 116 -t 8080 (Pas de fichier) <==== ATTENTION
Task: {0F663E66-8297-49C7-B1AF-247C67A0E599} - System32\Tasks\AdvancedWindowsManager #2 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 117 -t 8080 (Pas de fichier) <==== ATTENTION
Task: {BD63E9D9-1C45-4584-8671-06A2A17ECE10} - System32\Tasks\AdvancedWindowsManager #3 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 118 -t 8080 (Pas de fichier) <==== ATTENTION
Task: {05E89559-3765-467A-8BF7-A5752EA1C149} - System32\Tasks\AdvancedWindowsManager #4 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 119 -t 8080 (Pas de fichier) <==== ATTENTION
Task: {619B617E-C953-45C9-B730-107787F4EBA1} - System32\Tasks\AdvancedWindowsManager #5 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 120 -t 8080 (Pas de fichier) <==== ATTENTION
Task: {51EADC7E-9C53-4B1C-8FE2-3A88EE33C2D9} - System32\Tasks\AdvancedWindowsManager #6 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 121 -t 8080 (Pas de fichier) <==== ATTENTION
Task: {2A35A531-562C-4CE5-BBC4-A150677EA3EB} - System32\Tasks\AdvancedWindowsManager #7 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 122 -t 8080 (Pas de fichier) <==== ATTENTION
Task: {6A1AD974-1215-4E09-94A8-03EA102D3191} - System32\Tasks\AdvancedWindowsManager #8 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 123-t 8080 (Pas de fichier) <==== ATTENTION
Task: {F6D3633C-6068-4EAA-AFA8-0C56E8E35ABD} - System32\Tasks\AdvancedWindowsManager #9 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe  -v 124 -t 8080 (Pas de fichier) <==== ATTENTION
Task: {9ECE1D66-8FCF-4EF3-B0AE-6978F13A0B0C} - System32\Tasks\anZafeajWkqxen => C:\Windows\system32\rundll32.exe [71680 2021-05-31] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\erJNfVQwqYfU2\jFPCHCpzVBatO.dll",#1 <==== ATTENTION
Task: {A1A72A9A-82BD-47F1-B1F6-75CB0ACF3164} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-18] (ASUSTeK Computer Inc. -> AsusTek)
Task: {CBFA197B-3ABF-4A7C-905D-F556796B68FA} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2016-02-23] (ASUS) [Fichier non signÃ©]
Task: {4C36F206-2F86-4C29-8C23-E3484894F7FC} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19786024 2016-02-23] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {A4D4C08F-7B30-4C7D-AA67-001A00189B94} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {1F74150A-6D6F-458B-827D-EBFBEFB180A6} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {7747BFBC-A02A-410A-B793-3E97B031BD75} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1243544 2023-05-13] (Avast Software s.r.o. -> AVAST Software)
Task: {8F2B814B-7622-411C-A08F-4B85430B38D3} - System32\Tasks\bskjeDInSKXwlYC2 => C:\Windows\system32\rundll32.exe [71680 2021-05-31] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\dWvlZSxZU\FCCzBt.dll",#1 <==== ATTENTION
Task: {B44AE56A-7C44-4049-A0FC-9E356FCA80FC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F41717AE-411C-43A2-980F-CCFB48C97C5E} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "35fafe26-cdea-4924-a689-9335ad340f1c" --version "6.14.10584" --silent
Task: {928D9722-F89D-4E64-A5D6-F7E7FA8D00B2} - System32\Tasks\CCleanerSkipUAC - THIBAUT => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {352F2A11-E5FC-4DF9-9A76-20D87F53BD48} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [585000 2016-09-21] (Dropbox, Inc -> )
Task: {40C16C89-5B22-4B8C-9C81-473B802B8152} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {39CD21EB-35CB-4512-AA79-269F27FC6E2F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A59D63E3-FCDB-4BF6-A3FF-DFDB4966271E} - System32\Tasks\EWapywcyJOTvKfyHw2 => C:\Windows\system32\rundll32.exe [71680 2021-05-31] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\MHWpwCsooEJojVqtpAR\LOaHUDr.dll",#1 <==== ATTENTION
Task: {E0094CE6-74F6-4C99-935F-763DA726BE2A} - System32\Tasks\ewYbnHcJdHJOR2 => C:\WINDOWS\system32\wscript.exe [170496 2021-10-01] (Microsoft Windows -> Microsoft Corporation) -> "C:\ProgramData\WnylJsSREDzrwfVB\HWOPfDd.wsf" <==== ATTENTION
Task: {1CF8D7ED-6505-4F5F-8490-EBB24FFF6483} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2023-03-03] (Google Inc -> Google Inc.)
Task: {C920CDB3-7B29-46C4-8F0A-3E76CF34B253} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2023-03-03] (Google Inc -> Google Inc.)
Task: {BB7AECD9-AA8F-4268-874C-843453DB4324} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {B6B536E3-CD29-4776-81AF-96B736045C93} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {696BBA41-C363-4B04-A1F7-D15E11C7AB12} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {C181EBB5-B263-434A-8976-4ABBA3F509DF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {980E41B2-FA81-43FA-B68A-F9073A010E4C} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [164752 2023-07-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {E94ABC26-1CAB-4567-A3BF-8F0935C2C65A} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signÃ©]
Task: {918A8F1C-C50F-42BF-AE25-854E14E37DC2} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {9F05B9CC-2284-4035-B36D-A6DB02DF342C} - System32\Tasks\pdfforge GmbH\PDF Architect 9\App Notification => C:\Program Files\PDF Architect 9\architect-launcher.exe [2294720 2023-04-27] (pdfforge GmbH -> pdfforge GmbH)
Task: {CDD8F116-9ECA-4170-9FC2-B9DDCCDAC671} - System32\Tasks\pdfforge GmbH\PDF Architect 9\App Notification Logon => C:\Program Files\PDF Architect 9\architect-launcher.exe [2294720 2023-04-27] (pdfforge GmbH -> pdfforge GmbH)
Task: {5028F12C-19F7-4152-8292-B013E8217A76} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [13917112 2023-08-22] (pdfforge GmbH -> pdfforge GmbH.)
Task: {CF17E4E3-B1AF-4DC3-AF68-6FBD13ACDE98} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3457984 2023-04-27] (pdfforge GmbH -> pdfforge GmbH)
Task: {42E921AF-CD01-476D-A0BF-25B3D0A01B2D} - System32\Tasks\RLieLYsrbweWHqPyAZD2 => C:\Windows\system32\rundll32.exe [71680 2021-05-31] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\mGSIxHRiBfBgC\QYgLblh.dll",#1 <==== ATTENTION
Task: {2FB13FA6-E2D5-4C93-B0F6-4D827B9A37CD} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [149712 2021-10-14] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {751032FB-518B-42B1-84EC-DAFF4695A73D} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsnotify.exe [514408 2016-03-24] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {5365D1B5-E050-4D5E-B386-8A29115A0649} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdate.exe [481128 2016-03-24] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0c653b5f-1e8f-4d2a-9b1c-e37b857f81e8}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{4ac34f23-eb6f-4f0f-92db-d1b2041f2bd6}: [NameServer] 100.120.192.1
Tcpip\..\Interfaces\{b6e83ad2-f833-4345-acc5-70bec35b6341}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{b6e83ad2-f833-4345-acc5-70bec35b6341}: [DhcpNameServer] 192.168.1.254

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\THIBAUT\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-06]
Edge Extension: (Adblocker for Youtubeâ¢) - C:\Users\THIBAUT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bnaebcjlolajbgllgjlmlfobobdemmki [2023-01-02] [UpdateUrl:hxxps://clients87.google.com/service/update2/crx] <==== ATTENTION
Edge Extension: (Google Sheets Offline) - C:\Users\THIBAUT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf [2023-02-16] [UpdateUrl:hxxps://clients43.google.com/service/update2/crx] <==== ATTENTION

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-07-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] (WildTangent Inc -> )

Chrome: 
=======
CHR Profile: C:\Users\THIBAUT\AppData\Local\Google\Chrome\User Data\Default [2023-08-11]
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\THIBAUT\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-08-11]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Fichier non signÃ©]
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\115.0.21984.171\elevation_service.exe [2037280 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851144 2023-07-13] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-13] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-13] (Dropbox, Inc -> Dropbox, Inc.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent Inc -> WildTangent)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signÃ©]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signÃ©]
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdatesvr.exe [133480 2016-03-24] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [310136 2021-06-11] (nordvpn s.a. -> TEFINCOM S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-11-21] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [254328 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
R3 PDF Architect 9; C:\Program Files\PDF Architect 9\activation-service.exe [3182016 2023-04-27] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 9 Creator; C:\Program Files\PDF Architect 9\creator-ws.exe [508864 2023-04-27] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 9 Update Service; C:\Program Files\PDF Architect 9\update-service.exe [414144 2023-04-27] (pdfforge GmbH -> pdfforge GmbH)
R2 rsClientSvc; C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe [638808 2023-07-18] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSClientSvc; C:\Program Files\ReasonLabs\DNS\rsDNSClientSvc.exe [585072 2023-03-05] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSResolver; C:\Program Files\ReasonLabs\DNS\rsDNSResolver.exe [10939248 2023-03-05] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSSvc; C:\Program Files\ReasonLabs\DNS\rsDNSSvc.exe [214384 2023-03-05] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsEngineSvc; C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe [325976 2023-07-18] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsSyncSvc; C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe [597400 2023-02-08] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsWSC; C:\Program Files\ReasonLabs\EPP\rsWSC.exe [208384 2023-07-18] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [10043288 2023-05-13] (Avast Software s.r.o. -> AVAST Software)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-17] (TeamViewer -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\NisSrv.exe [3104488 2023-08-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe [133576 2023-08-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [22656 2016-02-23] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R3 AsusSGDrv; C:\WINDOWS\System32\drivers\AsusSGDrv.sys [141304 2015-12-18] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76664 2023-04-01] (Avast Software s.r.o. -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [51112 2022-12-04] (Avast Software s.r.o. -> AVAST Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [498992 2022-06-16] (Avast Software s.r.o. -> WireGuard LLC)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 farmntio; C:\Windows\system32\drivers\farmntio.sys [25144 2014-03-25] (FarStone Technology -> ) [Fichier non signÃ©]
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [223232 2015-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2015-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 mshield; C:\WINDOWS\System32\DRIVERS\mshield.sys [43112 2022-08-24] (nordvpn s.a. -> Nordvpn S.A.)
R2 NDivert; C:\Program Files\NordVPN\7.11.3.0\Drivers\NDivert.sys [131472 2023-05-24] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [38608 2020-08-05] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [28344 2015-09-16] (Nvidia Corporation -> Windows (R) Win 7 DDK provider)
R1 rsCamFilter020502; C:\WINDOWS\System32\drivers\rsCamFilter020502.sys [48944 2023-07-18] (Reason CyberSecurity Inc. -> Reason Software Company)
S0 rsElam; C:\WINDOWS\System32\drivers\rsElam.sys [19944 2023-07-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Reason CyberSecurity Inc.)
R1 rsKernelEngine; C:\WINDOWS\System32\DRIVERS\rsKernelEngine.sys [49456 2023-07-18] (Reason CyberSecurity Inc. -> Windows (R) Win 7 DDK provider)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Bruce James -> Scarlet.Crush Productions)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55704 2023-08-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [572656 2023-08-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [104688 2023-08-11] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2022-12-28] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2023-04-03] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
U3 aswbdisk; pas de ImagePath
S3 MpKsl63f52a34; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7BDC9FCB-7BFA-4FFD-9067-CC22261E039F}\MpKslDrv.sys [X]
S1 netfilter2; system32\drivers\netfilter2.sys [X]
S3 rsDwf; \SystemRoot\system32\DRIVERS\rsDwf.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2023-08-29 22:28 - 2023-08-29 22:37 - 000040507 _____ C:\Users\THIBAUT\Desktop\FRST.txt
2023-08-29 22:26 - 2023-08-29 22:34 - 000000000 ____D C:\FRST
2023-08-29 22:22 - 2023-08-29 22:22 - 002382336 _____ (Farbar) C:\Users\THIBAUT\Desktop\FRST64.exe
2023-08-29 22:21 - 2023-08-29 22:22 - 002382336 _____ (Farbar) C:\Users\THIBAUT\Downloads\FRST64.exe
2023-08-29 21:46 - 2023-08-29 22:17 - 4049107866 _____ C:\Users\THIBAUT\Downloads\Vaincre.ou.mourir.2023.FRENCH.VOF.1080p.AMZN.WEB-DL.DDP5.1.H264-W074.Wawacity.pics.mkv
2023-08-29 20:33 - 2023-08-29 21:39 - 2818119189 _____ C:\Users\THIBAUT\Downloads\Drive.2011.MULTi.(VFF+VFQ).1080p.HDLight.AC3.x264.Wawacity.one.mkv
2023-08-22 18:50 - 2023-08-22 22:50 - 000000000 ____D C:\Users\THIBAUT\AppData\Roaming\PDF Architect 9
2023-08-22 18:50 - 2023-08-22 18:50 - 000000843 _____ C:\Users\Public\Desktop\PDF Architect 9.lnk
2023-08-22 18:49 - 2023-08-22 19:00 - 000000000 ____D C:\Program Files\PDF Architect 9
2023-08-22 18:49 - 2023-08-22 18:49 - 000001183 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 9.lnk
2023-08-22 18:45 - 2023-08-22 18:45 - 000000000 ____D C:\ProgramData\PDF Architect 9
2023-08-16 23:45 - 2023-08-16 23:45 - 000000000 ___HD C:\$WinREAgent
2023-08-16 23:43 - 2023-08-16 23:51 - 538672859 _____ C:\Users\THIBAUT\Downloads\Vaincre.ou.mourir.2023.FRENCH.VFF.1080p.AMZN.WEB-DL.DDP5.1.H264-W074.mkv.crdownload
2023-08-15 01:40 - 2023-08-15 01:40 - 000000000 ____D C:\WINDOWS\Panther
2023-08-15 00:45 - 2023-08-29 20:18 - 000002429 _____ C:\Users\THIBAUT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-08-11 22:43 - 2023-08-20 20:04 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-08-11 22:17 - 2023-08-11 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2023-08-11 22:17 - 2023-08-11 22:17 - 000000000 ____D C:\Program Files\VS Revo Group
2023-08-11 22:16 - 2023-08-11 22:16 - 006970144 _____ (VS Revo Group ) C:\Users\THIBAUT\Downloads\revo-uninstaller_2-4-5_fr_39528.exe
2023-08-11 22:16 - 2023-08-11 22:16 - 002881664 _____ (Opera Software) C:\Users\THIBAUT\Downloads\OperaSetup.exe
2023-08-11 19:36 - 2023-08-11 19:36 - 000004608 ___RH C:\farstone_pe.letter
2023-08-11 19:11 - 2023-08-11 19:11 - 019955246 _____ C:\Users\THIBAUT\Downloads\revanced.net_revanced_manager_v1.6.19.apk
2023-08-11 18:44 - 2023-08-11 19:00 - 625938410 _____ C:\Users\THIBAUT\Downloads\Men.in.Kilts.A.Roadtrip.with.Sam.and.Graham.S01E08.FINAL.VOSTFR.720p.WEB.x264-OUTLAND.mp4
2023-08-11 18:43 - 2023-08-11 19:00 - 667708946 _____ C:\Users\THIBAUT\Downloads\Men.in.Kilts.A.Roadtrip.with.Sam.and.Graham.S01E06.VOSTFR.720p.WEB.x264-OUTLAND.mp4
2023-08-11 18:43 - 2023-08-11 19:00 - 660178029 _____ C:\Users\THIBAUT\Downloads\Men.in.Kilts.A.Roadtrip.with.Sam.and.Graham.S01E07.VOSTFR.720p.WEB.x264-OUTLAND.mp4
2023-08-11 18:42 - 2023-08-11 19:00 - 673513971 _____ C:\Users\THIBAUT\Downloads\Men.in.Kilts.A.Roadtrip.with.Sam.and.Graham.S01E05.VOSTFR.720p.WEB.x264-OUTLAND.mp4
2023-08-11 16:10 - 2023-08-11 16:23 - 3292342922 _____ C:\Users\THIBAUT\Downloads\Rush   1080p Vff EN x264 ac3 mHDgz.mkv
2023-08-06 16:12 - 2023-08-06 16:49 - 673069763 _____ C:\Users\THIBAUT\Downloads\Men.in.Kilts.A.Roadtrip.with.Sam.and.Graham.S01E04.VOSTFR.720p.WEB.x264-OUTLAND.mp4
2023-08-06 16:10 - 2023-08-06 16:49 - 631456440 _____ C:\Users\THIBAUT\Downloads\Men.in.Kilts.A.Roadtrip.with.Sam.and.Graham.S01E03.VOSTFR.720p.WEB.x264-OUTLAND.mp4
2023-08-06 16:08 - 2023-08-06 16:49 - 648606268 _____ C:\Users\THIBAUT\Downloads\Men.in.Kilts.A.Roadtrip.with.Sam.and.Graham.S01E02.VOSTFR.720p.WEB.x264-OUTLAND.mp4
2023-08-06 16:07 - 2023-08-06 16:49 - 672013887 _____ C:\Users\THIBAUT\Downloads\Men.in.Kilts.A.Roadtrip.with.Sam.and.Graham.S01E01.VOSTFR.720p.WEB.x264-OUTLAND.mp4

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2023-08-29 22:16 - 2023-03-03 17:32 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-29 22:11 - 2021-12-21 21:21 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-29 21:24 - 2022-12-15 08:04 - 000000000 ____D C:\Users\THIBAUT\AppData\Local\CrashDumps
2023-08-29 21:18 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-08-29 21:07 - 2022-12-28 11:34 - 000000000 ____D C:\Program Files\NordVPN
2023-08-29 21:06 - 2022-12-28 11:31 - 000000000 ____D C:\Program Files\NordUpdater
2023-08-29 21:06 - 2021-03-08 17:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2023-08-29 20:49 - 2021-10-17 00:43 - 000000000 ____D C:\Users\THIBAUT\AppData\Local\ASUS GIFTBOX
2023-08-29 20:37 - 2021-10-11 16:21 - 000000000 ____D C:\Users\THIBAUT\AppData\Local\PokerStars.FR
2023-08-29 20:31 - 2023-01-25 16:46 - 000000000 ____D C:\Users\THIBAUT\AppData\Local\ElevatedDiagnostics
2023-08-29 20:29 - 2021-09-30 19:02 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-29 20:29 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-29 20:29 - 2021-09-30 19:02 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-29 20:28 - 2020-09-28 00:13 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-08-29 20:18 - 2021-12-16 22:51 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3412233684-4028641307-2621551426-1001
2023-08-29 20:18 - 2021-09-30 22:07 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3412233684-4028641307-2621551426-1001
2023-08-29 20:10 - 2023-02-14 21:41 - 000000000 ____D C:\Program Files\ReasonLabs
2023-08-29 20:03 - 2021-09-30 18:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-22 22:50 - 2023-06-12 00:34 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-08-22 21:37 - 2021-09-30 21:59 - 000000000 ____D C:\Users\THIBAUT\AppData\Local\D3DSCache
2023-08-22 19:01 - 2023-06-11 23:44 - 000000000 ____D C:\Program Files\PDF Architect 8
2023-08-22 19:01 - 2023-06-11 23:39 - 000000000 ____D C:\ProgramData\PDF Architect 8
2023-08-22 19:00 - 2023-06-11 23:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\pdfforge GmbH
2023-08-21 15:48 - 2023-01-02 15:34 - 000000000 ____D C:\Program Files\CCleaner
2023-08-20 20:11 - 2021-09-30 19:07 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat
2023-08-20 20:11 - 2021-09-30 19:07 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat
2023-08-20 20:11 - 2021-09-30 19:00 - 000000000 ____D C:\WINDOWS\INF
2023-08-20 20:11 - 2016-03-24 13:50 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-20 20:06 - 2018-01-02 13:22 - 000000000 __SHD C:\Users\THIBAUT\IntelGraphicsProfiles
2023-08-20 20:03 - 2021-09-30 19:35 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-20 20:03 - 2021-09-30 19:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-20 20:03 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\ServiceState
2023-08-20 20:03 - 2021-05-31 23:15 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-20 20:03 - 2016-10-22 10:16 - 000000000 ____D C:\ProgramData\AVAST Software
2023-08-20 00:32 - 2021-09-30 18:41 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-08-20 00:30 - 2021-09-30 18:51 - 000434152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-08-20 00:26 - 2021-09-30 18:52 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-20 00:25 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-08-20 00:25 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\SystemResources
2023-08-20 00:25 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-08-20 00:25 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\system32\setup
2023-08-20 00:25 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-20 00:25 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-08-20 00:24 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-08-20 00:24 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\appcompat
2023-08-20 00:20 - 2021-09-30 21:49 - 000000000 ____D C:\Users\THIBAUT\AppData\Local\Packages
2023-08-19 13:59 - 2021-09-30 19:32 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-08-19 13:37 - 2023-03-03 17:34 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoogleÂ Chrome.lnk
2023-08-16 23:40 - 2021-09-30 19:02 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-08-16 02:31 - 2023-01-02 15:35 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-08-12 14:01 - 2021-10-12 17:22 - 000000000 ____D C:\Users\THIBAUT\AppData\Roaming\winamax
2023-08-12 13:40 - 2021-10-02 14:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-08-12 13:34 - 2021-10-02 14:54 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-08-11 22:40 - 2016-10-22 10:16 - 000000000 ____D C:\Program Files\AVAST Software
2023-08-11 22:38 - 2022-06-03 02:05 - 000000000 ____D C:\Program Files (x86)\Jurojin
2023-08-11 22:32 - 2022-07-30 18:44 - 000000000 ____D C:\Users\THIBAUT\AppData\Roaming\Wargaming.net
2023-08-11 22:32 - 2019-11-13 20:58 - 000000000 ____D C:\Users\THIBAUT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2023-08-11 22:31 - 2018-01-03 01:17 - 000000000 ____D C:\Games
2023-08-11 22:26 - 2022-08-02 17:20 - 000000000 ____D C:\Users\THIBAUT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sidify
2023-08-11 19:55 - 2021-09-30 19:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-11 19:45 - 2021-10-03 14:52 - 000918960 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-08-11 19:35 - 2023-01-02 15:35 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-11 19:35 - 2016-03-24 14:06 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2023-08-11 19:31 - 2023-03-03 17:32 - 000003526 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-08-11 19:31 - 2023-03-03 17:32 - 000003302 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-08-11 19:31 - 2023-01-02 15:35 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-11 19:31 - 2023-01-02 15:35 - 000002258 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - THIBAUT
2023-08-11 19:31 - 2021-09-30 22:08 - 000003740 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2023-08-11 19:31 - 2021-09-30 19:31 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-08-11 19:31 - 2021-09-30 19:31 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-08-11 16:07 - 2021-09-30 22:13 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2023-08-11 16:07 - 2021-09-30 22:13 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2023-08-06 16:16 - 2023-07-21 19:06 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2023-08-03 16:51 - 2021-10-10 11:20 - 000000000 ____D C:\Users\THIBAUT\AppData\Roaming\discord
2023-08-03 16:34 - 2021-10-10 11:19 - 000000000 ____D C:\Users\THIBAUT\AppData\Local\Discord

==================== Fichiers Ã  la racine de certains dossiers ========

2023-01-02 15:21 - 2023-01-04 12:19 - 000000004 _____ () C:\ProgramData\lock.dat
2023-01-02 15:28 - 2023-01-04 12:19 - 000000004 _____ () C:\ProgramData\rc.dat
2023-01-02 15:21 - 2023-01-02 15:21 - 000000008 _____ () C:\ProgramData\ts.dat
2021-10-05 16:04 - 2023-03-10 19:58 - 000000206 _____ () C:\Users\THIBAUT\AppData\Roaming\sp_data.sys
2023-06-06 20:36 - 2023-06-06 20:36 - 000000218 _____ () C:\Users\THIBAUT\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================