Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2017 Exécuté par pc (administrateur) sur ZBEUB (29-12-2017 23:30:13) Exécuté depuis C:\Users\pc\Downloads Profils chargés: pc (Profils disponibles: defaultuser0 & pc) Platform: Windows 10 Pro Version 1703 15063.786 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (HP) C:\Windows\System32\HP3DDGService.exe (HP) C:\Windows\System32\hpservice.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Conexant Systems, Inc) C:\Windows\CxSvc\CxMonSvc.exe (DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe (Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe () C:\Program Files (x86)\Droid4X\Droid4XService.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (HP) C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe (Intel Corporation) C:\Windows\System32\ibtsiva.exe (HP) C:\Program Files (x86)\HP\HP Hotkey Support\LanWlanSwitchingService.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe (Conexant Systems, Inc.) C:\Windows\SysWOW64\UIUSrv.exe (McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe (Conexant Systems, Inc.) C:\Windows\SysWOW64\UIUSrv2.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpCardEngine.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (HP) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe (HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe (McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe (Discord Inc.) C:\Users\pc\AppData\Local\Discord\app-0.0.299\Discord.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe (HP) C:\Program Files\HP\HP Pixel Sharp\hpvstray.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Discord Inc.) C:\Users\pc\AppData\Local\Discord\app-0.0.299\Discord.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (© 2015 Microsoft Corporation) C:\Users\pc\AppData\Local\Microsoft\BingSvc\BingSvc.exe (Discord Inc.) C:\Users\pc\AppData\Local\Discord\app-0.0.299\Discord.exe (Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\SpotifyWebHelper.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe (HP) C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe (HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe (HP) C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerSt.exe (Avira Operations Gmbh & Co. KG) C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Valve Corporation) C:\Program Files (x86)\Steam\steamapps\Nouveau dossier\Steam.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Valve Corporation) C:\Program Files (x86)\Steam\steamapps\Nouveau dossier\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Steam\steamapps\Nouveau dossier\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Conexant) C:\Windows\System32\MicTray64.exe (Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe (Valve Corporation) C:\Program Files (x86)\Steam\steamapps\Nouveau dossier\bin\cef\cef.win7\steamwebhelper.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Bogdan Sharkov) C:\Program Files (x86)\ClownfishVoiceChanger\ClownfishVoiceChanger.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8730.21155.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8730.21155.0_x64__8wekyb3d8bbwe\HxTsr.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.WebAppHost.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17112.13411.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8827.20991.0_x64__8wekyb3d8bbwe\onenoteim.exe () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.118\deploy\LeagueClient.exe () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.118\deploy\LeagueClientUx.exe () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.118\deploy\LeagueClientUxRender.exe () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.118\deploy\LeagueClientUxRender.exe (Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation) HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [225280 2017-08-17] (Realtek Semiconductor Corp.) HKLM\...\Run: [PixelSharp] => C:\Program Files\HP\HP Pixel Sharp\hpvstray.exe [507592 2016-01-28] (HP) HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029576 2017-03-08] (Advanced Micro Devices, Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc.) HKLM-x32\...\Run: [HPNotifications] => C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe [853728 2015-10-20] (HP) HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [258600 2016-01-05] (HP) HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [65120 2017-12-04] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerST.exe [133952 2016-09-28] (HP) HKLM-x32\...\Run: [Avira Safe Shopping] => C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe [624264 2017-12-19] (Avira Operations Gmbh & Co. KG) HKU\S-1-5-21-3557416229-2163222074-3622730245-1001\...\Run: [BingSvc] => C:\Users\pc\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation) HKU\S-1-5-21-3557416229-2163222074-3622730245-1001\...\Run: [Discord] => C:\Users\pc\AppData\Local\Discord\app-0.0.299\Discord.exe [57954808 2017-12-11] (Discord Inc.) HKU\S-1-5-21-3557416229-2163222074-3622730245-1001\...\Run: [Spotify] => C:\Users\pc\AppData\Roaming\Spotify\Spotify.exe [21070224 2017-12-18] (Spotify Ltd) HKU\S-1-5-21-3557416229-2163222074-3622730245-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steamapps\Nouveau dossier\steam.exe [3111712 2017-12-15] (Valve Corporation) HKU\S-1-5-21-3557416229-2163222074-3622730245-1001\...\Run: [Spotify Web Helper] => C:\Users\pc\AppData\Roaming\Spotify\SpotifyWebHelper.exe [780688 2017-12-18] (Spotify Ltd) Lsa: [Notification Packages] DPPassFilter scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-09-23] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe (McAfee, Inc.) CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{035236d5-6d81-4108-8a18-dd6b8366aace}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6a28dd5c-0b64-45c9-8f8b-a8205794ca8e}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{9c9f53a7-f960-413c-89bd-2b3d0ef4ef5e}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-3557416229-2163222074-3622730245-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-3557416229-2163222074-3622730245-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security) BHO: PixelSharp.BrowserHelper -> {cef38ace-a7af-43a9-a854-06c14cccc92c} -> C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation) BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security) BHO-x32: PixelSharp.BrowserHelper -> {cef38ace-a7af-43a9-a854-06c14cccc92c} -> C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.) Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security) Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security) FireFox: ======== FF DefaultProfile: oty8b6c6.default FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\oty8b6c6.default [2017-12-29] FF Homepage: Mozilla\Firefox\Profiles\oty8b6c6.default -> google.be/ FF Extension: (Protection Web Avira) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\oty8b6c6.default\Extensions\abs@avira.com.xpi [2017-12-14] FF Extension: (Bing Search) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\oty8b6c6.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-12-26] [Legacy] FF Extension: (Adblock Plus) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\oty8b6c6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-13] FF SearchPlugin: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\oty8b6c6.default\searchplugins\bing-.xml [2016-12-26] FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome FF Extension: (HP Client Security Manager) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome [2016-10-20] [Legacy] [non signé] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-14] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-14] () FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll [2015-09-28] (DigitalPersona, Inc.) Chrome: ======= CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome.crx [2015-09-28] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2017-03-08] () S2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-10-05] (Advanced Micro Devices) [Fichier non signé] S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128944 2017-12-18] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-12-18] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-12-18] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1526832 2017-12-18] (Avira Operations GmbH & Co. KG) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [434248 2017-11-06] (Avira Operations GmbH & Co. KG) R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [332016 2017-10-25] (Avira Operations GmbH & Co. KG) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1547200 2017-10-12] () R2 CxMonSvc; C:\WINDOWS\CxSvc\CxMonSvc.exe [22648 2016-06-07] (Conexant Systems, Inc) R2 CxUtilSvc; C:\WINDOWS\CxSvc\CxUtilSvc.exe [141432 2016-07-30] (Conexant Systems, Inc.) R2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [502232 2015-09-28] (DigitalPersona, Inc.) R2 Droid4XService; C:\Program Files (x86)\Droid4X\Droid4XService.exe [285616 2017-08-14] () S3 EasyAntiCheat; C:\windows\SysWOW64\EasyAntiCheat.exe [409128 2017-03-02] (EasyAntiCheat Ltd) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3418024 2017-06-29] (LogMeIn Inc.) U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-02-24] (Hi-Rez Studios) [Fichier non signé] R2 HP Hotkey Service; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [965440 2016-11-01] (HP) R2 hp3ddgsrv; C:\WINDOWS\system32\HP3DDGService.exe [130072 2017-10-03] (HP) R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP) R3 hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [1102560 2015-10-19] (HP) R2 hpsrv; C:\WINDOWS\system32\Hpservice.exe [38728 2016-10-11] (HP) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332144 2017-11-21] (HP Inc.) R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc.) R2 LanWlanSwitchingService; C:\Program Files (x86)\HP\HP Hotkey Support\LanWlanSwitchingService.exe [590144 2016-11-01] (HP) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.599\McCHSvc.exe [404376 2017-09-05] (McAfee, Inc.) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [269480 2017-07-03] () S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation) R2 SpeedupService; C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [74256 2017-12-04] (Avira Operations GmbH & Co. KG) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246872 2017-12-23] (Synaptics Incorporated) R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2017-06-26] (McAfee, Inc.) R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2017-06-26] (McAfee, Inc.) S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2017-06-26] (McAfee, Inc.) R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2017-10-15] (Conexant Systems, Inc.) [Fichier non signé] R2 UIUService2; C:\WINDOWS\SysWOW64\UIUSrv2.exe [108544 2017-10-15] (Conexant Systems, Inc.) [Fichier non signé] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3755176 2017-07-03] (Intel® Corporation) R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [54296 2017-10-03] (HP) S2 amdacpksd; C:\windows\system32\drivers\amdacpksd.sys [305032 2017-03-02] (Advanced Micro Devices) R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [27384 2015-11-20] (Advanced Micro Devices, INC.) R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34704 2017-08-17] (Advanced Micro Devices, Inc) R3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [54160 2017-08-17] (Advanced Micro Devices, Inc) S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices, Inc. ) R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0312003.inf_amd64_95979589e54c6960\atikmdag.sys [26566656 2017-04-22] (Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0312003.inf_amd64_95979589e54c6960\atikmpag.sys [520584 2017-04-22] (Advanced Micro Devices, Inc.) R1 amdpsp; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices, Inc. ) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110104 2017-04-22] (Advanced Micro Devices) R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-06-20] (Avira Operations GmbH & Co. KG) R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [178840 2017-12-18] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [169376 2017-12-18] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-04-01] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-04-01] (Avira Operations GmbH & Co. KG) R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-06-20] (Avira Operations GmbH & Co. KG) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.) S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2017-05-22] (LogMeIn Inc.) R0 hpdskflt; C:\WINDOWS\System32\DRIVERS\hpdskflt.sys [40472 2017-10-03] (HP) R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [244744 2017-04-13] (Intel Corporation) R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [7643648 2017-07-13] (Intel Corporation) R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2017-09-27] (The OpenVPN Project) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [935168 2015-10-10] (Realtek ) S3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [769752 2015-12-18] (Realsil Semiconductor Corporation) S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [413912 2015-12-22] (Realsil Semiconductor Corporation) R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3222016 2017-08-17] (Realtek Semiconductor Corp.) S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] () R3 SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [42072 2017-12-23] (Synaptics Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.) S3 VBAudioVMVAIOMME; C:\WINDOWS\system32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2017-12-20] (Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30368 2017-06-21] (HP) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-12-29 23:30 - 2017-12-29 23:30 - 000024215 _____ C:\Users\pc\Downloads\FRST.txt 2017-12-29 23:30 - 2017-12-29 23:30 - 000000000 ____D C:\FRST 2017-12-29 23:29 - 2017-12-29 23:29 - 002391552 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe 2017-12-23 09:38 - 2017-12-23 09:38 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2017-12-23 09:37 - 2017-12-23 09:37 - 000420440 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll 2017-12-23 09:37 - 2017-12-23 09:37 - 000057432 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys 2017-12-23 09:37 - 2017-12-23 09:37 - 000042584 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys 2017-12-23 09:37 - 2017-12-23 09:37 - 000042072 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys 2017-12-21 18:21 - 2017-12-21 18:21 - 000000000 ____D C:\ProgramData\Avira Operations Gmbh & Co. KG 2017-12-20 19:47 - 2017-12-29 22:40 - 000000323 _____ C:\Users\pc\Documents\ClownfishVoiceChanger.ini 2017-12-20 19:47 - 2017-12-20 19:47 - 000000000 ____D C:\Users\pc\Documents\ClownfishSoundTemp 2017-12-20 19:46 - 2017-12-20 19:46 - 000002173 _____ C:\Users\Public\Desktop\ClownfishVoiceChanger.lnk 2017-12-20 19:46 - 2017-12-20 19:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClownfishVoiceChanger 2017-12-20 19:46 - 2017-12-20 19:46 - 000000000 ____D C:\Program Files (x86)\ClownfishVoiceChanger 2017-12-20 19:44 - 2017-12-20 19:44 - 000576496 _____ (Shark Labs) C:\Users\pc\Downloads\VoiceChanger64(0.69).exe 2017-12-20 19:42 - 2017-12-20 19:47 - 000002813 _____ C:\Users\pc\AppData\Roaming\VoiceMeeterDefault.xml 2017-12-20 19:38 - 2017-12-20 19:47 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio 2017-12-20 19:38 - 2017-12-20 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio 2017-12-20 19:38 - 2017-12-20 19:47 - 000000000 ____D C:\Program Files\VB 2017-12-20 19:38 - 2017-12-20 19:38 - 000041192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vbaudio_vmvaio64_win7.sys 2017-12-20 19:38 - 2017-12-20 19:38 - 000000000 ____D C:\Program Files (x86)\VB 2017-12-20 19:37 - 2017-12-20 19:37 - 007932192 _____ (VB-AUDIO Software) C:\Users\pc\Downloads\VoicemeeterSetup.exe 2017-12-13 01:52 - 2017-11-30 04:33 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2017-12-13 01:52 - 2017-11-30 04:33 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2017-12-13 01:52 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe 2017-12-13 01:52 - 2017-11-30 04:29 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-12-13 01:52 - 2017-11-30 04:26 - 002647216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2017-12-13 01:52 - 2017-11-30 04:24 - 000870896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2017-12-13 01:52 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2017-12-13 01:52 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2017-12-13 01:52 - 2017-11-30 04:00 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2017-12-13 01:52 - 2017-11-30 03:59 - 023678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2017-12-13 01:52 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2017-12-13 01:52 - 2017-11-30 03:58 - 000702032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2017-12-13 01:52 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll 2017-12-13 01:52 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll 2017-12-13 01:52 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2017-12-13 01:52 - 2017-11-30 03:44 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-12-13 01:52 - 2017-11-30 03:44 - 019334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2017-12-13 01:52 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll 2017-12-13 01:52 - 2017-11-30 03:44 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2017-12-13 01:52 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys 2017-12-13 01:52 - 2017-11-30 03:43 - 020511232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2017-12-13 01:52 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe 2017-12-13 01:52 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll 2017-12-13 01:52 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2017-12-13 01:52 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2017-12-13 01:52 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2017-12-13 01:52 - 2017-11-30 03:42 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll 2017-12-13 01:52 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe 2017-12-13 01:52 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll 2017-12-13 01:52 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx 2017-12-13 01:52 - 2017-11-30 03:42 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2017-12-13 01:52 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2017-12-13 01:52 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2017-12-13 01:52 - 2017-11-30 03:41 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2017-12-13 01:52 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll 2017-12-13 01:52 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe 2017-12-13 01:52 - 2017-11-30 03:40 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2017-12-13 01:52 - 2017-11-30 03:40 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2017-12-13 01:52 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll 2017-12-13 01:52 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll 2017-12-13 01:52 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe 2017-12-13 01:52 - 2017-11-30 03:39 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2017-12-13 01:52 - 2017-11-30 03:39 - 003206656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll 2017-12-13 01:52 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2017-12-13 01:52 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2017-12-13 01:52 - 2017-11-30 03:38 - 008195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2017-12-13 01:52 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2017-12-13 01:52 - 2017-11-30 03:38 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2017-12-13 01:52 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2017-12-13 01:52 - 2017-11-30 03:38 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2017-12-13 01:52 - 2017-11-30 03:37 - 006252544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2017-12-13 01:52 - 2017-11-30 03:37 - 003306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2017-12-13 01:52 - 2017-11-30 03:37 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2017-12-13 01:52 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2017-12-13 01:52 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2017-12-13 01:52 - 2017-11-30 03:36 - 004726784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2017-12-13 01:52 - 2017-11-30 03:36 - 003652096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2017-12-13 01:52 - 2017-11-30 03:36 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2017-12-13 01:52 - 2017-11-30 03:36 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2017-12-13 01:52 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2017-12-13 01:52 - 2017-11-30 03:36 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2017-12-13 01:52 - 2017-11-30 03:36 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2017-12-13 01:52 - 2017-11-30 03:35 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2017-12-13 01:52 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2017-12-13 01:52 - 2017-11-17 10:46 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2017-12-13 01:52 - 2017-11-17 10:46 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2017-12-13 01:52 - 2017-11-17 10:46 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2017-12-13 01:52 - 2017-11-17 10:46 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2017-12-13 01:52 - 2017-11-17 10:41 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2017-12-13 01:52 - 2017-11-17 10:39 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2017-12-13 01:52 - 2017-11-17 10:39 - 000643200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2017-12-13 01:52 - 2017-11-17 10:37 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2017-12-13 01:52 - 2017-11-17 10:31 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2017-12-13 01:52 - 2017-11-17 10:03 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2017-12-13 01:52 - 2017-11-17 10:00 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2017-12-13 01:52 - 2017-11-17 09:59 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll 2017-12-13 01:52 - 2017-11-17 09:56 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2017-12-08 05:17 - 2017-12-08 05:17 - 000000000 ____D C:\Users\pc\Desktop\iTunes Crash Logs 2017-12-06 18:20 - 2017-12-06 18:20 - 000000000 ____D C:\Users\pc\AppData\Local\Prominence 2017-12-06 04:53 - 2017-12-06 04:53 - 000000248 _____ C:\Users\pc\Desktop\Prominence Poker.url 2017-12-05 21:10 - 2017-12-28 23:38 - 000000000 ____D C:\Users\Public\Speedup Sessions 2017-12-03 11:47 - 2017-12-22 16:26 - 000000000 ____D C:\WINDOWS\Minidump 2017-12-01 00:47 - 2017-12-01 00:47 - 000059995 _____ C:\Users\pc\Downloads\NOS SANDWICHS _ McDonald's Belgique.html 2017-12-01 00:47 - 2017-12-01 00:47 - 000000000 ____D C:\Users\pc\Downloads\NOS SANDWICHS _ McDonald's Belgique_fichiers ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-12-29 23:26 - 2016-12-24 13:11 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Mozilla 2017-12-29 23:26 - 2016-12-24 13:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-12-29 23:25 - 2016-12-24 13:09 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-12-29 23:25 - 2016-12-24 13:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-12-29 21:38 - 2017-10-15 19:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2017-12-29 20:24 - 2017-10-15 19:58 - 000004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{14CB6FF9-8D88-47E2-8A27-59119DAB9CBB} 2017-12-29 18:10 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps 2017-12-29 18:10 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness 2017-12-27 23:36 - 2017-10-20 16:34 - 000000000 ____D C:\Users\pc\AppData\Roaming\Spotify 2017-12-27 23:36 - 2017-10-20 16:34 - 000000000 ____D C:\Users\pc\AppData\Local\Spotify 2017-12-27 23:20 - 2017-02-01 16:40 - 000228491 _____ C:\Users\pc\AppData\Localtransition_d1c66c58173cd194a90a4dabb6601cd5.ini 2017-12-27 15:38 - 2017-10-15 19:58 - 000003212 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForpc 2017-12-27 15:38 - 2017-09-09 13:47 - 000000332 _____ C:\WINDOWS\Tasks\HPCeeScheduleForpc.job 2017-12-25 23:44 - 2017-10-15 19:49 - 000006742 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-12-25 23:44 - 2017-03-20 06:10 - 001139726 _____ C:\WINDOWS\system32\perfh00C.dat 2017-12-25 23:44 - 2017-03-20 06:10 - 000258416 _____ C:\WINDOWS\system32\perfc00C.dat 2017-12-25 23:39 - 2017-10-15 19:49 - 000000000 ____D C:\Users\pc 2017-12-25 23:38 - 2017-10-15 19:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-12-25 23:38 - 2017-10-15 19:42 - 000454568 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-12-25 23:38 - 2017-10-11 21:01 - 000000000 _____ C:\hsrv.txt 2017-12-25 23:38 - 2017-03-02 22:25 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios 2017-12-25 23:37 - 2017-10-15 19:43 - 000065536 _____ C:\WINDOWS\psp_storage.bin 2017-12-25 23:37 - 2017-03-18 12:40 - 001835008 _____ C:\WINDOWS\system32\config\BBI 2017-12-24 00:34 - 2017-06-24 21:43 - 000000000 ____D C:\Users\pc\AppData\Local\LogMeIn Hamachi 2017-12-23 14:03 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF 2017-12-23 09:37 - 2016-10-19 23:53 - 001795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll 2017-12-23 09:37 - 2016-10-19 23:53 - 000630872 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys 2017-12-23 09:37 - 2016-10-19 23:53 - 000042072 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF.sys 2017-12-23 09:37 - 2016-08-18 02:41 - 000770136 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll 2017-12-23 09:37 - 2016-08-18 02:41 - 000281688 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo35-02.dll 2017-12-23 09:37 - 2016-08-18 02:41 - 000268888 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll 2017-12-23 09:37 - 2016-07-30 22:17 - 000000000 ____D C:\SWSETUP 2017-12-22 22:56 - 2017-10-12 15:59 - 000000000 ___DC C:\WINDOWS\Panther 2017-12-22 22:52 - 2017-09-30 16:03 - 000000000 ___HD C:\$WINDOWS.~BT 2017-12-22 21:32 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\NDF 2017-12-22 16:26 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2017-12-21 18:21 - 2017-11-02 18:21 - 000003656 _____ C:\WINDOWS\System32\Tasks\Avira Safe Shopping Updater 2017-12-21 18:21 - 2016-12-24 13:16 - 000000000 ____D C:\Program Files (x86)\Avira 2017-12-19 19:06 - 2017-06-08 22:41 - 000000000 ____D C:\Users\pc\AppData\Roaming\discord 2017-12-19 19:00 - 2016-12-16 14:57 - 000000000 ____D C:\Users\pc\AppData\Local\ConnectedDevicesPlatform 2017-12-18 16:50 - 2016-12-24 13:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2017-12-18 16:47 - 2016-12-24 13:21 - 000178840 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2017-12-18 16:47 - 2016-12-24 13:21 - 000169376 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2017-12-15 21:58 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache 2017-12-15 05:36 - 2016-07-30 22:05 - 000000000 __RHD C:\Users\Public\AccountPictures 2017-12-15 05:31 - 2017-06-15 19:19 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2 2017-12-15 05:31 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe 2017-12-14 12:25 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-12-14 12:25 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\Macromed 2017-12-14 02:37 - 2016-12-16 14:57 - 000000000 ____D C:\Users\pc\AppData\Local\Packages 2017-12-13 02:08 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp 2017-12-13 02:02 - 2016-12-24 14:37 - 000000000 ____D C:\WINDOWS\system32\MRT 2017-12-13 01:58 - 2017-10-11 11:19 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe 2017-12-13 01:58 - 2016-12-24 14:37 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-12-11 23:50 - 2017-06-08 22:41 - 000002229 _____ C:\Users\pc\Desktop\Discord.lnk 2017-12-11 23:49 - 2017-06-08 22:40 - 000000000 ____D C:\Users\pc\AppData\Local\Discord 2017-12-09 00:44 - 2017-10-15 19:58 - 000003352 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3557416229-2163222074-3622730245-1001 2017-12-09 00:44 - 2016-12-16 14:59 - 000002409 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-12-09 00:44 - 2016-12-16 14:59 - 000000000 ___RD C:\Users\pc\OneDrive 2017-12-06 18:20 - 2017-10-05 17:10 - 000000000 ____D C:\Users\pc\AppData\Local\UnrealEngine 2017-12-06 18:20 - 2016-07-30 22:09 - 000000000 ____D C:\ProgramData\Package Cache 2017-12-06 04:53 - 2016-12-26 20:38 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2017-12-05 21:10 - 2017-10-15 19:58 - 000003764 _____ C:\WINDOWS\System32\Tasks\AviraSystemSpeedupUpdate 2017-12-02 03:25 - 2017-03-18 22:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2017-12-02 03:25 - 2017-03-18 22:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Fichiers à la racine de certains dossiers ======= 2017-09-09 14:08 - 2017-07-11 14:08 - 000000032 ____R () C:\ProgramData\hash.dat 2017-02-01 16:50 - 2017-11-23 18:40 - 000000109 _____ () C:\Users\pc\AppData\Roaming\D2Info0 2017-02-01 16:50 - 2017-11-23 18:41 - 000000008 _____ () C:\Users\pc\AppData\Roaming\DofusAppId0_1 2017-02-01 17:15 - 2017-10-28 15:43 - 000000008 _____ () C:\Users\pc\AppData\Roaming\DofusAppId0_2 2017-02-16 18:44 - 2017-10-23 19:39 - 000000008 _____ () C:\Users\pc\AppData\Roaming\DofusAppId0_3 2017-10-11 20:56 - 2017-11-10 20:40 - 000002457 _____ () C:\Users\pc\AppData\Roaming\droid4xinstaller.log 2017-12-20 19:42 - 2017-12-20 19:47 - 000002813 _____ () C:\Users\pc\AppData\Roaming\VoiceMeeterDefault.xml Certains fichiers dans TEMP: ==================== 2017-11-18 13:31 - 2017-10-17 14:01 - 000927784 _____ () C:\Users\pc\AppData\Local\Temp\TAInstaller.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-12-25 22:34 ==================== Fin de FRST.txt ============================