Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-05.2019 Exécuté par clair (administrateur) sur LAPTOP-GBJA2LBE (LENOVO 80XL) (12-05-2019 13:39:49) Exécuté depuis C:\Users\clair\Desktop Profils chargés: clair (Profils disponibles: clair) Platform: Windows 10 Home Version 1803 17134.648 (X64) Langue: Français (France) Navigateur par défaut: Opera Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe () [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19031.17720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe () [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1903.1006.0_x64__8wekyb3d8bbwe\Time.exe () [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe (Adaware Software -> ) C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.4.942.11595\AdAwareService.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe (Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHeciSvc.exe (Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_10d045798a3d667e\aesm_service.exe (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\3.1.160.0\McCSPServiceHost.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_18_12\mcapexe.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\MfeAV\MfeAVSvc.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\vul\McVulAlert.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\vul\McVulCtr.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\WebAdvisor\servicehost.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\WebAdvisor\uihost.exe (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11904.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\OpenWith.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Nicolas Coolman -> ) [Fichier non signé] C:\Users\clair\AppData\Roaming\ZHP\ZHPDiag3.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera.exe (Opera Software AS -> Opera Software) C:\Users\clair\AppData\Local\Programs\Opera\58.0.3135.132\opera_crashreporter.exe (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (SweetLabs Inc. -> SweetLabs, Inc) C:\Users\clair\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2017-06-22] (LENOVO -> ) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.4.942.11595\AdAwareTray.exe [4749784 2018-08-15] (Adaware Software -> ) HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-24] (Corel Corporation -> Corel Corporation) HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [124032 2018-04-24] (Corel Corporation -> WinZip Computing) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261000 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5537600 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\...\Run: [utweb] => C:\Users\clair\AppData\Roaming\uTorrent Web\utweb.exe [5413080 2019-01-15] (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Fichier non signé] HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\...\Run: [uTorrent] => C:\Users\clair\AppData\Roaming\uTorrent\uTorrent.exe [1908920 2019-01-18] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35193232 2019-04-14] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\...\Run: [Opera Browser Assistant] => C:\Users\clair\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2480728 2019-03-22] (Opera Software AS -> Opera Software) HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\clair\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\clair\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\...\RunOnce: [Uninstall 19.033.0218.0011\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\clair\AppData\Local\Microsoft\OneDrive\19.033.0218.0011\amd64" HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\...\RunOnce: [Uninstall 19.033.0218.0011] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\clair\AppData\Local\Microsoft\OneDrive\19.033.0218.0011" GroupPolicy: Restriction ? <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0F52534C-214A-44AE-AA31-BD5E5F079CF2} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {10BF4675-367D-4283-9244-76E381F9F5E8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\127294c8-3d30-44f5-897d-cc78328e0b5a => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [68408 2017-11-12] (Lenovo -> Lenovo Group Limited) Task: {1B7F9EA1-1B3B-4E22-9F39-AA58A4639BD6} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2016-09-30] (CyberLink Corp. -> CyberLink Corp.) Task: {1C673375-EB10-4EB3-8C9B-52496DFF114E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2131CA5C-EFBB-4673-A840-03908899E4F1} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService Task: {226625E2-A0DD-4268-8B52-0F47E62431C7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1542080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2416D304-E972-418F-BE01-3F2EADAFDAA2} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.1.218\DADUpdater.exe [4182424 2019-05-12] (McAfee, Inc. -> McAfee, Inc.) Task: {246978F7-75A3-4AF8-93EF-8F49763B82FE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112576 2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Task: {2CD9677E-7971-48DE-AE0A-7ADB0F3DFCEE} - System32\Tasks\Opera scheduled assistant Autoupdate 1555237990 => C:\Users\clair\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-04-21] (Opera Software AS -> Opera Software) Task: {33ECCDE7-3F17-4C4E-87D5-D4708E910651} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {35889342-BD7A-4548-96B8-EF76356DFC76} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {35B1B723-AD62-4708-AA7E-7E4809853EB1} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-24] (Corel Corporation -> Corel Corporation) Task: {38D9E510-F404-455B-A9DE-CCF2E984052B} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2925960 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) Task: {394DF8A4-3306-4B2D-AB03-D2837286352E} - System32\Tasks\Opera scheduled Autoupdate 1537441882 => C:\Users\clair\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-04-21] (Opera Software AS -> Opera Software) Task: {3A65420B-6644-48E8-9EF7-2A0CEE49DB31} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c195ab51-1473-4fe4-910e-c55a662d3d60 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [68408 2017-11-12] (Lenovo -> Lenovo Group Limited) Task: {3C074EF4-A845-44BD-8D22-2E427CC0FEF4} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1432400 2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Task: {4F75A1AD-46AA-4F15-BE2C-B1B6DBA78A23} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1432400 2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Task: {56D91885-AD27-4EC2-889E-6AEE41D26415} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {65229E82-1345-42BB-B6B2-FCDA2A8A4A63} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe Task: {67859306-FE34-4CD6-AA02-5B86AEDED8CA} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink) Task: {6DF75F57-78CE-42AB-B01F-2193607EFE2C} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {73E4E8AE-C858-43C6-B08B-20D46E77AB4D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {83941E14-133E-4874-AE56-E00C9B19273A} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-24] (Corel Corporation -> Corel Corporation) Task: {848613A5-14F0-4EB4-B95F-42F810A9606D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [25907216 2019-03-29] (Microsoft Corporation -> Microsoft Corporation) Task: {893B6016-80C4-4BBE-A692-6D6F5A5FCE29} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112576 2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Task: {8A675067-7E33-4ABE-A734-3ED34D9759C1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) Task: {8AFB59F9-62D6-4E67-9549-443AF6E22122} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [25907216 2019-03-29] (Microsoft Corporation -> Microsoft Corporation) Task: {983AB999-7E40-4834-8939-34D183784ACE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-06-10] (Dropbox, Inc -> Dropbox, Inc.) "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" a été déverrouillé. <==== ATTENTION Task: {A9EB2D72-9983-4312-939A-F2D6A1C37E81} - System32\Tasks\McAfee\McAfee Idle Detection Task Task: {ADB601A8-533C-4C11-AF4B-EC7F6FBF7E95} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-24] (Corel Corporation -> Corel Corporation) Task: {B82FDF75-23AB-4C0A-B896-E660ABF6DD08} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [655296 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B979AB0A-861A-4273-A2BE-82C2923B2993} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bd152736-7d38-4906-8ab9-026cb709f8ab => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [68408 2017-11-12] (Lenovo -> Lenovo Group Limited) Task: {C40031A8-8286-4F18-B39C-F9BE3C1BF7A6} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {C42CB87A-CD23-4BCA-9111-7D41966374F6} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [756672 2018-11-13] (McAfee, Inc. -> McAfee, Inc.) Task: {C8E4438B-235C-4F34-BD32-A7B4C96FAB5F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) Task: {CC99F9F8-D53C-4CE7-9809-8C0626D6944F} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) Task: {CDFDE018-ACC1-4954-8392-2BA6F48E83E5} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-06-10] (Dropbox, Inc -> Dropbox, Inc.) Task: {D1D25746-D4A9-4F64-8228-98D3702F505C} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {D4E920C9-E5F8-4B9F-90D2-6F947A92B4E0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantAllUsersRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) Task: {D71F55CA-D1F7-471A-9AF9-3356ACCDBAB4} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.7.382\mcdatrep.exe [1752728 2019-04-14] (McAfee, Inc. -> McAfee, LLC.) Task: {E00078F0-5F90-4D16-B154-A630DBB52803} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\62b3c0ee-4531-40f5-a94a-902ab6aad280 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [68408 2017-11-12] (Lenovo -> Lenovo Group Limited) Task: {E306FA66-2C6B-45DA-BDE2-04975CC9007E} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {ED8321D2-3738-4A39-AB36-B59ABDFB4B9E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) Task: {F263B83E-30B5-459B-8E0C-8427DFE0C759} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.) Task: {F33C2DD4-9F0B-4FBA-B4FF-96E9CE92326F} - System32\Tasks\App Explorer => C:\Users\clair\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7448744 2019-03-07] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION Task: {F4DD677C-C829-4166-A4BC-E050A326EE30} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [960448 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F7D8BFC6-3684-48E4-9D8B-5DAD228A7748} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [655296 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{8f96fc45-401e-49aa-a82b-b2d363431efb}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{c4ac167f-7603-4cf9-9966-c67213fae616}: [DhcpNameServer] 8.8.8.8 Tcpip\..\Interfaces\{cfda410a-1e60-4029-8f44-5d3713d51e08}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE HKU\S-1-5-21-3373624625-2415715405-3533458295-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com SearchScopes: HKU\S-1-5-21-3373624625-2415715405-3533458295-1001 -> DefaultScope {C1BD4587-6774-4C1E-A42F-851F7AFEE683} URL = SearchScopes: HKU\S-1-5-21-3373624625-2415715405-3533458295-1001 -> {C1BD4587-6774-4C1E-A42F-851F7AFEE683} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-04-14] (Microsoft Corporation -> Microsoft Corporation) BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-03-13] (McAfee, Inc. -> McAfee, Inc.) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-03-13] (McAfee, Inc. -> McAfee, Inc.) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Pas de fichier Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files\mcafee\msc\mcsniepl64.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files (x86)\mcafee\msc\mcsniepl.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.) FireFox: ======== FF DefaultProfile: 16jd08ph.default FF ProfilePath: C:\Users\clair\AppData\Roaming\Mozilla\Firefox\Profiles\16jd08ph.default [2019-02-22] FF Homepage: Mozilla\Firefox\Profiles\16jd08ph.default -> hxxps://www.bing.com/?PC=JV01 FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\clair\AppData\Roaming\Mozilla\Firefox\Profiles\16jd08ph.default\Extensions\sp@avast.com.xpi [2019-02-12] FF Extension: (Avast Online Security) - C:\Users\clair\AppData\Roaming\Mozilla\Firefox\Profiles\16jd08ph.default\Extensions\wrc@avast.com.xpi [2018-09-20] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-05-12] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Plugin: @mcafee.com/MSC,version=10 -> c:\program files\mcafee\msc\npmcsnffpl64.dll [2019-02-15] (McAfee, Inc. -> ) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\program files (x86)\mcafee\msc\npmcsnffpl.dll [2019-02-15] (McAfee, Inc. -> ) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-14] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.4.942.11595\AdAwareService.exe [587832 2018-08-15] (Adaware Software -> ) R2 AESMService; C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_10d045798a3d667e\aesm_service.exe [3367272 2018-11-28] (Intel(R) Software Development Products -> Intel Corporation) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6660888 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [362488 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8348064 2018-12-30] (BattlEye Innovations e.K. -> ) S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [680288 2016-12-06] (LENOVO -> Lenovo) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11082312 2019-04-02] (Microsoft Corporation -> Microsoft Corporation) S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1508656 2018-05-31] (McAfee, Inc. -> McAfee, Inc.) R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [163336 2016-09-19] (Dolby Laboratories, Inc. -> ) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-06-10] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-06-10] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2018-09-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [68408 2017-11-12] (Lenovo -> Lenovo Group Limited) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [899640 2019-03-13] (McAfee, Inc. -> McAfee, Inc.) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_18_12\McApExe.exe [745880 2019-01-23] (McAfee, Inc. -> McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.1.160.0\\McCSPServiceHost.exe [2158952 2018-12-17] (McAfee, Inc. -> McAfee, Inc.) S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.) S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [371840 2019-01-15] (McAfee, Inc. -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [604216 2019-01-15] (McAfee, Inc. -> McAfee, LLC) R3 mfevtp; C:\Windows\system32\mfevtps.exe [509728 2019-01-15] (McAfee, Inc. -> McAfee, LLC) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1692552 2018-12-19] (McAfee, Inc. -> McAfee, Inc.) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1360384 2019-02-05] (McAfee, Inc. -> McAfee, Inc.) R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [190808 2018-07-29] (Qualcomm Atheros -> Qualcomm Technologies Inc.) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268336 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [258648 2016-12-21] (Synaptics Incorporated -> Synaptics Incorporated) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-16] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-16] (Microsoft Corporation -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-18] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166848 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1031000 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476776 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-05-12] (AVAST Software s.r.o. -> AVAST Software) S3 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-05-12] () [Fichier non signé] S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [2599280 2019-01-03] (BattlEye Innovations e.K. -> ) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77384 2019-01-22] (McAfee, Inc. -> McAfee, LLC) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [218408 2018-12-24] (McAfee, Inc. -> McAfee, Inc.) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [511024 2019-01-22] (McAfee, Inc. -> McAfee, LLC) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [373808 2019-01-22] (McAfee, Inc. -> McAfee, LLC) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [86136 2019-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [517168 2019-01-22] (McAfee, Inc. -> McAfee, LLC) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [981032 2019-01-22] (McAfee, Inc. -> McAfee, LLC) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [563728 2018-11-19] (McAfee, Inc. -> McAfee LLC.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109072 2018-11-19] (McAfee, Inc. -> McAfee LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [117800 2019-01-22] (McAfee, Inc. -> McAfee, LLC) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254024 2019-01-22] (McAfee, Inc. -> McAfee, LLC) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_6c1cf74a6a602c9d\nvlddmkm.sys [14456920 2017-06-13] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) R3 Qcamain10x64; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2355544 2018-07-29] (Qualcomm Atheros -> Qualcomm Atheros, Inc.) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [950784 2017-02-06] (Realtek Semiconductor Corp. -> Realtek ) R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3224576 2016-12-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [57432 2016-12-21] (Synaptics Incorporated -> Synaptics Incorporated) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2017-04-20] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [442848 2018-05-02] (Bitdefender SRL -> BitDefender S.R.L.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2018-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2018-12-16] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-16] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-05-12 13:39 - 2019-05-12 13:41 - 000039478 _____ C:\Users\clair\Desktop\FRST.txt 2019-05-12 13:39 - 2019-05-12 13:39 - 000000000 ____D C:\FRST 2019-05-12 13:38 - 2019-05-12 13:39 - 002430976 _____ (Farbar) C:\Users\clair\Desktop\FRST64.exe 2019-05-12 12:56 - 2019-05-12 12:56 - 000000000 ____D C:\Users\clair\OneDrive\Documents\ZHPDiag_files 2019-05-12 12:56 - 2019-05-12 12:53 - 000754457 _____ C:\Users\clair\OneDrive\Documents\ZHPDiag.html 2019-05-12 12:53 - 2019-05-12 12:53 - 000754457 _____ C:\Users\clair\Desktop\ZHPDiag.html 2019-05-12 12:53 - 2019-05-12 12:53 - 000000000 ____D C:\Users\clair\Desktop\ZHPDiag_files 2019-05-12 12:31 - 2019-05-12 12:52 - 000305884 _____ C:\Users\clair\Desktop\ZHPDiag.txt 2019-05-12 12:22 - 2019-05-12 12:22 - 000000985 _____ C:\Users\clair\Downloads\ZHPDiag3 - Raccourci.lnk 2019-05-12 11:55 - 2019-05-12 11:55 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum 2019-05-12 11:43 - 2019-05-12 12:20 - 000000872 _____ C:\Users\clair\Desktop\ZHPDiag.lnk 2019-05-12 11:42 - 2019-05-12 12:52 - 000000000 ____D C:\Users\clair\AppData\Roaming\ZHP 2019-05-12 11:42 - 2019-05-12 11:42 - 000000000 ____D C:\Users\clair\AppData\Local\ZHP 2019-05-12 11:42 - 2019-05-12 11:41 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2019-05-12 11:34 - 2019-05-12 11:34 - 003038592 _____ C:\Users\clair\Downloads\ZHPDiag3.exe 2019-05-12 11:34 - 2019-05-12 11:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-05-12 11:30 - 2019-05-12 12:04 - 000000000 ____D C:\ProgramData\McInstTemp0313191557653433 2019-05-12 11:30 - 2019-05-12 11:30 - 000000000 ____D C:\Program Files\McAfeeDashboard 2019-05-12 11:24 - 2019-05-12 12:15 - 000000000 ____D C:\Users\clair\Downloads\opera autoupdate 2019-05-07 21:51 - 2019-05-07 21:51 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2019-04-14 12:33 - 2019-04-14 12:33 - 000004464 _____ C:\WINDOWS\System32\Tasks\Opera scheduled assistant Autoupdate 1555237990 ==================== Un mois (modifiés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-05-12 13:27 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-05-12 13:27 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-05-12 12:55 - 2018-06-03 14:44 - 000000000 ____D C:\Users\clair\AppData\Local\Packages 2019-05-12 12:43 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-05-12 12:18 - 2018-12-14 10:55 - 000004236 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1537441882 2019-05-12 12:18 - 2018-09-20 13:11 - 000001438 _____ C:\Users\clair\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2019-05-12 12:18 - 2018-07-20 04:42 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3373624625-2415715405-3533458295-1001 2019-05-12 12:18 - 2018-07-20 04:19 - 000002412 _____ C:\Users\clair\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-05-12 12:18 - 2018-02-03 17:18 - 000000000 ___RD C:\Users\clair\OneDrive 2019-05-12 12:13 - 2018-07-20 04:19 - 000000000 ____D C:\Users\clair\AppData\Local\Host App Service 2019-05-12 12:13 - 2017-06-22 20:54 - 000000000 ____D C:\ProgramData\NVIDIA 2019-05-12 12:12 - 2018-04-02 10:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2019-05-12 12:10 - 2018-02-03 17:14 - 000000000 __SHD C:\Users\clair\IntelGraphicsProfiles 2019-05-12 12:09 - 2018-07-20 04:19 - 000000000 ____D C:\Users\clair 2019-05-12 12:04 - 2018-07-20 04:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-05-12 12:04 - 2018-04-02 10:10 - 000000000 ____D C:\Program Files (x86)\McAfee 2019-05-12 12:03 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-05-12 11:59 - 2018-07-20 04:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-05-12 11:56 - 2018-09-20 13:56 - 000385848 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys 2019-05-12 11:55 - 2018-09-20 13:56 - 000476776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2019-05-12 11:51 - 2018-09-20 14:04 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update 2019-05-12 11:42 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-05-12 11:41 - 2019-02-22 15:14 - 000257832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys 2019-05-12 11:41 - 2018-10-30 18:58 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2019-05-12 11:41 - 2018-09-20 13:56 - 000220640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2019-05-12 11:41 - 2018-09-20 13:56 - 000166848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2019-05-12 11:41 - 2018-09-20 13:56 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2019-05-12 11:41 - 2018-09-20 13:56 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2019-05-12 11:40 - 2019-01-18 21:05 - 000254128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2019-05-12 11:40 - 2019-01-18 19:31 - 000320624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys 2019-05-12 11:40 - 2019-01-18 19:31 - 000196000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2019-05-12 11:40 - 2019-01-18 19:31 - 000057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2019-05-12 11:40 - 2019-01-18 19:31 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2019-05-12 11:40 - 2018-09-20 13:56 - 001031000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2019-05-12 11:40 - 2018-09-20 13:56 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2019-05-12 11:29 - 2018-07-20 04:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee 2019-05-12 11:29 - 2018-04-11 23:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2019-05-12 11:27 - 2018-06-10 13:34 - 000000000 ____D C:\Program Files (x86)\Dropbox 2019-05-12 11:23 - 2018-07-20 04:31 - 001766590 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-05-12 11:23 - 2018-04-12 18:18 - 000791028 _____ C:\WINDOWS\system32\perfh00C.dat 2019-05-12 11:23 - 2018-04-12 18:18 - 000149524 _____ C:\WINDOWS\system32\perfc00C.dat 2019-05-12 11:23 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF 2019-04-14 12:38 - 2017-06-22 20:27 - 000000000 ____D C:\Program Files (x86)\Microsoft Office ==================== SigCheck =============================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ============================