Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 11-09-2017 02
Exécuté par darty (administrateur) sur LENOVO-PC (12-09-2017 17:38:17)
Exécuté depuis C:\Users\darty\Desktop
Profils chargés: UpdatusUser & darty (Profils disponibles: UpdatusUser & darty)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Pokki) C:\Users\darty\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Microsoft) C:\Program Files (x86)\Lenovo\EducationPortal\Services\IdeaTouch.LocalDataServer.Education.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Lenovo Motion\PGService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Lenovo Motion\PG_Service_Launcher.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Lenovo Motion\WebcamSplitterServer.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
() C:\Program Files\Lenovo\NFC Connection\NFCProject.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Users\darty\AppData\Local\Google\Update\GoogleUpdate.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Pokki) C:\Users\darty\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
(Pokki) C:\Users\darty\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
(Pokki) C:\Users\darty\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
(IncrediMail, Ltd.) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
(IncrediMail, Ltd.) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows NT\Accessories\wordpad.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registre (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [216576 2014-03-10] (Realtek Semiconductor Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-20] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM-x32\...\Run: [Lenovo Silver Silk Wireless Keyboard] => C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe [1742336 2013-08-14] (Lenovo)
HKLM-x32\...\Run: [LVT] => C:\Program Files\Lenovo\LVT\LJYZ.exe [886112 2011-11-24] (Lenovo)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-04] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168920 2014-04-25] (CyberLink Corp.)
HKLM-x32\...\Run: [Lenovo Dynamic Brightness System] => C:\Program Files\Lenovo\Lenovo Brightness System\RunLDBS.exe [1753432 2012-09-18] (Lenovo)
HKLM-x32\...\Run: [Lenovo Eye Distance System] => C:\Program Files\Lenovo\Lenovo Eye Distance System\RunLEDS.exe [1752920 2012-09-18] (Lenovo)
HKLM-x32\...\Run: [NFC] => C:\Program Files\lenovo\NFC Connection\NFCProject.exe [24064 2014-03-26] ()
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [74752 2015-09-01] ()
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [avast5] => C:\Program Files\Alwil Software\Avast5\avastUI.exe [4858968 2014-01-22] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] (Qualcomm®Atheros®)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-21-2358429717-2575667567-1197445876-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\...\Run: [Google Update] => C:\Users\darty\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-05-02] (Google Inc.)
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE [297024 2014-12-03] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\...\Run: [GoogleChromeAutoLaunch_1104013FA222C0A42394679B0C3F2190] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1301848 2017-08-23] (Google Inc.)
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [132608 2014-10-29] (Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Lenovo Motion.lnk [2016-02-09]
ShortcutTarget: Lenovo Motion.lnk -> C:\Program Files (x86)\Lenovo\Lenovo Motion\PG_Tray.exe (PointGrab LTD)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Sauvegarde.lnk [2016-02-09]
ShortcutTarget: Sauvegarde.lnk -> C:\Program Files\Pack Sérénité\Sauvegarde\Client\AdBackup.exe (Oodrive)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{01FFF7B2-6EDB-4A15-B0DA-16F880A1B4B5}: [DhcpNameServer] 192.168.0.254

Internet Explorer:
==================
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-2358429717-2575667567-1197445876-1002\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
URLSearchHook: [S-1-5-21-2358429717-2575667567-1197445876-1001] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2358429717-2575667567-1197445876-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-01-22] (AVAST Software)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-01-22] (AVAST Software)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2016-07-13] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-09-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-12] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Users\darty\Desktop\Photos\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2014-02-14] (Nitro PDF)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2358429717-2575667567-1197445876-1002: @tools.google.com/Google Update;version=3 -> C:\Users\darty\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-2358429717-2575667567-1197445876-1002: @tools.google.com/Google Update;version=9 -> C:\Users\darty\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-02] (Google Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://calendar.google.com/calendar/render?pli=1#main_7"
CHR Profile: C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default [2017-09-12]
CHR Extension: (Google Slides) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-22]
CHR Extension: (Cours  Les fêtes) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\aemlchollibhkggdoeangfffhjiphkfc [2016-04-19]
CHR Extension: (Google Docs) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-30]
CHR Extension: (Google Drive) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Recherche Google) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Adobe Acrobat) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-06]
CHR Extension: (Google Sheets) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Messagerie Tout-en-un) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\lainlkmlgipednloilifbppmhdocjbda [2017-04-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Gmail) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\darty\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AdBackup Service Controller; C:\Program Files\Pack Sérénité\Sauvegarde\Service\AdBackup.RemotingService.exe [14848 2015-08-06] (Oodrive) [Fichier non signé]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2014-01-22] (AVAST Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [92160 2014-03-12] () [Fichier non signé]
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S3 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2014-12-03] (SEIKO EPSON CORPORATION)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2015-09-01] (Ellora Assets Corp.) [Fichier non signé]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 IdeaTouch.LocalDataServer.Education; C:\Program Files (x86)\Lenovo\EducationPortal\Services\IdeaTouch.LocalDataServer.Education.exe [7680 2012-05-17] (Microsoft) [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-19] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [559872 2014-08-06] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-21] (LENOVO INCORPORATED.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273216 2017-02-14] (Lenovo)
S4 LSEDT; C:\WINDOWS\System32\LSEDT.exe [32968 2015-03-20] (Lenovo)
S4 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1872808 2015-11-27] (Maxthon)
S3 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2014-02-14] (Nitro PDF Software)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 PGService; C:\Program Files (x86)\Lenovo\Lenovo Motion\PGService.exe [142600 2014-03-06] (PointGrab LTD)
R2 PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Lenovo Motion\PG_Service_Launcher.exe [488200 2014-03-06] (PointGrab LTD)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-25] (Atheros) [Fichier non signé]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2014-01-22] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [80816 2014-01-22] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\Drivers\aswrdr2.sys [72016 2014-01-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2014-01-22] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1031392 2017-09-06] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2014-01-22] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2014-01-22] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2014-01-22] ()
R3 BcmNfcIc; C:\WINDOWS\System32\drivers\BcmNfcIc.sys [78552 2014-12-23] (Broadcom Corporation.)
R3 bcmsmbsp; C:\WINDOWS\System32\drivers\bcmsmbsp.sys [43736 2014-12-23] (Broadcom Corporation.)
R3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-25] (Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 NETwNe64; C:\WINDOWS\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [290520 2013-10-18] (Realtek Semiconductor Corp.)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [559832 2014-02-26] (Realtek Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [9112792 2014-05-28] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [4164352 2015-06-05] (Realtek Semiconductor Corporation )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
R0 WinI2C-DDC; C:\WINDOWS\System32\drivers\DDCDrv.sys [20832 2008-04-08] (Nicomsoft Ltd.)
R0 WinI2C-DDC; C:\Windows\SysWOW64\drivers\DDCDrv.sys [15712 2010-03-22] (Nicomsoft Ltd.)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-09-12 17:38 - 2017-09-12 17:39 - 000022698 _____ C:\Users\darty\Desktop\FRST.txt
2017-09-12 17:38 - 2017-09-12 17:38 - 002397184 _____ (Farbar) C:\Users\darty\Desktop\FRST64.exe
2017-09-12 17:38 - 2017-09-12 17:38 - 000000000 ____D C:\Users\darty\Desktop\FRST-OlderVersion
2017-09-12 17:37 - 2017-09-12 17:38 - 000000000 ____D C:\FRST
2017-09-12 17:34 - 2017-09-12 17:34 - 000138771 _____ C:\Users\darty\Desktop\ZHPDiag.txt
2017-09-12 17:28 - 2017-09-12 17:29 - 000000000 ____D C:\Users\darty\AppData\Roaming\ZHP
2017-09-12 17:28 - 2017-09-12 17:29 - 000000000 ____D C:\Users\darty\AppData\Local\ZHP
2017-09-12 17:28 - 2017-09-12 17:28 - 002837888 _____ C:\Users\darty\Desktop\ZHPDiag3.exe
2017-09-12 17:28 - 2017-09-12 17:28 - 000000879 _____ C:\Users\darty\Desktop\ZHPDiag.lnk
2017-09-12 12:15 - 2017-09-12 12:15 - 000324208 _____ C:\WINDOWS\Minidump\091217-24656-01.dmp
2017-09-12 12:07 - 2017-09-12 12:07 - 000328632 _____ C:\WINDOWS\Minidump\091217-25843-01.dmp
2017-09-12 12:00 - 2017-09-12 12:05 - 290536200 _____ (AVAST Software) C:\Users\darty\Documents\avast_free_antivirus_setup_offline.exe
2017-09-12 11:56 - 2017-09-12 11:59 - 038802077 _____ (AVAST Software) C:\Users\darty\Documents\Non confirmé 810316.crdownload
2017-09-12 11:43 - 2017-09-12 11:43 - 000362544 _____ C:\WINDOWS\Minidump\091217-18093-01.dmp
2017-09-11 14:20 - 2017-09-11 14:20 - 000326080 _____ C:\WINDOWS\Minidump\091117-21046-01.dmp
2017-09-11 13:34 - 2017-09-11 13:34 - 008837744 _____ (AVAST Software) C:\Users\darty\Desktop\avastclear.exe
2017-09-11 12:53 - 2017-09-11 12:53 - 000359024 _____ C:\WINDOWS\Minidump\091117-18062-01.dmp
2017-09-09 20:35 - 2017-09-12 12:15 - 813851480 _____ C:\WINDOWS\MEMORY.DMP
2017-09-09 20:35 - 2017-09-09 20:35 - 000391456 _____ C:\WINDOWS\Minidump\090917-20203-01.dmp
2017-09-09 20:28 - 2017-09-09 20:33 - 290536200 _____ (AVAST Software) C:\Users\darty\Desktop\avast_free_antivirus_setup_offline.exe
2017-09-08 16:16 - 2017-09-08 16:25 - 000000000 ____D C:\Users\darty\Desktop\Rav Kaufman
2017-09-06 15:28 - 2017-09-06 15:28 - 000000000 ____D C:\Users\darty\Desktop\Envoi_d’un_message___Probleme_sup
2017-09-06 15:25 - 2017-09-06 15:25 - 000000000 ____D C:\ProgramData\AVAST Software
2017-09-06 15:24 - 2017-09-06 15:24 - 000000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2017-09-06 15:24 - 2014-01-22 15:52 - 000072016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-09-06 15:23 - 2017-09-06 15:24 - 001031392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-09-06 15:23 - 2014-01-22 15:52 - 000189936 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-09-06 15:23 - 2014-01-22 15:52 - 000065336 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-09-06 15:23 - 2014-01-22 15:51 - 000295544 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-09-06 15:23 - 2014-01-22 15:51 - 000041664 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2017-09-06 14:59 - 2017-09-06 14:59 - 000029688 _____ C:\Users\darty\AppData\LocalLow\wbkD57B.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000027712 _____ C:\Users\darty\AppData\LocalLow\wbkD58E.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000005573 _____ C:\Users\darty\AppData\LocalLow\wbkD597.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000004956 _____ C:\Users\darty\AppData\LocalLow\wbkD594.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000002742 _____ C:\Users\darty\AppData\LocalLow\wbkD5AD.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000002480 _____ C:\Users\darty\AppData\LocalLow\wbkD59A.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000002256 _____ C:\Users\darty\AppData\LocalLow\wbkD591.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000928 _____ C:\Users\darty\AppData\LocalLow\wbkD5E4.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000561 _____ C:\Users\darty\AppData\LocalLow\wbkD5E7.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000537 _____ C:\Users\darty\AppData\LocalLow\wbkD5E1.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000511 _____ C:\Users\darty\AppData\LocalLow\wbkD5DE.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000510 _____ C:\Users\darty\AppData\LocalLow\wbkD5FF.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000459 _____ C:\Users\darty\AppData\LocalLow\wbkD5DB.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000437 _____ C:\Users\darty\AppData\LocalLow\wbkD608.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000392 _____ C:\Users\darty\AppData\LocalLow\wbkD624.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000371 _____ C:\Users\darty\AppData\LocalLow\wbkD605.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000354 _____ C:\Users\darty\AppData\LocalLow\wbkD61E.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000310 _____ C:\Users\darty\AppData\LocalLow\wbkD5D8.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000304 _____ C:\Users\darty\AppData\LocalLow\wbkD61B.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000297 _____ C:\Users\darty\AppData\LocalLow\wbkD621.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000102 _____ C:\Users\darty\AppData\LocalLow\wbkD5D5.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000069 _____ C:\Users\darty\AppData\LocalLow\wbkD5C2.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000062 _____ C:\Users\darty\AppData\LocalLow\wbkD602.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000053 _____ C:\Users\darty\AppData\LocalLow\wbkD5F9.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000049 _____ C:\Users\darty\AppData\LocalLow\wbkD5FC.tmp
2017-09-06 14:59 - 2017-09-06 14:59 - 000000042 _____ C:\Users\darty\AppData\LocalLow\wbkD5B0.tmp
2017-09-06 13:29 - 2017-09-12 12:09 - 000004184 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2017-09-06 13:24 - 2017-09-06 15:23 - 000000000 _____ C:\WINDOWS\SysWOW64\config.nt
2017-09-06 13:24 - 2017-09-06 13:24 - 000001879 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2017-09-06 13:24 - 2017-09-06 13:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
2017-09-06 13:24 - 2017-09-06 13:24 - 000000000 ____D C:\ProgramData\Alwil Software
2017-09-06 13:24 - 2017-09-06 13:24 - 000000000 ____D C:\Program Files\Alwil Software
2017-09-06 13:24 - 2014-01-22 15:52 - 000378944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-09-06 13:24 - 2014-01-22 15:52 - 000080816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-09-06 13:24 - 2014-01-22 15:52 - 000064288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2017-09-06 13:24 - 2014-01-22 15:52 - 000033400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswFsBlk.sys
2017-09-06 13:24 - 2010-04-14 18:47 - 000153184 _____ (ALWIL Software) C:\WINDOWS\SysWOW64\aswBoot.exe
2017-09-06 13:24 - 2010-04-14 18:31 - 000028752 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2017-09-06 12:16 - 2017-09-06 12:16 - 000000000 ____D C:\Users\darty\AppData\LocalLow\Adobe
2017-09-06 12:06 - 2017-09-06 12:43 - 000004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-09-06 12:06 - 2017-09-06 12:43 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-09-06 12:06 - 2017-09-06 12:43 - 000002078 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-09-06 12:05 - 2017-09-06 12:05 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-09-06 11:57 - 2017-09-12 17:04 - 000004496 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-09-06 11:57 - 2017-09-06 11:57 - 020648960 _____ (Adobe Systems Incorporated) C:\Users\darty\Desktop\install_flash_player.exe
2017-09-06 10:13 - 2017-09-06 10:13 - 000000000 ____D C:\Users\darty\Desktop\ben
2017-09-02 13:20 - 2017-09-12 17:37 - 000000000 ____D C:\Users\darty\Downloads\Nouveau dossier
2017-09-02 11:39 - 2017-09-05 10:42 - 000000000 ____D C:\Users\darty\Desktop\Judaisme
2017-09-01 17:11 - 2017-09-01 17:11 - 000000000 ____D C:\Users\darty\Downloads\essai téléchargement
2017-08-30 19:19 - 2017-08-30 19:19 - 000046726 _____ C:\Users\darty\Desktop\Confirmation pour votre voyage AVIGNON - METZ, aller le 01 sept_.eml
2017-08-28 19:39 - 2017-08-02 04:34 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-08-28 19:39 - 2017-08-02 03:47 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-08-28 19:39 - 2017-07-22 20:34 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsium.dll
2017-08-28 19:39 - 2017-07-22 19:32 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsium.dll
2017-08-28 19:39 - 2017-07-17 21:53 - 004298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-28 19:39 - 2017-07-17 01:55 - 003551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-08-28 19:39 - 2017-07-14 01:03 - 002013528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-28 19:39 - 2017-07-12 22:29 - 000420440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-08-28 19:39 - 2017-07-12 22:29 - 000075440 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-08-28 19:39 - 2017-07-12 22:25 - 000308872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-08-28 19:39 - 2017-07-12 22:25 - 000066112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-08-28 19:39 - 2017-07-08 21:03 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2017-08-28 19:39 - 2017-07-08 20:43 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2017-08-28 19:39 - 2017-07-08 20:30 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2017-08-28 19:39 - 2017-07-08 20:20 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-08-28 19:39 - 2017-07-08 19:25 - 001436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-08-28 19:39 - 2017-07-08 19:00 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-08-28 19:39 - 2017-07-08 05:14 - 000100184 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2017-08-28 10:51 - 2017-08-28 10:51 - 000006971 _____ C:\Users\darty\Downloads\iban_COMPTE_JOINT_00050770603.pdf
2017-08-26 11:22 - 2017-08-26 11:22 - 000260441 _____ C:\Users\darty\Downloads\AVIGNON_METZ_201709011653_QHPDIJ (1).pdf
2017-08-26 10:54 - 2017-08-26 10:54 - 000260441 _____ C:\Users\darty\Downloads\AVIGNON_METZ_201709011653_QHPDIJ.pdf
2017-08-25 12:19 - 2017-08-29 10:07 - 000000000 ____D C:\Users\darty\AppData\Local\FSDART
2017-08-16 14:15 - 2017-08-16 14:15 - 000162518 _____ C:\Users\darty\Desktop\Commande - Par Amour Du Vin EURL.pdf
2017-08-15 19:00 - 2017-08-15 19:00 - 000370059 _____ C:\Users\darty\Desktop\Birkat.pdf

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-09-12 17:23 - 2016-12-23 17:35 - 001953280 ___SH C:\Users\darty\Desktop\Thumbs.db
2017-09-12 17:15 - 2015-04-06 11:17 - 000000000 ____D C:\Users\darty\AppData\Local\CrashDumps
2017-09-12 17:04 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-09-12 17:04 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-09-12 16:59 - 2015-03-19 18:30 - 000000000 ____D C:\Users\darty\AppData\Local\SweetLabs App Platform
2017-09-12 16:57 - 2015-05-04 08:57 - 000000753 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {6379A0E6-9078-487F-AB06-6917D2C856A2}.job
2017-09-12 16:57 - 2015-03-31 10:02 - 000000000 ____D C:\Users\darty\AppData\Roaming\Nitro PDF
2017-09-12 16:57 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2017-09-12 16:56 - 2015-05-04 08:56 - 000000939 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {6379A0E6-9078-487F-AB06-6917D2C856A2}.job
2017-09-12 16:54 - 2015-03-20 01:18 - 000135880 _____ (Lenovo) C:\WINDOWS\system32\wpbbin.exe
2017-09-12 16:54 - 2015-03-19 18:31 - 000000000 __SHD C:\Users\darty\IntelGraphicsProfiles
2017-09-12 16:54 - 2014-12-23 11:55 - 000000000 ____D C:\ProgramData\NVIDIA
2017-09-12 16:54 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-12 16:09 - 2015-03-30 18:25 - 000003940 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1F446E7F-2AFE-4266-BB46-4919B15FF900}
2017-09-12 13:01 - 2015-11-14 14:55 - 004851712 ___SH C:\Users\darty\Downloads\Thumbs.db
2017-09-12 12:36 - 2015-03-19 18:36 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2358429717-2575667567-1197445876-1002
2017-09-12 12:15 - 2015-06-03 09:53 - 000000000 ____D C:\WINDOWS\Minidump
2017-09-12 11:53 - 2015-03-30 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pack Sérénité
2017-09-12 11:50 - 2015-03-30 21:04 - 000000000 ____D C:\ProgramData\F-Secure
2017-09-12 11:43 - 2015-03-19 18:30 - 000000000 ____D C:\Users\darty
2017-09-11 15:42 - 2015-06-19 10:07 - 000000000 ____D C:\Users\darty\AppData\Local\PokerStars.FR
2017-09-10 13:18 - 2016-01-04 13:50 - 000192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-09-10 13:07 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-10 13:07 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2017-09-09 20:43 - 2014-12-23 11:55 - 000000000 ____D C:\Users\UpdatusUser
2017-09-08 17:12 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-09-08 16:36 - 2017-04-06 10:44 - 000000000 ____D C:\Users\darty\Downloads\Divers
2017-09-08 16:21 - 2017-03-23 11:24 - 000000000 ____D C:\Users\darty\Desktop\Rav Sadin
2017-09-08 16:18 - 2017-03-03 13:06 - 000000000 ____D C:\Users\darty\Downloads\Rav Kaufman
2017-09-06 12:27 - 2014-12-23 12:26 - 000000000 ____D C:\ProgramData\Adobe
2017-09-06 12:17 - 2015-03-31 21:01 - 000000000 ____D C:\Users\darty\AppData\Local\Adobe
2017-09-06 12:16 - 2015-03-19 18:31 - 000000000 ____D C:\Users\darty\AppData\Roaming\Adobe
2017-09-06 12:14 - 2013-08-22 15:25 - 000786432 ___SH C:\WINDOWS\system32\config\BBI
2017-09-05 19:19 - 2017-07-04 22:52 - 000000000 ____D C:\Users\darty\Desktop\Fauteuil 2017
2017-09-04 18:56 - 2015-04-10 10:54 - 000000000 ___RD C:\Users\darty\Documents\Documents Harry
2017-09-01 09:56 - 2014-12-23 12:25 - 000000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-08-30 16:35 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache
2017-08-29 22:15 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-29 10:25 - 2015-03-30 22:18 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-29 10:02 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2017-08-28 20:35 - 2015-04-18 13:25 - 000000000 ____D C:\Users\darty\Documents\Youcam
2017-08-28 19:43 - 2013-08-22 17:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-25 12:19 - 2015-04-19 10:37 - 000000000 ____D C:\Users\darty\AppData\Local\F-Secure
2017-08-22 15:09 - 2017-01-26 11:35 - 000025083 _____ C:\Users\darty\Desktop\échéancier  sauvegarde (Enregistré automatiquement).xlsx

==================== Fichiers à la racine de certains dossiers =======

2015-03-19 18:31 - 2017-09-12 12:07 - 004745883 _____ () C:\Users\darty\AppData\Local\BTServer.log
2015-04-06 11:32 - 2017-05-18 11:06 - 000029696 _____ () C:\Users\darty\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-31 22:03 - 2015-03-31 22:03 - 000000011 _____ () C:\ProgramData\.tv7
2014-12-23 11:52 - 2014-12-23 11:52 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2015-03-30 21:58 - 2015-03-30 21:58 - 000000119 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2017-09-08 18:50

==================== Fin de FRST.txt ============================