Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2017 03
Exécuté par erwan (administrateur) sur LAPTOP-O0TF8N87 (14-11-2017 18:01:09)
Exécuté depuis C:\Users\erwan\Downloads
Profils chargés: erwan (Profils disponibles: erwan & Wan 2)
Platform: Windows 10 Home Version 1703 15063.674 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\igfxCUIService.exe
(HP) C:\Windows\System32\hpservice.exe
(HP) C:\Windows\System32\HP3DDGService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\IntelCpHDCPSvc.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Blue Coat Systems, Inc.) C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\IntelCpHeciSvc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.410_none_9e914f9d2d85dacb\TiWorker.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17084.21621.0_x64__8wekyb3d8bbwe\Music.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.Office.Sway_18.1711.50601.0_x64__8wekyb3d8bbwe\Microsoft.Office.Sway.LightweightClient.UWP.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\launcher.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser_autoupdate.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230304 2017-11-08] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-11-11] (AVAST Software)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [127528 2015-07-08] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-07-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [688184 2012-02-15] (Sony Corporation)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [701984 2017-07-13] (HP Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-07] (Piriform Ltd)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1248848 2017-08-31] (CyberGhost S.A.)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [uTorrent] => C:\Users\erwan\AppData\Roaming\uTorrent\uTorrent.exe [2146496 2017-09-02] (BitTorrent Inc.)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [Spotify] => C:\Users\erwan\AppData\Roaming\Spotify\Spotify.exe [21025392 2017-11-10] (Spotify Ltd)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [Spotify Web Helper] => C:\Users\erwan\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-11-10] (Spotify Ltd)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe [2382432 2017-07-13] (Adobe Systems Incorporated)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-07-13] (Adobe Systems Incorporated)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\MountPoints2: {3f5fc7ec-556f-11e7-b970-ec8eb5495856} - "E:\curse.exe"
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\MountPoints2: {3f5fc7fa-556f-11e7-b970-ec8eb5495856} - "F:\curse.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-07-06]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5ca0c287-c156-4114-a90b-be88e9fb2ffa}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c575f6cd-49ad-402c-b8ce-1b7527fcc4f2}: [DhcpNameServer] 38.132.106.139 194.187.251.67 185.93.180.131
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-11-06] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-06] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 1gou9mqu.default-1487674971000-1505490567829
FF DefaultProfile: zek42c67.default
FF ProfilePath: C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829 [2017-11-14]
FF Extension: (Spanish (Spain) Dictionary) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\es-es@dictionaries.addons.mozilla.org [2017-10-05]
FF Extension: (Ghostery) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\firefox@ghostery.com.xpi [2017-10-31]
FF Extension: (AdBlock) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2017-10-06]
FF Extension: (British English Dictionary (Marco Pinto)) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\marcoagpinto@mail.telepac.pt [2017-10-26]
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-11-09]
FF Extension: (Avast Online Security) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\wrc@avast.com.xpi [2017-10-20]
FF Extension: (Ecosia — The search engine that plants trees!) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2017-10-31]
FF Extension: (Adblock Plus) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-11-08]
FF ProfilePath: C:\Users\erwan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\zek42c67.default [2017-11-13]
FF DefaultSearchEngine: Moonchild Productions\Pale Moon\Profiles\zek42c67.default -> Ecosia
FF Homepage: Moonchild Productions\Pale Moon\Profiles\zek42c67.default -> hxxps://www.ecosia.org/
FF Extension: (Adblock Latitude) - C:\Users\erwan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\zek42c67.default\Extensions\adblocklatitude@addons.palemoon.org.xpi [2017-02-19] [non signé]
FF Extension: (uBlock) - C:\Users\erwan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\zek42c67.default\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2017-02-28]
FF Extension: (Responsible Blocker) - C:\Users\erwan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\zek42c67.default\Extensions\{88A0C50A-E61B-11E5-9673-8908BC8E7F8B}.xpi [2017-02-28]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-10-30] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-07-13] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-30] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1227197.dll [2017-02-20] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-10-19] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-07-13] (Adobe Systems)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\firefox.js [2017-02-09]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [814688 2017-07-13] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7549928 2017-11-11] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-11-11] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [332368 2017-11-11] (AVAST Software)
R2 bckwfs; C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe [2619096 2016-08-18] (Blue Coat Systems, Inc.)
S2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [232528 2017-08-31] (CyberGhost S.A.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8063656 2017-10-31] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-16] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-16] (Dropbox, Inc.)
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2210424 2017-10-18] (Intel Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-06-14] (NVIDIA Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1318184 2017-05-15] (HP Inc.)
R2 hp3ddgsrv; C:\WINDOWS\system32\HP3DDGService.exe [130072 2017-10-03] (HP)
R2 hpsrv; C:\WINDOWS\system32\Hpservice.exe [38728 2016-10-11] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18488 2016-03-08] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-09] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-21] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-09-16] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-14] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2098528 2017-09-06] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2977640 2017-09-06] (Electronic Arts)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [459832 2012-02-15] (Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324608 2017-11-08] (Realtek Semiconductor)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2017-01-16] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [54296 2017-10-03] (HP)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [183584 2017-11-11] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321032 2017-11-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [198968 2017-11-11] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343288 2017-11-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57728 2017-11-11] (AVAST Software s.r.o.)
S3 aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [105136 2017-09-28] (AVAST Software)
R3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [47008 2017-11-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32088 2017-03-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [148288 2017-11-11] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [570152 2017-11-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110376 2017-11-11] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84416 2017-11-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1026232 2017-11-11] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [455384 2017-11-11] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203976 2017-11-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [364464 2017-11-11] (AVAST Software)
R3 bcbtums; C:\WINDOWS\system32\DRIVERS\bcbtums.sys [186152 2017-10-18] (Broadcom Corporation.)
R2 bckd; C:\WINDOWS\System32\drivers\bckd.sys [125144 2016-08-18] (Blue Coat Systems, Inc.)
R3 BCMWL63A; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [11794376 2017-07-13] (Broadcom Corp)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [67968 2017-10-18] (Intel Corporation)
S3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [30264 2017-06-21] (Disc Soft Ltd)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [355200 2017-10-18] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-11-10] ()
S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32840 2017-10-18] (ELAN Microelectronic Corp.)
R0 hpdskflt; C:\WINDOWS\System32\DRIVERS\hpdskflt.sys [40472 2017-10-03] (HP)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-10-18] (REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [192952 2017-11-10] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-11-14] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [45504 2017-11-14] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [253888 2017-11-10] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-11-14] (Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_f0b2a5e1e71031b3\nvlddmkm.sys [15620208 2017-10-16] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-10-18] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1009128 2017-10-18] (Realtek )
S3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [782816 2017-11-08] (Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2016-01-20] (Realsil Semiconductor Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [55384 2017-08-18] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30368 2017-06-21] (HP)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-14 17:56 - 2017-11-14 17:59 - 000059333 _____ C:\Users\erwan\Downloads\Addition.txt
2017-11-14 17:54 - 2017-11-14 18:01 - 000026324 _____ C:\Users\erwan\Downloads\FRST.txt
2017-11-14 17:53 - 2017-11-14 18:01 - 000000000 ____D C:\FRST
2017-11-14 17:51 - 2017-11-14 17:52 - 002392576 _____ (Farbar) C:\Users\erwan\Downloads\FRST64.exe
2017-11-14 16:51 - 2017-11-14 16:53 - 001011724 _____ C:\WINDOWS\Minidump\111417-35562-01.dmp
2017-11-14 14:22 - 2017-11-14 16:51 - 601385278 _____ C:\WINDOWS\MEMORY.DMP
2017-11-14 14:22 - 2017-11-14 14:26 - 000990228 _____ C:\WINDOWS\Minidump\111417-37984-01.dmp
2017-11-14 03:02 - 2017-11-14 03:04 - 021854454 _____ C:\Users\erwan\Desktop\Ce Monde N'Est Pas Le Mien 3.wav
2017-11-13 23:57 - 2017-11-13 23:57 - 021589854 _____ C:\Users\erwan\Desktop\Ce Monde N'Est Pas Le Mien 1.wav
2017-11-11 13:27 - 2017-11-11 13:27 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-11-11 13:20 - 2017-11-11 13:20 - 000001986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Internet Security.lnk
2017-11-11 13:20 - 2017-11-11 13:20 - 000001974 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk
2017-11-11 13:19 - 2017-11-11 13:18 - 000570152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-11-11 13:19 - 2017-11-11 13:05 - 000365168 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-11-11 13:06 - 2017-11-11 13:05 - 000183584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2017-11-10 18:14 - 2017-11-14 16:52 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-11-10 18:14 - 2017-11-14 16:52 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-11-10 18:14 - 2017-11-14 16:52 - 000045504 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-11-10 18:14 - 2017-11-10 18:14 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2017-11-10 17:38 - 2017-11-10 17:38 - 000253888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-11-10 17:37 - 2017-11-10 18:13 - 000077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-11-10 17:37 - 2017-11-10 17:37 - 000001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-10 17:37 - 2017-11-10 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-10 17:37 - 2017-11-10 17:37 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-11-10 13:34 - 2017-11-10 13:50 - 065942208 _____ (Malwarebytes ) C:\Users\erwan\Downloads\malwarebytes-anti-malware_3-2-2-2029_fr_215092.exe
2017-11-08 12:26 - 2017-11-08 12:26 - 000831008 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2017-11-08 12:23 - 2017-11-08 12:23 - 072520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-11-08 12:23 - 2017-11-08 12:23 - 012935679 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-11-08 12:23 - 2017-11-08 12:23 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-11-08 12:23 - 2017-11-08 12:23 - 003410832 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 003205120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 002210272 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001616680 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001529136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001347136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001016928 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000877424 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000868176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000866640 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000782816 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsPer.sys
2017-11-08 12:23 - 2017-11-08 12:23 - 000737960 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000691680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000609392 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CAF64APO2.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000526280 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000381408 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000258856 _____ (TODO:) C:\WINDOWS\system32\slprp64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000214824 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000115120 _____ (Conexant System, Inc.) C:\WINDOWS\system32\Caf64api.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-11-07 10:52 - 2017-11-07 10:52 - 000000165 ____H C:\Users\erwan\Downloads\~$CV-ErwanDagan-2016_ ARG-VENTAS.pptx
2017-11-01 19:10 - 2017-11-01 19:11 - 017586718 _____ C:\Users\erwan\Desktop\Position 3.wav
2017-11-01 18:48 - 2017-11-01 18:49 - 017586718 _____ C:\Users\erwan\Desktop\Position 2.wav
2017-10-30 18:27 - 2017-11-13 15:43 - 000023534 ____H C:\Users\erwan\Desktop\~WRL0008.tmp
2017-10-30 18:27 - 2017-11-13 15:31 - 000022855 ____H C:\Users\erwan\Desktop\~WRL0007.tmp
2017-10-30 18:27 - 2017-11-06 21:21 - 000017987 ____H C:\Users\erwan\Desktop\~WRL0003.tmp
2017-10-29 02:53 - 2017-10-29 02:53 - 000024701 _____ C:\Users\erwan\Documents\SociosCCIFranceArgentine2017.xlsx
2017-10-28 22:38 - 2017-10-30 19:07 - 017586718 _____ C:\Users\erwan\Desktop\Position 1.wav
2017-10-28 21:44 - 2017-10-28 21:45 - 031166594 _____ C:\Users\erwan\Desktop\Paradis Artificiel Mixage 2.wav
2017-10-28 21:01 - 2017-10-28 21:19 - 031336884 _____ C:\Users\erwan\Downloads\groovemachine_install.exe
2017-10-28 21:01 - 2017-10-28 21:16 - 025165824 _____ (FreeDownloadManager.ORG ) C:\Users\erwan\Downloads\fdm5_x64_setup.exe.part
2017-10-28 20:53 - 2017-10-28 20:53 - 000807327 _____ C:\Users\erwan\Downloads\Electricity_Vol.1_Soundbank_Spire.rar
2017-10-28 15:47 - 2017-11-05 20:01 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-28 15:47 - 2017-07-20 14:21 - 000905504 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-10-28 15:47 - 2017-07-20 14:21 - 000776992 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-10-28 15:47 - 2017-07-20 14:21 - 000578848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-10-28 15:47 - 2017-07-20 14:21 - 000477472 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-10-26 15:45 - 2017-10-27 14:03 - 035945457 _____ C:\Users\erwan\Downloads\POPULOUS.3.THE.BEGINNING-PARADiGM.rar.part
2017-10-23 22:34 - 2017-10-23 22:34 - 000001334 _____ C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2017-10-23 22:34 - 2017-10-23 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2017-10-23 22:34 - 2017-10-23 22:34 - 000000000 ____D C:\Program Files (x86)\Elaborate Bytes
2017-10-23 20:53 - 2017-10-23 20:53 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-10-23 20:51 - 2017-10-24 13:20 - 000000000 ____D C:\Users\erwan\AppData\Roaming\ResidualVM
2017-10-22 05:24 - 2017-10-22 05:27 - 001139895 _____ C:\Users\erwan\Desktop\Sway - OnSport.pdf
2017-10-22 05:15 - 2017-10-22 05:18 - 001141275 _____ C:\Users\erwan\Desktop\Sway - OnSport2.pdf
2017-10-18 22:53 - 2017-10-29 02:00 - 000000000 ____D C:\Users\erwan\Desktop\Emulateur
2017-10-18 21:13 - 2017-10-18 21:13 - 001804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2017-10-18 21:13 - 2017-10-18 21:13 - 000032840 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\Drivers\ETDSMBus.sys
2017-10-18 20:51 - 2017-10-18 20:51 - 009891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2017-10-18 20:51 - 2017-10-18 20:51 - 004332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2017-10-18 20:36 - 2017-10-18 20:36 - 000574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2017-10-18 20:36 - 2017-10-18 20:36 - 000118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2017-10-18 18:45 - 2017-10-18 18:45 - 000213312 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwampfl.sys
2017-10-18 18:23 - 2017-11-14 17:50 - 000003038 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (erwan)
2017-10-18 18:23 - 2017-11-14 12:55 - 000002568 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2017-10-18 18:23 - 2017-11-08 12:37 - 000000000 ____D C:\ProgramData\ProductData
2017-10-18 18:23 - 2017-11-08 12:27 - 000002376 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2017-10-18 18:23 - 2017-10-18 18:36 - 000000000 ____D C:\Users\erwan\AppData\LocalLow\IObit
2017-10-18 18:23 - 2017-10-18 18:23 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2017-10-18 18:23 - 2017-10-18 18:23 - 000000000 ____D C:\WINDOWS\IObit
2017-10-18 18:23 - 2017-10-18 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2017-10-18 18:23 - 2017-10-18 18:23 - 000000000 ____D C:\Program Files (x86)\IObit
2017-10-18 18:22 - 2017-10-18 18:23 - 000000000 ____D C:\ProgramData\IObit
2017-10-18 18:19 - 2017-10-18 18:19 - 000000000 ____D C:\Users\erwan\AppData\Roaming\IObit
2017-10-16 01:18 - 2017-10-16 01:18 - 035934136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-10-16 01:18 - 2017-10-16 01:18 - 029028792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-10-16 01:13 - 2017-10-16 01:13 - 000981616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-10-16 01:13 - 2017-10-16 01:13 - 000932976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-10-16 01:13 - 2017-10-16 01:13 - 000618424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-10-16 01:13 - 2017-10-16 01:13 - 000507832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-10-16 01:12 - 2017-10-16 01:12 - 001996912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438569.dll
2017-10-16 01:12 - 2017-10-16 01:12 - 001615288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438569.dll
2017-10-16 01:12 - 2017-10-16 01:12 - 001076664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-10-16 01:12 - 2017-10-16 01:12 - 001013872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 040248760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 035322808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 023343840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 019023464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 012357696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 010184544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 004153784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 003584440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 001312216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 001026600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 000797568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 000705448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 000631592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 000592024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-10-16 01:09 - 2017-10-16 01:09 - 013912344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-10-16 01:09 - 2017-10-16 01:09 - 011804040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-10-16 01:09 - 2017-10-16 01:09 - 003753392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-10-16 00:55 - 2017-10-16 00:55 - 000046443 _____ C:\WINDOWS\system32\nvinfo.pb
2017-10-16 00:55 - 2017-10-16 00:55 - 000000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-10-16 00:55 - 2017-10-16 00:55 - 000000669 _____ C:\WINDOWS\system32\nv-vk64.json
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-14 17:52 - 2017-01-16 08:34 - 000000000 ____D C:\Users\erwan\AppData\LocalLow\Mozilla
2017-11-14 17:50 - 2017-08-11 22:07 - 000004178 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B1DDD93A-8196-4977-819D-34E6F98E88B4}
2017-11-14 17:46 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-14 17:45 - 2017-04-27 03:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-14 17:45 - 2017-01-16 08:21 - 000000000 __SHD C:\Users\erwan\IntelGraphicsProfiles
2017-11-14 17:00 - 2017-04-27 03:40 - 000004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-11-14 16:52 - 2017-04-27 03:16 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-14 16:51 - 2017-08-15 13:00 - 000000000 ____D C:\WINDOWS\Minidump
2017-11-14 16:51 - 2017-04-27 03:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-14 15:41 - 2017-05-12 16:17 - 000000000 ____D C:\Users\erwan\AppData\Roaming\Spotify
2017-11-14 14:49 - 2017-04-27 03:40 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-11-14 14:47 - 2017-04-12 14:38 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-14 14:31 - 2017-04-27 03:40 - 000004252 _____ C:\WINDOWS\System32\Tasks\avast! SL Update
2017-11-14 14:05 - 2017-01-16 12:46 - 000000000 ____D C:\Users\erwan\AppData\Local\Adobe
2017-11-14 13:57 - 2017-04-04 21:43 - 000000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleForerwan.job
2017-11-14 13:57 - 2016-04-01 20:41 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-11-14 13:57 - 2016-04-01 20:41 - 000001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-11-14 12:55 - 2017-08-18 12:57 - 000002860 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1104394044-2155642796-2404995124-1001
2017-11-14 12:55 - 2017-04-27 03:40 - 000003740 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-11-14 12:55 - 2017-04-27 03:40 - 000003450 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-11-14 12:55 - 2017-04-27 03:40 - 000003414 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-11-14 12:55 - 2017-04-27 03:40 - 000003396 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1484567978
2017-11-14 12:55 - 2017-04-27 03:40 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2017-11-14 12:55 - 2017-04-27 03:40 - 000002810 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-erwan_dagan@hotmail.fr
2017-11-14 12:55 - 2017-04-27 03:40 - 000002802 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForerwan
2017-11-14 12:55 - 2017-04-27 03:40 - 000002544 _____ C:\WINDOWS\System32\Tasks\HPDAS
2017-11-14 12:55 - 2017-04-27 03:40 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-11-14 12:55 - 2017-04-27 03:40 - 000002206 _____ C:\WINDOWS\System32\Tasks\Nvbackend
2017-11-14 12:55 - 2017-04-27 03:40 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-11-14 12:54 - 2017-04-27 03:19 - 000000000 ____D C:\Users\erwan
2017-11-14 12:54 - 2017-01-16 08:47 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-14 12:49 - 2017-05-12 16:20 - 000000000 ____D C:\Users\erwan\AppData\Local\Spotify
2017-11-14 11:58 - 2017-01-18 12:46 - 000000000 ____D C:\ProgramData\Skype
2017-11-14 11:43 - 2017-03-18 18:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-11-14 11:43 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-13 22:16 - 2017-03-18 18:01 - 000000000 ____D C:\WINDOWS\INF
2017-11-13 21:17 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-11-12 14:33 - 2017-08-09 20:47 - 000000000 ____D C:\Program Files\Blue Coat K9 Web Protection
2017-11-12 02:49 - 2017-01-16 08:21 - 000000000 ____D C:\Users\erwan\AppData\Local\Packages
2017-11-11 13:22 - 2017-03-18 08:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2017-11-11 13:20 - 2017-06-06 22:27 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-11-11 13:05 - 2017-03-02 10:27 - 000343288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-11-11 13:05 - 2017-03-02 10:27 - 000321032 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-11-11 13:05 - 2017-03-02 10:27 - 000198968 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-11-11 13:05 - 2017-03-02 10:27 - 000057728 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 001026232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000455384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000364464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000203976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000148288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000110376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000084416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000047008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-11-10 18:37 - 2017-01-20 12:44 - 000000000 ____D C:\Users\erwan\AppData\Local\CrashDumps
2017-11-10 17:37 - 2017-01-16 08:44 - 000000000 ____D C:\Program Files\Malwarebytes
2017-11-10 17:28 - 2017-04-27 03:19 - 000000000 ____D C:\Users\Wan 2
2017-11-09 20:11 - 2017-01-16 08:30 - 000000000 ____D C:\Users\erwan\AppData\Roaming\Skype
2017-11-08 12:35 - 2017-04-27 03:18 - 003153404 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-08 12:35 - 2017-03-20 02:10 - 001469378 _____ C:\WINDOWS\system32\perfh00C.dat
2017-11-08 12:35 - 2017-03-20 02:10 - 000355678 _____ C:\WINDOWS\system32\perfc00C.dat
2017-11-08 12:30 - 2017-04-27 03:16 - 000139685 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2017-11-08 12:26 - 2017-04-27 03:17 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\B&O Play Audio Control.lnk
2017-11-08 12:26 - 2016-03-14 07:11 - 000905736 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-11-08 12:24 - 2017-04-27 03:16 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-11-08 12:23 - 2017-01-31 12:11 - 005839840 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-11-08 12:23 - 2017-01-31 12:11 - 003509232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 003507688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 003122656 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 000984912 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-11-08 12:23 - 2016-04-03 22:06 - 000205432 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-11-07 18:12 - 2017-03-18 17:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-07 10:43 - 2017-01-18 12:46 - 000002418 _____ C:\Users\erwan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-07 10:43 - 2017-01-16 08:26 - 000000000 ___RD C:\Users\erwan\OneDrive
2017-11-07 00:35 - 2017-03-18 18:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-11-07 00:32 - 2016-04-01 20:42 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-11-06 16:28 - 2017-10-11 11:55 - 000000000 ____D C:\Users\erwan\Desktop\JEUX
2017-11-05 20:01 - 2017-04-27 03:15 - 000000000 ____D C:\Program Files\Intel
2017-10-30 18:02 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-10-30 18:02 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-10-29 08:21 - 2017-02-21 08:02 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-29 08:21 - 2017-02-21 08:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-29 02:56 - 2017-02-02 12:17 - 000000000 ____D C:\Users\erwan\Documents\ETUDES
2017-10-29 02:42 - 2017-02-02 12:27 - 000000000 ____D C:\Users\erwan\Documents\ADMIN
2017-10-29 02:39 - 2017-02-02 12:44 - 000000000 ____D C:\Users\erwan\Documents\MOOC
2017-10-29 02:38 - 2017-02-02 12:42 - 000000000 ____D C:\Users\erwan\Documents\EXPERIENCES PROFESSIONNELLES
2017-10-24 18:14 - 2017-03-18 18:06 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-10-24 18:14 - 2017-03-18 18:06 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-23 20:09 - 2016-04-01 20:42 - 000000000 ____D C:\ProgramData\Apple
2017-10-23 19:39 - 2017-03-05 20:42 - 000000000 ____D C:\Users\erwan\Documents\Adobe
2017-10-23 19:38 - 2017-01-16 13:42 - 000000000 ____D C:\Users\erwan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-10-23 19:14 - 2017-08-31 10:50 - 000000000 ____D C:\Users\erwan\Desktop\Cours de français
2017-10-20 00:24 - 2017-10-10 00:23 - 000000000 ____D C:\Users\erwan\AppData\Local\PokerStars
2017-10-19 18:17 - 2016-07-06 00:34 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-18 20:58 - 2017-04-27 03:16 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2017-10-18 20:53 - 2017-01-31 12:15 - 001009128 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2017-10-18 20:51 - 2016-07-06 00:27 - 000084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2017-10-18 19:44 - 2017-01-19 16:48 - 000048248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-10-18 18:48 - 2016-08-12 20:40 - 000355200 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\esif_lf.sys
2017-10-18 18:48 - 2016-08-12 20:40 - 000067968 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_cpu.sys
2017-10-18 18:45 - 2016-01-27 10:35 - 000186152 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\bcbtums.sys
2017-10-16 01:18 - 2017-02-10 13:58 - 015620208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2017-10-16 01:09 - 2017-02-10 13:48 - 004256264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-10-15 19:20 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\rescache
==================== Fichiers à la racine de certains dossiers =======
2017-02-28 19:09 - 2017-02-28 19:09 - 000000028 _RSHO () C:\Users\erwan\AppData\Roaming\be046e943fe726861c04b0318e13b2f274b1ec06.sys
2017-02-28 19:09 - 2017-02-28 19:09 - 000000028 _RSHO () C:\Users\erwan\AppData\Roaming\c54da0d4db72e7476d261013371d583ed5cee3ac.sys
2017-07-06 17:17 - 2017-07-06 17:28 - 000000819 _____ () C:\ProgramData\hpzinstall.log
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-11-08 14:27
==================== Fin de FRST.txt ============================
Exécuté par erwan (administrateur) sur LAPTOP-O0TF8N87 (14-11-2017 18:01:09)
Exécuté depuis C:\Users\erwan\Downloads
Profils chargés: erwan (Profils disponibles: erwan & Wan 2)
Platform: Windows 10 Home Version 1703 15063.674 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\igfxCUIService.exe
(HP) C:\Windows\System32\hpservice.exe
(HP) C:\Windows\System32\HP3DDGService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\IntelCpHDCPSvc.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Blue Coat Systems, Inc.) C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\IntelCpHeciSvc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.410_none_9e914f9d2d85dacb\TiWorker.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17084.21621.0_x64__8wekyb3d8bbwe\Music.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.Office.Sway_18.1711.50601.0_x64__8wekyb3d8bbwe\Microsoft.Office.Sway.LightweightClient.UWP.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\launcher.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser_autoupdate.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230304 2017-11-08] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-11-11] (AVAST Software)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [127528 2015-07-08] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-07-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [688184 2012-02-15] (Sony Corporation)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [701984 2017-07-13] (HP Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-07] (Piriform Ltd)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1248848 2017-08-31] (CyberGhost S.A.)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [uTorrent] => C:\Users\erwan\AppData\Roaming\uTorrent\uTorrent.exe [2146496 2017-09-02] (BitTorrent Inc.)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [Spotify] => C:\Users\erwan\AppData\Roaming\Spotify\Spotify.exe [21025392 2017-11-10] (Spotify Ltd)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Run: [Spotify Web Helper] => C:\Users\erwan\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-11-10] (Spotify Ltd)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe [2382432 2017-07-13] (Adobe Systems Incorporated)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-07-13] (Adobe Systems Incorporated)
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\MountPoints2: {3f5fc7ec-556f-11e7-b970-ec8eb5495856} - "E:\curse.exe"
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\MountPoints2: {3f5fc7fa-556f-11e7-b970-ec8eb5495856} - "F:\curse.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-07-06]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5ca0c287-c156-4114-a90b-be88e9fb2ffa}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c575f6cd-49ad-402c-b8ce-1b7527fcc4f2}: [DhcpNameServer] 38.132.106.139 194.187.251.67 185.93.180.131
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-11-06] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-06] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 1gou9mqu.default-1487674971000-1505490567829
FF DefaultProfile: zek42c67.default
FF ProfilePath: C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829 [2017-11-14]
FF Extension: (Spanish (Spain) Dictionary) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\es-es@dictionaries.addons.mozilla.org [2017-10-05]
FF Extension: (Ghostery) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\firefox@ghostery.com.xpi [2017-10-31]
FF Extension: (AdBlock) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2017-10-06]
FF Extension: (British English Dictionary (Marco Pinto)) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\marcoagpinto@mail.telepac.pt [2017-10-26]
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-11-09]
FF Extension: (Avast Online Security) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\wrc@avast.com.xpi [2017-10-20]
FF Extension: (Ecosia — The search engine that plants trees!) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2017-10-31]
FF Extension: (Adblock Plus) - C:\Users\erwan\AppData\Roaming\Mozilla\Firefox\Profiles\1gou9mqu.default-1487674971000-1505490567829\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-11-08]
FF ProfilePath: C:\Users\erwan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\zek42c67.default [2017-11-13]
FF DefaultSearchEngine: Moonchild Productions\Pale Moon\Profiles\zek42c67.default -> Ecosia
FF Homepage: Moonchild Productions\Pale Moon\Profiles\zek42c67.default -> hxxps://www.ecosia.org/
FF Extension: (Adblock Latitude) - C:\Users\erwan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\zek42c67.default\Extensions\adblocklatitude@addons.palemoon.org.xpi [2017-02-19] [non signé]
FF Extension: (uBlock) - C:\Users\erwan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\zek42c67.default\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2017-02-28]
FF Extension: (Responsible Blocker) - C:\Users\erwan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\zek42c67.default\Extensions\{88A0C50A-E61B-11E5-9673-8908BC8E7F8B}.xpi [2017-02-28]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-10-30] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-07-13] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-30] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1227197.dll [2017-02-20] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-10-19] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-07-13] (Adobe Systems)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\firefox.js [2017-02-09]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [814688 2017-07-13] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7549928 2017-11-11] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-11-11] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [332368 2017-11-11] (AVAST Software)
R2 bckwfs; C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe [2619096 2016-08-18] (Blue Coat Systems, Inc.)
S2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [232528 2017-08-31] (CyberGhost S.A.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8063656 2017-10-31] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-16] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-16] (Dropbox, Inc.)
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2210424 2017-10-18] (Intel Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-06-14] (NVIDIA Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1318184 2017-05-15] (HP Inc.)
R2 hp3ddgsrv; C:\WINDOWS\system32\HP3DDGService.exe [130072 2017-10-03] (HP)
R2 hpsrv; C:\WINDOWS\system32\Hpservice.exe [38728 2016-10-11] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18488 2016-03-08] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-09] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-21] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-09-16] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-14] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2098528 2017-09-06] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2977640 2017-09-06] (Electronic Arts)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [459832 2012-02-15] (Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324608 2017-11-08] (Realtek Semiconductor)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2017-01-16] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [54296 2017-10-03] (HP)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [183584 2017-11-11] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321032 2017-11-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [198968 2017-11-11] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343288 2017-11-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57728 2017-11-11] (AVAST Software s.r.o.)
S3 aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [105136 2017-09-28] (AVAST Software)
R3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [47008 2017-11-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32088 2017-03-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [148288 2017-11-11] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [570152 2017-11-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110376 2017-11-11] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84416 2017-11-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1026232 2017-11-11] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [455384 2017-11-11] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203976 2017-11-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [364464 2017-11-11] (AVAST Software)
R3 bcbtums; C:\WINDOWS\system32\DRIVERS\bcbtums.sys [186152 2017-10-18] (Broadcom Corporation.)
R2 bckd; C:\WINDOWS\System32\drivers\bckd.sys [125144 2016-08-18] (Blue Coat Systems, Inc.)
R3 BCMWL63A; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [11794376 2017-07-13] (Broadcom Corp)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [67968 2017-10-18] (Intel Corporation)
S3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [30264 2017-06-21] (Disc Soft Ltd)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [355200 2017-10-18] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-11-10] ()
S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32840 2017-10-18] (ELAN Microelectronic Corp.)
R0 hpdskflt; C:\WINDOWS\System32\DRIVERS\hpdskflt.sys [40472 2017-10-03] (HP)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-10-18] (REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [192952 2017-11-10] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-11-14] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [45504 2017-11-14] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [253888 2017-11-10] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-11-14] (Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_f0b2a5e1e71031b3\nvlddmkm.sys [15620208 2017-10-16] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-10-18] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1009128 2017-10-18] (Realtek )
S3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [782816 2017-11-08] (Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2016-01-20] (Realsil Semiconductor Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [55384 2017-08-18] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30368 2017-06-21] (HP)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-14 17:56 - 2017-11-14 17:59 - 000059333 _____ C:\Users\erwan\Downloads\Addition.txt
2017-11-14 17:54 - 2017-11-14 18:01 - 000026324 _____ C:\Users\erwan\Downloads\FRST.txt
2017-11-14 17:53 - 2017-11-14 18:01 - 000000000 ____D C:\FRST
2017-11-14 17:51 - 2017-11-14 17:52 - 002392576 _____ (Farbar) C:\Users\erwan\Downloads\FRST64.exe
2017-11-14 16:51 - 2017-11-14 16:53 - 001011724 _____ C:\WINDOWS\Minidump\111417-35562-01.dmp
2017-11-14 14:22 - 2017-11-14 16:51 - 601385278 _____ C:\WINDOWS\MEMORY.DMP
2017-11-14 14:22 - 2017-11-14 14:26 - 000990228 _____ C:\WINDOWS\Minidump\111417-37984-01.dmp
2017-11-14 03:02 - 2017-11-14 03:04 - 021854454 _____ C:\Users\erwan\Desktop\Ce Monde N'Est Pas Le Mien 3.wav
2017-11-13 23:57 - 2017-11-13 23:57 - 021589854 _____ C:\Users\erwan\Desktop\Ce Monde N'Est Pas Le Mien 1.wav
2017-11-11 13:27 - 2017-11-11 13:27 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-11-11 13:20 - 2017-11-11 13:20 - 000001986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Internet Security.lnk
2017-11-11 13:20 - 2017-11-11 13:20 - 000001974 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk
2017-11-11 13:19 - 2017-11-11 13:18 - 000570152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-11-11 13:19 - 2017-11-11 13:05 - 000365168 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-11-11 13:06 - 2017-11-11 13:05 - 000183584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2017-11-10 18:14 - 2017-11-14 16:52 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-11-10 18:14 - 2017-11-14 16:52 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-11-10 18:14 - 2017-11-14 16:52 - 000045504 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-11-10 18:14 - 2017-11-10 18:14 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2017-11-10 17:38 - 2017-11-10 17:38 - 000253888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-11-10 17:37 - 2017-11-10 18:13 - 000077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-11-10 17:37 - 2017-11-10 17:37 - 000001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-10 17:37 - 2017-11-10 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-10 17:37 - 2017-11-10 17:37 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-11-10 13:34 - 2017-11-10 13:50 - 065942208 _____ (Malwarebytes ) C:\Users\erwan\Downloads\malwarebytes-anti-malware_3-2-2-2029_fr_215092.exe
2017-11-08 12:26 - 2017-11-08 12:26 - 000831008 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2017-11-08 12:23 - 2017-11-08 12:23 - 072520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-11-08 12:23 - 2017-11-08 12:23 - 012935679 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-11-08 12:23 - 2017-11-08 12:23 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-11-08 12:23 - 2017-11-08 12:23 - 003410832 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 003205120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 002210272 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001616680 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001529136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001347136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 001016928 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000877424 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000868176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000866640 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000782816 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsPer.sys
2017-11-08 12:23 - 2017-11-08 12:23 - 000737960 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000691680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000609392 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CAF64APO2.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000526280 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000381408 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000258856 _____ (TODO:
2017-11-08 12:23 - 2017-11-08 12:23 - 000214824 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000115120 _____ (Conexant System, Inc.) C:\WINDOWS\system32\Caf64api.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-11-08 12:23 - 2017-11-08 12:23 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-11-07 10:52 - 2017-11-07 10:52 - 000000165 ____H C:\Users\erwan\Downloads\~$CV-ErwanDagan-2016_ ARG-VENTAS.pptx
2017-11-01 19:10 - 2017-11-01 19:11 - 017586718 _____ C:\Users\erwan\Desktop\Position 3.wav
2017-11-01 18:48 - 2017-11-01 18:49 - 017586718 _____ C:\Users\erwan\Desktop\Position 2.wav
2017-10-30 18:27 - 2017-11-13 15:43 - 000023534 ____H C:\Users\erwan\Desktop\~WRL0008.tmp
2017-10-30 18:27 - 2017-11-13 15:31 - 000022855 ____H C:\Users\erwan\Desktop\~WRL0007.tmp
2017-10-30 18:27 - 2017-11-06 21:21 - 000017987 ____H C:\Users\erwan\Desktop\~WRL0003.tmp
2017-10-29 02:53 - 2017-10-29 02:53 - 000024701 _____ C:\Users\erwan\Documents\SociosCCIFranceArgentine2017.xlsx
2017-10-28 22:38 - 2017-10-30 19:07 - 017586718 _____ C:\Users\erwan\Desktop\Position 1.wav
2017-10-28 21:44 - 2017-10-28 21:45 - 031166594 _____ C:\Users\erwan\Desktop\Paradis Artificiel Mixage 2.wav
2017-10-28 21:01 - 2017-10-28 21:19 - 031336884 _____ C:\Users\erwan\Downloads\groovemachine_install.exe
2017-10-28 21:01 - 2017-10-28 21:16 - 025165824 _____ (FreeDownloadManager.ORG ) C:\Users\erwan\Downloads\fdm5_x64_setup.exe.part
2017-10-28 20:53 - 2017-10-28 20:53 - 000807327 _____ C:\Users\erwan\Downloads\Electricity_Vol.1_Soundbank_Spire.rar
2017-10-28 15:47 - 2017-11-05 20:01 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-28 15:47 - 2017-07-20 14:21 - 000905504 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-10-28 15:47 - 2017-07-20 14:21 - 000776992 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-10-28 15:47 - 2017-07-20 14:21 - 000578848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-10-28 15:47 - 2017-07-20 14:21 - 000477472 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-10-26 15:45 - 2017-10-27 14:03 - 035945457 _____ C:\Users\erwan\Downloads\POPULOUS.3.THE.BEGINNING-PARADiGM.rar.part
2017-10-23 22:34 - 2017-10-23 22:34 - 000001334 _____ C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2017-10-23 22:34 - 2017-10-23 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2017-10-23 22:34 - 2017-10-23 22:34 - 000000000 ____D C:\Program Files (x86)\Elaborate Bytes
2017-10-23 20:53 - 2017-10-23 20:53 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-10-23 20:51 - 2017-10-24 13:20 - 000000000 ____D C:\Users\erwan\AppData\Roaming\ResidualVM
2017-10-22 05:24 - 2017-10-22 05:27 - 001139895 _____ C:\Users\erwan\Desktop\Sway - OnSport.pdf
2017-10-22 05:15 - 2017-10-22 05:18 - 001141275 _____ C:\Users\erwan\Desktop\Sway - OnSport2.pdf
2017-10-18 22:53 - 2017-10-29 02:00 - 000000000 ____D C:\Users\erwan\Desktop\Emulateur
2017-10-18 21:13 - 2017-10-18 21:13 - 001804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2017-10-18 21:13 - 2017-10-18 21:13 - 000032840 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\Drivers\ETDSMBus.sys
2017-10-18 20:51 - 2017-10-18 20:51 - 009891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2017-10-18 20:51 - 2017-10-18 20:51 - 004332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2017-10-18 20:36 - 2017-10-18 20:36 - 000574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2017-10-18 20:36 - 2017-10-18 20:36 - 000118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2017-10-18 18:45 - 2017-10-18 18:45 - 000213312 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwampfl.sys
2017-10-18 18:23 - 2017-11-14 17:50 - 000003038 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (erwan)
2017-10-18 18:23 - 2017-11-14 12:55 - 000002568 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2017-10-18 18:23 - 2017-11-08 12:37 - 000000000 ____D C:\ProgramData\ProductData
2017-10-18 18:23 - 2017-11-08 12:27 - 000002376 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2017-10-18 18:23 - 2017-10-18 18:36 - 000000000 ____D C:\Users\erwan\AppData\LocalLow\IObit
2017-10-18 18:23 - 2017-10-18 18:23 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2017-10-18 18:23 - 2017-10-18 18:23 - 000000000 ____D C:\WINDOWS\IObit
2017-10-18 18:23 - 2017-10-18 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2017-10-18 18:23 - 2017-10-18 18:23 - 000000000 ____D C:\Program Files (x86)\IObit
2017-10-18 18:22 - 2017-10-18 18:23 - 000000000 ____D C:\ProgramData\IObit
2017-10-18 18:19 - 2017-10-18 18:19 - 000000000 ____D C:\Users\erwan\AppData\Roaming\IObit
2017-10-16 01:18 - 2017-10-16 01:18 - 035934136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-10-16 01:18 - 2017-10-16 01:18 - 029028792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-10-16 01:13 - 2017-10-16 01:13 - 000981616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-10-16 01:13 - 2017-10-16 01:13 - 000932976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-10-16 01:13 - 2017-10-16 01:13 - 000618424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-10-16 01:13 - 2017-10-16 01:13 - 000507832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-10-16 01:12 - 2017-10-16 01:12 - 001996912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438569.dll
2017-10-16 01:12 - 2017-10-16 01:12 - 001615288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438569.dll
2017-10-16 01:12 - 2017-10-16 01:12 - 001076664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-10-16 01:12 - 2017-10-16 01:12 - 001013872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 040248760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 035322808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 023343840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 019023464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 012357696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 010184544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 004153784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-10-16 01:11 - 2017-10-16 01:11 - 003584440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 001312216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 001026600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 000797568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 000705448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 000631592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-10-16 01:10 - 2017-10-16 01:10 - 000592024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-10-16 01:09 - 2017-10-16 01:09 - 013912344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-10-16 01:09 - 2017-10-16 01:09 - 011804040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-10-16 01:09 - 2017-10-16 01:09 - 003753392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-10-16 00:55 - 2017-10-16 00:55 - 000046443 _____ C:\WINDOWS\system32\nvinfo.pb
2017-10-16 00:55 - 2017-10-16 00:55 - 000000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-10-16 00:55 - 2017-10-16 00:55 - 000000669 _____ C:\WINDOWS\system32\nv-vk64.json
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-14 17:52 - 2017-01-16 08:34 - 000000000 ____D C:\Users\erwan\AppData\LocalLow\Mozilla
2017-11-14 17:50 - 2017-08-11 22:07 - 000004178 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B1DDD93A-8196-4977-819D-34E6F98E88B4}
2017-11-14 17:46 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-14 17:45 - 2017-04-27 03:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-14 17:45 - 2017-01-16 08:21 - 000000000 __SHD C:\Users\erwan\IntelGraphicsProfiles
2017-11-14 17:00 - 2017-04-27 03:40 - 000004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-11-14 16:52 - 2017-04-27 03:16 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-14 16:51 - 2017-08-15 13:00 - 000000000 ____D C:\WINDOWS\Minidump
2017-11-14 16:51 - 2017-04-27 03:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-14 15:41 - 2017-05-12 16:17 - 000000000 ____D C:\Users\erwan\AppData\Roaming\Spotify
2017-11-14 14:49 - 2017-04-27 03:40 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-11-14 14:47 - 2017-04-12 14:38 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-14 14:31 - 2017-04-27 03:40 - 000004252 _____ C:\WINDOWS\System32\Tasks\avast! SL Update
2017-11-14 14:05 - 2017-01-16 12:46 - 000000000 ____D C:\Users\erwan\AppData\Local\Adobe
2017-11-14 13:57 - 2017-04-04 21:43 - 000000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleForerwan.job
2017-11-14 13:57 - 2016-04-01 20:41 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-11-14 13:57 - 2016-04-01 20:41 - 000001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-11-14 12:55 - 2017-08-18 12:57 - 000002860 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1104394044-2155642796-2404995124-1001
2017-11-14 12:55 - 2017-04-27 03:40 - 000003740 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-11-14 12:55 - 2017-04-27 03:40 - 000003450 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-11-14 12:55 - 2017-04-27 03:40 - 000003414 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-11-14 12:55 - 2017-04-27 03:40 - 000003396 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1484567978
2017-11-14 12:55 - 2017-04-27 03:40 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2017-11-14 12:55 - 2017-04-27 03:40 - 000002810 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-erwan_dagan@hotmail.fr
2017-11-14 12:55 - 2017-04-27 03:40 - 000002802 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForerwan
2017-11-14 12:55 - 2017-04-27 03:40 - 000002544 _____ C:\WINDOWS\System32\Tasks\HPDAS
2017-11-14 12:55 - 2017-04-27 03:40 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-11-14 12:55 - 2017-04-27 03:40 - 000002206 _____ C:\WINDOWS\System32\Tasks\Nvbackend
2017-11-14 12:55 - 2017-04-27 03:40 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-11-14 12:54 - 2017-04-27 03:19 - 000000000 ____D C:\Users\erwan
2017-11-14 12:54 - 2017-01-16 08:47 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-14 12:49 - 2017-05-12 16:20 - 000000000 ____D C:\Users\erwan\AppData\Local\Spotify
2017-11-14 11:58 - 2017-01-18 12:46 - 000000000 ____D C:\ProgramData\Skype
2017-11-14 11:43 - 2017-03-18 18:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-11-14 11:43 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-13 22:16 - 2017-03-18 18:01 - 000000000 ____D C:\WINDOWS\INF
2017-11-13 21:17 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-11-12 14:33 - 2017-08-09 20:47 - 000000000 ____D C:\Program Files\Blue Coat K9 Web Protection
2017-11-12 02:49 - 2017-01-16 08:21 - 000000000 ____D C:\Users\erwan\AppData\Local\Packages
2017-11-11 13:22 - 2017-03-18 08:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2017-11-11 13:20 - 2017-06-06 22:27 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-11-11 13:05 - 2017-03-02 10:27 - 000343288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-11-11 13:05 - 2017-03-02 10:27 - 000321032 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-11-11 13:05 - 2017-03-02 10:27 - 000198968 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-11-11 13:05 - 2017-03-02 10:27 - 000057728 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 001026232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000455384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000364464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000203976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000148288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000110376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000084416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-11-11 13:05 - 2017-01-16 08:54 - 000047008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-11-10 18:37 - 2017-01-20 12:44 - 000000000 ____D C:\Users\erwan\AppData\Local\CrashDumps
2017-11-10 17:37 - 2017-01-16 08:44 - 000000000 ____D C:\Program Files\Malwarebytes
2017-11-10 17:28 - 2017-04-27 03:19 - 000000000 ____D C:\Users\Wan 2
2017-11-09 20:11 - 2017-01-16 08:30 - 000000000 ____D C:\Users\erwan\AppData\Roaming\Skype
2017-11-08 12:35 - 2017-04-27 03:18 - 003153404 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-08 12:35 - 2017-03-20 02:10 - 001469378 _____ C:\WINDOWS\system32\perfh00C.dat
2017-11-08 12:35 - 2017-03-20 02:10 - 000355678 _____ C:\WINDOWS\system32\perfc00C.dat
2017-11-08 12:30 - 2017-04-27 03:16 - 000139685 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2017-11-08 12:26 - 2017-04-27 03:17 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\B&O Play Audio Control.lnk
2017-11-08 12:26 - 2016-03-14 07:11 - 000905736 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-11-08 12:24 - 2017-04-27 03:16 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-11-08 12:23 - 2017-01-31 12:11 - 005839840 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-11-08 12:23 - 2017-01-31 12:11 - 003509232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 003507688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 003122656 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 000984912 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-11-08 12:23 - 2017-01-31 12:11 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-11-08 12:23 - 2016-04-03 22:06 - 000205432 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-11-07 18:12 - 2017-03-18 17:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-07 10:43 - 2017-01-18 12:46 - 000002418 _____ C:\Users\erwan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-07 10:43 - 2017-01-16 08:26 - 000000000 ___RD C:\Users\erwan\OneDrive
2017-11-07 00:35 - 2017-03-18 18:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-11-07 00:32 - 2016-04-01 20:42 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-11-06 16:28 - 2017-10-11 11:55 - 000000000 ____D C:\Users\erwan\Desktop\JEUX
2017-11-05 20:01 - 2017-04-27 03:15 - 000000000 ____D C:\Program Files\Intel
2017-10-30 18:02 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-10-30 18:02 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-10-29 08:21 - 2017-02-21 08:02 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-29 08:21 - 2017-02-21 08:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-29 02:56 - 2017-02-02 12:17 - 000000000 ____D C:\Users\erwan\Documents\ETUDES
2017-10-29 02:42 - 2017-02-02 12:27 - 000000000 ____D C:\Users\erwan\Documents\ADMIN
2017-10-29 02:39 - 2017-02-02 12:44 - 000000000 ____D C:\Users\erwan\Documents\MOOC
2017-10-29 02:38 - 2017-02-02 12:42 - 000000000 ____D C:\Users\erwan\Documents\EXPERIENCES PROFESSIONNELLES
2017-10-24 18:14 - 2017-03-18 18:06 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-10-24 18:14 - 2017-03-18 18:06 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-23 20:09 - 2016-04-01 20:42 - 000000000 ____D C:\ProgramData\Apple
2017-10-23 19:39 - 2017-03-05 20:42 - 000000000 ____D C:\Users\erwan\Documents\Adobe
2017-10-23 19:38 - 2017-01-16 13:42 - 000000000 ____D C:\Users\erwan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-10-23 19:14 - 2017-08-31 10:50 - 000000000 ____D C:\Users\erwan\Desktop\Cours de français
2017-10-20 00:24 - 2017-10-10 00:23 - 000000000 ____D C:\Users\erwan\AppData\Local\PokerStars
2017-10-19 18:17 - 2016-07-06 00:34 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-18 20:58 - 2017-04-27 03:16 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2017-10-18 20:53 - 2017-01-31 12:15 - 001009128 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2017-10-18 20:51 - 2016-07-06 00:27 - 000084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2017-10-18 19:44 - 2017-01-19 16:48 - 000048248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-10-18 18:48 - 2016-08-12 20:40 - 000355200 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\esif_lf.sys
2017-10-18 18:48 - 2016-08-12 20:40 - 000067968 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_cpu.sys
2017-10-18 18:45 - 2016-01-27 10:35 - 000186152 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\bcbtums.sys
2017-10-16 01:18 - 2017-02-10 13:58 - 015620208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2017-10-16 01:09 - 2017-02-10 13:48 - 004256264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-10-15 19:20 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\rescache
==================== Fichiers à la racine de certains dossiers =======
2017-02-28 19:09 - 2017-02-28 19:09 - 000000028 _RSHO () C:\Users\erwan\AppData\Roaming\be046e943fe726861c04b0318e13b2f274b1ec06.sys
2017-02-28 19:09 - 2017-02-28 19:09 - 000000028 _RSHO () C:\Users\erwan\AppData\Roaming\c54da0d4db72e7476d261013371d583ed5cee3ac.sys
2017-07-06 17:17 - 2017-07-06 17:28 - 000000819 _____ () C:\ProgramData\hpzinstall.log
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-11-08 14:27
==================== Fin de FRST.txt ============================