cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-10-2017
Exécuté par Thom (administrateur) sur DESKTOP-058VIP4 (29-10-2017 18:43:52)
Exécuté depuis I:\SoftWare
Profils chargés: Thom (Profils disponibles: Thom)
Platform: Windows 10 Home Version 1703 15063.608 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Dassault Systemes) C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(SHARP CORPORATION) C:\Windows\System32\spool\drivers\x64\3\SS0XRCV.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(BitTorrent Inc.) C:\Users\Thom\AppData\Roaming\BitTorrent\BitTorrent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe
(BitTorrent Inc.) C:\Users\Thom\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe
(BitTorrent Inc.) C:\Users\Thom\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSPanel.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2771576 2015-12-09] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [599896 2015-06-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [239856 2017-09-08] (AVAST Software)
HKLM\...\Run: [SS0XRCV] => C:\WINDOWS\system32\spool\drivers\x64\3\SS0XRCV.EXE [102400 2006-10-23] (SHARP CORPORATION)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\ASUSWSLoader.exe [63272 2015-12-24] ()
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-24] (Autodesk Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-04-24] (Disc Soft Ltd)
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\...\Run: [BitTorrent] => C:\Users\Thom\AppData\Roaming\BitTorrent\BitTorrent.exe [2408648 2017-10-01] (BitTorrent Inc.)
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\...\RunOnce: [Uninstall 17.3.6998.0830\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Thom\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64"
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\...\RunOnce: [Uninstall 17.3.6998.0830] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Thom\AppData\Local\Microsoft\OneDrive\17.3.6998.0830"
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\...\Policies\Explorer: []
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2017 Démarrage rapide.lnk [2017-06-07]
ShortcutTarget: SOLIDWORKS 2017 Démarrage rapide.lnk -> C:\Windows\Installer\{BB965FD0-077F-4CA4-BFD1-39FFEFF15770}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Téléchargement en arrière-plan de SOLIDWORKS.lnk [2017-06-07]
ShortcutTarget: Téléchargement en arrière-plan de SOLIDWORKS.lnk -> C:\Program Files (x86)\Common Files\Gestionnaire d'installation SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systèmes SolidWorks Corp.)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e0d0d5b0-2a63-48bd-b0dd-3f9609340292}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=COSP&ptag=D100117-AD26CBEB7DD&form=CONMHP&conlogo=CT3335811
HKU\S-1-5-21-3212992994-4169440896-628804939-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-3212992994-4169440896-628804939-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D100117-AD26CBEB7DD&form=CONBDF&conlogo=CT3335811&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3212992994-4169440896-628804939-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D100117-AD26CBEB7DD&form=CONBDF&conlogo=CT3335811&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-09-03] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 1b1lqf3m.default-1496417753262
FF ProfilePath: C:\Users\Thom\AppData\Roaming\Mozilla\Firefox\Profiles\1b1lqf3m.default-1496417753262 [2017-10-29]
FF NewTab: Mozilla\Firefox\Profiles\1b1lqf3m.default-1496417753262 -> hxxp://www.bing.com/?pc=COSP&ptag=D100117-AD26CBEB7DD&form=CONMHP&conlogo=CT3335811
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\1b1lqf3m.default-1496417753262 -> Bing®
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\1b1lqf3m.default-1496417753262 -> Bing®
FF Homepage: Mozilla\Firefox\Profiles\1b1lqf3m.default-1496417753262 -> hxxp://www.google.fr/
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\Thom\AppData\Roaming\Mozilla\Firefox\Profiles\1b1lqf3m.default-1496417753262\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-10-12]
FF Extension: (Avast SafePrice) - C:\Users\Thom\AppData\Roaming\Mozilla\Firefox\Profiles\1b1lqf3m.default-1496417753262\Extensions\sp@avast.com.xpi [2017-10-29]
FF Extension: (Avast Online Security) - C:\Users\Thom\AppData\Roaming\Mozilla\Firefox\Profiles\1b1lqf3m.default-1496417753262\Extensions\wrc@avast.com.xpi [2017-10-29]
FF ProfilePath: C:\Users\Thom\AppData\Roaming\Mozilla\Firefox\Profiles\5h17rlav.default-1496418613595 [2017-10-01]
FF Extension: (Avast SafePrice) - C:\Users\Thom\AppData\Roaming\Mozilla\Firefox\Profiles\5h17rlav.default-1496418613595\Extensions\sp@avast.com.xpi [2017-09-08]
FF Extension: (Avast Online Security) - C:\Users\Thom\AppData\Roaming\Mozilla\Firefox\Profiles\5h17rlav.default-1496418613595\Extensions\wrc@avast.com.xpi [2017-09-08]
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~4\Bin\NPCOMP~1.DLL [2017-02-03] (Dassault Systemes)
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-10-29] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~4\Bin\x86\NPCOMP~1.DLL [2017-02-03] (Dassault Systemes)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-29] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk Inc.)
S2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Fichier non signé]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7452288 2017-09-08] (AVAST Software s.r.o.)
S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [275208 2017-09-08] (AVAST Software)
R2 BBDemon; C:\Program Files (x86)\Dassault Systemes\B18\intel_a\code\bin\CATSysDemon.exe [36864 2007-05-04] (Dassault Systemes) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-13] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-13] (Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-04-24] (Disc Soft Ltd)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1392792 2015-11-09] (Intel Corporation)
R2 ewserver; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [184368 2017-02-03] ()
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156216 2015-12-09] (NVIDIA Corporation)
S3 impi_hydra; C:\Program Files\Common Files\SolidWorks Shared\Simulation Worker Agent\hydra_service.exe [880296 2017-02-03] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation)
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdatesvr.exe [133480 2016-03-24] (Zhuhai Kingsoft Office Software Co.,Ltd)
S2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372408 2017-07-06] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-12-09] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [6477432 2015-12-09] (NVIDIA Corporation)
R2 SAService; C:\Windows\system32\SAsrv.exe [427224 2015-04-17] (Conexant Systems, Inc.)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2017-06-07] (SolidWorks) [Fichier non signé]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2017-07-06] (Microsoft Corporation)
S2 SWVisualize2017.BoostService; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe [58776 2017-02-03] (Dassault Systèmes)
S2 SWVisualize2017.Queue.Server; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe [26008 2017-02-03] (Dassault Systèmes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-17] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [152064 2016-09-01] (ASUS Corporation)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [321032 2017-10-29] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [198976 2017-10-29] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [343288 2017-10-29] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [57736 2017-10-29] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [47008 2017-10-29] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-08] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [147776 2017-10-29] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [110376 2017-10-29] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [84416 2017-10-29] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1029872 2017-10-29] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [587168 2017-10-29] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [201352 2017-10-29] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [363440 2017-10-29] (AVAST Software)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [605616 2017-03-27] (Qualcomm)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55784 2015-11-09] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-11-09] (Intel Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-01-13] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-01-13] (Disc Soft Ltd)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-11-09] (Intel Corporation)
U1 lpsport; C:\Windows\System32\Drivers\lpsport.sys [61304 2017-09-08] ()
R1 LUMDriver; C:\WINDOWS\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-12-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S4 RsFx0310; C:\WINDOWS\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [898296 2016-01-13] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 Secdrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [11616 2001-10-04] () [Fichier non signé]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-10-29 18:42 - 2017-10-29 18:43 - 000000000 ____D C:\FRST
2017-10-29 18:28 - 2017-10-29 18:28 - 000002253 _____ C:\Users\Public\Desktop\Midtown Madness 2.lnk
2017-10-29 18:28 - 2017-10-29 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2017-10-29 18:28 - 2001-10-04 23:27 - 000011616 ____R C:\WINDOWS\SysWOW64\Drivers\SECDRV.SYS
2017-10-29 18:13 - 2017-10-29 18:13 - 000401488 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-10-29 18:13 - 2017-10-29 18:13 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-29 18:09 - 2017-10-29 18:09 - 000001969 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2017-10-29 18:08 - 2017-10-29 18:13 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys.150929692192102
2017-10-29 18:08 - 2017-10-29 18:08 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys.150929692192102.150929723185902
2017-10-29 17:25 - 2017-10-29 17:59 - 000000000 ____D C:\Users\Thom\AppData\LocalLow\BitTorrent
2017-10-29 17:04 - 2017-10-29 17:04 - 000000000 ____D C:\Program Files (x86)\Microsoft Games
2017-10-29 16:31 - 2017-10-29 16:32 - 000000000 ____D C:\Users\Thom\Desktop\NFS
2017-10-29 16:30 - 2017-10-29 16:45 - 489385984 ____R C:\Users\Thom\Desktop\Midtown2.iso
2017-10-10 08:42 - 2017-10-10 08:42 - 000000000 ____D C:\Users\Thom\AppData\Local\kingsoft
2017-10-09 12:40 - 2015-02-17 09:32 - 000015239 _____ C:\WINDOWS\system32\SS0EUD67.MCF
2017-10-09 12:40 - 2014-09-09 08:35 - 000015223 _____ C:\WINDOWS\system32\SS0EUD6E.MCF
2017-10-09 12:40 - 2013-08-01 16:17 - 000016771 _____ C:\WINDOWS\system32\SS0EUD6C.MCF
2017-10-09 12:40 - 2013-07-19 09:23 - 000016313 _____ C:\WINDOWS\system32\SS0EUD6A.MCF
2017-10-09 12:40 - 2013-07-19 09:22 - 000015893 _____ C:\WINDOWS\system32\SS0EUD68.MCF
2017-10-09 12:40 - 2013-06-27 16:07 - 000015607 _____ C:\WINDOWS\system32\SS0EUD6D.MCF
2017-10-09 12:40 - 2013-05-15 14:01 - 000016809 _____ C:\WINDOWS\system32\SS0EUD6B.MCF
2017-10-09 12:40 - 2013-04-19 10:23 - 000015239 _____ C:\WINDOWS\system32\SS0EUD69.MCF
2017-10-09 12:40 - 2013-04-19 10:23 - 000015002 _____ C:\WINDOWS\system32\SS0EUD65.MCF
2017-10-09 12:40 - 2013-04-19 10:22 - 000015917 _____ C:\WINDOWS\system32\SS0EUD64.MCF
2017-10-09 12:40 - 2013-04-19 10:22 - 000015575 _____ C:\WINDOWS\system32\SS0EUD66.MCF
2017-10-09 12:40 - 2010-03-25 09:47 - 000000100 _____ C:\WINDOWS\system32\SS0ELMON.dat
2017-10-09 12:40 - 2010-03-25 09:47 - 000000074 _____ C:\WINDOWS\system32\SS0ELMON.mtx
2017-10-09 12:40 - 2008-10-29 13:19 - 000082432 _____ (SHARP CORPORATION) C:\WINDOWS\system32\SS0ELMON.dll
2017-10-09 12:40 - 2003-05-08 14:36 - 000008698 _____ C:\WINDOWS\font2.sii
2017-10-09 12:40 - 2003-05-08 14:36 - 000004907 _____ C:\WINDOWS\font1.sii
2017-10-09 12:39 - 2015-02-17 09:22 - 000015046 _____ C:\WINDOWS\system32\SS0EUD61.MCF
2017-10-09 12:39 - 2014-06-02 13:10 - 000180300 _____ C:\WINDOWS\_isusr32.dll
2017-10-09 12:39 - 2013-04-19 10:23 - 000015679 _____ C:\WINDOWS\system32\SS0EUD62.MCF
2017-10-09 12:39 - 2013-04-19 10:23 - 000014995 _____ C:\WINDOWS\system32\SS0EUD63.MCF
2017-10-09 12:39 - 2010-05-28 14:30 - 000032768 ____N C:\WINDOWS\SysWOW64\_isusr2k.dll
2017-10-09 12:33 - 2017-10-09 12:33 - 000000000 ____D C:\Users\Thom\AppData\Roaming\SHARP
2017-10-09 12:31 - 2017-10-09 12:40 - 000000000 ____D C:\WINDOWS\SysWOW64\SCDRV
2017-10-09 12:31 - 2017-10-09 12:40 - 000000000 ____D C:\Program Files (x86)\SHARP
2017-10-09 12:31 - 2017-10-09 12:31 - 000000000 ____D C:\Users\Public\Documents\SHARP
2017-10-09 12:31 - 2017-10-09 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pilote de PC-Fax SHARP série MX, MX-C, MX-M, DX
2017-10-09 12:25 - 2017-10-09 12:25 - 000000000 ___HD C:\ProgramData\{0897014C-63E3-47DF-8A5F-4399CC5D61B9}
2017-10-09 12:25 - 2017-10-09 12:25 - 000000000 ____D C:\Users\Thom\AppData\Roaming\Solvusoft
2017-10-09 12:25 - 2017-10-09 12:25 - 000000000 ____D C:\Users\Thom\AppData\Local\IIIQF
2017-10-09 12:25 - 2017-10-09 12:25 - 000000000 ____D C:\ProgramData\Solvusoft
2017-10-08 09:27 - 2017-10-29 17:55 - 000000406 _____ C:\WINDOWS\Tasks\WpsUpdateTask_Thom.job
2017-10-08 09:27 - 2017-10-29 17:55 - 000000406 _____ C:\WINDOWS\Tasks\WpsNotifyTask_Thom.job
2017-10-08 09:27 - 2017-10-08 09:27 - 000003420 _____ C:\WINDOWS\System32\Tasks\WpsUpdateTask_Thom
2017-10-08 09:27 - 2017-10-08 09:27 - 000003420 _____ C:\WINDOWS\System32\Tasks\WpsNotifyTask_Thom
2017-10-08 09:25 - 2017-10-10 08:42 - 000000000 ____D C:\Users\Thom\AppData\Roaming\Kingsoft
2017-10-07 19:02 - 2017-10-07 19:02 - 003329525 _____ C:\Users\Thom\Desktop\Annexe K 2017 06 20.pdf
2017-10-07 18:19 - 2017-10-07 18:20 - 003152707 _____ C:\Users\Thom\Desktop\02 - Manuel pour remplir une demande de PTH version 2017.pdf
2017-10-07 16:35 - 2017-10-29 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dune 2000
2017-10-07 16:35 - 2017-10-07 16:35 - 000000000 ____D C:\Program Files (x86)\Oldgames
2017-10-06 07:03 - 2017-10-27 14:00 - 000000000 _____ C:\Users\Thom\AppData\Local\Temptable.xml
2017-10-01 15:07 - 2017-10-01 15:07 - 000000034 _____ C:\Users\Public\Documents\{DE764086-1C0A-4DD3-90BA-0B93BDD794BE}
2017-10-01 15:06 - 2017-10-01 15:07 - 000000000 ____D C:\Users\Thom\AppData\Local\PCBooster
2017-10-01 10:26 - 2017-10-01 10:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2017-10-01 10:25 - 2017-10-29 18:43 - 000000000 ____D C:\Users\Thom\AppData\Roaming\BitTorrent
2017-10-01 10:25 - 2017-10-01 15:39 - 000000917 _____ C:\Users\Thom\Desktop\BitTorrent.lnk

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ___RD C:\WINDOWS\PrintDialog
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\migwiz
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\DDFs
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Provisioning
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\L2Schemas
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-10-29 18:51 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-10-29 18:51 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2017-10-29 18:51 - 2017-03-18 12:40 - 000000000 ____D C:\WINDOWS\system32\Dism
2017-10-29 18:50 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
2017-10-29 18:50 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Globalization
2017-10-29 18:50 - 2017-03-18 12:40 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-10-29 18:49 - 2017-06-19 16:33 - 000000000 ____D C:\Users\Thom\AppData\Roaming\Autodesk
2017-10-29 18:49 - 2017-06-19 16:33 - 000000000 ____D C:\ProgramData\Autodesk
2017-10-29 18:49 - 2017-06-07 17:21 - 000000000 ____D C:\ProgramData\FLEXnet
2017-10-29 18:49 - 2017-06-02 16:35 - 000000000 ____D C:\Users\Thom\Desktop\Anciennes données de Firefox
2017-10-29 18:49 - 2017-05-22 19:26 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2017-10-29 18:49 - 2017-01-13 21:59 - 000000000 ____D C:\Users\Thom\AppData\Roaming\vlc
2017-10-29 18:49 - 2017-01-13 20:19 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-10-29 18:49 - 2017-01-13 19:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-29 18:49 - 2017-01-13 19:58 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-29 18:49 - 2016-11-21 07:40 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-29 18:35 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-29 18:35 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-10-29 18:31 - 2017-07-31 18:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-10-29 18:30 - 2017-01-13 20:05 - 000000000 ____D C:\Users\Thom\AppData\LocalLow\Mozilla
2017-10-29 18:20 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\registration
2017-10-29 18:14 - 2017-07-31 19:15 - 000003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-10-29 18:14 - 2017-07-31 19:15 - 000003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2017-10-29 18:14 - 2017-01-13 20:01 - 001029872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2017-10-29 18:14 - 2017-01-13 19:51 - 000000200 _____ C:\Users\Thom\AppData\Roaming\sp_data.sys
2017-10-29 18:13 - 2017-07-31 19:15 - 000003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-10-29 18:13 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SystemResources
2017-10-29 18:13 - 2017-01-13 20:01 - 000587168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-10-29 18:13 - 2017-01-13 20:01 - 000363440 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-10-29 18:13 - 2017-01-13 20:01 - 000201352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-10-29 18:13 - 2017-01-13 20:01 - 000147776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-10-29 18:13 - 2017-01-13 20:01 - 000110376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-10-29 18:13 - 2017-01-13 20:01 - 000084416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-10-29 18:13 - 2017-01-13 20:01 - 000047008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-10-29 18:12 - 2017-02-08 17:50 - 000343288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-10-29 18:12 - 2017-02-08 17:50 - 000321032 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-10-29 18:12 - 2017-02-08 17:50 - 000198976 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-10-29 18:12 - 2017-02-08 17:50 - 000057736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-10-29 18:12 - 2017-01-13 20:01 - 001020536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.150929724156208
2017-10-29 18:09 - 2017-07-31 19:16 - 000004048 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1484334233
2017-10-29 18:09 - 2017-01-13 20:03 - 000001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-10-29 18:09 - 2017-01-13 20:01 - 000001981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2017-10-29 18:08 - 2017-01-13 20:01 - 000361784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswcb61aff93cd23ed5.tmp
2017-10-29 18:08 - 2017-01-13 20:01 - 000199312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw1f4f1af3b807a909.tmp
2017-10-29 18:05 - 2017-01-13 20:01 - 000361336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys.150929692507810
2017-10-29 18:05 - 2017-01-13 20:01 - 000199312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys.150929692232806
2017-10-29 18:04 - 2017-07-31 19:17 - 002392888 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-10-29 18:04 - 2017-03-20 06:10 - 001059642 _____ C:\WINDOWS\system32\perfh00C.dat
2017-10-29 18:04 - 2017-03-20 06:10 - 000234960 _____ C:\WINDOWS\system32\perfc00C.dat
2017-10-29 18:02 - 2017-07-31 19:16 - 000003374 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3212992994-4169440896-628804939-1001
2017-10-29 18:02 - 2017-01-13 20:02 - 000002406 _____ C:\Users\Thom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-10-29 18:02 - 2017-01-13 20:02 - 000000000 ___RD C:\Users\Thom\OneDrive
2017-10-29 17:58 - 2017-01-13 20:20 - 000000000 ____D C:\Users\Thom\AppData\Roaming\DAEMON Tools Lite
2017-10-29 17:58 - 2017-01-13 19:51 - 000000000 __SHD C:\Users\Thom\IntelGraphicsProfiles
2017-10-29 17:57 - 2017-07-31 19:15 - 000004558 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-10-29 17:57 - 2017-07-31 18:50 - 000000000 ____D C:\Users\Thom
2017-10-29 17:57 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-10-29 17:57 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-10-29 17:56 - 2017-01-13 19:59 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-29 17:55 - 2017-07-31 19:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-29 17:54 - 2017-03-18 22:03 - 000000000 ___RD C:\Program Files\Windows Defender
2017-10-29 17:52 - 2017-01-13 20:21 - 000000000 __RHD C:\MSOCache
2017-10-29 09:42 - 2017-08-21 21:28 - 000015513 _____ C:\Users\Thom\Desktop\Fournisseurs pieces.xlsx
2017-10-23 07:32 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-10-22 18:22 - 2017-03-15 21:19 - 000000000 ____D C:\Users\Thom\Desktop\Assoc
2017-10-15 07:52 - 2017-01-15 11:34 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-09 15:19 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-10-09 12:38 - 2016-10-20 19:42 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-10-08 09:34 - 2017-01-15 19:41 - 000000000 ____D C:\Users\Thom\AppData\Local\Adobe
2017-10-08 09:27 - 2017-06-07 19:22 - 000000000 ____D C:\Users\Thom\AppData\Local\SolidWorks
2017-10-06 07:48 - 2017-06-07 17:23 - 000000000 ____D C:\Users\Thom\AppData\Roaming\SOLIDWORKS
2017-10-01 15:33 - 2017-01-13 20:01 - 000361784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7e0bfcf5396f5aa3.tmp
2017-10-01 15:24 - 2017-03-18 12:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2017-10-01 15:07 - 2016-10-20 19:35 - 000000000 ____D C:\ProgramData\Intel
2017-09-29 18:24 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports

==================== Fichiers à la racine de certains dossiers =======

2017-01-13 19:51 - 2017-10-29 18:14 - 000000200 _____ () C:\Users\Thom\AppData\Roaming\sp_data.sys
2017-10-06 07:03 - 2017-10-27 14:00 - 000000000 _____ () C:\Users\Thom\AppData\Local\Temptable.xml

Certains fichiers dans TEMP:
====================
2017-10-01 15:06 - 2017-10-01 15:07 - 010466222 _____ ( ) C:\Users\Thom\AppData\Local\Temp\jg3.6.0.exe

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2017-10-23 19:50

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité