Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10.02.2019 01
Exécuté par Gabriel (administrateur) sur PCGABY (09-08-2019 13:44:44)
Exécuté depuis C:\Users\Gabriel\Desktop
Profils chargés: UpdatusUser & Gabriel (Profils disponibles: UpdatusUser & Gabriel)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ArcSoft, Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Toshiba Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Orange) C:\Program Files (x86)\Orange\Assistance Livebox\AssistanceLivebox.exe
() C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHWMsg.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoResident.exe
(TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Orange) C:\Program Files (x86)\Orange\Assistance Livebox\dist\ST2.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Farbar) C:\Users\Gabriel\Desktop\FRST64-2.1.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3249384 2015-05-19] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [894048 2013-01-12] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [Fichier non signé]
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2717176 2013-01-04] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [170848 2013-01-29] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TSleepSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe [1549392 2013-03-05] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TODDMain] => C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [213136 2012-08-05] (TOSHIBA CORPORATION -> )
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [644696 2007-05-15] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [429536 2019-05-23] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2012-12-18] (Intel® Services Manager -> Intel Corporation)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [467360 2013-03-08] (TOSHIBA CORPORATION -> TOSHIBA)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207360 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [976832 2009-12-17] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3040496944-553007298-815628414-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3040496944-553007298-815628414-1002\...\Run: [Orange Installer] => C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe [561320 2012-11-27] (france telecom -> )
HKU\S-1-5-21-3040496944-553007298-815628414-1002\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1199576 2013-06-07] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3040496944-553007298-815628414-1002\...\Run: [WebSynchro] => C:\Program Files (x86)\FNAC\FnacSynchro\WebSynchro.exe [454656 2013-02-20] (Oodrive)
HKU\S-1-5-21-3040496944-553007298-815628414-1002\...\Run: [Fnac Cloud] => C:\Users\Gabriel\AppData\Local\Pack Fnac\Fnac Cloud\bin\FnacCloud.exe [2060936 2015-07-27] (Oodrive -> Oodrive)
HKU\S-1-5-21-3040496944-553007298-815628414-1002\...\Run: [SocialSafe.Helper] => C:\Program Files (x86)\SocialSafe\SocialSafe files\native-helpers\SocialSafe.Helper.exe [439616 2014-07-08] (Social Safe Limited -> )
HKU\S-1-5-21-3040496944-553007298-815628414-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22695280 2019-06-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3040496944-553007298-815628414-1002\...\MountPoints2: {59884238-57a2-11e4-bea1-48d224067074} - "E:\LaunchU3.exe" -a
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [184048 2013-12-23] (NVIDIA CORPORATION -> NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [184048 2013-12-23] (NVIDIA CORPORATION -> NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [156256 2013-12-23] (NVIDIA CORPORATION -> NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk [2013-12-06]
ShortcutTarget: ImageBrowser EX Agent.lnk -> C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe ()

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyEnable: [S-1-5-21-3040496944-553007298-815628414-1002] => Proxy est activé.
ProxyServer: [S-1-5-21-3040496944-553007298-815628414-1002] => http=127.0.0.1:12439
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{5C87C9A1-2852-444B-B269-3A2CD9683F3B}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{CCDA73EC-D2D5-4320-8BCF-71ED7D07B4F1}: [DhcpNameServer] 192.168.1.1 192.168.1.1
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.1,1]
ManualProxies: 1http=127.0.0.1:12439

Internet Explorer:
==================
HKU\S-1-5-21-3040496944-553007298-815628414-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3040496944-553007298-815628414-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3040496944-553007298-815628414-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-3040496944-553007298-815628414-1001 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.safefinder.com/?p=mKO_AwFzXIpYRak5VLd2-qQdkN5729vVFWx880JXKe86_rD3Q32s3cw1K4CHouWIAfkQBWYVZjAf77V-kKoe5llixj6cyl4CbnuYfnIOSn9ABbctpMxm8WH0LjDDiY8uJ9kbTbO_K97SVjxqFdslwjiGAdSxIBIJFyh1QDuIiEr6zKZJkdaU97wiwrggoL8MabzTJ6Xrl4PxnxUylQ,,&q={searchTerms}
BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2019-05-23] (Bitdefender SRL -> Bitdefender)
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-05-23] (Bitdefender SRL -> Bitdefender)
BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2019-05-23] (Bitdefender SRL -> Bitdefender)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-05-23] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-05-23] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-05-23] (Bitdefender SRL -> Bitdefender)
Toolbar: HKU\S-1-5-21-3040496944-553007298-815628414-1002 -> Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-05-23] (Bitdefender SRL -> Bitdefender)

FireFox:
========
FF DefaultProfile: ib9vbeub.default-1421967070407-1565284810696
FF ProfilePath: Profiles/ib9vbeub.default-1421967070407-1565284810696 [non trouvé(e)] <==== ATTENTION
FF ProfilePath: C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ib9vbeub.default-1421967070407-1565284810696 [2019-08-09]
FF Homepage: Mozilla\Firefox\Profiles\ib9vbeub.default-1421967070407-1565284810696 -> hxxps://www.google.fr/
FF NetworkProxy: Mozilla\Firefox\Profiles\ib9vbeub.default-1421967070407-1565284810696 -> type", 0
FF Extension: (ETP Search Volume Study) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ib9vbeub.default-1421967070407-1565284810696\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-08-09]
FF Extension: (Yahoo Mail Hide Ad Panel) - C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\ib9vbeub.default-1421967070407-1565284810696\Extensions\{c37bac34-849a-4d28-be41-549b2c76c64e}.xpi [2019-08-08]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2019-03-16]
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2019-06-28]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2018-07-20] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-15] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-15] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY SOLUTIONS LIMITED -> ABBYY)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [44736 2013-10-24] (ArcSoft, Inc. -> ArcSoft, Inc.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [783816 2019-05-23] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [95520 2019-03-28] (Bitdefender SRL -> Bitdefender)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [16720 2013-04-24] (DTS, Inc. -> )
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [147688 2015-05-19] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129848 2013-02-22] (Intel Corporation -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-02-22] (Intel Corporation -> Intel Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1294448 2019-05-14] (Bitdefender SRL -> Bitdefender)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116240 2013-01-04] (Toshiba Europe GmbH -> Toshiba Europe GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [119944 2019-05-23] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [805232 2019-05-23] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1534688 2019-05-23] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3858944 2013-10-24] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [395728 2019-05-23] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2019-05-23] (Bitdefender SRL -> © Bitdefender SRL)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (Bitdefender SRL -> BitDefender)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [33344 2015-05-19] (Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronic Corp.)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [374632 2019-03-16] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [188384 2019-05-23] (Bitdefender SRL -> BitDefender LLC)
R3 igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [4195840 2013-11-04] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R2 Ignis; C:\WINDOWS\System32\DRIVERS\ignis.sys [196392 2019-04-08] (Bitdefender SRL -> Bitdefender)
R3 IntcDAud; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [342528 2013-03-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R3 QIOMem; C:\WINDOWS\System32\drivers\QIOMem.sys [14000 2013-08-22] (WDKTestCert 1,130202426583431586 -> TOSHIBA)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [32624 2013-08-19] (TOSHIBA CORPORATION -> Windows (R) Win 7 DDK provider)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [610640 2019-03-16] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-08-09 13:44 - 2019-08-09 13:47 - 000022358 _____ C:\Users\Gabriel\Desktop\FRST.txt
2019-08-09 13:43 - 2019-08-09 13:44 - 000000000 ____D C:\FRST
2019-08-09 13:39 - 2019-08-09 13:40 - 002434048 _____ (Farbar) C:\Users\Gabriel\Desktop\FRST64-2.1.exe
2019-08-08 18:34 - 2019-08-08 18:34 - 000072693 _____ C:\Users\Gabriel\Desktop\bookmarks-2019-08-08.json
2019-08-08 14:53 - 2019-08-08 15:12 - 000015872 _____ C:\Users\Gabriel\Desktop\Gestionnaire de taches 2019 08 08.xls
2019-08-06 18:30 - 2019-08-06 18:32 - 094729958 _____ C:\Users\Gabriel\Desktop\GrosFichiers - HERVY Isabelle.zip
2019-08-05 18:27 - 2019-08-05 18:27 - 000103016 _____ C:\Users\Gabriel\Desktop\2019 période quize contre rendu copie.pdf
2019-08-02 17:21 - 2019-08-02 17:31 - 000185388 _____ C:\Users\Gabriel\Desktop\TraSuiTra complété.pdf
2019-08-02 17:05 - 2019-08-02 17:05 - 000173103 _____ C:\Users\Gabriel\Desktop\TraSuiTra.pdf
2019-07-30 16:50 - 2019-07-30 16:50 - 001579533 _____ C:\Users\Gabriel\Desktop\BULLETIN CEGECAL 07.19.pdf
2019-07-30 14:41 - 2019-07-30 14:42 - 000000000 ____D C:\Users\Gabriel\Desktop\2019 07 28
2019-07-30 14:41 - 2019-07-30 14:42 - 000000000 ____D C:\Users\Gabriel\Desktop\2019 07 27
2019-07-30 14:40 - 2019-07-30 14:45 - 000000000 ____D C:\Users\Gabriel\Desktop\2019 07 26
2019-07-25 17:55 - 2019-07-25 17:58 - 000000000 ____D C:\Users\Gabriel\Desktop\Musine 2 compressé
2019-07-25 17:44 - 2019-07-30 14:49 - 000000000 ____D C:\Users\Gabriel\Desktop\2019 07 23
2019-07-25 17:44 - 2019-07-25 17:46 - 000000000 ____D C:\Users\Gabriel\Desktop\2019 07 24
2019-07-25 17:44 - 2019-07-25 17:45 - 000000000 ____D C:\Users\Gabriel\Desktop\2019 07 21
2019-07-24 17:32 - 2019-07-24 17:32 - 000103932 _____ C:\Users\Gabriel\Desktop\Caen_Paris_201907291451_UZNUWP.pdf
2019-07-20 11:18 - 2019-07-21 10:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-07-17 20:25 - 2019-07-19 23:09 - 000000000 ____D C:\Users\Gabriel\Desktop\Envoi de Sergio du 17 07 2019
2019-07-14 14:19 - 2019-07-14 14:20 - 000000000 ____D C:\Users\Gabriel\Desktop\Musine compressé
2019-07-14 14:17 - 2019-07-14 14:17 - 000000000 ____D C:\Users\Gabriel\Desktop\Musine 2019 07 14
2019-07-10 20:24 - 2019-08-09 10:11 - 000004128 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-07-10 20:24 - 2019-07-10 20:24 - 000002808 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-07-10 20:24 - 2019-07-10 20:24 - 000000805 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-07-10 20:24 - 2019-07-10 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-07-10 20:24 - 2019-07-10 20:24 - 000000000 ____D C:\Program Files\CCleaner
2019-07-10 20:20 - 2019-07-10 20:20 - 000074636 _____ C:\ProgramData\agent.update.1562782805.bdinstall.v2.bin
2019-07-10 19:32 - 2019-07-10 19:32 - 000000000 ___HD C:\$SysReset

==================== Un mois (modifiés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-08-09 13:41 - 2016-11-17 10:40 - 000000000 ____D C:\Users\Gabriel\AppData\LocalLow\Mozilla
2019-08-09 10:34 - 2014-03-12 14:14 - 000003936 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BDFB1A2D-2092-4DDA-9B8B-BB9E8A7305A6}
2019-08-09 10:02 - 2013-12-12 15:26 - 000003020 _____ C:\WINDOWS\System32\Tasks\AssistanceLivebox
2019-08-08 20:32 - 2013-12-05 04:57 - 000000000 ____D C:\Users\Gabriel\Desktop\PHOTOS
2019-08-08 19:46 - 2013-12-05 04:38 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3040496944-553007298-815628414-1002
2019-08-08 19:20 - 2014-09-21 21:29 - 000000000 ____D C:\Users\Gabriel\Desktop\Anciennes données de Firefox
2019-08-08 19:05 - 2017-07-23 12:48 - 000000000 ____D C:\Users\Gabriel\Desktop\EDF
2019-08-08 19:04 - 2019-02-02 11:45 - 000385024 _____ C:\Users\Gabriel\Desktop\2019 BNP.xls
2019-08-08 18:14 - 2013-12-05 04:25 - 000000000 ____D C:\Users\Gabriel\AppData\Local\Packages
2019-08-08 18:14 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-08-08 18:14 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-08-08 18:12 - 2013-12-28 14:16 - 005314048 ___SH C:\Users\Gabriel\Desktop\Thumbs.db
2019-08-08 14:05 - 2013-11-14 09:32 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-08 14:05 - 2013-11-14 09:13 - 000806842 _____ C:\WINDOWS\system32\perfh00C.dat
2019-08-08 14:05 - 2013-11-14 09:13 - 000156662 _____ C:\WINDOWS\system32\perfc00C.dat
2019-08-08 14:05 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-08-07 14:43 - 2019-04-24 14:19 - 000573440 _____ C:\Users\Gabriel\Desktop\Suivi Keno2.xls
2019-08-05 19:43 - 2013-12-28 22:35 - 000000000 ____D C:\Users\Gabriel\AppData\Local\ElevatedDiagnostics
2019-08-02 22:42 - 2013-12-28 22:31 - 000000000 ____D C:\Users\Gabriel\AppData\Local\Canon Easy-PhotoPrint EX
2019-08-02 22:38 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2019-08-02 20:15 - 2017-07-23 12:53 - 000000000 ____D C:\Users\Gabriel\Desktop\Suivi ING
2019-07-29 20:37 - 2017-12-31 20:18 - 000001333 _____ C:\Users\Public\Desktop\Skype.lnk
2019-07-29 20:37 - 2017-12-31 20:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-07-29 19:15 - 2018-08-12 14:11 - 000003648 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2019-07-21 10:06 - 2013-12-05 19:42 - 000001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-07-21 10:06 - 2013-12-05 19:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-07-13 11:52 - 2013-12-05 04:27 - 000000000 ____D C:\Users\Gabriel\AppData\Local\Toshiba
2019-07-11 23:35 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-07-11 18:30 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2019-07-11 18:29 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-07-11 18:28 - 2013-12-09 17:12 - 000098406 _____ C:\bdlog.txt
2019-07-11 18:28 - 2013-08-22 15:25 - 000524288 ___SH C:\WINDOWS\system32\config\BBI
2019-07-11 18:27 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-11 16:54 - 2013-12-05 04:57 - 000000000 ____D C:\Users\Gabriel\Desktop\Nous
2019-07-10 20:28 - 2018-11-14 10:30 - 000000000 ____D C:\Users\Gabriel\AppData\Local\CrashDumps
2019-07-10 20:20 - 2018-08-12 14:09 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-07-10 20:05 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache
2019-07-10 19:46 - 2013-08-22 16:44 - 000484872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-07-10 19:37 - 2014-12-11 00:06 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-07-10 19:37 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-07-10 19:37 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-07-10 09:41 - 2013-12-06 18:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-07-10 09:32 - 2013-12-06 18:55 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Fichiers à la racine de certains dossiers =======

2013-10-27 16:58 - 2013-10-27 16:58 - 000069632 _____ ( ) C:\Users\Gabriel\auxsetup.exe
2013-10-27 16:58 - 2013-10-27 16:58 - 000069632 _____ ( ) C:\Users\Gabriel\vdicmdrv.dll
2013-10-27 16:58 - 2013-10-27 16:58 - 000003584 _____ () C:\Users\Gabriel\vdlaunch.exe
2013-10-27 16:58 - 2013-10-27 16:58 - 000073728 _____ ( ) C:\Users\Gabriel\vdremote.dll
2013-10-27 16:58 - 2013-10-27 16:58 - 000065536 _____ ( ) C:\Users\Gabriel\vdsvrlnk.dll
2013-10-27 16:58 - 2013-10-27 16:58 - 000008704 _____ ( ) C:\Users\Gabriel\vdub.exe
2013-10-27 16:59 - 2013-10-27 16:59 - 003152384 _____ () C:\Users\Gabriel\VirtualDub.exe
2015-05-03 06:55 - 2015-05-03 06:55 - 002750530 _____ ( ) C:\Program Files (x86)\distribution-installer.exe
2015-05-03 06:55 - 2015-05-03 06:55 - 002664986 _____ (w ) C:\Program Files (x86)\ExtensionsInstallerAsUpdate.exe
2014-12-02 09:19 - 2014-11-26 16:47 - 001694595 _____ ( ) C:\Program Files (x86)\UpdInstaller.exe
2019-06-27 19:47 - 2019-07-06 19:40 - 000007606 _____ () C:\Users\Gabriel\AppData\Local\resmon.resmoncfg
2014-08-25 18:20 - 2019-06-25 22:02 - 014558786 _____ () C:\Users\Gabriel\AppData\Local\SocialSafe-Helper.log
2016-06-20 17:58 - 2016-06-20 17:58 - 000000520 _____ () C:\Users\Gabriel\AppData\Local\TempPSTEMPFILEon0809013400_1.tmp

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dllhost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dllhost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2019-08-09 10:09

==================== Fin de FRST.txt ============================