Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2017
Exécuté par Carine (administrateur) sur DESKTOP-OEC6F7Q (08-10-2017 10:02:34)
Exécuté depuis C:\Users\Carine\Desktop
Profils chargés: Carine (Profils disponibles: defaultuser0 & Carine)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
() C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBAgent.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHDCPSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe
() C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
() C:\Program Files (x86)\HDD Regenerator\hrsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.EBP\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(@ByELDI) C:\Program Files\KMSpico\Service_KMS.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
() C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DCNTranProc.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe
(Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Flexera Software LLC.) C:\ProgramData\FLEXnet\Connect\11\agent.exe
(Flexera Software LLC.) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
() C:\Program Files (x86)\HDD Regenerator\HDD Regenerator.exe
() C:\Program Files (x86)\HDD Regenerator\HDD Regenerator.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
() C:\Users\Carine\Desktop\Captvty\Captvty.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\odscanui.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [599896 2015-06-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3481912 2017-10-03] (Dropbox, Inc.)
HKLM-x32\...\Run: [HDD Regenerator] => C:\Program Files (x86)\HDD Regenerator\Shell.exe [90336 2013-05-08] ()
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC.)
HKLM-x32\...\Run: [DNS7reminder] => "C:\Program Files (x86)\Nuance\NaturallySpeaking13\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking13\Ereg.ini"
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-06] (Disc Soft Ltd)
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2105728 2017-05-31] (Sony)
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2075480 2013-06-24] (Flexera Software LLC.)
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\MountPoints2: {06213962-2f5d-11e7-a10a-f0038c7db7ba} - "I:\Setup.exe"
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\MountPoints2: {54328f0f-0c07-11e7-a0fa-f0038c7db7ba} - "F:\Setup.exe"
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\MountPoints2: {56d5b9c7-0c89-11e7-a0fd-f0038c7db7ba} - "H:\SETUP.EXE"
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\MountPoints2: {56d5b9ed-0c89-11e7-a0fd-f0038c7db7ba} - "I:\SETUP.EXE"
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\MountPoints2: {aaa4a4b1-67d0-11e7-a11a-704d7b975039} - "I:\Startme.exe"
HKU\S-1-5-21-1636757704-1027705239-1334745615-1001\...\MountPoints2: {e1677fc5-6d44-11e7-a11a-704d7b975039} - "I:\startme.exe"
GroupPolicy: Restriction - Chrome <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4b08f4a1-8fd3-48f4-a0b1-55fd501c21d3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6879d265-11c4-46af-9873-a894884e4237}: [DhcpNameServer] 192.168.3.252 192.168.3.223

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-10-02] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking13\Program\x64\dgnriaie_x64.dll [2014-11-04] (Nuance Communications, Inc.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-10-02] (Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking13\Program\dgnriaie.dll [2014-11-04] (Nuance Communications, Inc.)
BHO-x32: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files (x86)\PDF Architect 5\creator-ie-helper.dll [2017-02-10] (pdfforge GmbH)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-10-02] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-10-02] (Bitdefender)
Toolbar: HKLM-x32 - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files (x86)\PDF Architect 5\creator-ie-plugin.dll [2017-02-10] (pdfforge GmbH)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: vlib3984.default
FF ProfilePath: C:\Users\Carine\AppData\Roaming\Mozilla\Firefox\Profiles\vlib3984.default [2017-10-08]
FF Homepage: Mozilla\Firefox\Profiles\vlib3984.default -> hxxps://www.google.fr/
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\\bdwteff [2017-09-20]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2017-03-09] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: nuance.com/DgnRia2_x86_64 -> C:\Program Files (x86)\Nuance\NaturallySpeaking13\Program\x64\npDgnRia2_x64.dll [2014-11-04] (Nuance Communications, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-08] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-10] (Adobe Systems Inc.)
FF Plugin-x32: nuance.com/DgnRia2 -> C:\Program Files (x86)\Nuance\NaturallySpeaking13\Program\npDgnRia2.dll [2014-11-04] (Nuance Communications, Inc.)
FF Plugin-x32: PDF Architect 5 -> C:\Program Files (x86)\PDF Architect 5\np-previewer.dll [2017-02-10] (pdfforge GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-07-31] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-08-10] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default [2017-10-08]
CHR Extension: (Google Slides) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-08]
CHR Extension: (Google Docs) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-08]
CHR Extension: (Google Drive) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-08]
CHR Extension: (YouTube) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-08]
CHR Extension: (Chrome Cleaner Pro) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccjleegmemocfpghkhpjmiccjcacackp [2017-10-08]
CHR Extension: (Adobe Acrobat) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-10-08]
CHR Extension: (Google Sheets) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-08]
CHR Extension: (Bitdefender Wallet) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2017-10-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-10-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-08]
CHR Extension: (Gmail) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-10-08]
CHR Extension: (Chrome Media Router) - C:\Users\Carine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-08]
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [clgckgfbhciacomhlchmgdnplmdiadbj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [338312 2016-07-03] (Windows (R) Win 7 DDK provider)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2090152 2017-09-14] (Bitdefender)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-31] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-31] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51016 2017-10-03] (Dropbox, Inc.)
R2 Dedicarz Service; C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe [1970544 2014-09-15] () [Fichier non signé]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-06] (Disc Soft Ltd)
R2 DragonLoggerService; C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe [151616 2014-11-04] (Nuance Communications, Inc.)
R2 esifsvc; C:\Windows\System32\Intel\DPTF\esif_uf.exe [1585784 2016-05-23] (Intel Corporation)
R2 FBAgent; C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBAgent.exe [73032 2014-08-13] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
R2 hddrsrv; C:\Program Files (x86)\HDD Regenerator\hrsrv.exe [82144 2013-05-08] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-03-02] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-02] (Intel Corporation) [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [215328 2016-05-16] (Intel Corporation)
R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-21] (Malwarebytes)
R2 MSSQL$EBP; C:\Program Files\Microsoft SQL Server\MSSQL12.EBP\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
S2 Orange update Core Service; C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe [734432 2017-08-07] (Orange SA)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2706824 2017-02-10] (pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [1048976 2017-02-10] (pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [856976 2017-02-10] (pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985904 2017-02-28] (© pdfforge GmbH.)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1254736 2017-04-11] (Bitdefender)
R2 SAService; C:\Windows\system32\SAsrv.exe [427224 2015-04-17] (Conexant Systems, Inc.)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-12] (@ByELDI) [Fichier non signé]
R2 ServiceDevMgmt; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [103072 2017-08-17] (Bitdefender)
S4 SQLAgent$EBP; C:\Program Files\Microsoft SQL Server\MSSQL12.EBP\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10883824 2017-03-17] (TeamViewer GmbH)
R2 Tran_Process_Proc; C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DCNTranProc.exe [71024 2014-03-25] ()
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [218416 2017-10-02] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe [1280816 2017-10-02] (Bitdefender)
R2 vsservp; C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-04] (Microsoft Corporation)
S3 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2205568 2017-05-31] (Sony)
S4 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.9.741.0\\McCSPServiceHost.exe" [X]
S4 McProxy; "C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AsusSGDrv; C:\Windows\system32\DRIVERS\AsusSGDrv.sys [152064 2016-09-01] (ASUS Corporation)
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [1019880 2017-10-02] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1763744 2017-10-02] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [133088 2017-07-26] (BitDefender LLC)
R2 bdprivmon; C:\Windows\System32\DRIVERS\bdprivmon.sys [47856 2017-09-14] (© Bitdefender SRL)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [70208 2016-05-23] (Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [65088 2016-05-23] (Intel Corporation)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-03-19] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-03-19] (Disc Soft Ltd)
R3 esif_lf; C:\Windows\System32\drivers\esif_lf.sys [343608 2016-05-23] (Intel Corporation)
S3 farmntio; C:\Windows\system32\drivers\farmntio.sys [25144 2014-03-25] () [Fichier non signé]
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2017-07-16] (Sony Mobile Communications)
R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [187688 2017-09-14] (BitDefender LLC)
R0 Ignis; C:\Windows\system32\DRIVERS\ignis.sys [362664 2017-10-02] (Bitdefender)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [937728 2016-05-17] (Realtek )
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [439576 2017-09-14] (BitDefender S.R.L.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-10-08 09:58 - 2017-10-08 09:59 - 002400768 _____ (Farbar) C:\Users\Carine\Desktop\FRST64.exe
2017-10-08 09:51 - 2017-10-08 09:51 - 000002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-10-08 09:51 - 2017-10-08 09:51 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-10-08 09:50 - 2017-10-08 09:50 - 001130328 _____ (Google Inc.) C:\Users\Carine\Downloads\ChromeSetup(1).exe
2017-10-08 09:50 - 2017-10-08 09:50 - 000003586 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-10-08 09:50 - 2017-10-08 09:50 - 000003462 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-10-06 21:11 - 2017-10-07 10:05 - 000001235 _____ C:\Users\Carine\AppData\Roaming\SAS7_000.DAT
2017-10-06 21:07 - 2017-10-06 21:07 - 000000000 ____D C:\Users\Carine\AppData\Roaming\Nuance
2017-10-06 21:06 - 2017-10-06 21:06 - 000000000 ____D C:\Users\Carine\AppData\Roaming\FLEXnet
2017-10-06 20:54 - 2017-10-06 20:54 - 000002815 _____ C:\Users\Public\Desktop\Dragon NaturallySpeaking.lnk
2017-10-06 20:54 - 2017-10-06 20:54 - 000001917 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk
2017-10-06 20:54 - 2017-10-06 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon NaturallySpeaking
2017-10-06 20:52 - 2017-10-06 20:52 - 000000000 ____D C:\ProgramData\Nuance
2017-10-06 20:52 - 2017-10-06 20:52 - 000000000 ____D C:\ProgramData\Macrovision
2017-10-06 20:52 - 2017-10-06 20:52 - 000000000 ____D C:\ProgramData\FLEXnet
2017-10-06 20:52 - 2017-10-06 20:52 - 000000000 ____D C:\Program Files (x86)\Nuance
2017-10-06 20:49 - 2017-10-06 20:49 - 000000000 ____D C:\Program Files (x86)\MSXML 4.0
2017-10-05 21:39 - 2017-10-06 03:08 - 029979881 _____ C:\Users\Carine\Downloads\Dragon_Naturally_Speaking_Premium_13.0_French_TrucNet.com.rar
2017-10-05 21:38 - 2017-10-05 21:38 - 000157294 _____ C:\Users\Carine\Downloads\nuance_dragon-professional-individual-15-full-keygen-_-masterkreatif (1).zip
2017-10-05 21:37 - 2017-10-05 21:37 - 000157295 _____ C:\Users\Carine\Downloads\nuance_dragon-professional-individual-15-full-keygen-_-masterkreatif.zip
2017-10-05 21:30 - 2017-10-05 21:30 - 000157186 _____ C:\Users\Carine\Downloads\nuance-dragon-professional-individual-v15.zip
2017-10-05 21:19 - 2017-10-05 21:19 - 000157207 _____ C:\Users\Carine\Downloads\nuance-dragon-professional-individual-15-crack.zip
2017-10-05 18:14 - 2017-10-05 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-10-04 14:44 - 2017-10-04 14:45 - 000006778 ___RH C:\farstone_pe.letter
2017-10-04 14:28 - 2017-10-04 14:28 - 1245489981 _____ C:\Windows\MEMORY.DMP
2017-10-03 12:21 - 2017-10-03 12:21 - 000051016 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-10-03 12:21 - 2017-10-03 12:21 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-10-03 12:21 - 2017-10-03 12:21 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-10-03 12:21 - 2017-10-03 12:21 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-10-01 19:00 - 2017-10-01 19:01 - 016584841 _____ C:\Users\Carine\Downloads\captvty-2.6.2.zip
2017-10-01 19:00 - 2017-10-01 19:00 - 010702699 _____ (Oleg N. Scherbakov) C:\Users\Carine\Downloads\captvty-2.6.2-autoextract.exe
2017-09-29 21:54 - 2017-09-29 21:55 - 000000261 _____ C:\Users\Carine\Desktop\Search.txt
2017-09-29 21:54 - 2017-09-29 21:54 - 000000000 ____D C:\Users\Carine\Desktop\FRST
2017-09-29 21:51 - 2017-10-08 10:03 - 000028054 _____ C:\Users\Carine\Desktop\FRST.txt
2017-09-29 21:51 - 2017-09-29 21:52 - 000069593 _____ C:\Users\Carine\Desktop\Addition.txt
2017-09-29 21:50 - 2017-10-08 10:02 - 000000000 ____D C:\FRST
2017-09-29 21:34 - 2017-09-29 21:34 - 000003798 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2017-09-29 21:30 - 2017-09-29 21:30 - 000030362 _____ C:\ProgramData\agent.update.1506713449.bdinstall.bin
2017-09-29 21:20 - 2017-09-29 21:30 - 000000000 ____D C:\AdwCleaner
2017-09-29 20:59 - 2017-10-04 15:47 - 000077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-09-29 20:59 - 2017-09-29 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-09-29 20:59 - 2017-09-29 20:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-09-29 20:59 - 2017-09-29 20:59 - 000000000 ____D C:\Program Files\Malwarebytes
2017-09-29 19:52 - 2017-09-29 19:52 - 000002876 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2017-09-29 19:19 - 2017-09-29 19:19 - 000002011 _____ C:\Windows\unins000.dat
2017-09-29 19:19 - 2017-09-29 19:05 - 000725157 _____ C:\Windows\unins000.exe
2017-09-27 18:49 - 2017-09-27 18:49 - 000002729 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000002662 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise 2016.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000002642 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000002628 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2017-09-27 18:49 - 2017-09-27 18:49 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
2017-09-27 18:49 - 2017-09-27 18:49 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2017-09-27 18:48 - 2017-09-27 18:48 - 000000000 ____D C:\Windows\PCHEALTH
2017-09-27 18:47 - 2017-09-27 18:49 - 000000000 ____D C:\Windows\SHELLNEW
2017-09-27 18:46 - 2017-09-27 18:49 - 000000000 ____D C:\Program Files\Microsoft Office
2017-09-27 18:46 - 2017-09-27 18:46 - 000000000 __RHD C:\MSOCache
2017-09-27 18:46 - 2017-09-27 18:46 - 000000000 ____D C:\Program Files\Microsoft Analysis Services
2017-09-27 18:46 - 2017-09-27 18:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-09-27 18:46 - 2017-09-27 18:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2017-09-27 18:43 - 2017-09-27 18:43 - 000000000 ____D C:\Users\Carine\AppData\Local\ElevatedDiagnostics
2017-09-23 15:04 - 2017-09-23 15:11 - 485717994 _____ C:\Users\Carine\Downloads\Les mystères de l'amour - Saison 15 - Episode 17.mp4
2017-09-23 13:52 - 2017-09-23 13:52 - 000076119 _____ C:\Users\Carine\Downloads\Formulaire_de_retour (2).pdf
2017-09-23 11:59 - 2017-09-23 11:59 - 000076095 _____ C:\Users\Carine\Downloads\Formulaire_de_retour (1).pdf
2017-09-23 11:57 - 2017-09-23 11:57 - 000076095 _____ C:\Users\Carine\Downloads\Formulaire_de_retour.pdf
2017-09-21 21:39 - 2017-09-21 22:11 - 098580640 _____ C:\Users\Carine\Downloads\Non confirmé 854349.crdownload
2017-09-20 14:07 - 2017-09-20 14:07 - 000000000 ____D C:\ProgramData\Atc
2017-09-19 17:36 - 2017-09-19 17:36 - 000043794 _____ C:\ProgramData\dm.update.1505835357.bdinstall.bin
2017-09-14 20:18 - 2017-10-08 10:04 - 000000000 ____D C:\ProgramData\TEMP
2017-09-14 20:18 - 2017-09-14 20:19 - 000000000 ____D C:\Program Files (x86)\HDD Regenerator
2017-09-14 20:18 - 2017-09-14 20:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Regenerator
2017-09-14 20:17 - 2017-09-14 20:17 - 000000000 ____D C:\Users\Carine\AppData\Local\Downloaded Installations
2017-09-14 20:16 - 2017-09-14 20:17 - 008318088 _____ (Abstradrome ) C:\Users\Carine\Downloads\hr2011.exe
2017-09-14 20:15 - 2017-09-14 20:16 - 010626745 _____ C:\Users\Carine\Downloads\HDD_Regenerator_2017.zip
2017-09-14 19:08 - 2017-10-02 18:12 - 001019880 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\atc.sys
2017-09-14 19:06 - 2017-09-14 19:06 - 000047856 _____ (© Bitdefender SRL) C:\Windows\system32\Drivers\bdprivmon.sys
2017-09-13 15:45 - 2017-09-16 19:23 - 000000000 ____D C:\Users\Carine\Desktop\PAULINE SOUS MAIN
2017-09-13 13:23 - 2017-09-13 13:47 - 1013686570 _____ C:\Users\Carine\Downloads\Zootopia.2016.FRENCH.720p.HDLight.x264-FTDB-zone-Telechargement.ws.mkv
2017-09-11 19:28 - 2017-09-12 16:28 - 000000000 _RSHD C:\ProgramData\Key-Base
2017-09-11 19:28 - 2017-09-11 19:28 - 000000000 ____D C:\ProgramData\{22BBDDD1-5B05-DAC5-0B5A-014CA9CE449B}
2017-09-11 19:26 - 2017-09-11 19:26 - 000001410 _____ C:\Users\Carine\Desktop\Stellar Phoenix Windows Data Recovery.lnk
2017-09-11 19:26 - 2017-09-11 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellar Phoenix Windows Data Recovery
2017-09-11 19:26 - 2017-09-11 19:26 - 000000000 ____D C:\Program Files (x86)\Stellar Phoenix Windows Data Recovery
2017-09-11 19:25 - 2017-09-11 19:26 - 016648896 _____ (Stellar Information Technology Pvt Ltd. ) C:\Users\Carine\Downloads\stellar-phoenix-windows-data-recovery_7-0-home_fr_136170.exe
2017-09-11 18:06 - 2017-09-11 18:08 - 005492308 _____ C:\Users\Carine\Downloads\Piriform_recuva_1.53.1087_delta.rar
2017-09-11 18:01 - 2017-09-11 18:03 - 000001401 _____ C:\Users\Carine\Desktop\PC Inspector File Recovery.lnk
2017-09-11 18:01 - 2017-09-11 18:01 - 000000000 ____D C:\Users\Carine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
2017-09-11 18:01 - 2017-09-11 18:01 - 000000000 ____D C:\Program Files (x86)\Convar
2017-09-11 18:00 - 2017-09-11 18:00 - 003462033 _____ C:\Users\Carine\Downloads\pci_filerecovery.exe
2017-09-11 17:57 - 2017-09-29 19:52 - 000000000 ____D C:\Program Files\CCleaner
2017-09-11 17:57 - 2017-09-11 21:55 - 000000000 ____D C:\Program Files\Recuva
2017-09-11 17:57 - 2017-09-11 18:14 - 000001701 _____ C:\Users\Public\Desktop\Recuva.lnk
2017-09-11 17:57 - 2017-09-11 17:57 - 005562976 _____ (Piriform Ltd) C:\Users\Carine\Downloads\rcsetup153.exe
2017-09-11 17:57 - 2017-09-11 17:57 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-09-11 17:57 - 2017-09-11 17:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2017-09-11 17:57 - 2017-09-11 17:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-10-08 09:59 - 2017-04-22 18:56 - 000000000 ____D C:\Users\Carine\AppData\LocalLow\Mozilla
2017-10-08 09:59 - 2017-03-19 11:37 - 000000000 ____D C:\Users\Carine\Documents\Fichiers Outlook
2017-10-08 09:51 - 2017-03-18 20:26 - 000000000 ____D C:\Users\Carine\AppData\Local\Google
2017-10-08 09:51 - 2017-03-18 20:26 - 000000000 ____D C:\Program Files (x86)\Google
2017-10-08 09:26 - 2017-03-18 21:50 - 000004180 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B69E0660-CB70-4FAC-B086-A6FA447B377C}
2017-10-08 09:26 - 2017-03-18 20:09 - 000000200 _____ C:\Users\Carine\AppData\Roaming\sp_data.sys
2017-10-08 09:25 - 2017-03-19 11:13 - 000003656 _____ C:\Windows\System32\Tasks\AutoKMS
2017-10-08 09:24 - 2017-03-22 15:08 - 000000000 ____D C:\Users\Carine\Desktop\Captvty
2017-10-08 09:23 - 2017-03-19 21:40 - 000000000 ____D C:\Program Files\Bitdefender Agent
2017-10-08 09:23 - 2017-03-18 20:05 - 000000000 __SHD C:\Users\Carine\IntelGraphicsProfiles
2017-10-07 23:54 - 2016-11-11 10:07 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-10-07 12:00 - 2017-02-09 13:05 - 000003550 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2017-10-07 12:00 - 2017-02-09 13:05 - 000003540 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2017-10-07 10:07 - 2017-04-22 18:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-07 10:07 - 2017-03-19 22:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-10-06 20:54 - 2016-07-16 13:45 - 000000000 ____D C:\Windows\INF
2017-10-06 20:48 - 2017-03-19 10:18 - 000000000 ____D C:\Users\Carine\AppData\Roaming\DAEMON Tools Lite
2017-10-06 02:10 - 2016-07-16 08:04 - 000065536 _____ C:\Windows\system32\config\ELAM
2017-10-05 18:14 - 2017-07-31 21:29 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-10-04 21:46 - 2017-03-18 20:03 - 000000000 ____D C:\Users\Carine
2017-10-04 14:36 - 2016-11-11 17:43 - 001599346 _____ C:\Windows\system32\perfh00C.dat
2017-10-04 14:36 - 2016-11-11 17:43 - 000426462 _____ C:\Windows\system32\perfc00C.dat
2017-10-04 14:36 - 2016-11-11 10:16 - 003589836 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-04 14:28 - 2017-05-15 22:28 - 000000000 ____D C:\Windows\Minidump
2017-10-04 14:28 - 2016-11-11 10:07 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-04 11:19 - 2017-03-18 20:05 - 000000000 ____D C:\Users\Carine\AppData\Local\Packages
2017-10-02 18:13 - 2017-03-19 21:47 - 000362664 _____ (Bitdefender) C:\Windows\system32\Drivers\ignis.sys
2017-10-02 18:11 - 2017-03-19 21:47 - 001763744 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2017-10-01 21:51 - 2017-03-29 18:37 - 000000000 ____D C:\Users\Carine\AppData\Local\CrashDumps
2017-09-29 21:31 - 2017-03-19 10:30 - 000022800 _____ C:\bdlog.txt
2017-09-29 21:31 - 2016-07-16 08:04 - 000524288 _____ C:\Windows\system32\config\BBI
2017-09-29 21:07 - 2016-11-11 10:07 - 000423768 _____ C:\Windows\system32\FNTCACHE.DAT
2017-09-29 21:05 - 2017-03-19 11:24 - 000000000 ____D C:\Program Files\KMSpico
2017-09-29 19:59 - 2017-03-25 18:25 - 000000000 ____D C:\Program Files\PDFCreator
2017-09-29 19:59 - 2017-03-22 19:45 - 000000000 ____D C:\Users\Carine\AppData\Roaming\TeamViewer
2017-09-29 19:58 - 2016-11-11 18:06 - 000000000 ____D C:\Windows\Panther
2017-09-29 19:06 - 2017-03-19 10:18 - 000000290 __RSH C:\ProgramData\ntuser.pol
2017-09-29 19:06 - 2016-07-16 13:47 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-09-29 19:06 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2017-09-27 18:49 - 2016-07-16 13:47 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-09-27 18:49 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-09-27 18:47 - 2016-07-16 13:47 - 000000167 _____ C:\Windows\win.ini
2017-09-27 18:47 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Common Files\System
2017-09-27 18:30 - 2017-03-19 11:24 - 000003478 _____ C:\Windows\System32\Tasks\AutoPico Daily Restart
2017-09-27 18:30 - 2017-03-19 11:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2017-09-27 18:28 - 2017-03-18 22:16 - 000000000 ____D C:\ProgramData\Microsoft Toolkit
2017-09-20 17:36 - 2017-07-26 19:01 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1636757704-1027705239-1334745615-1001
2017-09-20 17:36 - 2017-03-18 20:07 - 000002416 _____ C:\Users\Carine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-20 17:36 - 2017-03-18 20:07 - 000000000 ___RD C:\Users\Carine\OneDrive
2017-09-20 14:07 - 2017-03-19 21:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender
2017-09-14 19:04 - 2017-03-19 21:45 - 000439576 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2017-09-14 19:04 - 2017-03-19 21:45 - 000187688 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys

==================== Fichiers à la racine de certains dossiers =======

2017-10-06 21:11 - 2017-10-07 10:05 - 000001235 _____ () C:\Users\Carine\AppData\Roaming\SAS7_000.DAT
2017-03-18 20:09 - 2017-10-08 09:26 - 000000200 _____ () C:\Users\Carine\AppData\Roaming\sp_data.sys
2017-03-18 20:12 - 2017-03-18 20:12 - 000045855 _____ () C:\ProgramData\agent.1489860736.bdinstall.bin
2017-03-18 20:24 - 2017-03-18 20:24 - 000028756 _____ () C:\ProgramData\agent.1489861437.bdinstall.bin
2017-03-19 21:40 - 2017-03-19 21:40 - 000045931 _____ () C:\ProgramData\agent.1489952425.bdinstall.bin
2017-03-19 21:03 - 2017-03-19 21:03 - 000029899 _____ () C:\ProgramData\agent.uninstall.1489950189.bdinstall.bin
2017-09-29 21:30 - 2017-09-29 21:30 - 000030362 _____ () C:\ProgramData\agent.update.1506713449.bdinstall.bin
2017-03-19 21:52 - 2017-03-19 21:52 - 000377391 _____ () C:\ProgramData\cl.1489952713.bdinstall.bin
2017-03-19 21:53 - 2017-03-19 21:53 - 000056837 _____ () C:\ProgramData\dm.1489953196.bdinstall.bin
2017-09-19 17:36 - 2017-09-19 17:36 - 000043794 _____ () C:\ProgramData\dm.update.1505835357.bdinstall.bin

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2017-10-03 20:46

==================== Fin de FRST.txt ============================