Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01.01.2019
Exécuté par justi (administrateur) sur LAPTOP-FJT4TBMG (03-01-2019 19:22:41)
Exécuté depuis C:\Users\justi\Desktop
Profils chargés: justi (Profils disponibles: justi)
Platform: Windows 10 Home Version 1709 16299.431 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\igfxCUIService.exe
(Intel Corporation) C:\Windows\System32\IntelSSTAPO\ParameterService\ParameterService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\IntelCpHDCPSvc.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\IntelCpHeciSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\igfxEM.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\igfxext.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(SweetLabs, Inc) C:\Users\justi\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
() C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe
() C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(TODO: <Company name>) C:\Program Files\Acer\User Experience Improvement Program\Plugin\AppMonitor\AppMonitorPlugIn.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18102.10531.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxTsr.exe
(McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16735744 2016-11-17] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_TrueHarmony] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1472000 2016-11-17] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel Corporation)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-12-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKLM\Software\...\AppCompatFlags\Custom\setuphost.exe: [{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb] -> 0de704c9e25cd401
HKLM\Software\...\AppCompatFlags\Custom\setupprep.exe: [{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb] -> 0de704c9e25cd401
HKLM\Software\...\AppCompatFlags\InstalledSDB\{5534e02f-0f5d-40dd-ba92-bea38d22384d}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb [2018-06-27]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-21] (Google Inc.)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{2f14540a-b7b8-4a40-9bb7-f69b1515e736}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2901395878-1048275986-2746674744-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
SearchScopes: HKU\S-1-5-21-2901395878-1048275986-2746674744-1001 -> DefaultScope {43FACA7E-7613-44BB-B60F-A50A9F7F47B1} URL =
SearchScopes: HKU\S-1-5-21-2901395878-1048275986-2746674744-1001 -> {43FACA7E-7613-44BB-B60F-A50A9F7F47B1} URL =
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2018-12-04] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-12-21] (Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2018-12-29] (McAfee, Inc.)
BHO: Pas de nom -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Pas de fichier
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2018-12-04] (Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-08-24] (Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2018-12-29] (McAfee, Inc.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2018-12-04] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2018-12-04] (Bitdefender)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-01] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-01] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-01] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-01] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Pas de fichier

FireFox:
========
FF DefaultProfile: ryobtjgg.default
FF DefaultProfile:
FF ProfilePath: C:\Users\justi\AppData\Roaming\Zotero\Zotero\Profiles\ryobtjgg.default [2019-01-03]
FF Extension: (Zotero LibreOffice Integration) - C:\Program Files (x86)\Zotero\extensions\zoteroOpenOfficeIntegration@zotero.org [2018-11-29] [Legacy] [non signé]
FF Extension: (Zotero Word for Windows Integration) - C:\Program Files (x86)\Zotero\extensions\zoteroWinWordIntegration@zotero.org [2018-11-29] [Legacy] [non signé]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2017-05-29] [Legacy]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2017-05-29] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2017-05-29] [Legacy]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-01-03]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2018-11-23]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2018-12-20] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll [2018-12-06] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll [2018-12-06] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-08-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-13] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www2.delta-search.com/?babsrc=HP_ss&mntrId=B6FB24FD52FAD757&affID=120695&tt=160913_m1&tsp=5009
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR Profile: C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default [2019-01-03]
CHR Extension: (Slides) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-20]
CHR Extension: (Composition cocktails) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkhfljjipdkdggkiicpldhlolgjfhdmm [2017-10-04]
CHR Extension: (YouTube) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-20]
CHR Extension: (Adblock Plus) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-12-03]
CHR Extension: (Pushbullet) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2018-11-08]
CHR Extension: (Sheets) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-12-07]
CHR Extension: (Protection Web Avira) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-10-26]
CHR Extension: (Bitdefender Wallet) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2019-01-02]
CHR Extension: (Google Docs hors connexion) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-20]
CHR Extension: (Chrome Media Router) - C:\Users\justi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-23]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-08-31] (Windows (R) Win 7 DDK provider)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [438384 2018-12-14] (Avira Operations GmbH & Co. KG)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [779152 2018-11-23] (Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [779152 2018-11-23] (Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9646240 2018-12-07] (Microsoft Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17976 2016-09-20] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel(R) Corporation)
R2 IntelSSTSvc; C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe [26576 2016-09-19] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-08-29] (Intel Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905336 2018-12-29] (McAfee, Inc.)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1284032 2018-07-31] (Bitdefender)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [441136 2016-09-13] (Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [482608 2016-09-13] (Acer Incorporated)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [301872 2018-01-10] (acer)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [112656 2018-11-23] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [804656 2018-11-23] (Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\NisSrv.exe [4682552 2018-06-06] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MsMpEng.exe [101096 2018-06-06] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare)
S2 0290421538467038mcinstcleanup; C:\WINDOWS\TEMP\029042~1.EXE -cleanup -nolog [X]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1292296 2018-06-05] (BitDefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [156912 2018-10-18] (Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23032 2018-04-19] (Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [45728 2018-09-17] (© Bitdefender SRL)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (BitDefender)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 ETDI2C; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [217688 2016-09-14] (ELAN Microelectronic Corp.)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [359584 2018-10-04] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [193184 2018-05-29] (BitDefender LLC)
R2 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [196352 2018-10-26] (Bitdefender)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21344 2016-09-13] (Acer Incorporated)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14688 2016-09-13] (Acer Incorporated)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-08-05] (Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [609576 2018-06-28] (Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2018-06-06] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [313384 2018-06-06] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-06-06] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-01-03 19:22 - 2019-01-03 19:23 - 000022681 ____C C:\Users\justi\Desktop\FRST.txt
2019-01-03 19:18 - 2019-01-03 19:22 - 000000000 ____D C:\FRST
2019-01-03 19:14 - 2019-01-03 19:14 - 002426368 ____C (Farbar) C:\Users\justi\Desktop\FRST64.exe
2019-01-03 19:11 - 2019-01-03 19:11 - 000001199 _____ C:\Users\Public\Desktop\Avira.lnk
2019-01-03 19:11 - 2019-01-03 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-01-03 18:52 - 2018-11-06 15:08 - 000000802 ____C C:\Users\justi\Desktop\disque dur.lnk
2019-01-03 18:43 - 2019-01-03 18:43 - 001100856 ____C C:\Users\justi\Desktop\Land grab-converted.pdf
2019-01-03 18:42 - 2019-01-03 18:42 - 000792605 ____C C:\Users\justi\Desktop\COURS+4+D2.2+ET+D2.3+[Mode+de+compatibilité](2).pdf
2019-01-03 18:36 - 2019-01-03 18:36 - 000792605 ____C C:\Users\justi\Desktop\COURS+4+D2.2+ET+D2.3+[Mode+de+compatibilité](1).pdf
2019-01-02 19:14 - 2019-01-02 19:14 - 000165435 ____C C:\Users\justi\Downloads\restoration_restoration_2.5.14_anglais_14192.zip
2019-01-02 19:14 - 2019-01-02 19:14 - 000000000 ___DC C:\Users\justi\Downloads\restoration_restoration_2.5.14_anglais_14192
2019-01-02 19:05 - 2019-01-02 19:05 - 000800396 _____ C:\ProgramData\cl.1546452210.bdinstall.v2.bin
2019-01-02 19:05 - 2019-01-02 19:05 - 000003420 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C
2019-01-02 19:05 - 2019-01-02 19:05 - 000000000 ____D C:\ProgramData\Gemma
2019-01-02 19:05 - 2019-01-02 19:05 - 000000000 ____D C:\ProgramData\Atc
2019-01-02 19:04 - 2019-01-02 19:04 - 000002433 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk
2019-01-02 19:04 - 2019-01-02 19:04 - 000002351 _____ C:\Users\Public\Desktop\Bitdefender.lnk
2019-01-02 19:04 - 2019-01-02 19:04 - 000000000 ____D C:\WINDOWS\system32\elambkup
2019-01-02 19:04 - 2019-01-02 19:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security
2019-01-02 19:04 - 2019-01-02 19:04 - 000000000 ____D C:\ProgramData\BDLogging
2019-01-02 19:04 - 2018-10-26 10:57 - 000196352 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2019-01-02 19:04 - 2018-10-18 17:12 - 000156912 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci.sys
2019-01-02 19:04 - 2018-10-04 22:40 - 000359584 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\Gemma.sys
2019-01-02 19:04 - 2018-09-17 04:36 - 000045728 _____ (© Bitdefender SRL) C:\WINDOWS\system32\Drivers\bdprivmon.sys
2019-01-02 19:04 - 2018-06-05 03:32 - 001292296 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys
2019-01-02 19:04 - 2018-04-27 07:45 - 000096448 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2019-01-02 19:04 - 2018-04-19 07:37 - 000023032 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2019-01-02 19:04 - 2007-04-11 10:11 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2019-01-02 19:03 - 2019-01-02 19:11 - 000000000 ___DC C:\Users\justi\AppData\Roaming\Bitdefender
2019-01-02 19:03 - 2019-01-02 19:03 - 000000000 ____D C:\ProgramData\Bitdefender
2019-01-02 19:03 - 2019-01-02 19:03 - 000000000 ____D C:\Program Files\Bitdefender
2019-01-02 19:03 - 2018-06-28 13:39 - 000609576 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\trufos.sys
2019-01-02 19:03 - 2018-05-29 04:04 - 000193184 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2019-01-02 19:02 - 2019-01-02 19:02 - 000000000 ____H C:\ProgramData\rebootpending.txt
2019-01-02 15:22 - 2019-01-02 15:23 - 017112530 ____C C:\Users\justi\Downloads\bonne année 2019.mp4
2019-01-02 15:07 - 2019-01-02 15:07 - 001915904 ____C C:\Users\justi\Downloads\Presentation_south_5.ppt
2019-01-02 15:07 - 2019-01-02 15:07 - 001712606 ____C C:\Users\justi\Downloads\Week_4._2017_pptx.pptx
2019-01-02 14:52 - 2019-01-02 14:52 - 000001441 _____ C:\Users\Public\Desktop\Wondershare Recoverit.lnk
2019-01-02 14:52 - 2019-01-02 14:52 - 000000000 ____D C:\ProgramData\Wondershare
2019-01-02 14:52 - 2019-01-02 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2019-01-02 14:52 - 2019-01-02 14:52 - 000000000 ____D C:\Program Files (x86)\Wondershare
2019-01-02 14:52 - 2017-09-27 17:29 - 000000232 _____ C:\WINDOWS\SysWOW64\dllhost.exe.config
2019-01-02 14:51 - 2019-01-02 14:51 - 001408104 ____C C:\Users\justi\Downloads\recoverit_setup_full4159.exe
2019-01-02 14:47 - 2019-01-02 19:03 - 000000000 ____D C:\Program Files\Common Files\Bitdefender
2019-01-02 14:43 - 2019-01-02 14:43 - 000003802 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2019-01-02 14:41 - 2019-01-02 19:02 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-01-02 14:41 - 2019-01-02 14:41 - 000046943 _____ C:\ProgramData\agent.1546436494.bdinstall.bin
2019-01-02 14:41 - 2019-01-02 14:41 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2019-01-02 14:40 - 2019-01-02 14:41 - 009860808 ____C C:\Users\justi\Downloads\bitdefender_tsecurity.exe
2019-01-01 15:44 - 2019-01-01 15:44 - 001114313 ____C C:\Users\justi\Downloads\LCDM1_021_0035.pdf
2018-12-31 14:12 - 2018-12-31 14:13 - 042018910 ____C C:\Users\justi\Downloads\humanitarian_action_in_the_Arab_Middle_East_2018 (1).pptx
2018-12-29 17:57 - 2018-12-29 17:57 - 000081034 ____C C:\Users\justi\Downloads\2018-_Final_thesis_methodology.pptx
2018-12-29 17:57 - 2018-12-29 17:57 - 000081034 ____C C:\Users\justi\Downloads\2018-_Final_thesis_methodology (1).pptx
2018-12-29 17:57 - 2018-12-29 17:57 - 000072484 ____C C:\Users\justi\Downloads\2018_-_Revue_de_littérature_-_importance_et_méthodo (1).pptx
2018-12-29 15:52 - 2018-12-29 15:52 - 009586410 ____C C:\Users\justi\Downloads\Presentation_HA_3_2018 (2).pptx
2018-12-29 15:52 - 2018-12-29 15:52 - 004884024 ____C C:\Users\justi\Downloads\HA_2018 (2).pptx
2018-12-29 15:52 - 2018-12-29 15:52 - 001134653 ____C C:\Users\justi\Downloads\HA_2_2018 (2).pptx
2018-12-29 15:49 - 2018-12-29 15:49 - 009586410 ____C C:\Users\justi\Downloads\Presentation_HA_3_2018 (1).pptx
2018-12-29 15:49 - 2018-12-29 15:49 - 001134653 ____C C:\Users\justi\Downloads\HA_2_2018 (1).pptx
2018-12-29 15:48 - 2018-12-29 15:49 - 004884024 ____C C:\Users\justi\Downloads\HA_2018 (1).pptx
2018-12-25 21:02 - 2019-01-02 19:19 - 000000000 ____D C:\WINDOWS\Panther
2018-12-23 17:21 - 2018-12-23 17:21 - 002019186 ____C C:\Users\justi\Downloads\Paris13 D.Laisney Séance 3.pdf
2018-12-23 17:21 - 2018-12-23 17:21 - 001500935 ____C C:\Users\justi\Downloads\Paris13 D.Laisney Séance 4.pdf
2018-12-23 15:17 - 2018-12-23 15:18 - 009586410 ____C C:\Users\justi\Downloads\Presentation_HA_3_2018.pptx
2018-12-23 15:17 - 2018-12-23 15:17 - 004884024 ____C C:\Users\justi\Downloads\HA_2018.pptx
2018-12-23 15:17 - 2018-12-23 15:17 - 001134653 ____C C:\Users\justi\Downloads\HA_2_2018.pptx
2018-12-21 13:59 - 2018-12-21 13:59 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-12-21 13:59 - 2018-12-21 13:59 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-12-21 13:59 - 2018-12-21 13:59 - 000002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-12-21 13:59 - 2018-12-21 13:59 - 000002491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-12-21 13:59 - 2018-12-21 13:59 - 000002491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-12-21 13:59 - 2018-12-21 13:59 - 000002479 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-12-21 13:59 - 2018-12-21 13:59 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-12-21 13:59 - 2018-12-21 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2018-12-19 19:19 - 2018-12-19 19:19 - 001956597 ____C C:\Users\justi\Downloads\RAPPORT NARRATIF FINAL_PRORESI_VF.pdf
2018-12-19 19:19 - 2018-12-19 19:19 - 000707698 ____C C:\Users\justi\Downloads\20151218-Fiche capitalisation Warantage-Base Pama.pdf
2018-12-19 19:19 - 2018-12-19 19:19 - 000410306 ____C C:\Users\justi\Downloads\20150417-fichecapi_Etuvage revu.pdf
2018-12-17 17:20 - 2018-12-17 17:20 - 000576019 ____C C:\Users\justi\Downloads\Note_technolangues2011.pdf
2018-12-17 17:16 - 2018-12-17 17:16 - 001879954 ____C C:\Users\justi\Downloads\guide-de-redaction-strategique.pdf
2018-12-17 17:16 - 2018-12-17 17:16 - 001879954 ____C C:\Users\justi\Downloads\guide-de-redaction-strategique (1).pdf
2018-12-12 19:44 - 2018-12-24 16:42 - 000000000 ___DC C:\Users\justi\AppData\Local\PlaceholderTileLogoFolder
2018-12-12 19:42 - 2018-12-12 19:42 - 003369472 ____C C:\Users\justi\Downloads\photo-story_photo_story_3.0_francais_14246 (1).msi
2018-12-12 19:41 - 2018-12-12 19:41 - 003369472 ____C C:\Users\justi\Downloads\photo-story_photo_story_3.0_francais_14246.msi
2018-12-12 19:39 - 2018-12-12 19:39 - 005271552 ____C C:\Users\justi\Downloads\Pstory (1).msi
2018-12-12 19:35 - 2018-12-12 19:41 - 000001754 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotostory 3 für Windows.lnk
2018-12-12 19:34 - 2018-12-12 19:34 - 003361280 ____C C:\Users\justi\Downloads\PStory.msi
2018-12-12 19:34 - 2018-12-12 19:34 - 000000000 ____D C:\Program Files (x86)\Photo Story 3 for Windows
2018-12-12 09:34 - 2018-12-12 09:34 - 004164442 ____C C:\Users\justi\Downloads\States and Diasporas.pptx
2018-12-11 23:46 - 2018-12-13 00:12 - 000000000 ___DC C:\Users\justi\.openshot_qt
2018-12-11 23:45 - 2018-12-11 23:45 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenShot Video Editor.lnk
2018-12-11 23:45 - 2018-12-11 23:45 - 000000936 _____ C:\Users\Public\Desktop\OpenShot Video Editor.lnk
2018-12-11 23:45 - 2018-12-11 23:45 - 000000000 ____D C:\Program Files\OpenShot Video Editor
2018-12-11 23:30 - 2018-12-11 23:35 - 125382032 ____C (OpenShot Studios, LLC ) C:\Users\justi\Downloads\OpenShot-v2.4.3-x86_64.exe
2018-12-11 14:27 - 2018-12-15 23:05 - 000000000 ____D C:\Program Files\McAfee
2018-12-10 23:34 - 2018-12-10 23:34 - 000231033 ____C C:\Users\justi\Downloads\T&P - UN vs. club diplomacy (intro + plan).pdf
2018-12-10 23:34 - 2018-12-10 23:34 - 000102354 ____C C:\Users\justi\Downloads\CS, a new actor democratizing itl coop _.pdf
2018-12-10 22:35 - 2018-12-10 22:35 - 000687079 ____C C:\Users\justi\Downloads\plaidoirie-résumé-arrêt-1 (1).pdf
2018-12-09 14:35 - 2018-12-09 14:35 - 000234595 ____C C:\Users\justi\Downloads\IR-Exposé-States-and-diasporas.odt
2018-12-09 00:17 - 2018-12-09 00:17 - 000139776 ____C C:\Users\justi\Downloads\Remittancedataoutflows (Dec.2018).xls
2018-12-09 00:16 - 2018-12-09 00:16 - 000324440 ____C C:\Users\justi\Downloads\bilateralremittancematrix2017_Apr2018.xlsx
2018-12-08 17:26 - 2018-12-08 17:26 - 000687079 ____C C:\Users\justi\Downloads\plaidoirie-résumé-arrêt-1.pdf
2018-12-07 16:11 - 2018-12-07 16:12 - 000127775 ____C C:\Users\justi\Downloads\Semaine du 1012 au 1412 ONG.pdf
2018-12-04 22:43 - 2018-12-04 22:43 - 001269199 ____C C:\Users\justi\Downloads\Mahafatoky-project-in-Madagascar.pptx
2018-12-04 22:35 - 2018-12-04 22:35 - 000091781 ____C C:\Users\justi\Downloads\LOGICAMFRAMEWORK-1.pdf
2018-12-04 22:23 - 2018-12-04 22:23 - 000029016 ____C C:\Users\justi\Downloads\Bilan-projet-CBA-framework.odt
2018-12-04 21:53 - 2018-12-04 21:53 - 000015609 ____C C:\Users\justi\Downloads\LOGICAMFRAMEWORK-1.xlsx
2018-12-04 14:10 - 2018-12-04 14:10 - 002389766 ____C C:\Users\justi\Downloads\FY16 & FY17 Country & Global Impact summaries - for circulation 180309.xlsm

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-01-03 19:20 - 2017-09-27 12:59 - 000000000 ___DC C:\Users\justi\Zotero
2019-01-03 19:20 - 2017-09-27 12:59 - 000000000 ___DC C:\Users\justi\AppData\LocalLow\Mozilla
2019-01-03 19:13 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2019-01-03 19:12 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-03 19:12 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-03 19:12 - 2017-05-29 08:27 - 000000000 ____D C:\ProgramData\Package Cache
2019-01-03 19:11 - 2017-12-25 22:20 - 000000000 ____D C:\ProgramData\Avira
2019-01-03 19:09 - 2018-02-18 19:01 - 000004178 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3B64DCBA-D9B4-428A-AB22-A785F8EB6DA3}
2019-01-03 19:08 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-03 12:05 - 2017-09-20 14:55 - 000000000 ___DC C:\Users\justi\AppData\Local\Host App Service
2019-01-03 01:32 - 2017-11-25 11:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-02 23:28 - 2017-11-25 12:04 - 002817204 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-02 23:28 - 2017-09-30 15:40 - 001344424 _____ C:\WINDOWS\system32\perfh00C.dat
2019-01-02 23:28 - 2017-09-30 15:40 - 000306732 _____ C:\WINDOWS\system32\perfc00C.dat
2019-01-02 19:07 - 2017-09-29 09:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-01-02 19:04 - 2017-09-29 14:44 - 000000000 ____D C:\WINDOWS\INF
2019-01-02 19:03 - 2017-09-20 14:58 - 000000000 _SHDC C:\Users\justi\IntelGraphicsProfiles
2019-01-02 19:02 - 2017-11-25 12:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-02 19:02 - 2017-11-25 11:54 - 000400480 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-02 19:02 - 2017-09-29 09:45 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2019-01-02 15:08 - 2017-11-25 11:57 - 000000000 ___DC C:\Users\justi\AppData\Local\Packages
2019-01-02 14:33 - 2017-11-25 11:56 - 000000000 ___DC C:\Users\justi
2019-01-02 00:03 - 2018-05-20 18:42 - 000013229 _____ C:\WINDOWS\BRRBCOM.INI
2018-12-27 11:45 - 2018-04-12 18:25 - 000000000 ___HD C:\$WINDOWS.~BT
2018-12-21 14:05 - 2017-11-25 12:01 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2901395878-1048275986-2746674744-1001
2018-12-21 14:05 - 2017-09-20 15:01 - 000002454 ____C C:\Users\justi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-21 14:05 - 2017-09-20 15:01 - 000000000 __RDC C:\Users\justi\OneDrive
2018-12-21 14:00 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-21 13:58 - 2017-05-29 08:14 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-12-21 13:56 - 2017-09-20 16:35 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-21 13:56 - 2017-09-20 16:35 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-12-20 10:08 - 2017-11-25 12:01 - 000003588 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-20 10:08 - 2017-11-25 12:01 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-13 23:10 - 2017-09-23 15:25 - 000000000 ____D C:\ProgramData\McAfee
2018-12-12 19:35 - 2017-09-21 17:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-12-12 19:35 - 2017-09-20 14:59 - 000000000 ___DC C:\Users\justi\AppData\Local\VirtualStore
2018-12-12 19:31 - 2017-09-23 16:34 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-12-12 19:31 - 2017-09-21 17:12 - 137260640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-12-12 19:30 - 2016-07-16 12:47 - 000000167 _____ C:\WINDOWS\win.ini
2018-12-11 21:01 - 2017-09-27 18:57 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-12-08 12:24 - 2018-09-12 10:43 - 000000000 ____D C:\Program Files\rempl
2018-12-06 15:29 - 2017-09-29 14:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-12-06 11:07 - 2018-03-14 14:47 - 000004760 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-12-06 11:07 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-12-06 11:07 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== Fichiers à la racine de certains dossiers =======

2017-09-23 15:25 - 2017-09-23 15:25 - 000056834 ____C () C:\Users\justi\AppData\Roaming\DMGR_0B1L2Z0T1F1C1C1P1G2Z1V0P0ItJ1V0A0V0A0S0T.txt
2017-09-23 15:25 - 2017-09-23 15:25 - 000155674 ____C () C:\Users\justi\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2019-01-03 18:25

==================== Fin de FRST.txt ============================