cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02.01.2018
Exécuté par gigi (administrateur) sur GIGI-PC (05-01-2018 17:04:12)
Exécuté depuis C:\Users\gigi\Downloads
Profils chargés: gigi (Profils disponibles: gigi & Invité)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 10 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Plantronics) C:\Program Files (x86)\Plantronics\MyHeadsetUpdater\MyHeadsetUpdater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13353064 2011-11-14] (Realtek Semiconductor)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe [321232 2017-12-15] (Bitdefender)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-04] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-11-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [636520 2012-02-07] ()
HKLM-x32\...\Run: [Plantronics MyHeadset Updater] => C:\Program Files (x86)\Plantronics\MyHeadsetUpdater\MyHeadsetUpdater.exe [80384 2016-05-10] (Plantronics)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\Run: [Google Update] => C:\Users\gigi\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [601680 2017-11-16] (Google Inc.)
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-12-08] (Apple Inc.)
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2017-12-08] (Apple Inc.)
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2017-12-08] (Apple Inc.)
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2017-12-08] (Apple Inc.)
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\MountPoints2: F - F:\SETUP.EXE
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\MountPoints2: {4371b09e-87ea-11e6-afb5-f80f4156be1d} - I:\AutoRun.exe
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\MountPoints2: {a0557543-13da-11e3-ac30-f80f4156be1d} - F:\SETUP.EXE
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\MountPoints2: {c7c994fa-e71a-11e4-9372-f80f4156be1d} - I:\AutoRun.exe
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\MountPoints2: {c7c994fd-e71a-11e4-9372-f80f4156be1d} - I:\AutoRun.exe
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Acer.scr
HKU\S-1-5-18\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyServer: [S-1-5-19] => http=127.0.0.1:56847
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3A8AA24A-F7BB-442A-8A19-E34B464FC8CA}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{520B14CC-198F-4E41-83B9-E6E284941A2E}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{6EB52E9A-462A-4292-A4C6-5E96C5E20BCA}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{724B4DE6-E98A-4E84-914C-5476AF3E303D}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{7C671441-85E7-4CE1-8C9B-8DA2210B9E47}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{957D7C04-8B6C-4BA7-B40B-1028FC405F93}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{C54F6205-EFD2-4A50-8475-365838D8AC11}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3767175695-2263496374-1914160072-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-12-15] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-09-12] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
BHO-x32: Pas de nom -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> Pas de fichier
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-12-15] (Bitdefender)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-14] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-14] (Oracle Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-12-15] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-12-15] (Bitdefender)

FireFox:
========
FF DefaultProfile: v45726f7.default-1508166290311
FF ProfilePath: C:\Users\gigi\AppData\Roaming\Mozilla\Firefox\Profiles\v45726f7.default-1508166290311 [2018-01-05]
FF Extension: (Nimbus Screen Capture: Screenshots, Annotate) - C:\Users\gigi\AppData\Roaming\Mozilla\Firefox\Profiles\v45726f7.default-1508166290311\Extensions\nimbusscreencaptureff@everhelper.me.xpi [2017-12-06]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\\bdwteff [2017-09-23]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2017-01-19] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF HKU\S-1-5-21-3767175695-2263496374-1914160072-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: (McAfee Security Scan Plus) - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [Legacy] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-13] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-07-28] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-07-28] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-07-28] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-07-28] (Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-14] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-3767175695-2263496374-1914160072-1000: @tools.google.com/Google Update;version=3 -> C:\Users\gigi\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-3767175695-2263496374-1914160072-1000: @tools.google.com/Google Update;version=9 -> C:\Users\gigi\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR Profile: C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default [2018-01-05]
CHR Extension: (Docs) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Adblock Plus) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-29]
CHR Extension: (Recherche Google) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Bitdefender Wallet) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2017-04-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-29]
CHR Extension: (Adblock Pro) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2017-11-15]
CHR Extension: (Gmail) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\gigi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-19]
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.7EIBTPPN4KYY64CSPOD36Q4IMA - C:\Users\gigi\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2090152 2017-09-23] (Bitdefender)
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1648840 2016-08-05] (Foxit Software Inc.)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
S3 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-07] ()
S3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
S3 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Fichier non signé]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1254736 2017-04-11] (Bitdefender)
R2 ServiceDevMgmt; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [103072 2017-12-04] (Bitdefender)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [218416 2017-12-15] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe [1129720 2017-12-15] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe -update [X]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 atc; C:\Windows\System32\DRIVERS\atc.sys [1019880 2017-10-02] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1763744 2017-10-02] (BitDefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [124424 2017-09-22] (BitDefender LLC)
R2 bdprivmon; C:\Windows\System32\DRIVERS\bdprivmon.sys [47376 2017-11-24] (© Bitdefender SRL)
R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
S3 CSRBC; C:\Windows\System32\Drivers\csrbcx64.sys [38400 2016-05-10] (CSR plc.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-09-02] (Disc Soft Ltd)
U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [109568 2013-01-25] (Huawei Technologies Co., Ltd.)
R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [187688 2017-09-23] (BitDefender LLC)
R0 ignis; C:\Windows\System32\DRIVERS\ignis.sys [362664 2017-10-02] (Bitdefender)
R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [748648 2010-08-12] (Realtek Semiconductor Corporation )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-04-13] ()
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [439576 2017-09-23] (BitDefender S.R.L.)
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [X]
S3 mdf16; \??\C:\Users\gigi\AppData\Local\Temp\mdf16.sys [X] <==== ATTENTION
S3 mvd23; \??\C:\Users\gigi\AppData\Local\Temp\mvd23.sys [X] <==== ATTENTION

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-01-05 17:04 - 2018-01-05 17:05 - 000024350 _____ C:\Users\gigi\Downloads\FRST.txt
2018-01-05 17:04 - 2018-01-05 17:04 - 000000000 ____D C:\FRST
2018-01-05 17:03 - 2018-01-05 17:03 - 002393088 _____ (Farbar) C:\Users\gigi\Downloads\FRST64.exe
2018-01-05 15:16 - 2018-01-05 15:16 - 000516518 _____ C:\Users\gigi\Downloads\7778 facture Societe Agencement Noble.pdf
2018-01-05 13:49 - 2018-01-05 13:50 - 001152077 _____ C:\Users\gigi\Downloads\BAT3.pdf
2018-01-04 17:53 - 2018-01-04 17:53 - 000293090 _____ C:\Users\gigi\Downloads\5696 facture sprimtour transactions(3).pdf
2018-01-04 17:49 - 2018-01-04 17:49 - 000278304 _____ C:\Users\gigi\Downloads\5705 facture sprl assurances immobilier prêt dbr.pdf
2018-01-04 17:32 - 2018-01-04 17:32 - 000016660 _____ C:\Users\gigi\Downloads\facture_n5707.pdf
2018-01-04 14:32 - 2018-01-04 14:32 - 000293090 _____ C:\Users\gigi\Downloads\5696 facture sprimtour transactions(2).pdf
2018-01-04 14:05 - 2018-01-04 14:05 - 000032118 _____ C:\Users\gigi\Downloads\Facture_2507016472_2500314067_20180103_174408.pdf
2018-01-04 14:01 - 2018-01-05 15:36 - 000000000 ____D C:\Program Files\WinZip Driver Updater
2018-01-04 14:00 - 2018-01-04 14:00 - 014469984 _____ (WinZip) C:\Users\gigi\Downloads\wzdu34.exe
2018-01-04 13:58 - 2018-01-04 13:58 - 005524284 _____ ( ) C:\Users\gigi\Downloads\IZArc_4.3.exe
2018-01-04 13:56 - 2018-01-04 13:56 - 000000000 ____D C:\Users\gigi\AppData\Local\{C73E7D71-53DA-4C44-BC27-1F2CE8E6A1A4}
2018-01-03 13:01 - 2018-01-03 13:01 - 000111556 _____ C:\Users\gigi\Downloads\IR-Avis-1MEN-2017-17210678559401.pdf
2018-01-03 12:58 - 2018-01-03 12:58 - 000053477 _____ C:\Users\gigi\Downloads\IR-Avis-71-2017-17210008782710.pdf
2018-01-03 12:58 - 2018-01-03 12:58 - 000052364 _____ C:\Users\gigi\Downloads\TH-Avis-1MEN-2017-17210475216946.pdf
2018-01-03 12:57 - 2018-01-03 13:01 - 000000000 ____D C:\Users\gigi\Desktop\IMPOT 2018
2018-01-03 12:56 - 2018-01-03 12:56 - 000122804 _____ C:\Users\gigi\Downloads\TF-Avis-1MEN-2017-1721412898769.pdf
2018-01-03 10:40 - 2018-01-03 10:40 - 000081984 _____ C:\Users\gigi\Downloads\5695.pdf
2018-01-02 16:31 - 2018-01-02 16:31 - 000019083 _____ C:\Users\gigi\Downloads\facture_n6427.pdf
2018-01-02 16:27 - 2018-01-02 16:27 - 000019096 _____ C:\Users\gigi\Downloads\facture_n6581.pdf
2018-01-02 16:18 - 2018-01-02 16:19 - 000016277 _____ C:\Users\gigi\Downloads\facture_n5704.pdf
2018-01-02 11:27 - 2018-01-02 11:27 - 001667183 _____ C:\Users\gigi\Downloads\BAT2.pdf
2018-01-02 09:02 - 2018-01-02 09:02 - 000016278 _____ C:\Users\gigi\Downloads\facture_n5703.pdf
2018-01-01 20:15 - 2018-01-01 20:15 - 000000000 ____D C:\Users\gigi\AppData\Local\{BDDBC276-9FAF-40CB-8AE7-74508B9D168F}
2018-01-01 20:07 - 2018-01-01 20:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2018-01-01 20:06 - 2018-01-01 20:06 - 000000000 ____D C:\Windows\System32\Tasks\Apple
2018-01-01 20:06 - 2018-01-01 20:06 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2018-01-01 20:04 - 2018-01-01 20:04 - 000001711 _____ C:\Users\Public\Desktop\iTunes.lnk
2018-01-01 20:04 - 2018-01-01 20:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-01-01 19:02 - 2018-01-01 19:05 - 000000000 ____D C:\Users\gigi\Desktop\MENTON
2017-12-29 09:54 - 2017-12-29 09:54 - 000977151 _____ C:\Users\gigi\Downloads\BAT.pdf
2017-12-29 08:08 - 2017-12-29 08:08 - 000140432 _____ C:\Users\gigi\Downloads\PRO-26-12-2017-L006-ENS.pdf
2017-12-28 14:29 - 2017-12-28 14:29 - 000293090 _____ C:\Users\gigi\Downloads\5696 facture sprimtour transactions(1).pdf
2017-12-28 14:21 - 2017-12-28 14:21 - 000293090 _____ C:\Users\gigi\Downloads\5696 facture sprimtour transactions.pdf
2017-12-28 14:07 - 2017-12-28 14:07 - 000016452 _____ C:\Users\gigi\Downloads\facture_n5701.pdf
2017-12-28 14:06 - 2017-12-28 14:06 - 000016516 _____ C:\Users\gigi\Downloads\facture_n5700.pdf
2017-12-28 13:23 - 2017-12-28 13:23 - 000098108 _____ C:\Users\gigi\Downloads\AR C207402 ENSEIGNE BOUTIQUE(2).pdf
2017-12-28 13:09 - 2017-12-28 13:09 - 000042483 _____ C:\Users\gigi\Downloads\ENSEIGNE BOUTIQUE 767(1).pdf
2017-12-28 12:28 - 2017-12-28 12:28 - 000192815 _____ C:\Users\gigi\Downloads\6168 commande.pdf
2017-12-28 09:11 - 2017-12-28 09:11 - 000019985 _____ C:\Users\gigi\Downloads\facture_n7962(1).pdf
2017-12-28 09:01 - 2017-12-28 09:01 - 000293545 _____ C:\Users\gigi\Downloads\5685b.pdf
2017-12-27 16:50 - 2017-12-27 16:50 - 000123966 _____ C:\Users\gigi\Downloads\Vos contacts GLS - 10.pdf
2017-12-27 14:58 - 2017-12-27 14:58 - 000074189 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4695_001(3).pdf
2017-12-27 13:45 - 2017-12-27 13:45 - 001303596 _____ C:\Users\gigi\Downloads\Journaux lumineux monochromes(5).pdf
2017-12-27 13:44 - 2017-12-27 13:44 - 001522449 _____ C:\Users\gigi\Downloads\Journaux lumineux polychromes(5).pdf
2017-12-26 16:09 - 2017-12-26 16:09 - 000027185 _____ C:\Users\gigi\Downloads\RIB BNP MUSTANG(1).pdf
2017-12-26 16:04 - 2017-12-26 16:04 - 000082328 _____ C:\Users\gigi\Downloads\FSIT188812 ENSEIGNE BOUTIQUE.pdf
2017-12-26 16:03 - 2017-12-26 16:03 - 000099838 _____ C:\Users\gigi\Downloads\FSIT188541 ENSEIGNE BOUTIQUE.pdf
2017-12-26 16:01 - 2017-12-26 16:01 - 000099691 _____ C:\Users\gigi\Downloads\FSIT188540 ENSEIGNE BOUTIQUE.pdf
2017-12-26 14:46 - 2017-12-26 14:46 - 000264620 _____ C:\Users\gigi\Downloads\5697 facture les résidences de la cote de jade -socoren.pdf
2017-12-26 14:25 - 2017-12-26 14:25 - 000016394 _____ C:\Users\gigi\Downloads\facture_n5676(2).pdf
2017-12-26 14:04 - 2017-12-26 14:04 - 000042483 _____ C:\Users\gigi\Downloads\ENSEIGNE BOUTIQUE 767.pdf
2017-12-25 20:22 - 2017-12-25 20:22 - 000098108 _____ C:\Users\gigi\Downloads\AR C207402 ENSEIGNE BOUTIQUE(1).pdf
2017-12-25 19:47 - 2017-12-25 19:48 - 000021522 _____ C:\Users\gigi\Downloads\facture_n5676(1).PDF
2017-12-25 17:06 - 2017-12-25 17:06 - 000016538 _____ C:\Users\gigi\Downloads\facture_n5698.pdf
2017-12-25 16:59 - 2017-12-25 16:59 - 000202255 _____ C:\Users\gigi\Downloads\Vitrine EXT LED 80.pdf
2017-12-25 16:58 - 2017-12-25 16:58 - 000316924 _____ C:\Users\gigi\Downloads\Vitrine EXT LED 35.pdf
2017-12-25 16:58 - 2017-12-25 16:58 - 000219612 _____ C:\Users\gigi\Downloads\Vitrine EXT 45.pdf
2017-12-25 16:57 - 2017-12-25 16:57 - 000301848 _____ C:\Users\gigi\Downloads\Vitrine EXT 35.pdf
2017-12-25 16:54 - 2017-12-25 16:54 - 000279040 _____ C:\Users\gigi\Downloads\5662b livraison enseigne boutique.pdf
2017-12-25 16:08 - 2018-01-05 16:44 - 000004602 _____ C:\Windows\System32\Tasks\DistromaticSearchProtect-hourly
2017-12-22 18:45 - 2017-12-22 18:45 - 004295851 _____ C:\Users\gigi\Downloads\doc2(2).pdf
2017-12-22 18:12 - 2017-12-22 18:12 - 001322329 _____ C:\Users\gigi\Downloads\Journaux lumineux monochromes(4).pdf
2017-12-22 17:12 - 2017-12-22 17:12 - 001303596 _____ C:\Users\gigi\Downloads\Journaux lumineux monochromes(3).pdf
2017-12-22 15:50 - 2017-12-22 15:50 - 000141839 _____ C:\Users\gigi\Downloads\PRO-18-11-2017-L006-ENS(2).pdf
2017-12-22 15:46 - 2017-12-22 15:46 - 000143477 _____ C:\Users\gigi\Downloads\PRO-18-12-2017-L006-ENS(1).pdf
2017-12-22 15:40 - 2017-12-22 15:40 - 000141839 _____ C:\Users\gigi\Downloads\PRO-18-11-2017-L006-ENS(1).PDF
2017-12-22 15:39 - 2017-12-22 15:39 - 000064904 _____ C:\Users\gigi\Downloads\F-03-12-2017-L006-ENS(1).PDF
2017-12-22 15:38 - 2017-12-22 15:38 - 000141839 _____ C:\Users\gigi\Downloads\PRO-18-11-2017-L006-ENS.PDF
2017-12-22 15:38 - 2017-12-22 15:38 - 000064904 _____ C:\Users\gigi\Downloads\F-03-12-2017-L006-ENS.PDF
2017-12-22 15:35 - 2017-12-22 15:35 - 000143477 _____ C:\Users\gigi\Downloads\PRO-18-12-2017-L006-ENS.pdf
2017-12-22 14:04 - 2017-12-22 14:04 - 000296157 _____ C:\Users\gigi\Downloads\5662b.pdf
2017-12-22 13:36 - 2017-12-22 13:36 - 000192884 _____ C:\Users\gigi\Downloads\7921 facture sci duplan immobilier.pdf
2017-12-22 12:56 - 2017-12-22 12:56 - 000098108 _____ C:\Users\gigi\Downloads\AR C207402 ENSEIGNE BOUTIQUE.pdf
2017-12-22 12:55 - 2017-12-22 12:55 - 000301111 _____ C:\Users\gigi\Downloads\5676.pdf
2017-12-21 16:42 - 2017-12-21 16:42 - 000263861 _____ C:\Users\gigi\Downloads\Formulaire procedes reclame 2013.pdf
2017-12-21 16:41 - 2017-12-21 16:41 - 001168038 _____ C:\Users\gigi\Downloads\logo officiel 2017.pdf
2017-12-21 15:20 - 2017-12-21 15:20 - 000019985 _____ C:\Users\gigi\Downloads\facture_n7962.pdf
2017-12-21 14:59 - 2017-12-21 14:59 - 000400456 _____ C:\Users\gigi\Downloads\mandat cdu 05.16.pdf
2017-12-21 14:06 - 2017-12-21 14:06 - 001522449 _____ C:\Users\gigi\Downloads\Journaux lumineux polychromes(4).pdf
2017-12-21 14:00 - 2017-12-21 14:00 - 001522449 _____ C:\Users\gigi\Downloads\Journaux lumineux polychromes(3).pdf
2017-12-21 13:57 - 2017-12-21 13:57 - 000019558 _____ C:\Users\gigi\Downloads\facture_n7759.pdf
2017-12-21 13:30 - 2017-12-21 13:30 - 000040505 _____ C:\Users\gigi\Downloads\QUOTATION 4357 ENSEIGNE BOUTIQUE(4).pdf
2017-12-21 13:05 - 2017-12-21 13:05 - 000045944 _____ C:\ProgramData\dm.update.1513857821.bdinstall.bin
2017-12-20 17:54 - 2017-12-20 17:54 - 000019088 _____ C:\Users\gigi\Downloads\facture_n7953.pdf
2017-12-20 12:17 - 2017-12-20 12:17 - 000042477 _____ C:\Users\gigi\Downloads\ENSEIGNE BOUTIQUE 762.pdf
2017-12-20 12:11 - 2017-12-20 12:11 - 000303514 _____ C:\Users\gigi\Downloads\Visuel A4H et A3 H.pdf
2017-12-20 11:37 - 2017-12-20 11:37 - 000267079 _____ C:\Users\gigi\Downloads\5619b.pdf
2017-12-19 18:46 - 2017-12-19 18:46 - 000019246 _____ C:\Users\gigi\Downloads\facture_n7952.pdf
2017-12-19 18:38 - 2017-12-19 18:38 - 000074458 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4695_001(2).pdf
2017-12-19 18:14 - 2017-12-19 18:14 - 000191883 _____ C:\Users\gigi\Downloads\6164 commande.pdf
2017-12-19 17:31 - 2017-12-19 17:31 - 000015988 _____ C:\Users\gigi\Downloads\facture_n5691(1).pdf
2017-12-19 17:30 - 2017-12-19 17:30 - 000295222 _____ C:\Users\gigi\Downloads\5640b livraison.pdf
2017-12-19 13:27 - 2017-12-19 13:27 - 000016452 _____ C:\Users\gigi\Downloads\facture_n5692.pdf
2017-12-19 09:16 - 2017-12-19 09:17 - 000721430 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4513_001(1)(1).pdf
2017-12-18 15:05 - 2017-12-18 15:06 - 000027478 _____ C:\Users\gigi\Downloads\RIB BNP MUSTANG.pdf
2017-12-18 12:52 - 2017-12-18 12:52 - 000851872 _____ C:\Users\gigi\Downloads\Visuel Infinity(1).pdf
2017-12-18 12:51 - 2017-12-18 12:51 - 000846411 _____ C:\Users\gigi\Downloads\Visuel Diamant(1).pdf
2017-12-18 12:50 - 2017-12-18 12:50 - 001283337 _____ C:\Users\gigi\Downloads\croquis vitrine.pdf
2017-12-18 12:46 - 2017-12-18 12:46 - 000084156 _____ C:\Users\gigi\Downloads\AR C206929 ENSEIGNE BOUTIQUE.pdf
2017-12-18 10:52 - 2017-12-18 10:52 - 000040499 _____ C:\Users\gigi\Downloads\QUOTATION 4369 ENSEIGNE BOUTIQUE.pdf
2017-12-18 09:50 - 2017-12-18 09:50 - 000096337 _____ C:\Users\gigi\Downloads\OP082679 - OP ENSEIGNE BOUTIQUE 12.01.pdf
2017-12-18 08:17 - 2017-12-18 08:17 - 000016155 _____ C:\Users\gigi\Downloads\facture_n5691.pdf
2017-12-15 18:34 - 2017-12-15 18:34 - 020158409 _____ C:\Users\gigi\Desktop\Assurances CHIAOUI CM.pdf
2017-12-15 18:25 - 2017-12-15 18:25 - 001737967 _____ C:\Users\gigi\Desktop\CNI ANDRIOT.pdf
2017-12-15 18:23 - 2017-12-15 18:23 - 024223337 _____ C:\Users\gigi\Desktop\Attest Propriete ANDRIOT.pdf
2017-12-15 18:12 - 2017-12-15 18:12 - 032954655 _____ C:\Users\gigi\Desktop\Releve Hypotheque ANDRIOT.pdf
2017-12-15 15:19 - 2017-12-15 15:19 - 000724575 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4513_001(3).pdf
2017-12-15 15:19 - 2017-12-15 15:19 - 000074189 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4695_001(1).pdf
2017-12-15 15:17 - 2017-12-15 15:18 - 000724575 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4513_001(2).pdf
2017-12-15 15:11 - 2017-12-15 15:11 - 000724575 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4513_001(1).pdf
2017-12-15 15:09 - 2017-12-15 15:09 - 000074458 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4695_001.pdf
2017-12-15 14:25 - 2017-12-15 14:25 - 000269823 _____ C:\Users\gigi\Downloads\5584f commande.pdf
2017-12-15 12:13 - 2017-12-15 12:13 - 000103864 _____ C:\Users\gigi\Downloads\Preuve vrt enseigne boutique.pdf
2017-12-15 12:12 - 2017-12-15 12:13 - 000080167 _____ C:\Users\gigi\Downloads\20171215095514.pdf
2017-12-15 10:59 - 2017-12-15 10:59 - 000308543 _____ C:\Users\gigi\Downloads\5667.pdf
2017-12-15 10:17 - 2017-12-15 10:17 - 000288672 _____ C:\Users\gigi\Downloads\5358b.pdf
2017-12-15 09:31 - 2017-12-15 09:32 - 000289705 _____ C:\Users\gigi\Downloads\5660.pdf
2017-12-15 09:27 - 2017-12-15 09:28 - 000293413 _____ C:\Users\gigi\Downloads\5640b.pdf
2017-12-15 08:13 - 2017-12-15 08:14 - 000019157 _____ C:\Users\gigi\Downloads\facture_n7823.pdf
2017-12-14 15:43 - 2017-12-14 15:43 - 000017400 _____ C:\Users\gigi\Downloads\facture_n5689.pdf
2017-12-14 15:02 - 2017-12-14 15:02 - 000098337 _____ C:\Users\gigi\Downloads\AR C206841 ENSEIGNE BOUTIQUE.pdf
2017-12-14 14:40 - 2017-12-14 14:40 - 000417334 _____ C:\Users\gigi\Downloads\20171214143410261.pdf
2017-12-14 07:39 - 2017-12-14 07:39 - 000281917 _____ C:\Users\gigi\Downloads\5523 livraison enseigne boutique.pdf
2017-12-14 07:27 - 2017-12-14 07:28 - 000333649 _____ C:\Users\gigi\Downloads\projet courrier n°2.pdf
2017-12-13 17:32 - 2017-12-13 17:32 - 000296432 _____ C:\Users\gigi\Downloads\2 x 4 A4H.pdf
2017-12-13 16:20 - 2017-12-13 16:20 - 000293889 _____ C:\Users\gigi\Downloads\5686 facture association tifaki hazi.pdf
2017-12-13 14:24 - 2017-12-13 14:24 - 000036627 _____ C:\Users\gigi\Downloads\ENSEIGNE BOUTIQUE 719(1).pdf
2017-12-13 14:21 - 2017-12-13 14:21 - 000036560 _____ C:\Users\gigi\Downloads\ENSEIGNE BOUTIQUE 718(1).pdf
2017-12-13 13:50 - 2017-12-13 13:50 - 000094519 _____ C:\Users\gigi\Downloads\AR C206730 ENSEIGNE BOUTIQUE.pdf
2017-12-13 12:20 - 2017-12-13 12:20 - 000008185 _____ C:\Users\gigi\Downloads\edition_deb_463688.pdf
2017-12-13 12:13 - 2017-12-13 12:13 - 000040505 _____ C:\Users\gigi\Downloads\QUOTATION 4357 ENSEIGNE BOUTIQUE(3).pdf
2017-12-13 12:09 - 2017-12-13 12:09 - 000040570 _____ C:\Users\gigi\Downloads\QUOTATION 4357 ENSEIGNE BOUTIQUE(2).pdf
2017-12-13 11:47 - 2017-12-13 11:47 - 001365236 _____ C:\Users\gigi\Downloads\Shop Sign Bigger 2100pxl(1).pdf
2017-12-13 11:44 - 2017-12-13 11:44 - 001365236 _____ C:\Users\gigi\Downloads\Shop Sign Bigger 2100pxl.pdf
2017-12-13 11:44 - 2017-12-13 11:44 - 000311067 _____ C:\Users\gigi\Downloads\6157(1).pdf
2017-12-13 11:29 - 2017-12-13 11:29 - 000311067 _____ C:\Users\gigi\Downloads\6157.pdf
2017-12-13 10:52 - 2017-12-13 10:52 - 000266105 _____ C:\Users\gigi\Downloads\5668 facture agence immobiliere nbia(1).pdf
2017-12-13 10:37 - 2017-12-13 10:37 - 000424072 _____ C:\Users\gigi\Downloads\nouveau document 2017-12-12 11.01.08.pdf
2017-12-13 09:17 - 2017-12-13 09:17 - 000013961 _____ C:\Users\gigi\Downloads\Avis SIREN.pdf
2017-12-13 08:56 - 2017-12-13 08:56 - 000297365 _____ C:\Users\gigi\Downloads\5647.pdf
2017-12-13 08:44 - 2017-12-13 08:44 - 000724575 _____ C:\Users\gigi\Downloads\SRVIMP_IMP-SIEGE0_4513_001.pdf
2017-12-13 05:52 - 2017-11-17 05:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-12-13 05:52 - 2017-11-07 17:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-13 05:52 - 2017-11-07 17:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-13 05:52 - 2017-11-04 16:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-13 05:52 - 2017-11-04 16:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-13 05:52 - 2017-11-04 16:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-13 05:52 - 2017-11-04 16:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-13 05:52 - 2017-11-02 17:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-13 05:52 - 2017-11-02 17:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-13 05:52 - 2017-11-02 17:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-13 05:52 - 2017-11-02 17:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-13 05:52 - 2017-11-02 16:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-13 05:52 - 2017-11-02 16:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-13 05:52 - 2017-11-02 16:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-13 05:52 - 2017-11-02 15:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-13 05:52 - 2017-10-17 00:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-12-13 05:52 - 2017-10-16 23:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-12-13 05:52 - 2017-10-12 01:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-12-12 18:17 - 2017-12-12 18:17 - 000016248 _____ C:\Users\gigi\Downloads\facture_n5682.pdf
2017-12-12 18:16 - 2017-12-12 18:16 - 000016346 _____ C:\Users\gigi\Downloads\facture_n5681.pdf
2017-12-12 18:15 - 2017-12-12 18:15 - 000016288 _____ C:\Users\gigi\Downloads\facture_n5680.pdf
2017-12-12 18:13 - 2017-12-12 18:13 - 000016492 _____ C:\Users\gigi\Downloads\facture_n5679.pdf
2017-12-12 18:10 - 2017-12-12 18:10 - 000016521 _____ C:\Users\gigi\Downloads\facture_n5678.pdf
2017-12-12 17:26 - 2017-12-12 17:26 - 000177270 _____ C:\Users\gigi\Downloads\00250_411110_10170800_RLC68628_PRL130ML_20171207_170238.pdf
2017-12-12 16:43 - 2017-12-12 16:43 - 000258357 _____ C:\Users\gigi\Downloads\6159.pdf
2017-12-12 15:44 - 2017-12-12 15:44 - 000424072 _____ C:\Users\gigi\Downloads\Bon pour accord 5646.pdf
2017-12-12 15:44 - 2017-12-12 15:44 - 000035055 _____ C:\Users\gigi\Downloads\QUOTATION 4357 ENSEIGNE BOUTIQUE(1).pdf
2017-12-12 15:42 - 2017-12-12 15:42 - 000046099 _____ C:\Users\gigi\Downloads\BL-porte-affiche_b&b-villette.pdf
2017-12-12 07:14 - 2017-12-12 07:14 - 000035055 _____ C:\Users\gigi\Downloads\QUOTATION 4357 ENSEIGNE BOUTIQUE.pdf
2017-12-11 13:20 - 2017-12-11 13:20 - 000255998 _____ C:\Users\gigi\Downloads\6158b.pdf
2017-12-11 13:19 - 2017-12-11 13:19 - 000255975 _____ C:\Users\gigi\Downloads\6158.pdf
2017-12-11 12:40 - 2017-12-11 12:40 - 000081023 _____ C:\Users\gigi\Downloads\AR C206379 ENSEIGNE BOUTIQUE.pdf
2017-12-11 11:10 - 2017-12-11 11:10 - 000367301 _____ C:\Users\gigi\Downloads\5377 livraison(1).pdf
2017-12-11 11:09 - 2017-12-11 11:09 - 000367301 _____ C:\Users\gigi\Downloads\5377 livraison.pdf
2017-12-11 10:59 - 2017-12-11 10:59 - 000081050 _____ C:\Users\gigi\Downloads\AR C206257 ENSEIGNE BOUTIQUE.pdf
2017-12-11 10:56 - 2017-12-11 10:56 - 000066935 _____ C:\Users\gigi\Downloads\AR ENSEIGNE BOUTIQUE 20.07.pdf
2017-12-11 10:45 - 2017-12-11 10:45 - 000018912 _____ C:\Users\gigi\Downloads\facture_n7919(1).pdf
2017-12-11 10:08 - 2017-12-11 10:08 - 000019077 _____ C:\Users\gigi\Downloads\facture_n7919.pdf
2017-12-11 09:40 - 2017-12-11 09:40 - 000019334 _____ C:\Users\gigi\Downloads\facture_n7038.pdf
2017-12-11 08:08 - 2017-12-11 08:08 - 000016270 _____ C:\Users\gigi\Downloads\facture_n5677.pdf
2017-12-11 07:49 - 2017-12-11 07:49 - 000018818 _____ C:\Users\gigi\Downloads\facture_n7925(1).pdf
2017-12-11 07:48 - 2017-12-11 07:48 - 000018818 _____ C:\Users\gigi\Downloads\facture_n7925.pdf
2017-12-08 17:18 - 2017-12-08 17:18 - 000259730 _____ C:\Users\gigi\Downloads\7922 facture sarl etoile des neiges.pdf
2017-12-07 14:13 - 2017-12-07 14:13 - 002628218 _____ C:\Users\gigi\Downloads\black friday 2017 psd.pdf
2017-12-07 14:13 - 2017-12-07 14:13 - 002628218 _____ C:\Users\gigi\Downloads\black friday 2017 psd(1).pdf
2017-12-07 12:48 - 2017-12-07 12:48 - 000016561 _____ C:\Users\gigi\Downloads\facture_n5676.pdf
2017-12-07 07:49 - 2017-12-07 07:49 - 000119328 _____ C:\Users\gigi\Downloads\Q-1711-2101W(ENSEIGNE BOUTIQUE - CHRISTOPHE BOUET)(1).pdf
2017-12-06 14:43 - 2017-12-06 14:43 - 000267449 _____ C:\Users\gigi\Downloads\5584f.pdf
2017-12-06 09:11 - 2017-12-06 09:11 - 000106746 _____ C:\Users\gigi\Downloads\11 Novembre 2017 Facture Enseigne Boutique.pdf
2017-12-06 08:56 - 2017-12-06 08:56 - 000016304 _____ C:\Users\gigi\Downloads\facture_n5675.pdf
2017-12-06 08:53 - 2017-12-06 08:53 - 000016529 _____ C:\Users\gigi\Downloads\facture_n5674.pdf

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-01-05 16:59 - 2017-01-04 15:01 - 000000000 ____D C:\Users\gigi\AppData\LocalLow\Mozilla
2018-01-05 16:50 - 2009-07-14 05:45 - 000024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-01-05 16:50 - 2009-07-14 05:45 - 000024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-01-05 16:42 - 2015-03-26 10:29 - 003778080 _____ C:\IFRToolLog.txt
2018-01-05 16:40 - 2016-09-06 12:04 - 000000000 ___RD C:\Users\gigi\iCloudDrive
2018-01-05 16:38 - 2012-06-26 11:14 - 000000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2018-01-05 16:38 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-01-05 16:37 - 2014-11-23 19:59 - 000065536 _____ C:\Windows\system32\Ikeext.etl
2018-01-05 16:37 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-05 16:33 - 2015-05-18 12:46 - 000000000 ____D C:\Users\gigi\AppData\Local\CrashDumps
2018-01-05 16:24 - 2017-03-07 21:10 - 000054343 _____ C:\bdlog.txt
2018-01-05 16:23 - 2015-03-23 15:51 - 000000000 ____D C:\Windows\pss
2018-01-05 16:20 - 2012-12-01 08:42 - 000883872 _____ C:\Users\gigi\AppData\Local\GDIPFONTCACHEV1.DAT
2018-01-05 16:20 - 2009-07-14 05:45 - 005022576 _____ C:\Windows\system32\FNTCACHE.DAT
2018-01-05 16:11 - 2013-12-14 17:34 - 000000000 ____D C:\Program Files\Autodesk
2018-01-05 16:11 - 2013-12-14 17:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2018-01-05 16:11 - 2013-12-14 16:57 - 000000000 ____D C:\Users\gigi\AppData\Roaming\Autodesk
2018-01-05 16:11 - 2013-12-14 16:57 - 000000000 ____D C:\ProgramData\Autodesk
2018-01-05 16:03 - 2017-01-04 14:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-05 15:36 - 2016-03-15 11:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-01-05 13:56 - 2016-09-06 12:05 - 000000000 ____D C:\Users\gigi\AppData\Local\8E505E61-F946-4985-B543-D9545C22888B.aplzod
2018-01-05 13:22 - 2016-11-04 14:32 - 000000000 ____D C:\ProgramData\Foxit Software
2018-01-04 19:19 - 2012-06-26 11:14 - 000000832 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2018-01-02 17:58 - 2015-08-04 05:54 - 000000000 ____D C:\Users\gigi\Documents\Fichiers Outlook
2018-01-01 21:29 - 2017-06-23 12:55 - 000000000 ____D C:\Users\gigi\Documents\iTunes
2018-01-01 20:06 - 2015-02-20 09:02 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2018-01-01 20:04 - 2015-02-20 09:03 - 000000000 ____D C:\Program Files\iTunes
2018-01-01 20:04 - 2015-02-20 09:03 - 000000000 ____D C:\Program Files\iPod
2018-01-01 19:41 - 2015-02-20 09:04 - 000000000 ____D C:\Users\gigi\AppData\Local\Apple Computer
2017-12-18 11:39 - 2015-04-13 20:03 - 000000000 ____D C:\Users\gigi\Documents\Scan
2017-12-15 07:07 - 2012-06-08 15:40 - 000750446 _____ C:\Windows\system32\perfh00C.dat
2017-12-15 07:07 - 2012-06-08 15:40 - 000151204 _____ C:\Windows\system32\perfc00C.dat
2017-12-15 07:07 - 2009-07-14 06:13 - 001677690 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-14 18:03 - 2015-06-12 10:36 - 000002197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-14 07:14 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-14 07:14 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-13 18:35 - 2013-09-02 17:49 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-12-13 18:31 - 2014-05-06 19:44 - 000000000 ____D C:\Windows\system32\MRT
2017-12-13 18:26 - 2017-10-11 20:04 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-12-13 18:26 - 2014-05-06 19:44 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-13 08:06 - 2015-04-28 12:46 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-12-13 08:06 - 2012-03-07 07:59 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-12-13 08:06 - 2012-03-07 07:59 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-13 08:06 - 2012-03-07 07:59 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-12-13 08:06 - 2012-03-07 07:59 - 000000000 ____D C:\Windows\system32\Macromed
2017-12-11 19:38 - 2009-07-14 03:34 - 000000610 _____ C:\Windows\win.ini

==================== Fichiers à la racine de certains dossiers =======

2013-06-26 13:40 - 2013-06-26 13:40 - 000129536 _____ () C:\Users\Public\AlexaNSISPlugin.628.dll
2013-01-23 07:42 - 2013-01-23 07:42 - 000000288 _____ () C:\Users\gigi\AppData\Roaming\.backup.dm

Certains fichiers dans TEMP:
====================
2018-01-05 16:12 - 2013-01-18 23:51 - 000015752 _____ (Autodesk, Inc.) C:\Users\gigi\AppData\Local\Temp\AcDeltree.exe
2018-01-05 16:10 - 2018-01-05 16:10 - 002016632 _____ (Flexera Software LLC) C:\Users\gigi\AppData\Local\Temp\FNP_ACT_InstallerCA.dll

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2016-01-03 19:27

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité