Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version:10-01-2015 01
Exécuté par kevin (administrateur) sur KEVIN-PC (16-01-2016 19:31:25)
Exécuté depuis C:\Users\kevin\Desktop
Profils chargés: kevin (Profils disponibles: kevin)
Platform: Windows 7 Home Premium (X64) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: Chrome)
Mode d'amorçage: Safe Mode (with Networking)
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Microsoft Corporation) C:\Windows\System32\userinit.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312 2009-08-15] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2009-10-21] (IDT, Inc.)
HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872 2009-08-25] ()
HKLM-x32\...\Run: [Corel File Shell Monitor] => C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [15544 2009-08-25] ()
HKLM-x32\...\Run: [HPCam_Menu] => c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [QlbCtrl.exe] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2009-11-24] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
HKLM-x32\...\Run: [AppleSyncNotifier] => C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2012-02-23] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-03-24] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [F-Secure Manager] => C:\Program Files (x86)\SFR\Pack Sécurité\apps\ComputerSecurity\Common\FSM32.EXE [311976 2012-03-15] (F-Secure Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [TkBellExe] => c:\program files (x86)\real\realplayer\Update\realsched.exe [295512 2013-07-06] (RealNetworks, Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-08-20] (Hewlett-Packard Company)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\Run: [HPADVISOR] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1938624 2014-10-21] (Valve Corporation)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\Run: [Facebook Update] => C:\Users\kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-08-12] (Facebook Inc.)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\Run: [HP Photosmart 5510 series (NET)] => C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe [2676584 2011-09-16] (Hewlett-Packard Co.)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\Run: [SkyDrive] => C:\Users\kevin\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [277672 2014-10-10] (Microsoft Corporation)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\Run: [DAEMON Tools Lite] => C:\Users\kevin\Downloads\DT\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\Run: [Gestionnaire Antidote.exe] => C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe [542136 2008-12-03] (Druide informatique inc.)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\RunOnce: [Uninstall C:\Users\kevin\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_1\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\kevin\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_1\amd64"
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\RunOnce: [Chrome Cleanup Tool] => C:\Users\kevin\AppData\Local\Temp\6F99.exe [4481864 2016-01-16] (Google) <===== ATTENTION
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_167_ActiveX.exe [854704 2014-09-23] (Adobe Systems Incorporated)
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\RunOnce: [Report] => C:\AdwCleaner\AdwCleaner[C1].txt [39889 2016-01-16] ()
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: G - G:\AutoRun.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {02e007cf-e90c-11df-ac52-002713d0ad68} - G:\SFR.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {02e007ee-e90c-11df-ac52-002713d0ad68} - G:\SFR.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {02e007f1-e90c-11df-ac52-002713d0ad68} - G:\SFR.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {78f4881d-a496-11e0-bb43-002713d0ad68} - G:\SFR_Setup.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {81b99461-6fa6-11e3-94bf-002713d0ad68} - G:\SetupWi-Fi.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {81b99469-6fa6-11e3-94bf-002713d0ad68} - G:\SetupWi-Fi.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {88c83153-acfe-11df-ba7d-002314544afc} - G:\AutoRun.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {944484ba-707d-11e3-a16e-002713d0ad68} - G:\SetupWi-Fi.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {b3de31ac-a919-11df-962e-002314544afc} - G:\AutoRun.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {c1267411-0606-11e0-98db-002314544afc} - G:\AutoRunCardDetector.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {c1267474-0606-11e0-98db-00f1d000f1d0} - G:\AutoRunCardDetector.exe
HKU\S-1-5-21-3187615589-208416031-95359937-1000\...\MountPoints2: {fb8dc338-ab1e-11df-a217-002713d0ad68} - G:\AutoRun.exe
HKU\S-1-5-18\...\Run: [Gestionnaire Antidote.exe] => C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe [542136 2008-12-03] (Druide informatique inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Device Monitor 3.lnk [2012-05-23]
ShortcutTarget: Device Monitor 3.lnk -> C:\Program Files (x86)\PIXELA\Everio MediaBrowser 3\MBCameraMonitor.exe (PIXELA CORPORATION)
Startup: C:\Users\kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2013-09-17]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VDownloader.lnk [2013-03-31]
ShortcutTarget: VDownloader.lnk -> C:\Program Files (x86)\VDownloader\VDownloader.exe (Vitzo)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1309C347-6535-41C8-91CF-B1035CB57D20}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{452F8C67-B4BD-4C13-AFE4-CB21BB4E0F93}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{494D7936-D331-4508-9A6E-B46236A50CF1}: [DhcpNameServer] 172.16.1.1
Tcpip\..\Interfaces\{8966B9CB-162E-48C3-91A3-5945BB7A20B0}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{AC7AFC3E-CA0C-4362-977D-6C7C630ED0A9}: [DhcpNameServer] 172.20.2.39 172.20.2.10
Tcpip\..\Interfaces\{D1632FF4-3B53-4FFA-B786-864C7B3362A3}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-3187615589-208416031-95359937-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr/
URLSearchHook: HKU\S-1-5-21-3187615589-208416031-95359937-1000 - (Pas de nom) - {338c5d66-6b92-40a7-a216-9830d2e54103} - Pas de fichier
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = 
SearchScopes: HKLM -> {FE84A2FC-8D0B-46EA-852A-9FC657B1EF15} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {3E7B7643-5EFF-EE5C-4AEB-2AB43F1915B4} URL = 
SearchScopes: HKLM-x32 -> {FE84A2FC-8D0B-46EA-852A-9FC657B1EF15} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKU\S-1-5-21-3187615589-208416031-95359937-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = 
SearchScopes: HKU\S-1-5-21-3187615589-208416031-95359937-1000 -> {3E7B7643-5EFF-EE5C-4AEB-2AB43F1915B4} URL = 
SearchScopes: HKU\S-1-5-21-3187615589-208416031-95359937-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKU\S-1-5-21-3187615589-208416031-95359937-1000 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = 
SearchScopes: HKU\S-1-5-21-3187615589-208416031-95359937-1000 -> {FE84A2FC-8D0B-46EA-852A-9FC657B1EF15} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-04-16] (RealDownloader)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-05] (Oracle Corporation)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Browsing Protection Class -> {C6867EB7-8350-4856-877F-93CF8AE3DC9C} -> C:\Program Files (x86)\SFR\Pack Sécurité\apps\OnlineSafety\BPP\iescript\BaseLitmus.dll [2012-08-10] (F-Secure Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-07-07] (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-05] (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-07-07] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files (x86)\SFR\Pack Sécurité\apps\OnlineSafety\BPP\iescript\BaseLitmus.dll [2012-08-10] (F-Secure Corporation)
Toolbar: HKU\S-1-5-21-3187615589-208416031-95359937-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Pas de fichier
Toolbar: HKU\S-1-5-21-3187615589-208416031-95359937-1000 -> Pas de nom - {338C5D66-6B92-40A7-A216-9830D2E54103} -  Pas de fichier
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} hxxp://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install3.5/installer.exe
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

FireFox:
========
FF ProfilePath: C:\Users\kevin\AppData\Roaming\Mozilla\Firefox\Profiles\tgeqm1we.default
FF NetworkProxy: "no_proxies_on", "*.local"
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll [2014-09-11] ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\Windows\system32\npDeployJava1.dll [2012-07-02] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll [2014-09-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-20] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-07-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-07-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation)
FF Plugin-x32: @qq.com/npchrome -> C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll [Pas de fichier]
FF Plugin-x32: @qq.com/npqscall -> C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll [Pas de fichier]
FF Plugin-x32: @real.com/nppl3260;version=16.0.2.32 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [2013-07-06] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.2 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-04-16] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.2 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-04-16] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.2 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-04-16] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-10-01] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-10-01] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.2.32 -> c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [2013-07-06] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-04-16] (RealDownloader)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2013-02-15] (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll [2014-10-26] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll [2014-10-26] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3187615589-208416031-95359937-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\kevin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-3187615589-208416031-95359937-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\kevin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2011-02-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3187615589-208416031-95359937-1000: hp.com/HPDetect -> C:\Users\kevin\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)
FF Plugin HKU\S-1-5-21-3187615589-208416031-95359937-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-07-03] ()
FF Extension: Pas de nom - C:\Users\kevin\AppData\Roaming\Mozilla\Firefox\Profiles\tgeqm1we.default\extensions\OneClickDownload@OneClickDownload.com [non trouvé(e)]
FF Extension: VideoFileDownload - Download YouTube Videos - C:\Users\kevin\AppData\Roaming\Mozilla\Firefox\Profiles\tgeqm1we.default\extensions\plugin@videofiledownload.com [2012-07-19] [non signé]
FF Extension: Browsing Protection - C:\Program Files (x86)\SFR\Pack Sécurité\apps\OnlineSafety\BPP\litmus-ff@f-secure.com [2012-09-05] [non signé]
FF Extension: Pas de nom - C:\Program Files\Web Assistant\Firefox [non trouvé(e)]
FF Extension: Pas de nom - C:\Users\kevin\AppData\Roaming\Mozilla\Firefox\Profiles\tgeqm1we.default\extensions\ascsurfingprotection@iobit.com [non trouvé(e)]
FF Extension: Pas de nom - C:\Users\kevin\AppData\Roaming\Mozilla\Firefox\Profiles\tgeqm1we.default\extensions\quick_start@gmail.com [non trouvé(e)]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-07-06] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2014-01-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [litmus-ff@f-secure.com] - C:\Program Files (x86)\SFR\Pack Sécurité\apps\OnlineSafety\BPP\litmus-ff@f-secure.com
FF HKLM-x32\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

Chrome: 
=======
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\kevin\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.6.703\_platform_specific\win_x86\widevinecdmadapter.dll => Pas de fichier
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\pdf.dll => Pas de fichier
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QQ2013 Firefox Plugin) - C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll => Pas de fichier
CHR Plugin: (QQ2013 Chrome Plugin for Chrome V23.0.1271.64 or latest version) - C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll => Pas de fichier
CHR Plugin: (Tencent SSO Platform) - C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.2.1\Bin\npSSOAxCtrlForPTLogin.dll => Pas de fichier
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java Deployment Toolkit 7.0.600.19) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U60) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RocketLife Secure Plug-In Layer) - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
CHR Plugin: (Unity Player) - C:\Users\kevin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\kevin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (HPDetect) - C:\Users\kevin\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll (HP)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
CHR Profile: C:\Users\kevin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (RealDownloader) - C:\Users\kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-09-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-16]
CHR HKLM\...\Chrome\Extension: [bbjciahceamgodcoidkjpchnokgfpphh] - C:\Users\kevin\AppData\Local\funmoods.crx <non trouvé(e)>
CHR HKLM\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\kevin\AppData\Local\funmoods-speeddial.crx <non trouvé(e)>
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx <non trouvé(e)>
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-04-16]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-09-17] (Adobe Systems) [Fichier non signé]
S2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe [89600 2009-03-03] (Andrea Electronics Corporation)
S2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Fichier non signé]
S3 FSDFWD; C:\Program Files (x86)\SFR\Pack Sécurité\apps\ComputerSecurity\FWES\Program\fsdfwd.exe [914088 2012-03-15] (F-Secure Corporation)
S2 fshoster; C:\Program Files (x86)\SFR\Pack Sécurité\fshoster32.exe [188400 2013-01-18] (F-Secure Corporation)
S3 FSMA; C:\Program Files (x86)\SFR\Pack Sécurité\apps\ComputerSecurity\Common\FSMA32.EXE [213672 2012-03-15] (F-Secure Corporation)
S2 FSORSPClient; C:\Program Files (x86)\SFR\Pack Sécurité\apps\CCF_Reputation\fsorsp.exe [60352 2013-06-25] (F-Secure Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Fichier non signé]
S2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-08-20] (Hewlett-Packard Company) [Fichier non signé]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2152768 2014-04-08] (IObit)
S2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
S2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
S2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\STacSV64.exe [240640 2009-10-21] (IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310728 2011-09-30] ()
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-04-05] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 F-Secure Gatekeeper; C:\Program Files (x86)\SFR\Pack Sécurité\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [203304 2014-06-09] (F-Secure Corporation)
S1 F-Secure HIPS; C:\Program Files (x86)\SFR\Pack Sécurité\apps\ComputerSecurity\HIPS\drivers\fshs.sys [69960 2014-06-23] (F-Secure Corporation)
U5 fsbts; C:\Windows\System32\Drivers\fsbts.sys [56016 2012-08-30] ()
S3 fsccsys1346840192; C:\Windows\System32\drivers\fsccsys.sys [58424 2012-08-10] (F-Secure Corporation)
S1 FSES; C:\Windows\System32\drivers\fses.sys [46024 2012-03-15] (F-Secure Corporation)
S1 FSFW; C:\Windows\System32\drivers\fsdfw.sys [95112 2012-03-15] (F-Secure Corporation)
S1 fsvista; C:\Program Files (x86)\SFR\Pack Sécurité\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [15016 2012-03-15] ()
S3 GTUHSBUS; C:\Windows\System32\DRIVERS\gtuhsbus.sys [88576 2009-05-29] (Option N.V.) [Fichier non signé]
S3 GTUHSNDISIPXP; C:\Windows\System32\DRIVERS\gtuhs51.sys [129536 2009-05-29] (Option N.V.) [Fichier non signé]
S3 GTUHSSER; C:\Windows\System32\DRIVERS\gtuhsser.sys [10496 2009-05-29] (Option N.V.)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2011-09-30] ()
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2011-05-10] (Apple Inc.) [Fichier non signé]
S3 btwaudio; system32\drivers\btwaudio.sys [X]
S3 btwavdt; system32\DRIVERS\btwavdt.sys [X]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [X]
U4 eabfiltr; pas de ImagePath
U5 fsbts; C:\Windows\SysWOW64\Drivers\fsbts.sys [42672 2012-09-05] ()
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-01-16 19:23 - 2016-01-16 19:25 - 00052858 _____ C:\Users\kevin\Desktop\Addition.txt
2016-01-16 19:20 - 2016-01-16 19:31 - 00030223 _____ C:\Users\kevin\Desktop\FRST.txt
2016-01-16 19:18 - 2016-01-16 19:18 - 00000079 _____ C:\Users\kevin\Downloads\poiuyt.txt
2016-01-16 19:06 - 2016-01-16 19:31 - 00000000 ____D C:\FRST
2016-01-16 19:06 - 2016-01-16 19:06 - 02370560 _____ (Farbar) C:\Users\kevin\Desktop\FRST64.exe
2016-01-16 19:03 - 2016-01-16 18:52 - 00039889 _____ C:\Users\kevin\Downloads\AdwCleaner[C1].txt
2016-01-16 19:03 - 2016-01-16 18:50 - 00037953 _____ C:\Users\kevin\Downloads\AdwCleaner[S1].txt
2016-01-16 18:49 - 2016-01-16 18:51 - 00000000 ____D C:\AdwCleaner
2016-01-16 18:48 - 2016-01-16 18:49 - 01754112 _____ C:\Users\kevin\Downloads\adwcleaner_5.029.exe
2016-01-16 18:21 - 2016-01-16 18:21 - 00170451 _____ C:\Users\kevin\Desktop\ZHPDiag.txt
2016-01-16 18:05 - 2016-01-16 18:05 - 02077392 _____ (Microsoft Corporation) C:\Users\kevin\Downloads\IE11-Windows6.1.exe
2016-01-16 17:59 - 2016-01-16 18:01 - 00000000 ____D C:\Users\kevin\AppData\Roaming\ZHP
2016-01-16 17:59 - 2016-01-16 18:00 - 00000782 _____ C:\Users\kevin\Desktop\ZHPDiag.lnk
2016-01-16 17:59 - 2016-01-16 17:59 - 02080768 _____ C:\Users\kevin\ZHPDiag3.exe
2016-01-16 17:58 - 2016-01-16 17:59 - 00000326 _____ C:\Windows\Tasks\Chrome Cleanup Tool logs upload retry.job
2016-01-16 17:58 - 2016-01-16 17:58 - 01901056 _____ C:\Users\kevin\Desktop\ZHPDiag3.exe
2016-01-16 17:58 - 2016-01-16 17:58 - 00000318 _____ C:\Windows\Tasks\Chrome Cleanup Tool post reboot run.job
2016-01-16 17:34 - 2016-01-16 17:34 - 00000000 ____D C:\ProgramData\Easybits Magic Desktop for HP
2016-01-16 17:13 - 2016-01-16 17:13 - 00000000 _____ C:\Users\kevin\AppData\Local\{F395B3E6-8D8C-4E52-8E53-83F69D117F4D}

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-01-16 19:30 - 2014-10-29 20:50 - 01350186 _____ C:\Windows\ntbtlog.txt
2016-01-16 19:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-16 18:59 - 2010-01-09 07:58 - 05799966 _____ C:\Windows\system32\perfh00C.dat
2016-01-16 18:59 - 2010-01-09 07:58 - 01850232 _____ C:\Windows\system32\perfc00C.dat
2016-01-16 18:59 - 2009-07-14 06:13 - 00006752 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-16 17:59 - 2010-07-03 19:29 - 00000000 ____D C:\Users\kevin
2016-01-16 17:57 - 2010-07-07 21:34 - 00000000 ____D C:\Users\kevin\AppData\Local\Google
2016-01-16 17:34 - 2014-09-24 17:12 - 00000376 _____ C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_kevin.job
2016-01-16 17:34 - 2010-11-27 16:00 - 00000000 ____D C:\Program Files (x86)\Steam
2016-01-16 17:34 - 2010-01-09 01:28 - 00009988 _____ C:\Windows\SysWOW64\ezdigsgn.dat
2016-01-16 17:33 - 2012-03-31 01:18 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cd0ed3bb2a3d09.job
2016-01-16 17:21 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-16 17:13 - 2012-10-13 03:42 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

==================== Fichiers à la racine de certains dossiers =======

2014-11-18 23:43 - 2014-11-18 23:43 - 6000640 _____ () C:\Program Files (x86)\GUT646E.tmp
2010-09-18 23:08 - 2010-07-22 22:40 - 2944904 _____ (Ask) C:\Program Files (x86)\Common Files\AskToolbarInstaller.exe
2012-02-11 00:32 - 2010-01-26 10:11 - 0444283 _____ () C:\Program Files (x86)\Common Files\WinPcapNmap.exe
2012-04-18 21:14 - 2012-06-04 15:09 - 0000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt
2014-02-16 12:09 - 2014-02-16 22:07 - 0000098 _____ () C:\Users\kevin\AppData\Roaming\MPUI.ini
2013-03-01 17:18 - 2013-03-16 22:00 - 0000472 _____ () C:\Users\kevin\AppData\Roaming\Poladroid prefs.plist
2010-07-16 10:05 - 2013-11-13 13:05 - 0001896 _____ () C:\Users\kevin\AppData\Roaming\wklnhst.dat
2010-07-03 19:40 - 2010-07-03 19:40 - 0000000 _____ () C:\Users\kevin\AppData\Local\AtStart.txt
2010-10-12 21:29 - 2013-04-07 23:10 - 0011264 _____ () C:\Users\kevin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-07-03 19:40 - 2010-07-03 19:40 - 0000000 _____ () C:\Users\kevin\AppData\Local\DSwitch.txt
2010-07-03 19:40 - 2010-07-03 19:40 - 0000000 _____ () C:\Users\kevin\AppData\Local\QSwitch.txt
2014-04-08 11:26 - 2014-04-08 11:26 - 0007606 _____ () C:\Users\kevin\AppData\Local\Resmon.ResmonCfg
2010-07-17 16:21 - 2010-07-17 16:21 - 0403048 _____ () C:\Users\kevin\AppData\Local\tmpMITSUBISHIATLANTIS.JPG
2010-07-17 16:21 - 2010-07-17 16:21 - 0309471 _____ () C:\Users\kevin\AppData\Local\tmpMOUNTAIN CHEYENNE 27.0
2010-07-17 16:21 - 2010-07-17 16:21 - 0224882 _____ () C:\Users\kevin\AppData\Local\tmpMOUNTAIN CHEYENNE 27.1
2010-07-17 16:21 - 2010-07-17 16:21 - 0224460 _____ () C:\Users\kevin\AppData\Local\tmpMOUNTAIN CHEYENNE 27.2
2010-07-17 16:21 - 2010-07-17 16:21 - 0230466 _____ () C:\Users\kevin\AppData\Local\tmpMOUNTAIN CHEYENNE 27.3
2010-07-17 16:21 - 2010-07-17 16:21 - 0309471 _____ () C:\Users\kevin\AppData\Local\tmpMOUNTAIN CHEYENNE 27.JPG
2010-07-22 12:58 - 2010-07-22 12:58 - 0721738 _____ () C:\Users\kevin\AppData\Local\tmpXCHEYENNE MOUNTAIN 28.JPG
2011-10-20 09:33 - 2011-10-20 09:33 - 0000000 _____ () C:\Users\kevin\AppData\Local\{008C5DF0-D634-4856-AAFB-7344908A4950}
2014-11-10 18:16 - 2014-11-10 18:16 - 0000000 _____ () C:\Users\kevin\AppData\Local\{013254A4-6F0B-4123-9C13-2A837EBFE8A1}
2011-05-18 06:12 - 2011-05-18 06:12 - 0000000 _____ () C:\Users\kevin\AppData\Local\{030BB866-B17A-4AF4-A481-318F0EDBDEDC}
2011-05-14 12:50 - 2011-05-14 12:50 - 0000000 _____ () C:\Users\kevin\AppData\Local\{03C90D27-E9F7-4C74-90D8-62E1D180BA6E}
2011-09-14 12:15 - 2011-09-14 12:15 - 0000000 _____ () C:\Users\kevin\AppData\Local\{055EC9C0-6AD5-47FA-B690-73F14E9E4844}
2014-09-19 20:13 - 2014-09-19 20:13 - 0000000 _____ () C:\Users\kevin\AppData\Local\{05DD15BA-5972-4592-848C-3934DC434904}
2011-09-12 12:17 - 2011-09-12 12:17 - 0000000 _____ () C:\Users\kevin\AppData\Local\{06F34497-E2B0-44C3-AB8A-58FE6EB8D9E2}
2014-10-07 18:02 - 2014-10-07 18:02 - 0000000 _____ () C:\Users\kevin\AppData\Local\{09F20B12-421D-421B-90C3-08A3FD13B563}
2011-09-20 12:05 - 2011-09-20 12:05 - 0000000 _____ () C:\Users\kevin\AppData\Local\{0A8CF462-BC96-449C-BE99-44E72F915FE3}
2011-06-07 07:21 - 2011-06-07 07:21 - 0000000 _____ () C:\Users\kevin\AppData\Local\{10A2B04A-853D-4E13-95FC-43A8845012E1}
2011-10-31 08:07 - 2011-10-31 08:07 - 0000000 _____ () C:\Users\kevin\AppData\Local\{1603FC5B-8D3C-4C50-91E9-6D8D0B1F8E62}
2011-07-22 12:01 - 2011-07-22 12:01 - 0000000 _____ () C:\Users\kevin\AppData\Local\{1A2C14B2-5141-44D2-A40E-E0FCB4CF2D67}
2011-11-09 20:20 - 2011-11-09 20:20 - 0000000 _____ () C:\Users\kevin\AppData\Local\{1BFDA295-509F-4DEC-B78E-CC4F7ABBC804}
2011-10-04 20:00 - 2011-10-04 20:00 - 0000000 _____ () C:\Users\kevin\AppData\Local\{202CFF53-B0D4-4EB6-BAE8-5786E5069C7E}
2011-08-08 13:47 - 2011-08-08 13:47 - 0000000 _____ () C:\Users\kevin\AppData\Local\{2060F740-DFD6-45E4-BACB-F67533FF50D0}
2014-09-11 18:06 - 2014-09-11 18:06 - 0000000 _____ () C:\Users\kevin\AppData\Local\{222D2E13-6022-4EA7-BB61-3F0C66403DEB}
2011-08-15 09:41 - 2011-08-15 09:41 - 0000000 _____ () C:\Users\kevin\AppData\Local\{22655093-228F-4723-8C86-CEC79482AEE3}
2011-10-10 19:20 - 2011-10-10 19:20 - 0000000 _____ () C:\Users\kevin\AppData\Local\{22848935-D59E-404C-BA25-84CFC3DAAB21}
2011-07-06 15:37 - 2011-07-06 15:37 - 0000000 _____ () C:\Users\kevin\AppData\Local\{271C5013-5704-4BC3-A064-EFBAA2F27BAB}
2011-07-15 20:30 - 2011-07-15 20:30 - 0000000 _____ () C:\Users\kevin\AppData\Local\{288ECCA2-4085-4CA1-B869-0F20DB55B35D}
2011-10-07 15:42 - 2011-10-07 15:42 - 0000000 _____ () C:\Users\kevin\AppData\Local\{2A51F9C5-3D80-4968-A041-90B14E9C72D1}
2014-10-05 00:11 - 2014-10-05 00:11 - 0000000 _____ () C:\Users\kevin\AppData\Local\{2CDB12D9-6F9B-425E-96D3-D0F40BF397D3}
2014-10-06 16:07 - 2014-10-06 16:07 - 0000000 _____ () C:\Users\kevin\AppData\Local\{30645D55-9B4D-4F7D-BADB-7D8B005F581B}
2011-09-15 06:50 - 2011-09-15 06:50 - 0000000 _____ () C:\Users\kevin\AppData\Local\{30F05B3B-D054-4750-85E6-5649299A9426}
2011-10-23 23:58 - 2011-10-23 23:58 - 0000000 _____ () C:\Users\kevin\AppData\Local\{342E872E-9F2D-4617-86E4-F1941E7947AA}
2011-10-09 07:15 - 2011-10-09 07:15 - 0000000 _____ () C:\Users\kevin\AppData\Local\{34F45101-F1B1-4145-97F7-D11802092EBB}
2011-10-24 20:43 - 2011-10-24 20:43 - 0000000 _____ () C:\Users\kevin\AppData\Local\{366C069D-BE17-45D3-8A20-5FD9D4357F22}
2011-09-07 08:30 - 2011-09-07 08:30 - 0000000 _____ () C:\Users\kevin\AppData\Local\{36FC744F-3E8E-4D68-ACEA-F66079C14776}
2014-09-08 06:43 - 2014-09-08 06:43 - 0000000 _____ () C:\Users\kevin\AppData\Local\{37F7304C-2B9E-47E1-B1D5-2832D239C024}
2011-07-06 14:57 - 2011-07-06 14:57 - 0000000 _____ () C:\Users\kevin\AppData\Local\{39AC717E-3888-4BF3-8B06-EB48740D2675}
2011-10-29 13:12 - 2011-10-29 13:12 - 0000000 _____ () C:\Users\kevin\AppData\Local\{3D7C9294-8AAD-42A0-8B97-175C450EFBD9}
2011-10-31 13:14 - 2011-10-31 13:14 - 0000000 _____ () C:\Users\kevin\AppData\Local\{3D86C352-FBA8-4A70-91C3-E6B7FA3848BF}
2011-10-21 20:32 - 2011-10-21 20:32 - 0000000 _____ () C:\Users\kevin\AppData\Local\{3DAD0E09-3B46-4F13-A963-6AB221004F95}
2011-06-13 08:56 - 2011-06-13 08:56 - 0000000 _____ () C:\Users\kevin\AppData\Local\{3F4D47F3-E22C-4817-9825-6ADDCE07D4CA}
2011-10-07 06:44 - 2011-10-07 06:44 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4040656B-2D54-46DB-86E7-5EA2E7778BB3}
2011-07-16 10:14 - 2011-07-16 10:14 - 0000000 _____ () C:\Users\kevin\AppData\Local\{43C18884-30BA-42CD-A7F7-F15284C78048}
2011-07-16 08:10 - 2011-07-16 08:10 - 0000000 _____ () C:\Users\kevin\AppData\Local\{43E7B40E-0FBA-4817-933E-70EECD6FD62D}
2011-09-13 12:05 - 2011-09-13 12:05 - 0000000 _____ () C:\Users\kevin\AppData\Local\{445BF153-0F9B-436D-8971-D5D5A877CD3F}
2011-11-06 14:41 - 2011-11-06 14:41 - 0000000 _____ () C:\Users\kevin\AppData\Local\{46E9D310-8C28-4C1B-AB63-CD16265DCE0B}
2011-09-22 12:10 - 2011-09-22 12:10 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4820C927-296E-4649-8FB9-C887F9B63BCA}
2011-07-12 15:21 - 2011-07-12 15:21 - 0000000 _____ () C:\Users\kevin\AppData\Local\{489B7F1E-BAB0-484D-8138-835E37C26E7F}
2011-07-25 10:47 - 2011-07-25 10:47 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4A16BB64-6814-475D-9B79-595CDE8F35BB}
2011-11-03 13:59 - 2011-11-03 13:59 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4B2F715B-52A1-4E3D-B222-29F5E5CEC043}
2011-09-28 12:53 - 2011-09-28 12:53 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4B3EFF1A-16F3-4EF6-9391-1328286650CD}
2011-07-12 09:32 - 2011-07-12 09:32 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4B71DBB1-87BD-42E0-BED2-9BB15ACE9260}
2014-09-09 11:35 - 2014-09-09 11:35 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4C80C043-661F-45CA-AADE-AD92CEA65CAA}
2011-09-25 09:32 - 2011-09-25 09:32 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4DB833D3-14FD-480C-B498-D711CD920FC5}
2011-07-23 07:58 - 2011-07-23 07:58 - 0000000 _____ () C:\Users\kevin\AppData\Local\{4E8E1E1D-2571-4C44-9FA6-41FFED879D5E}
2011-10-29 12:08 - 2011-10-29 12:08 - 0000000 _____ () C:\Users\kevin\AppData\Local\{510B3A89-ABC5-4F0F-B8A5-46D6DF95917B}
2011-09-14 06:27 - 2011-09-14 06:27 - 0000000 _____ () C:\Users\kevin\AppData\Local\{5494A0C2-F8D6-4BBD-B5DC-45CA995E853E}
2011-10-24 20:49 - 2011-10-24 20:49 - 0000000 _____ () C:\Users\kevin\AppData\Local\{5501FDFB-D7D4-4612-8692-743E4752B4EF}
2014-09-05 05:33 - 2014-09-05 05:33 - 0000000 _____ () C:\Users\kevin\AppData\Local\{5BAAD4AF-976A-4C02-9591-3BA3875C669E}
2014-10-13 15:36 - 2014-10-13 15:36 - 0000000 _____ () C:\Users\kevin\AppData\Local\{5CBBDC96-58DA-4B9A-B93F-89C48193D751}
2011-07-08 21:29 - 2011-07-08 21:29 - 0000000 _____ () C:\Users\kevin\AppData\Local\{5DB848BD-F970-426D-92A3-219CC3AAC33A}
2011-10-28 10:41 - 2011-10-28 10:41 - 0000000 _____ () C:\Users\kevin\AppData\Local\{61E1F205-1737-4D16-AADA-C2B09AD94BA3}
2011-07-21 14:53 - 2011-07-21 14:53 - 0000000 _____ () C:\Users\kevin\AppData\Local\{66FBCC72-9864-456D-B692-A4EEE82EA21A}
2011-09-27 06:46 - 2011-09-27 06:46 - 0000000 _____ () C:\Users\kevin\AppData\Local\{67CE9EFC-21B5-4730-9431-CF20B945777A}
2011-09-18 20:07 - 2011-09-18 20:07 - 0000000 _____ () C:\Users\kevin\AppData\Local\{6A536D52-1514-4D83-8BDA-E5D5E4DBC289}
2014-09-23 17:31 - 2014-09-23 17:31 - 0000000 _____ () C:\Users\kevin\AppData\Local\{713ACC86-E45F-4162-A770-A5911AC9393F}
2011-07-31 12:14 - 2011-07-31 12:14 - 0000000 _____ () C:\Users\kevin\AppData\Local\{71A20890-73C1-442F-8767-4342929C4C52}
2011-10-26 13:05 - 2011-10-26 13:05 - 0000000 _____ () C:\Users\kevin\AppData\Local\{78915BF6-F881-460A-82F7-F7DCE4BF24FB}
2014-11-18 22:11 - 2014-11-18 22:11 - 0000000 _____ () C:\Users\kevin\AppData\Local\{7BEE1B2C-DA32-44BA-A657-DB4E6F50F4A7}
2011-10-27 12:05 - 2011-10-27 12:05 - 0000000 _____ () C:\Users\kevin\AppData\Local\{7D0B27B0-FF83-4AC9-AF99-FDA6B1EBA369}
2011-07-20 23:02 - 2011-07-20 23:02 - 0000000 _____ () C:\Users\kevin\AppData\Local\{7E1EF77D-54A6-4EC9-B437-CB19CD351C19}
2011-07-19 12:15 - 2011-07-19 12:15 - 0000000 _____ () C:\Users\kevin\AppData\Local\{7F3ACC36-F103-44F1-964B-0D2F193871AE}
2011-07-23 00:59 - 2011-07-23 00:59 - 0000000 _____ () C:\Users\kevin\AppData\Local\{7F8F2A2F-6CCB-4644-AC70-065D000B3741}
2011-09-10 19:57 - 2011-09-10 19:57 - 0000000 _____ () C:\Users\kevin\AppData\Local\{81ACEC00-00AE-4717-A2E7-02BE7A71FD3D}
2011-10-24 20:23 - 2011-10-24 20:23 - 0000000 _____ () C:\Users\kevin\AppData\Local\{82BA9C46-AD3E-405B-A680-9F3C4604DD6C}
2011-11-07 17:55 - 2011-11-07 17:55 - 0000000 _____ () C:\Users\kevin\AppData\Local\{82C84B9C-86F6-483D-9FF5-9F28C390B7B9}
2011-10-26 13:06 - 2011-10-26 13:06 - 0000000 _____ () C:\Users\kevin\AppData\Local\{84EA720B-6F6E-4B9B-8585-53FFA39CF339}
2011-07-01 17:56 - 2011-07-01 17:56 - 0000000 _____ () C:\Users\kevin\AppData\Local\{8641893F-444B-4CC8-AA46-7374E0BFE12A}
2011-09-17 11:11 - 2011-09-17 11:11 - 0000000 _____ () C:\Users\kevin\AppData\Local\{893FA89A-DA66-46F5-976A-D6E8970B6DC5}
2011-10-18 17:30 - 2011-10-18 17:30 - 0000000 _____ () C:\Users\kevin\AppData\Local\{8B36CAC5-592F-47EB-A7EA-02E8FB33E6C4}
2011-07-05 16:02 - 2011-07-05 16:02 - 0000000 _____ () C:\Users\kevin\AppData\Local\{8B571C4F-3689-4BDE-867F-DDA0B968C96C}
2014-09-05 05:35 - 2014-09-05 05:35 - 0000000 _____ () C:\Users\kevin\AppData\Local\{8DA45CE6-DB1C-481F-B4E1-24A497C87EC9}
2011-07-17 12:30 - 2011-07-17 12:30 - 0000000 _____ () C:\Users\kevin\AppData\Local\{8E8D880E-466C-442B-B420-29847A163AF1}
2011-10-19 12:13 - 2011-10-19 12:13 - 0000000 _____ () C:\Users\kevin\AppData\Local\{905B6A58-0D21-4FDC-9FC7-6E43599E6B48}
2011-10-05 12:27 - 2011-10-05 12:27 - 0000000 _____ () C:\Users\kevin\AppData\Local\{926C4B7E-8A0F-4973-A071-F4A809ABC7A1}
2011-07-11 11:49 - 2011-07-11 11:49 - 0000000 _____ () C:\Users\kevin\AppData\Local\{93EF7C52-7C90-4E86-A448-6F73A1D4B5EC}
2011-07-06 13:51 - 2011-07-06 13:51 - 0000000 _____ () C:\Users\kevin\AppData\Local\{94FDAA63-75B1-4978-8F10-388A61E85550}
2011-10-08 21:52 - 2011-10-08 21:52 - 0000000 _____ () C:\Users\kevin\AppData\Local\{968FA1EB-7662-4423-BB82-F3A5E392598F}
2014-09-17 19:02 - 2014-09-17 19:02 - 0000000 _____ () C:\Users\kevin\AppData\Local\{98ED514E-0AFE-47D7-8A63-5311C42235D2}
2011-12-24 23:58 - 2011-12-24 23:58 - 0000000 _____ () C:\Users\kevin\AppData\Local\{992D6442-3D2D-4232-A865-B93096B2EC64}
2011-10-04 20:18 - 2011-10-04 20:18 - 0000000 _____ () C:\Users\kevin\AppData\Local\{9A99220A-2B0B-48D6-90D0-CE6F73D93060}
2011-07-18 12:07 - 2011-07-18 12:07 - 0000000 _____ () C:\Users\kevin\AppData\Local\{9CC6382A-B05B-4FDD-8B5A-5E4B78327CA9}
2014-08-26 11:38 - 2014-08-26 11:38 - 0000000 _____ () C:\Users\kevin\AppData\Local\{9DA95BD9-3296-4361-B8B8-E6484EEF48DC}
2011-09-04 08:52 - 2011-09-04 08:52 - 0000000 _____ () C:\Users\kevin\AppData\Local\{9F644EB1-6046-4BDD-83FB-86E4668EBF50}
2014-08-31 14:25 - 2014-08-31 14:25 - 0000000 _____ () C:\Users\kevin\AppData\Local\{9FF760C8-CEE2-4357-ADF6-C08AF760F4EF}
2014-09-10 16:20 - 2014-09-10 16:20 - 0000000 _____ () C:\Users\kevin\AppData\Local\{A0CAC066-DAF6-4B10-81BF-396430190F9F}
2011-09-08 15:22 - 2011-09-08 15:22 - 0000000 _____ () C:\Users\kevin\AppData\Local\{A640F033-F391-4E13-9A8F-282DA5DAF66C}
2011-08-20 04:42 - 2011-08-20 04:42 - 0000000 _____ () C:\Users\kevin\AppData\Local\{A661E773-7E27-4478-B5E6-649CC7C45B20}
2011-10-08 10:11 - 2011-10-08 10:11 - 0000000 _____ () C:\Users\kevin\AppData\Local\{A9F1064D-095D-4827-90BF-2516E378A150}
2011-06-02 19:08 - 2011-06-02 19:08 - 0000000 _____ () C:\Users\kevin\AppData\Local\{AAA80CE9-D512-4F66-A1A6-16A839AF99A2}
2014-10-16 13:34 - 2014-10-16 13:34 - 0000000 _____ () C:\Users\kevin\AppData\Local\{AB94E822-D796-4A5E-B387-3F5EDE6DC04C}
2011-06-07 06:01 - 2011-06-07 06:01 - 0000000 _____ () C:\Users\kevin\AppData\Local\{AC70AAB2-6ADE-472B-AB09-235194D7287B}
2011-08-05 16:06 - 2011-08-05 16:06 - 0000000 _____ () C:\Users\kevin\AppData\Local\{B03054B5-32BD-4356-8B2B-E3EE2EC27DF2}
2011-11-07 01:29 - 2011-11-07 01:29 - 0000000 _____ () C:\Users\kevin\AppData\Local\{B077278A-6358-4AAB-B1AE-3BB68D3DC18C}
2011-08-10 10:54 - 2011-08-10 10:54 - 0000000 _____ () C:\Users\kevin\AppData\Local\{B09C3BC7-F6B8-4231-98C0-BAA7D421D371}
2011-07-28 13:58 - 2011-07-28 13:58 - 0000000 _____ () C:\Users\kevin\AppData\Local\{B17A6D5A-69C7-494D-B8AC-60485CFC4B76}
2011-07-09 03:59 - 2011-07-09 03:59 - 0000000 _____ () C:\Users\kevin\AppData\Local\{B2801DD2-597B-4D9C-A70F-96AFC3053B72}
2014-09-22 16:48 - 2014-09-22 16:48 - 0000000 _____ () C:\Users\kevin\AppData\Local\{B839154A-BBD7-413B-951C-9D5B70792EB9}
2011-07-15 18:09 - 2011-07-15 18:09 - 0000000 _____ () C:\Users\kevin\AppData\Local\{BBB78387-29E4-4F23-BB51-5AA4AC95039A}
2011-10-29 21:25 - 2011-10-29 21:25 - 0000000 _____ () C:\Users\kevin\AppData\Local\{BC0D3BC2-990D-4484-9A81-4616FB2CAD40}
2011-11-07 01:15 - 2011-11-07 01:15 - 0000000 _____ () C:\Users\kevin\AppData\Local\{BDDE4D5E-06F4-4BA0-9FB6-B73596EF0435}
2011-10-12 12:10 - 2011-10-12 12:10 - 0000000 _____ () C:\Users\kevin\AppData\Local\{BEECD2D9-6062-4DFC-AE82-B27C3760876F}
2011-12-26 20:20 - 2011-12-26 20:20 - 0000000 _____ () C:\Users\kevin\AppData\Local\{C02DD874-6224-483E-B1C8-F17AB3226800}
2011-10-02 11:20 - 2011-10-02 11:20 - 0000000 _____ () C:\Users\kevin\AppData\Local\{C1BF1228-15A6-45A9-97A6-75E7FA596CB5}
2011-07-11 10:20 - 2011-07-11 10:20 - 0000000 _____ () C:\Users\kevin\AppData\Local\{C26BC068-2AA4-44EA-A955-01D55B83A108}
2014-09-21 12:35 - 2014-09-21 12:35 - 0000000 _____ () C:\Users\kevin\AppData\Local\{C4ECD81B-8E66-4E48-B868-A1E92065C1DC}
2014-09-02 16:50 - 2014-09-02 16:50 - 0000000 _____ () C:\Users\kevin\AppData\Local\{C752485F-0478-4C86-9EDF-B8555651AF9A}
2011-09-29 15:45 - 2011-09-29 15:45 - 0000000 _____ () C:\Users\kevin\AppData\Local\{C77328FE-7933-407D-81F8-20619D548E7D}
2014-10-25 21:26 - 2014-10-25 21:26 - 0000000 _____ () C:\Users\kevin\AppData\Local\{D28B56F3-D4A0-4059-9742-C49E0398A933}
2011-10-29 21:20 - 2011-10-29 21:20 - 0000000 _____ () C:\Users\kevin\AppData\Local\{D583CF00-B9C9-488B-AD7B-B50EB5FEE72D}
2011-06-11 18:44 - 2011-06-11 18:44 - 0000000 _____ () C:\Users\kevin\AppData\Local\{DA077B4D-7410-4232-BDE9-8D082B39E9C7}
2011-06-27 16:38 - 2011-06-27 16:39 - 0000000 _____ () C:\Users\kevin\AppData\Local\{DA1DB974-5BD6-43D1-8976-A36E9C1E44DD}
2011-09-23 07:32 - 2011-09-23 07:32 - 0000000 _____ () C:\Users\kevin\AppData\Local\{DA33D6EC-129F-4683-AA69-C76D3E2BBA14}
2011-10-26 10:25 - 2011-10-26 10:25 - 0000000 _____ () C:\Users\kevin\AppData\Local\{DCC61D0B-050B-48CD-9436-107AEF760043}
2011-07-20 07:37 - 2011-07-20 07:37 - 0000000 _____ () C:\Users\kevin\AppData\Local\{DD2D279F-1277-45F3-97F8-E8F13DB58432}
2011-10-28 18:56 - 2011-10-28 18:56 - 0000000 _____ () C:\Users\kevin\AppData\Local\{DF752BBC-3DCB-44A5-9724-563F1426F901}
2011-10-04 12:20 - 2011-10-04 12:20 - 0000000 _____ () C:\Users\kevin\AppData\Local\{E0258DD4-D1FE-48B9-93E3-9A06C043B294}
2012-01-02 19:38 - 2012-01-02 19:40 - 0000000 _____ () C:\Users\kevin\AppData\Local\{E0E0A5E8-26BF-4327-8654-FBA1C47646E3}
2014-10-09 12:15 - 2014-10-09 12:15 - 0000000 _____ () C:\Users\kevin\AppData\Local\{E435908F-3433-4064-B0C8-801E1718EA94}
2011-09-22 09:14 - 2011-09-22 09:14 - 0000000 _____ () C:\Users\kevin\AppData\Local\{EA1FFB09-04CD-4477-A621-5251877A4B4E}
2011-10-22 09:51 - 2011-10-22 09:51 - 0000000 _____ () C:\Users\kevin\AppData\Local\{EC9E70DE-6A77-44E4-B449-3E82C559A79F}
2011-12-01 22:39 - 2011-12-01 22:39 - 0000000 _____ () C:\Users\kevin\AppData\Local\{ED7029B3-453B-43FB-A832-CAA3D4645EBB}
2011-11-09 18:24 - 2011-11-09 18:24 - 0000000 _____ () C:\Users\kevin\AppData\Local\{EF8D6BF5-7ADD-47BE-893B-305E99CBCC70}
2011-07-08 12:03 - 2011-07-08 12:03 - 0000000 _____ () C:\Users\kevin\AppData\Local\{F2AF0368-4BC6-4620-9B95-7255F6DD2889}
2016-01-16 17:13 - 2016-01-16 17:13 - 0000000 _____ () C:\Users\kevin\AppData\Local\{F395B3E6-8D8C-4E52-8E53-83F69D117F4D}
2011-08-09 07:00 - 2011-08-09 07:00 - 0000000 _____ () C:\Users\kevin\AppData\Local\{F60EDBCC-0ECD-406C-9BBD-7A8E4BB910B5}
2011-10-30 22:09 - 2011-10-30 22:09 - 0000000 _____ () C:\Users\kevin\AppData\Local\{F6F4684E-4A96-49B5-94D4-F5F9AF17DB9B}
2011-06-15 09:53 - 2011-06-15 09:53 - 0000000 _____ () C:\Users\kevin\AppData\Local\{F7E46619-2524-4664-9F77-8E38C9DDD1EC}
2011-07-24 10:55 - 2011-07-24 10:55 - 0000000 _____ () C:\Users\kevin\AppData\Local\{FAF711DA-63DA-4BB7-9FAA-318DCEF9FB4D}
2011-10-29 20:37 - 2011-10-29 20:37 - 0000000 _____ () C:\Users\kevin\AppData\Local\{FB0DE7B9-79E6-4449-B1C2-8B07E4E0C363}
2014-08-30 09:04 - 2014-08-30 09:04 - 0000000 _____ () C:\Users\kevin\AppData\Local\{FB4F2032-C5DB-4122-ABD9-FDB0E9D63355}
2011-08-11 14:48 - 2011-08-11 14:48 - 0000000 _____ () C:\Users\kevin\AppData\Local\{FB675AD2-4C68-4254-943A-E5460E9DF428}
2012-06-24 16:36 - 2012-06-24 16:36 - 0000057 _____ () C:\ProgramData\Ament.ini
2014-10-11 00:00 - 2014-11-18 23:38 - 0000184 _____ () C:\ProgramData\HPWALog.txt
2012-05-06 21:26 - 2013-04-20 19:46 - 0000848 ___SH () C:\ProgramData\KGyGaAvL.sys
2012-04-22 20:57 - 2012-04-22 20:57 - 0000097 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2010-04-24 01:49 - 2010-04-24 01:49 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
2010-01-09 01:17 - 2010-01-09 01:17 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2010-04-24 01:48 - 2010-04-24 01:48 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
2010-01-09 01:13 - 2010-01-09 01:14 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2010-04-24 01:48 - 2010-04-24 01:48 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
2010-04-24 01:49 - 2010-04-24 01:49 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
2010-01-09 01:12 - 2010-01-09 01:13 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2010-01-09 01:14 - 2010-01-09 01:17 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2010-04-24 01:49 - 2010-04-24 01:49 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log

Fichiers à déplacer ou supprimer:
====================
C:\Users\kevin\AppData\Local\Temp\6F99.exe
C:\Users\kevin\ZHPDiag3.exe


Certains fichiers dans TEMP:
====================
C:\Users\kevin\AppData\Local\Temp\6F99.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


ATTENTION: ==> Impossible d'accéder au BCD. 


LastRegBack: 2010-09-18 11:02

==================== Fin de FRST.txt ============================