Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:31-10-2015
Exécuté par lilou_000 (administrateur) sur PC-BUREAU (02-11-2015 16:24:16)
Exécuté depuis C:\Users\lilou_000\Downloads
Profils chargés: lilou_000 (Profils disponibles: lilou_000 & Administrateur)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13821.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.5.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Google Inc.) C:\Users\lilou_000\AppData\Local\Google\Update\GoogleUpdate.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-20] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-08-21] (Synaptics Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-944799802-3952077981-454652904-1001\...\Run: [Google Update] => C:\Users\lilou_000\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-21-944799802-3952077981-454652904-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-944799802-3952077981-454652904-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [48138880 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-944799802-3952077981-454652904-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\amd64\FileSyncShell64.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\amd64\FileSyncShell64.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\amd64\FileSyncShell64.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\FileSyncShell.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\FileSyncShell.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\FileSyncShell.dll [2015-10-09] (Microsoft Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1e92e6a4-de8c-4449-b13e-e9d2a447e10e}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-944799802-3952077981-454652904-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-944799802-3952077981-454652904-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> {7BA8120D-D6B8-4235-873F-9F9CF2EE430C} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {7BA8120D-D6B8-4235-873F-9F9CF2EE430C} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> {C865866B-6FAD-4826-872E-26B92D0B3239} URL = hxxp://www.secury-search.com/fr/web?from=c2&q={searchTerms}
SearchScopes: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
SearchScopes: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-23] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-23] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> Pas de nom - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Pas de fichier
Toolbar: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://qtinstall.apple.com/qtactivex/qtplugin.cab
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\lilou_000\AppData\Roaming\Mozilla\Firefox\Profiles\2h5ns0z5.default-1423248804167
FF DefaultSearchEngine: secury-search
FF DefaultSearchUrl: hxxps://www.google.com/search/?trackid=sp-006
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: secury-search
FF Keyword.URL: hxxp://www.secury-search.com/fr/web?from=c2&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-23] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-23] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\lilou_000\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: @talk.google.com/O1DPlugin -> C:\Users\lilou_000\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: @tools.google.com/Google Update;version=3 -> C:\Users\lilou_000\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: @tools.google.com/Google Update;version=9 -> C:\Users\lilou_000\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: hp.com/HPDetect -> C:\Users\lilou_000\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)
FF Plugin ProgramFiles/Appdata: C:\Users\lilou_000\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\lilou_000\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Users\lilou_000\AppData\Roaming\Mozilla\Firefox\Profiles\2h5ns0z5.default-1423248804167\searchplugins\securysearch.xml [2015-11-01]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\lilou_000\AppData\Roaming\Mozilla\Firefox\Profiles\2h5ns0z5.default-1423248804167\Extensions\iobitascsurfingprotection@iobit.com [2015-11-01] [non signé]
FF Extension: Adblock Plus - C:\Users\lilou_000\AppData\Roaming\Mozilla\Firefox\Profiles\2h5ns0z5.default-1423248804167\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-01]
Chrome:
=======
CHR HomePage: Profile 1 -> hxxp://www-searching.com/?s=FB1zbwybl001,26b911cc-9ab3-403f-b615-f7b0334e6f30,&prd=smw
CHR StartupUrls: Profile 1 -> "hxxp://www-searching.com/?s=FB1zbwybl001,26b911cc-9ab3-403f-b615-f7b0334e6f30,&prd=smw"
CHR DefaultSearchURL: Profile 1 -> hxxp://www-searching.com/search.aspx?s=FB1zbwybl001,26b911cc-9ab3-403f-b615-f7b0334e6f30,&prd=smw&q={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> www-searching.com
CHR DefaultSuggestURL: Profile 1 -> hxxp://api.searchpredict.com/api/?rqtype=ffplugin&siteID=8661&dbCode=1&command={searchTerms}
CHR Profile: C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (AdBlock) - C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-01]
CHR Extension: (CinePlus-1.44V01.11) - C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\papbadoldddalgcjcicnikcfenodpghp [2015-11-01]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-14] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [247968 2015-08-21] (Synaptics Incorporated)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-09-25] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 aswTap; C:\Windows\System32\drivers\aswTap.sys [44640 2014-08-23] (The OpenVPN Project)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2015-10-21] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2015-10-21] (Windows (R) Win 7 DDK provider)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-10-27] (REALiX(tm))
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-02] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R1 ncdevice; C:\Windows\system32\DRIVERS\ncdevice.sys [41248 2014-05-22] (NT Kernel Resources)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-06-18] (Realtek )
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-25] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44192 2015-08-21] (Synaptics Incorporated)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-11-02 16:24 - 2015-11-02 16:24 - 00022661 _____ C:\Users\lilou_000\Downloads\FRST.txt
2015-11-02 16:23 - 2015-11-02 16:23 - 00016148 _____ C:\WINDOWS\system32\PC-BUREAU_lilou_000_HistoryPrediction.bin
2015-11-02 15:30 - 2015-11-02 15:55 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-02 15:29 - 2015-11-02 15:29 - 00000000 ___HD C:\OneDriveTemp
2015-11-02 15:10 - 2015-11-02 15:10 - 05817064 _____ (ParetoLogic Inc.) C:\Users\lilou_000\Downloads\ParetoLogic PC Health Advisor_fr.exe
2015-11-02 14:54 - 2015-11-02 14:54 - 00001593 _____ C:\Users\lilou_000\Desktop\FRST64 - Raccourci.lnk
2015-11-02 13:50 - 2015-11-02 13:50 - 00161426 _____ C:\Users\lilou_000\Downloads\Shortcut.txt
2015-11-02 13:48 - 2015-11-02 13:50 - 00046373 _____ C:\Users\lilou_000\Downloads\Addition.txt
2015-11-02 13:39 - 2015-11-02 13:39 - 00000000 ____D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-11-02 10:25 - 2015-11-02 16:24 - 00000000 ____D C:\FRST
2015-11-02 10:24 - 2015-11-02 13:46 - 02198016 _____ (Farbar) C:\Users\lilou_000\Downloads\FRST64.exe
2015-11-02 09:28 - 2015-11-02 09:28 - 05170176 _____ C:\Users\lilou_000\Downloads\WindowsDefender-1593.msi
2015-11-01 21:21 - 2015-11-02 15:29 - 00000522 _____ C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job
2015-11-01 21:21 - 2015-11-02 15:23 - 00000000 ____D C:\ProgramData\ParetoLogic
2015-11-01 21:21 - 2015-11-01 21:23 - 00003432 _____ C:\WINDOWS\System32\Tasks\ParetoLogic Update Version3
2015-11-01 21:21 - 2015-11-01 21:23 - 00000470 _____ C:\WINDOWS\Tasks\ParetoLogic Update Version3.job
2015-11-01 21:21 - 2015-11-01 21:21 - 00003304 _____ C:\WINDOWS\System32\Tasks\ParetoLogic Registration3
2015-11-01 21:21 - 2015-11-01 21:21 - 00003122 _____ C:\WINDOWS\System32\Tasks\ParetoLogic Update Version3 Startup Task
2015-11-01 21:21 - 2015-11-01 21:21 - 00000496 _____ C:\WINDOWS\Tasks\ParetoLogic Registration3.job
2015-11-01 21:21 - 2015-11-01 21:21 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\ParetoLogic
2015-11-01 21:21 - 2015-11-01 21:21 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\DriverCure
2015-11-01 18:21 - 2015-11-01 18:21 - 00000000 ____D C:\ProgramData\Synaptics
2015-11-01 14:36 - 2015-11-01 14:36 - 00000000 ____D C:\Program Files (x86)\MSECache
2015-11-01 11:52 - 2015-11-01 18:06 - 00000000 ____D C:\Program Files\Common Files\o4wj0tev
2015-11-01 10:45 - 2015-11-01 10:45 - 00065536 _____ C:\WINDOWS\system32\edbtmp.log
2015-11-01 10:45 - 2015-11-01 10:45 - 00065536 _____ C:\WINDOWS\system32\edb.log
2015-11-01 08:42 - 2015-11-01 12:46 - 00000000 ____D C:\Users\lilou_000\AppData\LocalLow\Company
2015-11-01 08:42 - 2015-11-01 08:43 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Tempfolder
2015-11-01 08:42 - 2015-11-01 08:42 - 00000000 ____D C:\WINDOWS\system32\zou
2015-11-01 08:42 - 2015-11-01 08:42 - 00000000 ____D C:\uninst
2015-10-31 20:28 - 2015-11-01 18:06 - 00000000 ____D C:\Users\Default\AppData\Local\Boxore
2015-10-31 20:28 - 2015-11-01 18:06 - 00000000 ____D C:\Users\Default User\AppData\Local\Boxore
2015-10-31 20:24 - 2015-10-31 20:24 - 00000000 ____D C:\Users\Public\Documents\Guid
2015-10-31 20:03 - 2015-11-01 16:28 - 1349369856 ____R C:\Users\lilou_000\Downloads\The.Gift.2015.FRENCH.BDRiP.XViD-STVFRV-www.Cpasbien.pw.avi
2015-10-31 19:56 - 2015-10-31 20:14 - 348615978 ____R C:\Users\lilou_000\Downloads\Visions.2015.FRENCH.BDRiP.x264-AViTECH-www.Cpasbien.pw.mkv
2015-10-31 19:55 - 2015-10-31 20:42 - 581429031 _____ C:\Users\lilou_000\Downloads\Kill.Me.Three.Times.2014.TRUEFRENCH.BDRiP.x264-AViTECH-www.Cpasbien.pw.mkv
2015-10-31 19:55 - 2015-10-31 20:31 - 519464307 _____ C:\Users\lilou_000\Downloads\Dealer.2014.FRENCH.BDRiP.x264-AViTECH-www.Cpasbien.pw.mkv
2015-10-31 19:53 - 2015-11-01 16:28 - 1349012885 ____R C:\Users\lilou_000\Downloads\Self.Less.2015.FRENCH.FRENCH.BDRip.x264.AC3-ViVi-www.Cpasbien.pw.mkv
2015-10-30 21:26 - 2015-10-30 21:26 - 01535058 _____ C:\Users\lilou_000\Downloads\unknown
2015-10-30 20:24 - 2015-10-30 20:24 - 05042394 _____ C:\Users\lilou_000\Downloads\lightning-4.0.3.1-sm+tb-windows.xpi
2015-10-30 17:33 - 2015-11-01 10:48 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Emotiplus
2015-10-30 13:52 - 2015-11-01 16:12 - 00000000 ____D C:\Users\lilou_000\AppData\LocalLow\uTorrent
2015-10-28 17:20 - 2015-10-28 17:20 - 00000000 ____D C:\Users\lilou_000\Downloads\The.Oxford.Murders.[2008.French].DVDRip.DivX-LTT
2015-10-27 19:05 - 2015-08-21 19:18 - 00630944 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-10-27 19:05 - 2015-08-21 19:18 - 00044192 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-10-27 12:14 - 2015-10-27 12:14 - 00003378 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2015-10-27 12:14 - 2015-10-27 12:14 - 00003080 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (lilou_000)
2015-10-27 12:12 - 2015-11-01 21:24 - 00000368 _____ C:\WINDOWS\Tasks\HPCeeScheduleForlilou_000.job
2015-10-27 11:56 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2015-10-27 11:56 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-10-27 11:56 - 2015-10-27 11:56 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-10-27 11:56 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\SysWOW64\IObitSmartDefragExtension.dll20151027115649.dll
2015-10-27 11:56 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2015-10-27 11:56 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-10-27 11:56 - 2014-06-04 15:17 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2015-10-27 11:54 - 2015-11-01 18:07 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\ProductData
2015-10-27 11:53 - 2015-11-01 18:11 - 00000270 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_lilou_000.job
2015-10-27 11:53 - 2015-10-27 11:53 - 00003318 _____ C:\WINDOWS\System32\Tasks\ASC8_PerformanceMonitor
2015-10-27 11:53 - 2015-10-27 11:53 - 00002458 _____ C:\WINDOWS\System32\Tasks\ASC8_SkipUac_lilou_000
2015-10-27 11:53 - 2015-10-27 11:53 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2015-10-27 11:52 - 2015-11-01 18:07 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\IObit
2015-10-27 11:52 - 2015-11-01 18:07 - 00000000 ____D C:\Users\lilou_000\AppData\LocalLow\IObit
2015-10-27 11:52 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\ProductData
2015-10-27 11:52 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-10-27 11:51 - 2015-11-02 09:51 - 00000000 ____D C:\Program Files (x86)\IObit
2015-10-27 11:51 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\IObit
2015-10-27 11:50 - 2015-10-27 11:51 - 48904992 _____ (IObit) C:\Users\lilou_000\Downloads\advanced-systemcare-setup.exe
2015-10-27 11:49 - 2015-10-27 11:49 - 00001345 _____ C:\Users\lilou_000\Desktop\Continue Advanced SystemCare Installation.lnk
2015-10-27 11:48 - 2015-10-27 11:49 - 01028848 _____ (Installer ) C:\Users\lilou_000\Downloads\advanced_systemcare.exe
2015-10-26 20:16 - 2015-10-26 20:17 - 00000000 ____D C:\Users\lilou_000\Downloads\[www.Cpasbien.me] The.Conjuring.2013.FRENCH.DVDRip.x264-TiCKETS
2015-10-26 20:14 - 2015-10-26 21:06 - 614494708 _____ C:\Users\lilou_000\Downloads\Knock.Knock.2015.FRENCH.BDRiP.x264-AViTECH.www.Cpasbien.pw.mkv
2015-10-26 15:42 - 2015-10-26 15:44 - 05915456 _____ ( ) C:\Users\lilou_000\Downloads\adblockplusie-1.3.exe
2015-10-26 14:02 - 2015-11-01 19:31 - 01694208 _____ C:\Users\lilou_000\Downloads\adwcleaner_5.015.exe
2015-10-26 13:58 - 2015-10-26 13:58 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\OpenOffice
2015-10-26 13:55 - 2015-11-01 18:09 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-10-26 13:55 - 2015-10-26 14:07 - 00001092 _____ C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk
2015-10-26 13:54 - 2015-11-01 18:06 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2015-10-23 15:02 - 2015-10-26 13:37 - 132488258 _____ C:\Users\lilou_000\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_fr.exe
2015-10-21 10:03 - 2015-10-21 10:03 - 03867040 _____ C:\WINDOWS\system32\PortChanger.exe
2015-10-21 10:03 - 2015-10-21 10:03 - 02398112 _____ (Hewlett Packard) C:\WINDOWS\system32\hppldcoi.dll
2015-10-21 10:03 - 2015-10-21 10:03 - 00151968 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4.sys
2015-10-21 10:03 - 2015-10-21 10:03 - 00049056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4usb.sys
2015-10-21 10:03 - 2015-10-21 10:03 - 00027040 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4Prt.sys
2015-10-21 10:01 - 2015-10-21 10:01 - 01708032 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpotiop1.dll
2015-10-21 10:01 - 2015-10-21 10:01 - 01304576 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpowiav1.dll
2015-10-21 10:01 - 2015-10-21 10:01 - 00046080 _____ (Hewlett-Packard Corporation) C:\WINDOWS\system32\hpz3lw71.dll
2015-10-17 12:53 - 2015-10-17 12:56 - 05952624 _____ ( ) C:\Users\lilou_000\Downloads\adblockplusie-1.2.exe
2015-10-17 09:58 - 2015-10-26 13:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-16 19:17 - 2015-10-16 19:17 - 00044071 _____ C:\Users\lilou_000\Documents\alarme jaune.pptx
2015-10-16 09:17 - 2015-11-01 19:06 - 00002522 _____ C:\Users\lilou_000\Desktop\Skype.lnk
2015-10-16 09:16 - 2015-10-16 09:16 - 00000856 _____ C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkypeSetup.lnk
2015-10-14 16:59 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-14 16:59 - 2015-10-10 07:40 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-14 16:59 - 2015-10-10 07:07 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-14 16:59 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-14 16:59 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-14 16:59 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-14 16:59 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-14 16:59 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-14 16:59 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-14 16:59 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-14 16:59 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-14 16:59 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-14 16:59 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-14 16:59 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-14 16:59 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-14 16:59 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-14 16:59 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-14 16:59 - 2015-09-25 04:17 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-14 16:59 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-14 16:59 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-14 16:59 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-14 16:59 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-14 16:59 - 2015-09-25 04:04 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-14 16:59 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-14 16:59 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-14 16:59 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-14 16:59 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-14 16:59 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-14 16:59 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-14 16:59 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 16:59 - 2015-09-25 04:02 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-14 16:59 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-14 16:59 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-14 16:59 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-14 16:59 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-14 16:59 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-14 16:59 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-14 16:59 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-14 16:59 - 2015-09-25 03:48 - 19325952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-14 16:59 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-14 16:59 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-14 16:59 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-14 16:59 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-14 16:59 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-14 16:59 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-14 16:59 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-14 16:59 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-14 16:59 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-14 16:59 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-14 16:59 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-14 16:59 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-14 16:59 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-14 16:59 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-13 12:35 - 2015-10-13 12:35 - 00000000 ____D C:\Users\lilou_000\Documents\lale
2015-10-13 11:24 - 2015-10-13 11:24 - 04587520 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2015-10-11 19:03 - 2015-10-11 19:03 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\WebApp
2015-10-10 19:34 - 2015-11-01 18:06 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-10-10 19:34 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-10-10 19:32 - 2015-10-12 14:53 - 01503872 _____ (Skype Technologies S.A.) C:\Users\lilou_000\Downloads\SkypeSetup.exe
2015-10-09 19:39 - 2015-10-08 19:50 - 07846992 _____ (Microsoft Corporation) C:\Users\lilou_000\Downloads\OneDriveSetup.exe
2015-10-09 13:15 - 2015-10-09 13:15 - 00929872 _____ (Google Inc.) C:\Users\lilou_000\Downloads\GoogleVoiceAndVideoSetup (2).exe
2015-10-09 12:07 - 2015-10-11 12:33 - 00929872 _____ (Google Inc.) C:\Users\lilou_000\Downloads\GoogleVoiceAndVideoSetup (1).exe
2015-10-09 12:04 - 2015-10-09 12:04 - 00929872 _____ (Google Inc.) C:\Users\lilou_000\Downloads\GoogleVoiceAndVideoSetup.exe
2015-10-08 10:56 - 2015-11-02 10:08 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\ZHP
2015-10-08 10:56 - 2015-10-23 15:05 - 00000918 _____ C:\Users\lilou_000\Desktop\ZHPCleaner.lnk
2015-10-05 12:28 - 2015-10-05 12:28 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-10-05 12:24 - 2015-10-05 12:24 - 00002259 _____ C:\WINDOWS\epplauncher.mif
2015-10-05 12:21 - 2015-10-05 12:21 - 00000000 ____D C:\OETemp
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-11-02 16:03 - 2015-01-19 17:27 - 00001062 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-944799802-3952077981-454652904-1001Core.job
2015-11-02 15:47 - 2015-02-27 20:01 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-02 15:40 - 2014-06-02 12:47 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-02 15:37 - 2015-09-25 20:23 - 00004170 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D1883BFE-0F02-4CAB-92F0-38644D9B59CD}
2015-11-02 15:32 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-02 15:31 - 2014-05-24 13:23 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Packages
2015-11-02 15:30 - 2014-06-02 13:15 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Skype
2015-11-02 15:29 - 2014-06-05 10:04 - 00000000 ___DO C:\Users\lilou_000\OneDrive
2015-11-02 15:29 - 2014-06-02 12:47 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-02 15:27 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-02 15:22 - 2014-06-02 13:04 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\uTorrent
2015-11-02 12:42 - 2015-07-30 23:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-01 21:24 - 2015-09-23 09:41 - 00003276 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForlilou_000
2015-11-01 21:15 - 2015-07-30 22:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-01 21:14 - 2015-07-10 10:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-11-01 19:59 - 2015-09-25 10:53 - 02051524 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-01 19:59 - 2015-09-10 06:08 - 00898684 _____ C:\WINDOWS\system32\perfh00C.dat
2015-11-01 19:59 - 2015-09-10 06:08 - 00188262 _____ C:\WINDOWS\system32\perfc00C.dat
2015-11-01 19:50 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-01 19:47 - 2015-02-07 15:52 - 00000000 ____D C:\Users\lilou_000\AppData\LocalLow\Adblock Plus for IE
2015-11-01 19:09 - 2014-06-02 13:15 - 00000000 ____D C:\ProgramData\Skype
2015-11-01 19:00 - 2014-06-04 11:18 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-01 18:52 - 2014-06-04 11:17 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-01 18:34 - 2014-12-25 19:39 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-01 18:21 - 2015-09-25 10:54 - 00000000 ____D C:\Users\lilou_000
2015-11-01 18:11 - 2015-07-30 22:49 - 00389808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 __RSD C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 ___RD C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 ___RD C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 ___RD C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 ____D C:\Users\Administrator
2015-11-01 18:07 - 2015-09-25 10:49 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\SystemResources
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\Globalization
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\Program Files\Windows Defender
2015-11-01 18:07 - 2015-07-22 16:52 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
2015-11-01 18:07 - 2015-07-10 10:47 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-01 18:07 - 2015-07-10 10:47 - 00000000 ____D C:\WINDOWS\servicing
2015-11-01 18:07 - 2015-01-13 09:35 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-11-01 18:07 - 2014-06-03 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP230 series
2015-11-01 18:07 - 2014-06-02 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dactylo
2015-11-01 18:07 - 2014-06-02 12:37 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\vlc
2015-11-01 18:07 - 2014-06-02 10:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
2015-11-01 18:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2015-11-01 18:06 - 2015-09-25 10:49 - 00000000 ____D C:\Program Files\Synaptics
2015-11-01 18:06 - 2015-02-27 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-01 18:06 - 2015-02-07 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-01 18:06 - 2015-01-24 10:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2015-11-01 18:06 - 2014-10-24 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-01 18:06 - 2014-07-27 14:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2015-11-01 18:06 - 2014-06-05 15:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement utilisateur de Canon MP230 series
2015-11-01 18:06 - 2014-06-05 15:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP230 series Manual
2015-11-01 18:06 - 2014-06-02 19:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Sunbird
2015-11-01 18:06 - 2014-06-02 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-01 18:06 - 2014-06-02 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2015-11-01 18:06 - 2014-06-02 12:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-11-01 18:06 - 2014-06-02 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-11-01 18:06 - 2012-12-28 17:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2015-11-01 18:06 - 2012-12-28 17:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2015-11-01 18:06 - 2012-12-28 17:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-11-01 18:06 - 2012-10-27 18:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-11-01 18:06 - 2012-10-27 18:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-11-01 18:04 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-11-01 18:04 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-11-01 17:50 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\registration
2015-11-01 17:44 - 2015-01-31 20:45 - 00000000 ____D C:\Users\lilou_000\Downloads\Film A Garder fichier utorrent
2015-11-01 17:44 - 2014-05-30 13:16 - 00000000 ____D C:\Users\lilou_000\Downloads\IEtiquettePC (1)
2015-11-01 17:36 - 2014-05-24 20:17 - 00000000 __RHD C:\MSOCache
2015-11-01 10:48 - 2015-03-03 20:09 - 00000000 ____D C:\AdwCleaner
2015-11-01 10:25 - 2015-10-01 19:44 - 00000098 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-10-30 17:03 - 2014-06-02 11:48 - 00105432 _____ C:\Users\lilou_000\AppData\Local\GDIPFONTCACHEV1.DAT
2015-10-29 20:58 - 2014-05-25 19:46 - 00000545 _____ C:\Users\lilou_000\Desktop\SFR Mail.website
2015-10-29 12:52 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-29 09:34 - 2014-06-03 09:13 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-10-27 13:43 - 2014-06-02 10:18 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Synaptics
2015-10-27 12:07 - 2015-09-25 11:45 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-27 12:07 - 2014-05-24 17:13 - 00000000 ____D C:\Users\lilou_000\Documents\fichier installation norton
2015-10-27 11:53 - 2015-01-14 06:40 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Apple Computer
2015-10-27 08:40 - 2015-02-07 15:19 - 00002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-26 20:11 - 2015-09-28 09:09 - 00001877 _____ C:\Users\lilou_000\Desktop\µTorrent.lnk
2015-10-26 20:10 - 2015-09-25 13:17 - 00001677 _____ C:\Users\lilou_000\Desktop\Microsoft Edge.lnk
2015-10-26 20:09 - 2014-06-02 09:52 - 00000501 _____ C:\Users\lilou_000\Desktop\File Explorer.lnk
2015-10-26 20:07 - 2014-06-02 10:53 - 00001217 _____ C:\Users\lilou_000\Desktop\Ordinateur - Raccourci.lnk
2015-10-26 19:00 - 2015-02-27 20:01 - 00001171 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-10-26 19:00 - 2015-02-27 20:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-26 13:49 - 2014-06-03 07:21 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-10-26 13:39 - 2015-02-06 19:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-23 12:56 - 2014-06-06 14:20 - 00000000 ____D C:\ProgramData\Oracle
2015-10-23 12:55 - 2015-08-31 07:57 - 00000000 ____D C:\Users\lilou_000\.oracle_jre_usage
2015-10-23 12:55 - 2014-10-24 14:33 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-10-23 12:55 - 2014-10-24 14:33 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-22 15:56 - 2015-02-06 17:32 - 01867776 _____ C:\Users\lilou_000\ZHPCleaner.exe
2015-10-22 15:30 - 2014-05-27 12:57 - 00000000 ____D C:\Users\lilou_000\Tracing
2015-10-21 10:02 - 2012-10-27 17:59 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-10-17 20:05 - 2015-03-31 18:58 - 00000000 ____D C:\Users\lilou_000\Downloads\FACTURE SFR
2015-10-17 14:19 - 2015-07-19 12:31 - 00000000 ____D C:\Users\lilou_000\Downloads\declaration impots
2015-10-17 14:18 - 2015-07-19 12:29 - 00000000 ____D C:\Users\lilou_000\Downloads\Pole emploi
2015-10-17 14:16 - 2015-07-19 12:40 - 00000000 ____D C:\Users\lilou_000\Downloads\facture free
2015-10-17 14:16 - 2015-07-19 12:36 - 00000000 ____D C:\Users\lilou_000\Downloads\facture boulanger et Leroy merlin
2015-10-16 04:10 - 2015-10-01 19:57 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-16 04:10 - 2015-10-01 19:57 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-15 14:49 - 2014-06-02 12:32 - 00001220 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2015-10-15 14:40 - 2014-06-02 11:57 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\BankPerfect
2015-10-15 14:40 - 2014-05-29 15:13 - 00064340 _____ C:\Users\lilou_000\Documents\compte courant Mr et Mme DUFOUR Jean-LUC.bp
2015-10-14 20:17 - 2014-06-02 12:46 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-14 18:10 - 2014-06-02 11:17 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-11 19:00 - 2015-09-25 19:47 - 00000000 ____D C:\Users\lilou_000\AppData\Local\CyberLink
2015-10-09 19:39 - 2015-09-25 11:47 - 00002429 _____ C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-09 13:23 - 2015-02-06 19:43 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-10-09 12:04 - 2014-06-02 14:16 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Mozilla
2015-10-09 12:04 - 2014-06-02 11:55 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Google
2015-10-08 14:32 - 2014-06-02 12:46 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-10-08 11:08 - 2015-09-28 19:23 - 00000000 ____D C:\Users\lilou_000\Downloads\fichier nettoyeur
2015-10-05 12:46 - 2015-02-07 16:06 - 00000000 ____D C:\ProgramData\AVAST Software
2015-10-05 09:50 - 2015-02-27 20:01 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-10-05 09:50 - 2015-02-27 20:01 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-10-05 09:50 - 2015-02-27 20:01 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-10-05 09:40 - 2014-06-02 11:04 - 00000947 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-04 20:02 - 2014-06-02 13:27 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Songr
2015-10-04 19:54 - 2012-07-25 21:30 - 00001449 _____ C:\Users\lilou_000\Desktop\Windows Media Player.lnk
2015-10-03 10:15 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\rescache
==================== Fichiers à la racine de certains dossiers =======
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\lilou_000\AppData\Roaming\27mbCCGMREohLqZuWk3D
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\lilou_000\AppData\Roaming\C6H6uJpjABNhl9oWA
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\lilou_000\AppData\Roaming\czniMbIBwbMWw
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\lilou_000\AppData\Roaming\eCU8n2YvftTGjXxk5jN
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\lilou_000\AppData\Roaming\pPHdnQ6KASoNDOVU
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\lilou_000\AppData\Roaming\tyYSkp9Vodg
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\lilou_000\AppData\Roaming\Ud8KD2x3lrd8XwBJT
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\lilou_000\AppData\Roaming\VZYY6Nlzsp
2014-11-02 15:18 - 2015-09-22 08:15 - 0010752 _____ () C:\Users\lilou_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-12-28 17:51 - 2012-12-28 17:51 - 0000595 _____ () C:\ProgramData\CyberlinkOutput.txt
2014-06-02 10:21 - 2014-06-02 10:21 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2015-10-01 19:44 - 2015-11-01 10:25 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Fichiers à déplacer ou supprimer:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
C:\Users\lilou_000\ZHPCleaner.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-11-02 12:41
==================== Fin de FRST.txt ============================
Exécuté par lilou_000 (administrateur) sur PC-BUREAU (02-11-2015 16:24:16)
Exécuté depuis C:\Users\lilou_000\Downloads
Profils chargés: lilou_000 (Profils disponibles: lilou_000 & Administrateur)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13821.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.5.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Google Inc.) C:\Users\lilou_000\AppData\Local\Google\Update\GoogleUpdate.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-20] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-08-21] (Synaptics Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-944799802-3952077981-454652904-1001\...\Run: [Google Update] => C:\Users\lilou_000\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-21-944799802-3952077981-454652904-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-944799802-3952077981-454652904-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [48138880 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-944799802-3952077981-454652904-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\amd64\FileSyncShell64.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\amd64\FileSyncShell64.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\amd64\FileSyncShell64.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\FileSyncShell.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\FileSyncShell.dll [2015-10-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\lilou_000\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_3\FileSyncShell.dll [2015-10-09] (Microsoft Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1e92e6a4-de8c-4449-b13e-e9d2a447e10e}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-944799802-3952077981-454652904-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-944799802-3952077981-454652904-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> {7BA8120D-D6B8-4235-873F-9F9CF2EE430C} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {7BA8120D-D6B8-4235-873F-9F9CF2EE430C} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> {C865866B-6FAD-4826-872E-26B92D0B3239} URL = hxxp://www.secury-search.com/fr/web?from=c2&q={searchTerms}
SearchScopes: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
SearchScopes: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-23] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-23] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> Pas de nom - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Pas de fichier
Toolbar: HKU\S-1-5-21-944799802-3952077981-454652904-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://qtinstall.apple.com/qtactivex/qtplugin.cab
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\lilou_000\AppData\Roaming\Mozilla\Firefox\Profiles\2h5ns0z5.default-1423248804167
FF DefaultSearchEngine: secury-search
FF DefaultSearchUrl: hxxps://www.google.com/search/?trackid=sp-006
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: secury-search
FF Keyword.URL: hxxp://www.secury-search.com/fr/web?from=c2&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-23] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-23] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\lilou_000\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: @talk.google.com/O1DPlugin -> C:\Users\lilou_000\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: @tools.google.com/Google Update;version=3 -> C:\Users\lilou_000\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: @tools.google.com/Google Update;version=9 -> C:\Users\lilou_000\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-944799802-3952077981-454652904-1001: hp.com/HPDetect -> C:\Users\lilou_000\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP)
FF Plugin ProgramFiles/Appdata: C:\Users\lilou_000\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\lilou_000\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Users\lilou_000\AppData\Roaming\Mozilla\Firefox\Profiles\2h5ns0z5.default-1423248804167\searchplugins\securysearch.xml [2015-11-01]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\lilou_000\AppData\Roaming\Mozilla\Firefox\Profiles\2h5ns0z5.default-1423248804167\Extensions\iobitascsurfingprotection@iobit.com [2015-11-01] [non signé]
FF Extension: Adblock Plus - C:\Users\lilou_000\AppData\Roaming\Mozilla\Firefox\Profiles\2h5ns0z5.default-1423248804167\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-01]
Chrome:
=======
CHR HomePage: Profile 1 -> hxxp://www-searching.com/?s=FB1zbwybl001,26b911cc-9ab3-403f-b615-f7b0334e6f30,&prd=smw
CHR StartupUrls: Profile 1 -> "hxxp://www-searching.com/?s=FB1zbwybl001,26b911cc-9ab3-403f-b615-f7b0334e6f30,&prd=smw"
CHR DefaultSearchURL: Profile 1 -> hxxp://www-searching.com/search.aspx?s=FB1zbwybl001,26b911cc-9ab3-403f-b615-f7b0334e6f30,&prd=smw&q={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> www-searching.com
CHR DefaultSuggestURL: Profile 1 -> hxxp://api.searchpredict.com/api/?rqtype=ffplugin&siteID=8661&dbCode=1&command={searchTerms}
CHR Profile: C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (AdBlock) - C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-01]
CHR Extension: (CinePlus-1.44V01.11) - C:\Users\lilou_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\papbadoldddalgcjcicnikcfenodpghp [2015-11-01]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-14] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [247968 2015-08-21] (Synaptics Incorporated)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-09-25] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 aswTap; C:\Windows\System32\drivers\aswTap.sys [44640 2014-08-23] (The OpenVPN Project)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2015-10-21] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2015-10-21] (Windows (R) Win 7 DDK provider)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-10-27] (REALiX(tm))
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-02] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R1 ncdevice; C:\Windows\system32\DRIVERS\ncdevice.sys [41248 2014-05-22] (NT Kernel Resources)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-06-18] (Realtek )
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-25] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44192 2015-08-21] (Synaptics Incorporated)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-11-02 16:24 - 2015-11-02 16:24 - 00022661 _____ C:\Users\lilou_000\Downloads\FRST.txt
2015-11-02 16:23 - 2015-11-02 16:23 - 00016148 _____ C:\WINDOWS\system32\PC-BUREAU_lilou_000_HistoryPrediction.bin
2015-11-02 15:30 - 2015-11-02 15:55 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-02 15:29 - 2015-11-02 15:29 - 00000000 ___HD C:\OneDriveTemp
2015-11-02 15:10 - 2015-11-02 15:10 - 05817064 _____ (ParetoLogic Inc.) C:\Users\lilou_000\Downloads\ParetoLogic PC Health Advisor_fr.exe
2015-11-02 14:54 - 2015-11-02 14:54 - 00001593 _____ C:\Users\lilou_000\Desktop\FRST64 - Raccourci.lnk
2015-11-02 13:50 - 2015-11-02 13:50 - 00161426 _____ C:\Users\lilou_000\Downloads\Shortcut.txt
2015-11-02 13:48 - 2015-11-02 13:50 - 00046373 _____ C:\Users\lilou_000\Downloads\Addition.txt
2015-11-02 13:39 - 2015-11-02 13:39 - 00000000 ____D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-11-02 10:25 - 2015-11-02 16:24 - 00000000 ____D C:\FRST
2015-11-02 10:24 - 2015-11-02 13:46 - 02198016 _____ (Farbar) C:\Users\lilou_000\Downloads\FRST64.exe
2015-11-02 09:28 - 2015-11-02 09:28 - 05170176 _____ C:\Users\lilou_000\Downloads\WindowsDefender-1593.msi
2015-11-01 21:21 - 2015-11-02 15:29 - 00000522 _____ C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job
2015-11-01 21:21 - 2015-11-02 15:23 - 00000000 ____D C:\ProgramData\ParetoLogic
2015-11-01 21:21 - 2015-11-01 21:23 - 00003432 _____ C:\WINDOWS\System32\Tasks\ParetoLogic Update Version3
2015-11-01 21:21 - 2015-11-01 21:23 - 00000470 _____ C:\WINDOWS\Tasks\ParetoLogic Update Version3.job
2015-11-01 21:21 - 2015-11-01 21:21 - 00003304 _____ C:\WINDOWS\System32\Tasks\ParetoLogic Registration3
2015-11-01 21:21 - 2015-11-01 21:21 - 00003122 _____ C:\WINDOWS\System32\Tasks\ParetoLogic Update Version3 Startup Task
2015-11-01 21:21 - 2015-11-01 21:21 - 00000496 _____ C:\WINDOWS\Tasks\ParetoLogic Registration3.job
2015-11-01 21:21 - 2015-11-01 21:21 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\ParetoLogic
2015-11-01 21:21 - 2015-11-01 21:21 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\DriverCure
2015-11-01 18:21 - 2015-11-01 18:21 - 00000000 ____D C:\ProgramData\Synaptics
2015-11-01 14:36 - 2015-11-01 14:36 - 00000000 ____D C:\Program Files (x86)\MSECache
2015-11-01 11:52 - 2015-11-01 18:06 - 00000000 ____D C:\Program Files\Common Files\o4wj0tev
2015-11-01 10:45 - 2015-11-01 10:45 - 00065536 _____ C:\WINDOWS\system32\edbtmp.log
2015-11-01 10:45 - 2015-11-01 10:45 - 00065536 _____ C:\WINDOWS\system32\edb.log
2015-11-01 08:42 - 2015-11-01 12:46 - 00000000 ____D C:\Users\lilou_000\AppData\LocalLow\Company
2015-11-01 08:42 - 2015-11-01 08:43 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Tempfolder
2015-11-01 08:42 - 2015-11-01 08:42 - 00000000 ____D C:\WINDOWS\system32\zou
2015-11-01 08:42 - 2015-11-01 08:42 - 00000000 ____D C:\uninst
2015-10-31 20:28 - 2015-11-01 18:06 - 00000000 ____D C:\Users\Default\AppData\Local\Boxore
2015-10-31 20:28 - 2015-11-01 18:06 - 00000000 ____D C:\Users\Default User\AppData\Local\Boxore
2015-10-31 20:24 - 2015-10-31 20:24 - 00000000 ____D C:\Users\Public\Documents\Guid
2015-10-31 20:03 - 2015-11-01 16:28 - 1349369856 ____R C:\Users\lilou_000\Downloads\The.Gift.2015.FRENCH.BDRiP.XViD-STVFRV-www.Cpasbien.pw.avi
2015-10-31 19:56 - 2015-10-31 20:14 - 348615978 ____R C:\Users\lilou_000\Downloads\Visions.2015.FRENCH.BDRiP.x264-AViTECH-www.Cpasbien.pw.mkv
2015-10-31 19:55 - 2015-10-31 20:42 - 581429031 _____ C:\Users\lilou_000\Downloads\Kill.Me.Three.Times.2014.TRUEFRENCH.BDRiP.x264-AViTECH-www.Cpasbien.pw.mkv
2015-10-31 19:55 - 2015-10-31 20:31 - 519464307 _____ C:\Users\lilou_000\Downloads\Dealer.2014.FRENCH.BDRiP.x264-AViTECH-www.Cpasbien.pw.mkv
2015-10-31 19:53 - 2015-11-01 16:28 - 1349012885 ____R C:\Users\lilou_000\Downloads\Self.Less.2015.FRENCH.FRENCH.BDRip.x264.AC3-ViVi-www.Cpasbien.pw.mkv
2015-10-30 21:26 - 2015-10-30 21:26 - 01535058 _____ C:\Users\lilou_000\Downloads\unknown
2015-10-30 20:24 - 2015-10-30 20:24 - 05042394 _____ C:\Users\lilou_000\Downloads\lightning-4.0.3.1-sm+tb-windows.xpi
2015-10-30 17:33 - 2015-11-01 10:48 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Emotiplus
2015-10-30 13:52 - 2015-11-01 16:12 - 00000000 ____D C:\Users\lilou_000\AppData\LocalLow\uTorrent
2015-10-28 17:20 - 2015-10-28 17:20 - 00000000 ____D C:\Users\lilou_000\Downloads\The.Oxford.Murders.[2008.French].DVDRip.DivX-LTT
2015-10-27 19:05 - 2015-08-21 19:18 - 00630944 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-10-27 19:05 - 2015-08-21 19:18 - 00044192 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-10-27 12:14 - 2015-10-27 12:14 - 00003378 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2015-10-27 12:14 - 2015-10-27 12:14 - 00003080 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (lilou_000)
2015-10-27 12:12 - 2015-11-01 21:24 - 00000368 _____ C:\WINDOWS\Tasks\HPCeeScheduleForlilou_000.job
2015-10-27 11:56 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2015-10-27 11:56 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-10-27 11:56 - 2015-10-27 11:56 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-10-27 11:56 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\SysWOW64\IObitSmartDefragExtension.dll20151027115649.dll
2015-10-27 11:56 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2015-10-27 11:56 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-10-27 11:56 - 2014-06-04 15:17 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2015-10-27 11:54 - 2015-11-01 18:07 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\ProductData
2015-10-27 11:53 - 2015-11-01 18:11 - 00000270 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_lilou_000.job
2015-10-27 11:53 - 2015-10-27 11:53 - 00003318 _____ C:\WINDOWS\System32\Tasks\ASC8_PerformanceMonitor
2015-10-27 11:53 - 2015-10-27 11:53 - 00002458 _____ C:\WINDOWS\System32\Tasks\ASC8_SkipUac_lilou_000
2015-10-27 11:53 - 2015-10-27 11:53 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2015-10-27 11:52 - 2015-11-01 18:07 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\IObit
2015-10-27 11:52 - 2015-11-01 18:07 - 00000000 ____D C:\Users\lilou_000\AppData\LocalLow\IObit
2015-10-27 11:52 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\ProductData
2015-10-27 11:52 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-10-27 11:51 - 2015-11-02 09:51 - 00000000 ____D C:\Program Files (x86)\IObit
2015-10-27 11:51 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\IObit
2015-10-27 11:50 - 2015-10-27 11:51 - 48904992 _____ (IObit) C:\Users\lilou_000\Downloads\advanced-systemcare-setup.exe
2015-10-27 11:49 - 2015-10-27 11:49 - 00001345 _____ C:\Users\lilou_000\Desktop\Continue Advanced SystemCare Installation.lnk
2015-10-27 11:48 - 2015-10-27 11:49 - 01028848 _____ (Installer ) C:\Users\lilou_000\Downloads\advanced_systemcare.exe
2015-10-26 20:16 - 2015-10-26 20:17 - 00000000 ____D C:\Users\lilou_000\Downloads\[www.Cpasbien.me] The.Conjuring.2013.FRENCH.DVDRip.x264-TiCKETS
2015-10-26 20:14 - 2015-10-26 21:06 - 614494708 _____ C:\Users\lilou_000\Downloads\Knock.Knock.2015.FRENCH.BDRiP.x264-AViTECH.www.Cpasbien.pw.mkv
2015-10-26 15:42 - 2015-10-26 15:44 - 05915456 _____ ( ) C:\Users\lilou_000\Downloads\adblockplusie-1.3.exe
2015-10-26 14:02 - 2015-11-01 19:31 - 01694208 _____ C:\Users\lilou_000\Downloads\adwcleaner_5.015.exe
2015-10-26 13:58 - 2015-10-26 13:58 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\OpenOffice
2015-10-26 13:55 - 2015-11-01 18:09 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-10-26 13:55 - 2015-10-26 14:07 - 00001092 _____ C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk
2015-10-26 13:54 - 2015-11-01 18:06 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2015-10-23 15:02 - 2015-10-26 13:37 - 132488258 _____ C:\Users\lilou_000\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_fr.exe
2015-10-21 10:03 - 2015-10-21 10:03 - 03867040 _____ C:\WINDOWS\system32\PortChanger.exe
2015-10-21 10:03 - 2015-10-21 10:03 - 02398112 _____ (Hewlett Packard) C:\WINDOWS\system32\hppldcoi.dll
2015-10-21 10:03 - 2015-10-21 10:03 - 00151968 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4.sys
2015-10-21 10:03 - 2015-10-21 10:03 - 00049056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4usb.sys
2015-10-21 10:03 - 2015-10-21 10:03 - 00027040 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4Prt.sys
2015-10-21 10:01 - 2015-10-21 10:01 - 01708032 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpotiop1.dll
2015-10-21 10:01 - 2015-10-21 10:01 - 01304576 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpowiav1.dll
2015-10-21 10:01 - 2015-10-21 10:01 - 00046080 _____ (Hewlett-Packard Corporation) C:\WINDOWS\system32\hpz3lw71.dll
2015-10-17 12:53 - 2015-10-17 12:56 - 05952624 _____ ( ) C:\Users\lilou_000\Downloads\adblockplusie-1.2.exe
2015-10-17 09:58 - 2015-10-26 13:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-16 19:17 - 2015-10-16 19:17 - 00044071 _____ C:\Users\lilou_000\Documents\alarme jaune.pptx
2015-10-16 09:17 - 2015-11-01 19:06 - 00002522 _____ C:\Users\lilou_000\Desktop\Skype.lnk
2015-10-16 09:16 - 2015-10-16 09:16 - 00000856 _____ C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkypeSetup.lnk
2015-10-14 16:59 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-14 16:59 - 2015-10-10 07:40 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-14 16:59 - 2015-10-10 07:07 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-14 16:59 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-14 16:59 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-14 16:59 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-14 16:59 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-14 16:59 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-14 16:59 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-14 16:59 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-14 16:59 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-14 16:59 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-14 16:59 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-14 16:59 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-14 16:59 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-14 16:59 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-14 16:59 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-14 16:59 - 2015-09-25 04:17 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-14 16:59 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-14 16:59 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-14 16:59 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-14 16:59 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-14 16:59 - 2015-09-25 04:04 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-14 16:59 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-14 16:59 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-14 16:59 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-14 16:59 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-14 16:59 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-14 16:59 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-14 16:59 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 16:59 - 2015-09-25 04:02 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-14 16:59 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-14 16:59 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-14 16:59 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-14 16:59 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-14 16:59 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-14 16:59 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-14 16:59 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-14 16:59 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-14 16:59 - 2015-09-25 03:48 - 19325952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-14 16:59 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-14 16:59 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-14 16:59 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-14 16:59 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-14 16:59 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-14 16:59 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-14 16:59 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-14 16:59 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-14 16:59 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-14 16:59 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-14 16:59 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-14 16:59 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-14 16:59 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-14 16:59 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-14 16:59 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-13 12:35 - 2015-10-13 12:35 - 00000000 ____D C:\Users\lilou_000\Documents\lale
2015-10-13 11:24 - 2015-10-13 11:24 - 04587520 _____ (Google Inc.) C:\WINDOWS\SysWOW64\GPhotos.scr
2015-10-11 19:03 - 2015-10-11 19:03 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\WebApp
2015-10-10 19:34 - 2015-11-01 18:06 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-10-10 19:34 - 2015-11-01 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-10-10 19:32 - 2015-10-12 14:53 - 01503872 _____ (Skype Technologies S.A.) C:\Users\lilou_000\Downloads\SkypeSetup.exe
2015-10-09 19:39 - 2015-10-08 19:50 - 07846992 _____ (Microsoft Corporation) C:\Users\lilou_000\Downloads\OneDriveSetup.exe
2015-10-09 13:15 - 2015-10-09 13:15 - 00929872 _____ (Google Inc.) C:\Users\lilou_000\Downloads\GoogleVoiceAndVideoSetup (2).exe
2015-10-09 12:07 - 2015-10-11 12:33 - 00929872 _____ (Google Inc.) C:\Users\lilou_000\Downloads\GoogleVoiceAndVideoSetup (1).exe
2015-10-09 12:04 - 2015-10-09 12:04 - 00929872 _____ (Google Inc.) C:\Users\lilou_000\Downloads\GoogleVoiceAndVideoSetup.exe
2015-10-08 10:56 - 2015-11-02 10:08 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\ZHP
2015-10-08 10:56 - 2015-10-23 15:05 - 00000918 _____ C:\Users\lilou_000\Desktop\ZHPCleaner.lnk
2015-10-05 12:28 - 2015-10-05 12:28 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-10-05 12:24 - 2015-10-05 12:24 - 00002259 _____ C:\WINDOWS\epplauncher.mif
2015-10-05 12:21 - 2015-10-05 12:21 - 00000000 ____D C:\OETemp
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-11-02 16:03 - 2015-01-19 17:27 - 00001062 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-944799802-3952077981-454652904-1001Core.job
2015-11-02 15:47 - 2015-02-27 20:01 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-02 15:40 - 2014-06-02 12:47 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-02 15:37 - 2015-09-25 20:23 - 00004170 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D1883BFE-0F02-4CAB-92F0-38644D9B59CD}
2015-11-02 15:32 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-02 15:31 - 2014-05-24 13:23 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Packages
2015-11-02 15:30 - 2014-06-02 13:15 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Skype
2015-11-02 15:29 - 2014-06-05 10:04 - 00000000 ___DO C:\Users\lilou_000\OneDrive
2015-11-02 15:29 - 2014-06-02 12:47 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-02 15:27 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-02 15:22 - 2014-06-02 13:04 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\uTorrent
2015-11-02 12:42 - 2015-07-30 23:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-01 21:24 - 2015-09-23 09:41 - 00003276 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForlilou_000
2015-11-01 21:15 - 2015-07-30 22:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-01 21:14 - 2015-07-10 10:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-11-01 19:59 - 2015-09-25 10:53 - 02051524 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-01 19:59 - 2015-09-10 06:08 - 00898684 _____ C:\WINDOWS\system32\perfh00C.dat
2015-11-01 19:59 - 2015-09-10 06:08 - 00188262 _____ C:\WINDOWS\system32\perfc00C.dat
2015-11-01 19:50 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-01 19:47 - 2015-02-07 15:52 - 00000000 ____D C:\Users\lilou_000\AppData\LocalLow\Adblock Plus for IE
2015-11-01 19:09 - 2014-06-02 13:15 - 00000000 ____D C:\ProgramData\Skype
2015-11-01 19:00 - 2014-06-04 11:18 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-01 18:52 - 2014-06-04 11:17 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-01 18:34 - 2014-12-25 19:39 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-01 18:21 - 2015-09-25 10:54 - 00000000 ____D C:\Users\lilou_000
2015-11-01 18:11 - 2015-07-30 22:49 - 00389808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 __RSD C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 ___RD C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 ___RD C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 ___RD C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-01 18:07 - 2015-09-25 10:54 - 00000000 ____D C:\Users\Administrator
2015-11-01 18:07 - 2015-09-25 10:49 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\SystemResources
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\Globalization
2015-11-01 18:07 - 2015-07-30 23:42 - 00000000 ____D C:\Program Files\Windows Defender
2015-11-01 18:07 - 2015-07-22 16:52 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
2015-11-01 18:07 - 2015-07-10 10:47 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-01 18:07 - 2015-07-10 10:47 - 00000000 ____D C:\WINDOWS\servicing
2015-11-01 18:07 - 2015-01-13 09:35 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-11-01 18:07 - 2014-06-03 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP230 series
2015-11-01 18:07 - 2014-06-02 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dactylo
2015-11-01 18:07 - 2014-06-02 12:37 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\vlc
2015-11-01 18:07 - 2014-06-02 10:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
2015-11-01 18:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2015-11-01 18:06 - 2015-09-25 10:49 - 00000000 ____D C:\Program Files\Synaptics
2015-11-01 18:06 - 2015-02-27 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-01 18:06 - 2015-02-07 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-01 18:06 - 2015-01-24 10:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2015-11-01 18:06 - 2014-10-24 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-01 18:06 - 2014-07-27 14:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2015-11-01 18:06 - 2014-06-05 15:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement utilisateur de Canon MP230 series
2015-11-01 18:06 - 2014-06-05 15:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP230 series Manual
2015-11-01 18:06 - 2014-06-02 19:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Sunbird
2015-11-01 18:06 - 2014-06-02 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-01 18:06 - 2014-06-02 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2015-11-01 18:06 - 2014-06-02 12:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-11-01 18:06 - 2014-06-02 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-11-01 18:06 - 2012-12-28 17:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2015-11-01 18:06 - 2012-12-28 17:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2015-11-01 18:06 - 2012-12-28 17:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-11-01 18:06 - 2012-10-27 18:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-11-01 18:06 - 2012-10-27 18:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-11-01 18:04 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-11-01 18:04 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-11-01 17:50 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\registration
2015-11-01 17:44 - 2015-01-31 20:45 - 00000000 ____D C:\Users\lilou_000\Downloads\Film A Garder fichier utorrent
2015-11-01 17:44 - 2014-05-30 13:16 - 00000000 ____D C:\Users\lilou_000\Downloads\IEtiquettePC (1)
2015-11-01 17:36 - 2014-05-24 20:17 - 00000000 __RHD C:\MSOCache
2015-11-01 10:48 - 2015-03-03 20:09 - 00000000 ____D C:\AdwCleaner
2015-11-01 10:25 - 2015-10-01 19:44 - 00000098 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-10-30 17:03 - 2014-06-02 11:48 - 00105432 _____ C:\Users\lilou_000\AppData\Local\GDIPFONTCACHEV1.DAT
2015-10-29 20:58 - 2014-05-25 19:46 - 00000545 _____ C:\Users\lilou_000\Desktop\SFR Mail.website
2015-10-29 12:52 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-29 09:34 - 2014-06-03 09:13 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-10-27 13:43 - 2014-06-02 10:18 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Synaptics
2015-10-27 12:07 - 2015-09-25 11:45 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-27 12:07 - 2014-05-24 17:13 - 00000000 ____D C:\Users\lilou_000\Documents\fichier installation norton
2015-10-27 11:53 - 2015-01-14 06:40 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Apple Computer
2015-10-27 08:40 - 2015-02-07 15:19 - 00002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-26 20:11 - 2015-09-28 09:09 - 00001877 _____ C:\Users\lilou_000\Desktop\µTorrent.lnk
2015-10-26 20:10 - 2015-09-25 13:17 - 00001677 _____ C:\Users\lilou_000\Desktop\Microsoft Edge.lnk
2015-10-26 20:09 - 2014-06-02 09:52 - 00000501 _____ C:\Users\lilou_000\Desktop\File Explorer.lnk
2015-10-26 20:07 - 2014-06-02 10:53 - 00001217 _____ C:\Users\lilou_000\Desktop\Ordinateur - Raccourci.lnk
2015-10-26 19:00 - 2015-02-27 20:01 - 00001171 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-10-26 19:00 - 2015-02-27 20:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-26 13:49 - 2014-06-03 07:21 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-10-26 13:39 - 2015-02-06 19:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-23 12:56 - 2014-06-06 14:20 - 00000000 ____D C:\ProgramData\Oracle
2015-10-23 12:55 - 2015-08-31 07:57 - 00000000 ____D C:\Users\lilou_000\.oracle_jre_usage
2015-10-23 12:55 - 2014-10-24 14:33 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-10-23 12:55 - 2014-10-24 14:33 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-22 15:56 - 2015-02-06 17:32 - 01867776 _____ C:\Users\lilou_000\ZHPCleaner.exe
2015-10-22 15:30 - 2014-05-27 12:57 - 00000000 ____D C:\Users\lilou_000\Tracing
2015-10-21 10:02 - 2012-10-27 17:59 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-10-17 20:05 - 2015-03-31 18:58 - 00000000 ____D C:\Users\lilou_000\Downloads\FACTURE SFR
2015-10-17 14:19 - 2015-07-19 12:31 - 00000000 ____D C:\Users\lilou_000\Downloads\declaration impots
2015-10-17 14:18 - 2015-07-19 12:29 - 00000000 ____D C:\Users\lilou_000\Downloads\Pole emploi
2015-10-17 14:16 - 2015-07-19 12:40 - 00000000 ____D C:\Users\lilou_000\Downloads\facture free
2015-10-17 14:16 - 2015-07-19 12:36 - 00000000 ____D C:\Users\lilou_000\Downloads\facture boulanger et Leroy merlin
2015-10-16 04:10 - 2015-10-01 19:57 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-16 04:10 - 2015-10-01 19:57 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-15 14:49 - 2014-06-02 12:32 - 00001220 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2015-10-15 14:40 - 2014-06-02 11:57 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\BankPerfect
2015-10-15 14:40 - 2014-05-29 15:13 - 00064340 _____ C:\Users\lilou_000\Documents\compte courant Mr et Mme DUFOUR Jean-LUC.bp
2015-10-14 20:17 - 2014-06-02 12:46 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-14 18:10 - 2014-06-02 11:17 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-11 19:00 - 2015-09-25 19:47 - 00000000 ____D C:\Users\lilou_000\AppData\Local\CyberLink
2015-10-09 19:39 - 2015-09-25 11:47 - 00002429 _____ C:\Users\lilou_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-09 13:23 - 2015-02-06 19:43 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-10-09 12:04 - 2014-06-02 14:16 - 00000000 ____D C:\Users\lilou_000\AppData\Roaming\Mozilla
2015-10-09 12:04 - 2014-06-02 11:55 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Google
2015-10-08 14:32 - 2014-06-02 12:46 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-10-08 11:08 - 2015-09-28 19:23 - 00000000 ____D C:\Users\lilou_000\Downloads\fichier nettoyeur
2015-10-05 12:46 - 2015-02-07 16:06 - 00000000 ____D C:\ProgramData\AVAST Software
2015-10-05 09:50 - 2015-02-27 20:01 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-10-05 09:50 - 2015-02-27 20:01 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-10-05 09:50 - 2015-02-27 20:01 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-10-05 09:40 - 2014-06-02 11:04 - 00000947 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-04 20:02 - 2014-06-02 13:27 - 00000000 ____D C:\Users\lilou_000\AppData\Local\Songr
2015-10-04 19:54 - 2012-07-25 21:30 - 00001449 _____ C:\Users\lilou_000\Desktop\Windows Media Player.lnk
2015-10-03 10:15 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\rescache
==================== Fichiers à la racine de certains dossiers =======
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\lilou_000\AppData\Roaming\27mbCCGMREohLqZuWk3D
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\lilou_000\AppData\Roaming\C6H6uJpjABNhl9oWA
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\lilou_000\AppData\Roaming\czniMbIBwbMWw
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\lilou_000\AppData\Roaming\eCU8n2YvftTGjXxk5jN
2015-04-14 17:28 - 2015-04-14 17:28 - 0004387 _____ () C:\Users\lilou_000\AppData\Roaming\pPHdnQ6KASoNDOVU
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\lilou_000\AppData\Roaming\tyYSkp9Vodg
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\lilou_000\AppData\Roaming\Ud8KD2x3lrd8XwBJT
2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\lilou_000\AppData\Roaming\VZYY6Nlzsp
2014-11-02 15:18 - 2015-09-22 08:15 - 0010752 _____ () C:\Users\lilou_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-12-28 17:51 - 2012-12-28 17:51 - 0000595 _____ () C:\ProgramData\CyberlinkOutput.txt
2014-06-02 10:21 - 2014-06-02 10:21 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2015-10-01 19:44 - 2015-11-01 10:25 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Fichiers à déplacer ou supprimer:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
C:\Users\lilou_000\ZHPCleaner.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-11-02 12:41
==================== Fin de FRST.txt ============================