Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:31-08-2015 Exécuté par Juliette (administrateur) sur PORTABLE-ACER (03-09-2015 21:36:26) Exécuté depuis C:\Users\Juliette\AppData\Local\Microsoft\Windows\INetCache\IE\8U3FR46Y Profils chargés: Juliette (Profils disponibles: Juliette) Platform: Windows 8.1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: IE) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (© 2015 Microsoft Corporation) C:\Users\Juliette\AppData\Local\Microsoft\BingSvc\BingSvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Dropbox, Inc.) C:\Users\Juliette\AppData\Roaming\Dropbox\bin\Dropbox.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMMsg.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (Microsoft Corporation) C:\Windows\System32\msinfo32.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890640 2013-04-22] (ELAN Microelectronics Corp.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13427784 2013-03-18] (Realtek Semiconductor) HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-07-27] (Samsung Electronics Co., Ltd.) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-04-15] (Qualcomm Atheros Commnucations) HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\...\Run: [Dropbox Update] => C:\Users\Juliette\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.) HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272840 2014-03-31] (Microsoft Corporation) HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Technologies S.A.) HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\...\Run: [BingSvc] => C:\Users\Juliette\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation) HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1566016 2015-07-27] (Samsung) HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\...\Run: [KiesAirMessage] => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Juliette\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Juliette\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Juliette\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Juliette\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Juliette\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Juliette\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Juliette\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Juliette\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Juliette\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Juliette\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Juliette\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Juliette\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Juliette\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.) Startup: C:\Users\Juliette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-05-09] ShortcutTarget: Dropbox.lnk -> C:\Users\Juliette\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CHR HKLM\SOFTWARE\Policies\Google: Restriction de Stratégie <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) AutoConfigURL: [S-1-5-21-4164027042-2629825908-1546525241-1001] => file://C:\Program Files (x86)\neurowise\bin\Pac9064.js Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{4BBA8C26-4770-4F98-8547-FCAD82349D9A}: [NameServer] 199.203.131.145,82.163.143.167 Tcpip\..\Interfaces\{8479C4E8-ADD1-4D13-9237-85A9154BD265}: [NameServer] 199.203.131.145,82.163.143.167 Tcpip\..\Interfaces\{8479C4E8-ADD1-4D13-9237-85A9154BD265}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{E2D9DA5C-E8F0-4F02-812E-F4F794F4F0C1}: [NameServer] 199.203.131.145,82.163.143.167 Tcpip\..\Interfaces\{E2D9DA5C-E8F0-4F02-812E-F4F794F4F0C1}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/ HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\Software\Microsoft\Internet Explorer\Main,DisableRequiresActiveXPrompt = www.gamekult.com;www.deezer.com;moviestarplanet.fr;www.moviestarplanet.fr;www.moviestarplanet.com;pluzz.francetv.fr;www.moviestarplanet.co.uk HKU\S-1-5-21-4164027042-2629825908-1546525241-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.msn.com/?pc=AV01 SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-4164027042-2629825908-1546525241-1001 -> {1FCB064A-6102-4766-9129-AC55034D4B88} URL = SearchScopes: HKU\S-1-5-21-4164027042-2629825908-1546525241-1001 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) FireFox: ======== FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-05-08] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-05-08] (Intel Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-06-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-06-18] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK Chrome: ======= CHR StartupUrls: Default -> "hxxp://www.mystartsearch.com/?type=hppp&ts=1422040828&from=wpc&uid=WDCXWD5000LPVX-22V0TT0_WD-WX21E43CC612CC612" CHR DefaultSuggestURL: Default -> CHR Profile: C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-25] CHR Extension: (Google Docs) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-25] CHR Extension: (Google Drive) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-25] CHR Extension: (YouTube) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-25] CHR Extension: (Google Search) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-25] CHR Extension: (Google Sheets) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-25] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-09] CHR Extension: (Google Wallet) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-25] CHR Extension: (Gmail) - C:\Users\Juliette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-25] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [228480 2013-04-15] (Qualcomm Atheros Commnucations) [Fichier non signé] R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation) S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Fichier non signé] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-08] (Intel Corporation) R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-03-15] (Acer Incorporate) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-04-15] (Qualcomm Atheros) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99800 2013-05-08] (Intel Corporation) R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-09-01 22:24 - 2015-09-01 22:24 - 135360080 _____ C:\Users\Juliette\Downloads\FREE 3D Sync Intro Template - By DeastFX.rar 2015-09-01 22:12 - 2015-09-01 22:12 - 00001077 _____ C:\Users\Juliette\Desktop\MEGAsync.lnk 2015-09-01 22:12 - 2015-09-01 22:12 - 00000000 ____D C:\Users\Juliette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync 2015-09-01 22:12 - 2015-09-01 22:12 - 00000000 ____D C:\Users\Juliette\AppData\Local\MEGAsync 2015-09-01 22:12 - 2015-09-01 22:12 - 00000000 ____D C:\Users\Juliette\AppData\Local\Mega Limited 2015-09-01 22:11 - 2015-09-01 22:11 - 09980608 _____ (MEGA Limited) C:\Users\Juliette\Downloads\MEGAsyncSetup.exe 2015-09-01 13:42 - 2015-09-03 21:36 - 00000000 ____D C:\FRST 2015-08-31 22:22 - 2015-08-31 22:22 - 00326669 _____ C:\Users\Juliette\Downloads\Channel Art Templates (1).zip 2015-08-31 22:16 - 2015-08-31 22:16 - 00326669 _____ C:\Users\Juliette\Downloads\Channel Art Templates.zip 2015-08-31 00:56 - 2015-08-31 00:56 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log 2015-08-31 00:56 - 2015-05-21 08:02 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2015-08-31 00:56 - 2015-05-21 08:02 - 00110720 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys 2015-08-31 00:51 - 2015-08-31 00:51 - 00000000 ____D C:\Program Files (x86)\MarkAny 2015-08-31 00:50 - 2015-08-31 00:50 - 00000000 ____D C:\Users\Juliette\AppData\Roaming\Samsung 2015-08-31 00:50 - 2015-08-31 00:50 - 00000000 ____D C:\Users\Juliette\AppData\Local\Samsung 2015-08-31 00:49 - 2015-08-31 00:56 - 00002026 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk 2015-08-31 00:49 - 2015-08-31 00:49 - 00002016 _____ C:\Users\Public\Desktop\Samsung Kies.lnk 2015-08-31 00:48 - 2015-08-31 00:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec 2015-08-31 00:48 - 2015-08-31 00:48 - 00000000 ____D C:\Program Files (x86)\MyFree Codec 2015-08-31 00:47 - 2015-08-31 00:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2015-08-31 00:47 - 2013-06-14 19:57 - 04659712 _____ (Dmitry Streblechenko) C:\WINDOWS\SysWOW64\Redemption.dll 2015-08-31 00:46 - 2013-06-14 19:56 - 00821824 _____ (Devguru Co., Ltd.) C:\WINDOWS\SysWOW64\dgderapi.dll 2015-08-31 00:45 - 2015-08-31 00:49 - 00000000 ____D C:\Program Files (x86)\Samsung 2015-08-31 00:42 - 2015-08-31 00:42 - 00000000 ____D C:\Users\Juliette\AppData\Local\Downloaded Installations 2015-08-28 17:03 - 2015-08-11 03:20 - 25191936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-08-28 17:03 - 2015-08-11 02:20 - 19871232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-08-27 23:44 - 2015-08-27 23:45 - 00000000 ____D C:\Users\Juliette\Desktop\Photos Portable 2015-08-27 18:41 - 2015-08-27 18:42 - 28285834 _____ C:\Users\Juliette\Downloads\WD0133.wmv 2015-08-27 18:26 - 2015-08-27 18:26 - 10624142 _____ C:\Users\Juliette\Downloads\C4D_20.zip 2015-08-26 11:52 - 2015-08-26 11:52 - 00000000 ____D C:\Users\Juliette\Desktop\Espagne Avion 2015-08-26 11:19 - 2015-08-26 11:19 - 00000000 ____D C:\ProgramData\{045d8733-2db0-7230-045d-d87332db1ccc} 2015-08-25 23:08 - 2015-08-25 23:08 - 00022180 _____ C:\WINDOWS\System32\Tasks\DNSKINGSTON 2015-08-14 23:24 - 2015-09-03 11:24 - 00000374 _____ C:\WINDOWS\Tasks\Bidaily Synchronize Task[8da6].job 2015-08-14 23:24 - 2015-08-25 23:24 - 00000000 ____D C:\ProgramData\{e91295cd-4b69-2dfa-e912-295cd4b65735} 2015-08-14 23:24 - 2015-08-14 23:24 - 00003266 _____ C:\WINDOWS\System32\Tasks\Bidaily Synchronize Task[8da6] 2015-08-13 21:05 - 2015-09-03 10:44 - 00000000 ____D C:\Users\Juliette\AppData\Roaming\Skype 2015-08-13 21:05 - 2015-08-13 21:05 - 00000000 ____D C:\Users\Juliette\AppData\Local\Skype 2015-08-13 21:02 - 2015-08-13 21:11 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-08-13 21:02 - 2015-08-13 21:05 - 00000000 ____D C:\ProgramData\Skype 2015-08-13 21:02 - 2015-08-13 21:02 - 00002713 _____ C:\Users\Public\Desktop\Skype.lnk 2015-08-13 21:02 - 2015-08-13 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-08-13 21:01 - 2015-08-13 21:01 - 01385504 _____ (Skype Technologies S.A.) C:\Users\Juliette\Downloads\SkypeSetup.exe 2015-08-13 11:48 - 2015-08-13 11:48 - 00622969 _____ C:\Users\Juliette\Downloads\4033405_10081830_P.mp4 2015-08-12 12:41 - 2015-08-12 12:41 - 00000000 ____D C:\Users\Juliette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-08-12 12:30 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-08-12 12:30 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-08-12 12:29 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2015-08-12 12:29 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2015-08-12 12:29 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2015-08-12 12:29 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2015-08-12 12:29 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-08-12 12:29 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2015-08-12 12:29 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-08-12 12:28 - 2015-07-19 03:58 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-08-12 12:28 - 2015-07-18 20:51 - 03704320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-08-12 12:28 - 2015-07-18 20:31 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2015-08-12 12:28 - 2015-07-18 20:31 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2015-08-12 12:28 - 2015-07-18 20:31 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2015-08-12 12:28 - 2015-07-18 20:29 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2015-08-12 12:28 - 2015-07-18 20:29 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2015-08-12 12:28 - 2015-07-18 20:29 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2015-08-12 12:28 - 2015-07-18 20:28 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2015-08-12 12:28 - 2015-07-18 20:12 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2015-08-12 12:28 - 2015-07-18 20:10 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-08-12 12:28 - 2015-07-18 20:09 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-08-12 12:28 - 2015-07-16 22:36 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-08-12 12:28 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec 2015-08-12 12:28 - 2015-07-16 22:35 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-08-12 12:28 - 2015-07-16 22:26 - 05923328 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-08-12 12:28 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll 2015-08-12 12:28 - 2015-07-16 22:21 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-08-12 12:28 - 2015-07-16 21:53 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll 2015-08-12 12:28 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-08-12 12:28 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec 2015-08-12 12:28 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-08-12 12:28 - 2015-07-16 21:45 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2015-08-12 12:28 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll 2015-08-12 12:28 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-08-12 12:28 - 2015-07-16 21:38 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2015-08-12 12:28 - 2015-07-16 21:36 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-08-12 12:28 - 2015-07-16 21:34 - 14451200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-08-12 12:28 - 2015-07-16 21:32 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-08-12 12:28 - 2015-07-16 21:14 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2015-08-12 12:28 - 2015-07-16 21:13 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2015-08-12 12:28 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-08-12 12:28 - 2015-07-16 21:12 - 02427904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-08-12 12:28 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-08-12 12:28 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-08-12 12:28 - 2015-07-16 21:01 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-08-12 12:28 - 2015-07-16 20:52 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2015-08-12 12:28 - 2015-07-16 20:49 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2015-08-12 12:28 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-08-12 12:28 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-08-12 12:28 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2015-08-12 12:28 - 2015-06-09 20:27 - 00411133 _____ C:\WINDOWS\system32\ApnDatabase.xml 2015-08-12 12:28 - 2015-05-12 02:24 - 00536920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll 2015-08-12 12:27 - 2015-07-16 02:29 - 07458648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-08-12 12:27 - 2015-07-16 02:29 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-08-12 12:27 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys 2015-08-12 12:27 - 2015-07-16 02:28 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-08-12 12:27 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2015-08-12 12:27 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2015-08-12 12:27 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys 2015-08-12 12:27 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2015-08-12 12:27 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-08-12 12:27 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-08-12 12:24 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll 2015-08-12 12:24 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll 2015-08-12 12:24 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll 2015-08-12 12:24 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll 2015-08-12 12:09 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll 2015-08-12 12:09 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll 2015-08-12 12:08 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-08-12 12:08 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll 2015-08-12 12:08 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll 2015-08-12 12:08 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe 2015-08-12 12:08 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe 2015-08-12 12:08 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe 2015-08-12 12:03 - 2015-07-14 05:22 - 02529880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2015-08-12 12:03 - 2015-07-14 05:21 - 01901776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2015-08-12 12:03 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll 2015-08-12 12:03 - 2015-07-10 19:42 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2015-08-12 12:03 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll 2015-08-12 12:03 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2015-08-12 12:03 - 2015-07-10 18:47 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2015-08-12 12:03 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2015-08-12 12:03 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-08-12 12:03 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2015-08-12 12:02 - 2015-07-29 16:37 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-08-12 12:02 - 2015-07-29 16:30 - 01381888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-08-12 12:02 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-08-12 12:02 - 2015-07-24 20:57 - 04177408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-08-12 12:02 - 2015-07-24 20:57 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-08-12 12:02 - 2015-07-24 20:52 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-08-12 12:02 - 2015-07-24 19:27 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-08-12 12:02 - 2015-07-24 19:23 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-10-21 15:36 - 2013-06-15 12:04 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC.dat 2021-10-04 09:34 - 2013-06-15 12:04 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTMICEQ0.dat 2015-09-03 21:37 - 2015-06-13 10:26 - 00001236 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-4164027042-2629825908-1546525241-1001UA.job 2015-09-03 21:37 - 2015-06-13 10:26 - 00001184 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-4164027042-2629825908-1546525241-1001Core.job 2015-09-03 21:18 - 2014-01-09 19:31 - 01245453 _____ C:\WINDOWS\WindowsUpdate.log 2015-09-03 20:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru 2015-09-03 19:01 - 2014-01-09 19:44 - 00003968 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8F0B1D06-E07F-4035-95E7-F9428C6849F8} 2015-09-03 18:50 - 2013-08-22 16:46 - 00311994 _____ C:\WINDOWS\setupact.log 2015-09-03 18:44 - 2014-05-09 11:22 - 00000000 ___RD C:\Users\Juliette\Dropbox 2015-09-03 18:44 - 2014-05-09 11:16 - 00000000 ____D C:\Users\Juliette\AppData\Roaming\Dropbox 2015-09-03 18:44 - 2014-01-30 13:50 - 00000000 __RDO C:\Users\Juliette\SkyDrive 2015-09-03 18:42 - 2015-07-22 21:51 - 00000000 ____D C:\Users\Juliette\Tracing 2015-09-02 21:25 - 2014-01-09 20:14 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4164027042-2629825908-1546525241-1001 2015-09-02 20:23 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-09-01 22:34 - 2014-01-09 19:21 - 00000000 ____D C:\Users\Juliette 2015-09-01 22:15 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-08-31 22:24 - 2014-02-04 11:30 - 00000000 ____D C:\Users\Juliette\Desktop\ISAAC 2015-08-31 00:46 - 2013-05-29 09:07 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-08-31 00:45 - 2014-09-22 23:17 - 00000000 ____D C:\ProgramData\Samsung 2015-08-29 13:26 - 2013-11-14 00:22 - 00698892 _____ C:\WINDOWS\PFRO.log 2015-08-28 18:18 - 2014-05-22 07:57 - 00000000 ____D C:\Users\Juliette\Desktop\PHOTOS 2015-08-28 18:13 - 2015-07-11 02:20 - 00000000 ____D C:\Program Files (x86)\Unofficial Gimme Bar Extension 2015-08-28 17:50 - 2015-05-15 09:42 - 00000000 ____D C:\Program Files (x86)\SmooThvIew 2015-08-28 17:48 - 2015-05-21 07:53 - 00000000 ____D C:\Program Files (x86)\Cloudy for Gmail 2015-08-28 17:04 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-08-28 15:23 - 2015-05-12 09:18 - 00000000 ____D C:\Program Files (x86)\Microformats for Google Chrome 2015-08-28 00:42 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\System 2015-08-28 00:42 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-08-27 23:55 - 2015-01-23 21:35 - 00000000 ____D C:\ProgramData\{cc373091-6a73-b868-cc37-730916a7c245} 2015-08-27 23:55 - 2015-01-23 21:26 - 00000000 ____D C:\ProgramData\{8a115dfe-ef57-c532-8a11-15dfeef577fb} 2015-08-27 23:55 - 2015-01-23 21:15 - 00000000 ____D C:\ProgramData\{cc677934-c8f7-873c-cc67-77934c8fe4d3} 2015-08-27 23:54 - 2015-01-23 21:29 - 00000000 ____D C:\ProgramData\{110b43c7-788f-2a43-110b-b43c77880f1d} 2015-08-27 23:54 - 2015-01-23 21:28 - 00000000 ____D C:\ProgramData\{5e1c6d06-25b1-a0d0-5e1c-c6d0625bb418} 2015-08-27 23:50 - 2014-10-03 18:16 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-08-27 23:50 - 2014-07-24 17:59 - 00000000 ____D C:\Users\Juliette\Desktop\TEXTES 2015-08-27 22:55 - 2014-12-26 14:00 - 00000000 __SHD C:\Users\Juliette\AppData\Local\EmieBrowserModeList 2015-08-27 22:55 - 2014-05-18 21:39 - 00000000 __SHD C:\Users\Juliette\AppData\Local\EmieUserList 2015-08-27 22:55 - 2014-05-18 21:39 - 00000000 __SHD C:\Users\Juliette\AppData\Local\EmieSiteList 2015-08-26 13:22 - 2014-10-03 18:39 - 00000000 ____D C:\AdwCleaner 2015-08-26 13:04 - 2013-11-14 09:32 - 01824010 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-08-26 13:04 - 2013-11-14 09:13 - 00812350 _____ C:\WINDOWS\system32\perfh00C.dat 2015-08-26 13:04 - 2013-11-14 09:13 - 00159412 _____ C:\WINDOWS\system32\perfc00C.dat 2015-08-25 23:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-08-25 22:55 - 2015-07-22 21:40 - 00003112 _____ C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4164027042-2629825908-1546525241-1001 2015-08-25 22:55 - 2015-07-22 21:40 - 00000000 ___RD C:\Users\Juliette\OneDrive 2015-08-14 14:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache 2015-08-14 11:55 - 2014-12-10 10:18 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-08-14 11:55 - 2014-07-17 23:58 - 00000000 ___SD C:\WINDOWS\system32\CompatTel 2015-08-14 11:55 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-08-14 11:55 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-08-14 11:55 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender 2015-08-14 11:55 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-08-13 08:34 - 2013-08-22 16:44 - 00429976 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-08-12 12:30 - 2014-01-09 20:55 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-08-12 12:23 - 2014-01-09 20:55 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-08-12 12:22 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-12 12:22 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-08 15:55 - 2014-11-14 01:04 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-08-08 15:55 - 2014-04-29 17:36 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe ==================== Fichiers à la racine de certains dossiers ======= 2015-06-18 17:44 - 2015-07-31 10:59 - 0000020 _____ () C:\Users\Juliette\AppData\Roaming\appdataFr2.bin 2015-05-21 19:39 - 2015-05-21 19:39 - 0000024 _____ () C:\Users\Juliette\AppData\Roaming\appdataFr25.bin 2015-03-03 19:56 - 2015-04-26 12:08 - 0000020 _____ () C:\Users\Juliette\AppData\Roaming\appdataFr3.bin 2015-03-31 22:54 - 2015-03-31 22:54 - 0005120 _____ () C:\Users\Juliette\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-06-23 08:47 - 2014-06-23 08:47 - 0000017 _____ () C:\Users\Juliette\AppData\Local\resmon.resmoncfg Certains fichiers dans TEMP: ==================== C:\Users\Juliette\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpywevgg.dll ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2015-08-26 00:16 ==================== Fin de FRST.txt ============================