RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 15-10-2017
ExÃ©cutÃ© par eve (administrateur) sur PC-FABIENNE (16-10-2017 16:55:53)
ExÃ©cutÃ© depuis C:\Users\eve\Desktop
Profils chargÃ©s: eve (Profils disponibles: eve & Administrateur)
Platform: Windows 8.1 (Update) (X64) Langue: FranÃ§ais (France)
Internet Explorer Version 11 (Navigateur par dÃ©faut: Chrome)
Mode d'amorÃ§age: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(CyberGhost S.A.) C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
() C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(QualcommÂ®AtherosÂ®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgui.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(CyberGhost S.A.) C:\Program Files\CyberGhost 6\CyberGhost.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.107.36.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.107.36.0\OverwolfHelper64.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.107.36.0\OverwolfBrowser.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.107.36.0\OverwolfBrowser.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registre (Avec liste blanche) ===========================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2404296 2014-08-09] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13674712 2014-07-16] (Realtek Semiconductor)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-06] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [263088 2017-04-03] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] (QualcommÂ®AtherosÂ®)
HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2015-03-06] (Spotify Ltd)
HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832272 2017-08-25] (Skype Technologies S.A.)
HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1248848 2017-08-31] (CyberGhost S.A.)
HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1052488 2017-09-10] ()
HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\...\MountPoints2: {4cd73c3a-f875-11e6-830a-d05349e20dd4} - "E:\iLinker.exe" 
GroupPolicy: Restriction - Chrome <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{8dd679e8-4c30-4fbb-8404-6c281884b657}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{8dd679e8-4c30-4fbb-8404-6c281884b657}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{a359f102-8dc5-46ea-8fb6-db451a724072}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{b8011be3-dd19-4dcb-8b0f-a0b0b65b8a82}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{edf01fe8-e996-4cca-9c7b-e51f82f2e679}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-42ee87ea
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-42ee87ea
HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid=%7B80C8C516-3D24-4D0F-B733-B646FE11643A%7D&mid=ca0c68c43cbd47cca1de213f5a9b1079-3e1d943db624a7ca1e3d2fcde0c74f9811c388b0&lang=en&ds=AVG&coid=avgtbavg&cmpid=0216piz&pr=fr&d=2016-04-25%2008:15:24&v=4.3.1.831&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> DefaultScope {F5D62390-1431-4E8F-A765-D5F80A9466AD} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-42ee87ea&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM -> {F5D62390-1431-4E8F-A765-D5F80A9466AD} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-42ee87ea&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {F5D62390-1431-4E8F-A765-D5F80A9466AD} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-42ee87ea&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {F5D62390-1431-4E8F-A765-D5F80A9466AD} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-42ee87ea&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2264832276-4292698039-1854585965-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={80C8C516-3D24-4D0F-B733-B646FE11643A}&mid=ca0c68c43cbd47cca1de213f5a9b1079-3e1d943db624a7ca1e3d2fcde0c74f9811c388b0&lang=en&ds=AVG&coid=avgtbavg&cmpid=0716tb&pr=fr&d=2016-04-25 08:15:24&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2264832276-4292698039-1854585965-1001 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxps://mysearch.avg.com/search?cid={80C8C516-3D24-4D0F-B733-B646FE11643A}&mid=ca0c68c43cbd47cca1de213f5a9b1079-3e1d943db624a7ca1e3d2fcde0c74f9811c388b0&lang=en&ds=AVG&coid=avgtbavg&cmpid=0716tb&pr=fr&d=2016-04-25 08:15:24&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2264832276-4292698039-1854585965-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={80C8C516-3D24-4D0F-B733-B646FE11643A}&mid=ca0c68c43cbd47cca1de213f5a9b1079-3e1d943db624a7ca1e3d2fcde0c74f9811c388b0&lang=en&ds=AVG&coid=avgtbavg&cmpid=0716tb&pr=fr&d=2016-04-25 08:15:24&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2264832276-4292698039-1854585965-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2264832276-4292698039-1854585965-1001 -> {F5D62390-1431-4E8F-A765-D5F80A9466AD} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2016-09-01] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2016-09-01] (Oracle Corporation)

FireFox:
========
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2016-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2016-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin HKU\S-1-5-21-2264832276-4292698039-1854585965-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\eve\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-08-19] (Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-2264832276-4292698039-1854585965-1001: SkypePlugin -> C:\Users\eve\AppData\Local\SkypePlugin\7.23.0.54\npGatewayNpapi.dll [2016-08-11] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-2264832276-4292698039-1854585965-1001: SkypePlugin64 -> C:\Users\eve\AppData\Local\SkypePlugin\7.23.0.54\npGatewayNpapi-x64.dll [2016-08-11] (Skype Technologies S.A.)

Chrome: 
=======
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxp://www.google.fr/","hxxp://www.google.fr/"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default [2017-10-16]
CHR Extension: (Slides) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (I'm a Gentleman) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\afjaicccalbbickikgdegaihmajaidpd [2017-07-10]
CHR Extension: (SEOquake) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\akdgnmcogleenhbclghghlkkdndkjdjc [2017-10-04]
CHR Extension: (Docs) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (GoogleÂ Drive) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-24]
CHR Extension: (Appel Skype) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2016-04-30]
CHR Extension: (YouTube) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-24]
CHR Extension: (AVG Secure Search) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-10-12]
CHR Extension: (Dropbox pour Gmail) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-01]
CHR Extension: (Facebook Pixel Helper) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2017-10-11]
CHR Extension: (Sheets) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-24]
CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-10-11]
CHR Extension: (Rendement Locatif) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhlbghechidndabckcpalkdkdckloceo [2017-09-01]
CHR Extension: (Web Scraper) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnhgnonknehpejjnehehllkliplmbmhn [2017-09-29]
CHR Extension: (Turbo Ad Finder) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjbjojolojmokicddfeaamkodihccdcl [2017-08-17]
CHR Extension: (iGraal) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2017-07-21]
CHR Extension: (Skype) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-08-01]
CHR Extension: (Scraper) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbigbapnjcgaffohmbkdlecaccepngjd [2017-07-08]
CHR Extension: (Quick SEO - PageRank, Backlinks & Alexa Tool) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mimhmidgldhoghjoehfigallmmndjkef [2017-08-15]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-24]
CHR Extension: (Data Scraper - Easy Web Scraping) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nndknepjnldbdbepjfgmncbggmopgden [2017-09-30]
CHR Extension: (Search Manager) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\olojcnagmcbplpdddabmpfehhlleobpb [2017-06-29]
CHR Extension: (Pinterest Email Signature - by WiseStamp) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjdddniiilohhknbohjpaadmemiphbik [2016-05-30]
CHR Extension: (Gmail) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-29]
CHR Profile: C:\Users\eve\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-12]
CHR HKLM\...\Chrome\Extension: [olojcnagmcbplpdddabmpfehhlleobpb] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2264832276-4292698039-1854585965-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olojcnagmcbplpdddabmpfehhlleobpb] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [olojcnagmcbplpdddabmpfehhlleobpb] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Windows (R) Win 7 DDK provider) [Fichier non signÃ©]
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [262696 2017-04-03] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7448992 2017-04-03] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-10-06] (AVG Technologies CZ, s.r.o.)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2267352 2016-08-30] (Acer Incorporated)
R2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [232528 2017-08-31] (CyberGhost S.A.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd.)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-07-22] (Acer Incorporated)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [344168 2014-12-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-09-03] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [472808 2014-11-05] (Acer Incorporate)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1721800 2014-08-09] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1450824 2017-09-10] (Overwolf LTD)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-10-17] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-10-17] (Acer Incorporate)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-07-26] (AVG Technologies CZ, s.r.o.)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
R1 avgbdisk; C:\WINDOWS\system32\drivers\avgbdiska.sys [166136 2017-04-03] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdrivera.sys [310056 2017-04-03] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\system32\drivers\avgbidsha.sys [192096 2017-04-03] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\system32\drivers\avgbloga.sys [336408 2017-04-03] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\system32\drivers\avgbuniva.sys [50848 2017-04-03] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\system32\drivers\avgHwid.sys [39288 2017-04-03] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [129776 2017-04-30] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [102136 2017-04-03] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [76688 2017-04-03] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [1006040 2017-04-03] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [557912 2017-04-30] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [165048 2017-04-03] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [340688 2017-04-03] (AVG Technologies CZ, s.r.o.)
R3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-25] (Qualcomm Atheros)
R3 ETDI2C; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [173384 2014-04-09] (ELAN Microelectronic Corp.)
R3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [35832 2014-06-10] (Intel Corporation)
R3 iaLPSS_I2C; C:\WINDOWS\System32\drivers\iaLPSS_I2C.sys [120312 2014-06-10] (Intel Corporation)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [506072 2014-06-20] (Realsil Semiconductor Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S0 MBAMSwissArmy; System32\Drivers\mbamswissarmy.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois - CrÃ©Ã©s - fichiers et dossiers ========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2017-10-16 16:55 - 2017-10-16 16:55 - 000000000 ____D C:\Users\eve\Desktop\FRST-OlderVersion
2017-10-16 16:15 - 2017-10-16 16:15 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-10-16 16:15 - 2017-10-16 16:15 - 000002241 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-10-16 16:14 - 2017-10-16 16:14 - 000003500 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-10-16 16:14 - 2017-10-16 16:14 - 000003372 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-10-12 23:22 - 2017-10-12 23:22 - 000003704 _____ C:\WINDOWS\System32\Tasks\Java(TM) Platform SE Auto Updater
2017-10-12 15:49 - 2017-10-12 15:49 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-12 15:49 - 2017-10-12 15:49 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-12 15:47 - 2017-10-12 15:48 - 071535032 _____ (Malwarebytes ) C:\Users\eve\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.212-1.0.2951.exe
2017-10-12 15:41 - 2017-10-12 15:41 - 008250832 _____ (Malwarebytes) C:\Users\eve\Downloads\adwcleaner_7.0.3.1 (1).exe
2017-10-12 15:29 - 2017-10-12 16:17 - 000000000 ____D C:\rei
2017-10-12 15:29 - 2017-10-12 16:17 - 000000000 ____D C:\Program Files\Reimage
2017-10-12 15:18 - 2017-10-12 15:18 - 001130328 _____ (Google Inc.) C:\Users\eve\Downloads\ChromeSetup.exe
2017-10-12 15:02 - 2017-10-12 15:02 - 000333056 _____ C:\Users\eve\Downloads\pjjoint_uploader.exe
2017-10-12 15:02 - 2017-10-12 15:02 - 000066355 _____ C:\Users\eve\Desktop\HijackThis.exe
2017-10-12 14:44 - 2017-10-12 14:47 - 000054945 _____ C:\Users\eve\Desktop\Addition.txt
2017-10-12 14:42 - 2017-10-16 16:56 - 000028175 _____ C:\Users\eve\Desktop\FRST.txt
2017-10-12 14:38 - 2017-10-12 14:38 - 002401792 _____ (Farbar) C:\Users\eve\Downloads\Non confirmÃ© 149195.crdownload
2017-10-12 11:04 - 2017-10-12 11:04 - 000000000 _____ C:\autoexec.bat
2017-10-12 10:41 - 2017-10-12 10:41 - 008250832 _____ (Malwarebytes) C:\Users\eve\Downloads\adwcleaner_7.0.3.1.exe
2017-10-12 10:34 - 2017-10-12 10:38 - 000055787 _____ C:\Users\eve\Downloads\Addition.txt
2017-10-12 10:32 - 2017-10-16 16:55 - 000000000 ____D C:\FRST
2017-10-12 10:32 - 2017-10-12 10:38 - 000076335 _____ C:\Users\eve\Downloads\FRST.txt
2017-10-12 10:31 - 2017-10-16 16:55 - 002401792 _____ (Farbar) C:\Users\eve\Desktop\FRST64.exe
2017-10-12 09:41 - 2017-10-12 09:41 - 000000290 __RSH C:\ProgramData\ntuser.pol
2017-10-12 09:39 - 2017-10-12 09:40 - 000563109 _____ ( ) C:\Users\eve\Downloads\Crack_Camtasia_Studio_9 (2).exe
2017-10-12 09:39 - 2017-10-12 09:40 - 000563109 _____ ( ) C:\Users\eve\Downloads\Crack_Camtasia_Studio_9 (1).exe
2017-10-12 09:39 - 2017-10-12 09:39 - 000563109 _____ ( ) C:\Users\eve\Downloads\Crack_Camtasia_Studio_9.exe
2017-10-11 21:25 - 2017-10-11 21:26 - 069770270 _____ C:\Users\eve\Downloads\Non confirmÃ© 888226.crdownload
2017-10-11 20:32 - 2017-10-11 20:32 - 000925832 _____ (Overwolf Ltd.) C:\Users\eve\Downloads\VideoCapture-OverwolfInstaller (1).exe
2017-10-11 20:29 - 2017-10-11 20:29 - 000004306 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2017-10-11 20:29 - 2017-10-11 20:29 - 000001061 _____ C:\Users\Public\Desktop\Overwolf.lnk
2017-10-11 20:29 - 2017-10-11 20:29 - 000000000 ____D C:\Users\eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2017-10-11 20:27 - 2017-10-11 20:29 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-10-11 20:26 - 2017-10-11 20:33 - 000000000 ____D C:\ProgramData\Overwolf
2017-10-11 20:24 - 2017-10-16 16:04 - 000000000 ____D C:\Users\eve\AppData\Local\Overwolf
2017-10-11 20:24 - 2017-10-11 20:24 - 000925832 _____ (Overwolf Ltd.) C:\Users\eve\Downloads\VideoCapture-OverwolfInstaller.exe
2017-10-11 19:39 - 2017-10-11 19:39 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2017-10-11 19:38 - 2017-10-11 19:39 - 000000000 ____D C:\Users\eve\AppData\Roaming\DVDVideoSoft
2017-10-11 19:38 - 2017-10-11 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2017-10-11 19:38 - 2017-10-11 19:38 - 000001351 _____ C:\Users\Public\Desktop\Free Screen Video Recorder.lnk
2017-10-11 19:38 - 2017-10-11 19:38 - 000001319 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2017-10-11 19:38 - 2017-10-11 19:38 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2017-10-11 19:38 - 2017-10-11 19:38 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft
2017-10-11 19:36 - 2017-10-11 19:38 - 032359496 _____ (Digital Wave Ltd ) C:\Users\eve\Downloads\FreeScreenVideoRecorder_3.0.45.1027_d.exe
2017-10-11 19:28 - 2017-10-11 19:28 - 000000000 ____D C:\Users\eve\AppData\Local\ScreenRecorder
2017-10-11 19:28 - 2017-10-11 19:28 - 000000000 ____D C:\Users\eve\AppData\Local\Movavi
2017-10-11 19:26 - 2017-10-11 19:26 - 000004992 _____ C:\ProgramData\eslierbc.jnj
2017-10-11 19:26 - 2017-10-11 19:26 - 000000016 _____ C:\ProgramData\mntemp
2017-10-11 19:26 - 2017-10-11 19:26 - 000000000 ____D C:\ProgramData\Movavi Screen Recorder 9
2017-10-11 19:26 - 2017-10-11 19:26 - 000000000 ____D C:\ProgramData\Movavi
2017-10-11 19:25 - 2017-10-11 19:26 - 044883512 _____ (Movavi) C:\Users\eve\Downloads\MovaviScreenRecorderSetupC.exe
2017-10-11 19:19 - 2017-10-11 19:20 - 007201032 _____ (Microsoft Corporation) C:\Users\eve\Downloads\vcredist_x64 (1).exe
2017-10-11 19:19 - 2017-10-11 19:20 - 006510544 _____ (Microsoft Corporation) C:\Users\eve\Downloads\vcredist_x86.exe
2017-10-11 19:03 - 2017-10-11 19:05 - 101899104 _____ (obsproject.com) C:\Users\eve\Downloads\OBS-Studio-20.0.1-Full-Installer (1).exe
2017-10-11 18:24 - 2017-10-11 18:34 - 000000000 ____D C:\Program Files (x86)\Webinaria
2017-10-11 18:24 - 2017-10-11 18:25 - 000000000 ___SD C:\Users\eve\Documents\Webinaria Files
2017-10-11 18:22 - 2017-10-11 18:23 - 002584502 _____ (Charlwood eMarketing ) C:\Users\eve\Downloads\WebinariaSetup.exe
2017-10-11 18:14 - 2017-10-11 18:14 - 000000000 ____D C:\Users\eve\AppData\Roaming\Renee
2017-10-11 18:14 - 2017-10-11 18:14 - 000000000 ____D C:\Users\eve\AppData\Roaming\NVIDIA
2017-10-11 18:14 - 2017-10-11 18:14 - 000000000 ____D C:\Users\eve\AppData\Roaming\GiliSoft
2017-10-11 18:12 - 2017-10-11 18:12 - 013274520 _____ (Reneelab.com ) C:\Users\eve\Downloads\ReneeScreenRecorder_Latest.exe
2017-10-11 16:19 - 2017-10-11 16:22 - 000000000 ____D C:\Users\eve\AppData\Local\{EE6DD831-CAC5-B489-A75D-916183356DF9}
2017-10-11 11:58 - 2017-10-11 11:59 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-11 11:55 - 2017-09-14 21:30 - 007439704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-11 11:55 - 2017-09-14 03:18 - 001384216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-11 11:55 - 2017-09-09 20:53 - 022361864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-11 11:55 - 2017-09-09 19:55 - 019790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-10-11 11:55 - 2017-09-09 18:10 - 003631616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-11 11:55 - 2017-09-09 17:49 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-10-11 11:55 - 2017-09-09 17:47 - 014466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-11 11:55 - 2017-09-09 17:21 - 012879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-10-11 11:55 - 2017-09-09 05:50 - 002013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-11 11:55 - 2017-09-08 20:21 - 004168192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-10-11 11:55 - 2017-09-07 23:15 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-10-11 11:55 - 2017-09-07 23:08 - 025729536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-11 11:55 - 2017-09-07 22:40 - 005982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-11 11:55 - 2017-09-07 21:44 - 015262720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-11 11:55 - 2017-09-07 21:40 - 003240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-11 11:55 - 2017-09-07 21:27 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-11 11:55 - 2017-09-07 21:04 - 020267008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-10-11 11:55 - 2017-09-07 21:03 - 002292736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-10-11 11:55 - 2017-09-07 20:29 - 004547072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-10-11 11:55 - 2017-09-07 20:17 - 013677568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-10-11 11:55 - 2017-09-07 20:01 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-10-11 11:55 - 2017-09-07 19:57 - 001316864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-10-11 11:54 - 2017-09-14 21:30 - 001737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-10-11 11:54 - 2017-09-14 21:29 - 001502000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-10-11 11:54 - 2017-09-14 03:14 - 001124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-10-11 11:54 - 2017-09-13 15:32 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-11 11:54 - 2017-09-13 15:31 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-11 11:54 - 2017-09-13 15:27 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-10-11 11:54 - 2017-09-09 19:38 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-11 11:54 - 2017-09-09 15:13 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-10-11 11:54 - 2017-09-09 15:13 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-10-11 11:54 - 2017-09-09 15:13 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-10-11 11:54 - 2017-09-09 05:50 - 001364552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-10-11 11:54 - 2017-09-08 20:15 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-11 11:54 - 2017-09-08 19:39 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2017-10-11 11:54 - 2017-09-08 18:57 - 001084928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-10-11 11:54 - 2017-09-07 23:33 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-11 11:54 - 2017-09-07 23:33 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-11 11:54 - 2017-09-07 23:32 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-11 11:54 - 2017-09-07 23:32 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-10-11 11:54 - 2017-09-07 23:17 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-10-11 11:54 - 2017-09-07 23:17 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-10-11 11:54 - 2017-09-07 23:00 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-11 11:54 - 2017-09-07 22:32 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-10-11 11:54 - 2017-09-07 22:31 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-10-11 11:54 - 2017-09-07 22:29 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-10-11 11:54 - 2017-09-07 22:21 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-10-11 11:54 - 2017-09-07 22:13 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-10-11 11:54 - 2017-09-07 22:11 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-10-11 11:54 - 2017-09-07 22:10 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-10-11 11:54 - 2017-09-07 22:10 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-10-11 11:54 - 2017-09-07 22:08 - 002134528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-10-11 11:54 - 2017-09-07 22:08 - 000656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-11 11:54 - 2017-09-07 21:54 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-10-11 11:54 - 2017-09-07 21:17 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-10-11 11:54 - 2017-09-07 21:10 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-10-11 11:54 - 2017-09-07 21:09 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-10-11 11:54 - 2017-09-07 20:58 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-10-11 11:54 - 2017-09-07 20:39 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-10-11 11:54 - 2017-09-07 20:38 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-10-11 11:54 - 2017-09-07 20:37 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-10-11 11:54 - 2017-09-07 20:33 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-10-11 11:54 - 2017-09-07 20:29 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-10-11 11:54 - 2017-09-07 20:27 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-10-11 11:54 - 2017-09-07 20:26 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-10-11 11:54 - 2017-09-07 20:25 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-10-11 11:54 - 2017-09-07 20:24 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-10-11 11:54 - 2017-09-07 19:57 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-10-11 11:54 - 2017-08-13 21:48 - 000202592 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-11 11:54 - 2017-08-13 19:52 - 000174944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-10-11 11:54 - 2017-08-13 19:10 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-11 11:54 - 2017-08-13 18:33 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-10-11 11:54 - 2017-08-11 04:54 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-10-11 11:54 - 2017-08-11 04:22 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-10-11 11:54 - 2017-08-11 04:20 - 001436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-11 11:54 - 2017-08-11 04:16 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-11 11:54 - 2017-08-11 03:57 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-10-11 11:54 - 2017-08-06 23:50 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-10-11 11:54 - 2017-08-06 23:20 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-10-11 11:54 - 2017-08-06 23:13 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-10-11 11:54 - 2017-08-06 09:08 - 000561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-10-11 11:54 - 2017-08-02 04:19 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-10-11 11:54 - 2017-08-01 10:25 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-10-11 11:46 - 2017-10-11 11:47 - 000040272 _____ C:\Users\eve\Desktop\ag sas.odt
2017-10-11 11:32 - 2017-10-11 18:06 - 000000408 _____ C:\Users\eve\AppData\Roaming\CamShapes.ini
2017-10-11 11:32 - 2017-10-11 18:06 - 000000408 _____ C:\Users\eve\AppData\Roaming\CamLayout.ini
2017-10-11 11:32 - 2017-10-11 18:06 - 000000096 _____ C:\Users\eve\AppData\Roaming\Camdata.ini
2017-10-11 10:59 - 2017-10-11 10:59 - 011438475 _____ (CamStudio Open Source ) C:\Users\eve\Downloads\CamStudio_Setup_2-7_r316.exe
2017-10-11 10:53 - 2017-10-11 18:06 - 000004509 _____ C:\Users\eve\AppData\Roaming\CamStudio.cfg
2017-10-11 10:51 - 2017-10-11 10:54 - 000000000 ____D C:\Program Files (x86)\CamStudio 2.7
2017-10-11 10:49 - 2017-10-11 10:50 - 003099532 _____ (CamStudio Open Source ) C:\Users\eve\Downloads\camstudio_2-7-2-r316_fr_10618.exe
2017-10-11 09:21 - 2017-10-11 10:29 - 000000000 ____D C:\Users\eve\.openshot_qt
2017-10-11 09:20 - 2017-10-11 09:20 - 000000919 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenShot Video Editor.lnk
2017-10-11 09:20 - 2017-10-11 09:20 - 000000907 _____ C:\Users\Public\Desktop\OpenShot Video Editor.lnk
2017-10-11 09:19 - 2017-10-11 09:20 - 000000000 ____D C:\Program Files\OpenShot Video Editor
2017-10-11 09:14 - 2017-10-11 09:17 - 133741320 _____ (OpenShot Studios, LLC ) C:\Users\eve\Downloads\OpenShot-v2.4.0-x86_64.exe
2017-10-10 22:52 - 2017-10-10 22:52 - 000001250 _____ C:\Users\Public\Desktop\Windows Movie Maker.lnk
2017-10-10 22:52 - 2017-10-10 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker
2017-10-10 22:51 - 2017-10-10 22:51 - 000000000 ____D C:\Program Files (x86)\Windows Movie Maker
2017-10-10 22:47 - 2017-10-10 23:02 - 057057801 _____ (windows-movie-maker.org ) C:\Users\eve\Downloads\Non confirmÃ© 76951.crdownload
2017-10-10 15:53 - 2017-10-10 15:55 - 074699264 _____ (windows-movie-maker.org ) C:\Users\eve\Downloads\windows-movie-maker-2016-multi (2).exe
2017-10-10 14:47 - 2017-10-10 14:48 - 074699264 _____ (windows-movie-maker.org ) C:\Users\eve\Downloads\windows-movie-maker-2016-multi (3).exe
2017-10-10 09:35 - 2017-10-10 09:35 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (9).pdf
2017-10-10 09:13 - 2017-10-10 09:13 - 016726683 _____ C:\Users\eve\Downloads\Enfin RentierÂ® Mes meilleures lectures, apps et theÌme pour bien deÌmarrer votre E commerce.pdf
2017-10-09 16:59 - 2017-10-09 17:01 - 082499329 _____ C:\Users\eve\Downloads\ipad-holding-woman.psd (1).zip
2017-10-09 16:47 - 2017-10-09 16:47 - 000036520 _____ C:\Users\eve\Downloads\PSDPlugin-2.5.0.zip
2017-10-09 14:52 - 2017-10-09 14:54 - 082499329 _____ C:\Users\eve\Downloads\ipad-holding-woman.psd.zip
2017-10-09 14:35 - 2017-10-09 14:36 - 000062045 _____ C:\Users\eve\Downloads\Declaration_2107284.pdf
2017-10-09 10:04 - 2017-10-09 10:04 - 000000000 ____D C:\Users\eve\AppData\Local\webkit
2017-10-09 09:18 - 2017-10-09 09:20 - 000000914 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2017-10-09 09:17 - 2017-10-09 09:18 - 000000000 ____D C:\Program Files\GIMP 2
2017-10-09 09:04 - 2017-10-09 09:04 - 000000000 ____D C:\Users\eve\AppData\Local\gegl-0.2
2017-10-09 09:04 - 2017-10-09 09:04 - 000000000 ____D C:\Users\eve\AppData\Local\fontconfig
2017-10-08 09:04 - 2017-10-08 09:07 - 037729370 _____ C:\Users\eve\Downloads\mockup10.zip
2017-10-08 08:13 - 2017-10-08 08:17 - 089579672 _____ (The GIMP Team ) C:\Users\eve\Downloads\gimp-2.8.22-setup.exe
2017-10-07 19:33 - 2017-10-07 19:33 - 000095468 _____ C:\Users\eve\Downloads\barbier-elsa (4).pdf
2017-10-07 19:32 - 2017-10-07 19:32 - 000095468 _____ C:\Users\eve\Downloads\barbier-elsa (3).pdf
2017-10-07 19:32 - 2017-10-07 19:32 - 000095468 _____ C:\Users\eve\Downloads\barbier-elsa (2).pdf
2017-10-07 19:32 - 2017-10-07 19:32 - 000095468 _____ C:\Users\eve\Downloads\barbier-elsa (1).pdf
2017-10-07 19:20 - 2017-10-07 19:20 - 000095511 _____ C:\Users\eve\Downloads\barbier-elsa.pdf
2017-10-07 18:39 - 2017-10-07 18:39 - 000062618 _____ C:\Users\eve\Downloads\declaration_norme.pdf
2017-10-07 17:48 - 2017-10-07 17:48 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (8).pdf
2017-10-07 17:48 - 2017-10-07 17:48 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (7).pdf
2017-10-07 17:48 - 2017-10-07 17:48 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (6).pdf
2017-10-07 17:47 - 2017-10-07 17:47 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (5).pdf
2017-10-07 17:47 - 2017-10-07 17:47 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (4).pdf
2017-10-07 17:47 - 2017-10-07 17:47 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (3).pdf
2017-10-07 17:47 - 2017-10-07 17:47 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (2).pdf
2017-10-07 17:47 - 2017-10-07 17:47 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo (1).pdf
2017-10-07 17:46 - 2017-10-07 17:46 - 000039446 _____ C:\Users\eve\Downloads\Liste des 25 produits promette urs preÌsenteÌs en videÌo.pdf
2017-10-07 17:41 - 2017-10-07 17:41 - 000000000 ____D C:\Users\eve\AppData\Local\Notepad++
2017-10-07 17:41 - 2017-10-07 17:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-10-07 16:20 - 2017-10-07 16:20 - 000001276 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2017-10-07 16:20 - 2017-10-07 16:20 - 000001264 _____ C:\Users\Public\Desktop\paint.net.lnk
2017-10-07 16:19 - 2017-10-07 16:19 - 000000000 ____D C:\Program Files\paint.net
2017-10-07 16:15 - 2017-10-07 16:25 - 000000000 ____D C:\Users\eve\AppData\Local\paint.net
2017-10-07 16:12 - 2017-10-07 16:12 - 007210509 _____ C:\Users\eve\Downloads\paint.net.4.0.19.install.zip
2017-10-06 11:20 - 2017-10-06 11:20 - 000012051 _____ C:\Users\eve\Downloads\Audiences-FB (1).xlsx
2017-10-05 21:04 - 2017-10-05 21:11 - 302948352 _____ C:\Users\eve\Downloads\HitFilmExpress2017_x64_5.0.6718.07202.msi
2017-10-05 20:53 - 2017-10-05 20:53 - 000000000 ____D C:\Users\eve\AppData\Roaming\WMM
2017-10-05 20:52 - 2017-10-10 22:55 - 000001394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2017-10-05 20:52 - 2017-10-05 20:52 - 000000000 ____D C:\WINDOWS\en
2017-10-05 20:52 - 2017-10-05 20:52 - 000000000 ____D C:\Program Files\Windows Live
2017-10-05 20:51 - 2017-10-10 22:55 - 000001325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2017-10-05 20:51 - 2017-10-05 20:51 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2017-10-05 20:50 - 2017-10-10 22:52 - 000000000 ____D C:\Program Files (x86)\Windows Live
2017-10-05 20:49 - 2017-10-05 20:53 - 074699264 _____ (windows-movie-maker.org ) C:\Users\eve\Downloads\windows-movie-maker-2016-multi (1).exe
2017-10-05 18:56 - 2017-10-05 19:01 - 074699264 _____ (windows-movie-maker.org ) C:\Users\eve\Downloads\windows-movie-maker-2016-multi.exe
2017-10-05 08:55 - 2017-10-05 08:55 - 000098198 _____ C:\Users\eve\Downloads\Facture_1098022461.pdf
2017-10-04 20:33 - 2017-10-04 20:33 - 000431424 _____ C:\Users\eve\Desktop\certifiactmedicalmayeul008.pdf
2017-10-04 16:45 - 2017-10-04 16:45 - 000043687 _____ C:\Users\eve\Downloads\KDO Magic Domain registration for kdomagic.com.pdf
2017-10-03 21:05 - 2017-10-03 21:06 - 023572723 _____ C:\Users\eve\Downloads\Fiches EnfinRentierÂ® valideÌes (4).zip
2017-10-03 21:04 - 2017-10-03 21:04 - 000928016 _____ C:\Users\eve\Downloads\PDF Jour 2 (2).pdf
2017-10-03 17:43 - 2017-10-03 17:43 - 000928016 _____ C:\Users\eve\Downloads\PDF Jour 2.pdf
2017-10-03 17:43 - 2017-10-03 17:43 - 000928016 _____ C:\Users\eve\Downloads\PDF Jour 2 (1).pdf
2017-10-03 16:16 - 2017-10-03 16:16 - 000928220 _____ C:\Users\eve\Downloads\PDF Jour 1 (2).pdf
2017-10-03 16:14 - 2017-10-03 16:14 - 000928220 _____ C:\Users\eve\Downloads\PDF Jour 1 (1).pdf
2017-10-03 16:13 - 2017-10-03 16:14 - 000928220 _____ C:\Users\eve\Downloads\PDF Jour 1.pdf
2017-10-02 19:17 - 2017-10-02 19:17 - 001321675 _____ C:\Users\eve\Downloads\Ce que j'ai appris de Christian GODEFROY - Introduction.pdf
2017-10-01 21:27 - 2017-10-01 21:27 - 001522635 _____ C:\Users\eve\Downloads\Guide-de-l-affiliation-pour-debutants.zip
2017-09-28 10:38 - 2017-09-28 10:38 - 000047252 _____ C:\Users\eve\Downloads\MeÌthode pour deÌcrocher des clients par mail.pdf
2017-09-27 15:14 - 2017-09-27 15:14 - 000121284 _____ C:\Users\eve\Downloads\facture_freemobile_20170921.pdf
2017-09-27 08:52 - 2017-09-27 08:52 - 000213437 _____ C:\Users\eve\Downloads\gut gewappnet verbale attacken abwehren.pdf
2017-09-27 08:52 - 2017-09-27 08:52 - 000156333 _____ C:\Users\eve\Downloads\fiche12agresverbales-20-06-2014x.pdf
2017-09-26 16:42 - 2017-09-26 16:42 - 001211957 _____ C:\Users\eve\Downloads\SIRET001.pdf
2017-09-26 16:42 - 2017-09-26 16:42 - 001211957 _____ C:\Users\eve\Downloads\SIRET001 (1).pdf
2017-09-26 10:44 - 2017-09-26 10:44 - 000754724 _____ C:\Users\eve\Downloads\DÃ©marre Votre Business Avec Zero Euro (1).pdf
2017-09-26 10:44 - 2017-09-26 10:44 - 000754724 _____ C:\Users\eve\Downloads\DÃ©marre Votre Business Avec Zero Euro (1) (1).pdf
2017-09-25 11:57 - 2017-09-25 11:57 - 002477772 _____ C:\Users\eve\Downloads\ir2016001 (1).pdf
2017-09-25 11:57 - 2017-09-25 11:57 - 000466992 _____ C:\Users\eve\Downloads\bilans placementsreleves bancaires001.pdf
2017-09-25 11:55 - 2017-09-25 11:55 - 000075275 _____ C:\Users\eve\Downloads\caf aout 201735ec8a78-ce8e-46c1-86be-9105eba4a082.pdf
2017-09-25 11:51 - 2017-09-25 11:51 - 000003679 _____ C:\Users\eve\Downloads\CyberPlus_OP_1_20170925115031 (1).csv
2017-09-25 11:50 - 2017-09-25 11:50 - 000003679 _____ C:\Users\eve\Downloads\CyberPlus_OP_1_20170925115031.csv
2017-09-25 11:48 - 2017-09-25 11:48 - 000006759 _____ C:\Users\eve\Downloads\CyberPlus_OP_1_20170925114839.ofx
2017-09-24 17:54 - 2017-09-30 18:31 - 000000000 ____D C:\Users\eve\AppData\Local\CyberGhost
2017-09-24 17:52 - 2017-09-24 17:59 - 000001901 _____ C:\Users\eve\Desktop\CyberGhost 6.lnk
2017-09-24 17:52 - 2017-09-24 17:54 - 000000000 ____D C:\Program Files\CyberGhost 6
2017-09-24 17:52 - 2017-09-24 17:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 6
2017-09-24 17:51 - 2017-09-24 17:51 - 008693152 _____ (CyberGhost S.A. ) C:\Users\eve\Downloads\CyberGhost_6.0.8.2959.exe
2017-09-20 22:28 - 2017-09-20 22:28 - 000869752 _____ C:\Users\eve\Downloads\3-Modeles-FB.pdf
2017-09-19 17:26 - 2017-09-24 18:00 - 000000000 ____D C:\Program Files\TAP-Windows
2017-09-19 17:26 - 2017-09-19 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2017-09-19 17:25 - 2017-09-19 17:25 - 000000000 ____D C:\Users\eve\AppData\Local\Downloaded Installations
2017-09-19 17:23 - 2017-09-19 17:23 - 011535280 _____ (Betternet Technologies Inc.) C:\Users\eve\Downloads\BetternetForWindows390.exe
2017-09-17 19:09 - 2017-09-24 16:47 - 000000208 _____ C:\Users\eve\SecurityKISSTunnel.config
2017-09-17 19:08 - 2017-09-24 16:44 - 000000000 ____D C:\Program Files\SecurityKISS Tunnel
2017-09-17 19:08 - 2017-09-24 16:34 - 000003387 _____ C:\WINDOWS\system32\ipconfig_results.txt
2017-09-17 19:08 - 2017-09-24 16:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecurityKISS Tunnel
2017-09-16 19:44 - 2017-09-16 19:44 - 001430089 _____ C:\Users\eve\Downloads\TMM 30-Day LTC FS Kit (2).pdf
2017-09-16 19:02 - 2017-09-16 19:02 - 001430089 _____ C:\Users\eve\Downloads\TMM 30-Day LTC FS Kit (1).pdf

==================== Un mois - ModifiÃ©s - fichiers et dossiers ========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2017-10-16 16:35 - 2016-04-25 14:35 - 000000943 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {7CB09D21-6D77-4E2C-88CC-25835BE1BA6E}.job
2017-10-16 16:35 - 2016-04-25 14:35 - 000000757 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {7CB09D21-6D77-4E2C-88CC-25835BE1BA6E}.job
2017-10-16 16:35 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2017-10-16 16:22 - 2016-11-06 19:33 - 000000000 ____D C:\Users\eve\AppData\Roaming\Spotify
2017-10-16 16:20 - 2016-09-21 14:29 - 000003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-10-16 16:20 - 2016-04-24 12:19 - 000003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2264832276-4292698039-1854585965-1001
2017-10-16 16:19 - 2017-05-14 17:00 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2017-10-16 16:15 - 2016-04-24 12:31 - 000000000 ____D C:\Program Files (x86)\Google
2017-10-16 16:13 - 2016-04-24 12:30 - 000000000 ____D C:\Users\eve\AppData\Local\Deployment
2017-10-16 16:08 - 2017-09-02 14:49 - 000004648 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-10-16 16:08 - 2017-09-02 14:49 - 000004496 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-10-16 16:08 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-10-16 16:08 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-10-16 16:07 - 2016-04-24 23:51 - 000000000 ____D C:\Users\eve\AppData\Roaming\Skype
2017-10-16 16:05 - 2016-04-26 15:46 - 000000546 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2264832276-4292698039-1854585965-1001.job
2017-10-16 16:03 - 2015-08-17 23:21 - 000000000 __RDO C:\Users\eve\OneDrive
2017-10-16 16:02 - 2016-04-26 15:46 - 000000642 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2264832276-4292698039-1854585965-1001.job
2017-10-16 16:02 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-16 09:44 - 2017-07-08 21:23 - 000000000 ____D C:\Users\eve\AppData\Local\GoToMeeting
2017-10-16 09:44 - 2016-04-26 15:46 - 000003644 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-2264832276-4292698039-1854585965-1001
2017-10-16 09:44 - 2016-04-26 15:46 - 000003548 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-2264832276-4292698039-1854585965-1001
2017-10-16 09:44 - 2016-04-24 10:24 - 000000000 ____D C:\Users\eve
2017-10-13 20:38 - 2017-04-03 11:58 - 000004178 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-10-13 20:30 - 2014-10-27 19:12 - 000000000 ____D C:\ProgramData\McAfee
2017-10-12 23:28 - 2016-06-03 11:14 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-10-12 23:27 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2017-10-12 23:17 - 2017-07-09 22:02 - 000000000 ____D C:\ProgramData\{2DE56EB9-7D59-4415-BEA7-41226E01E174}
2017-10-12 23:17 - 2016-05-12 11:30 - 000000000 ____D C:\Users\eve\AppData\Roaming\TeamViewer
2017-10-12 23:17 - 2015-08-21 10:22 - 000000000 ____D C:\Users\eve\.thumbnails
2017-10-12 23:17 - 2014-10-27 19:04 - 000000000 ____D C:\ProgramData\Temp
2017-10-12 23:00 - 2016-04-25 07:27 - 000000000 ____D C:\Users\eve\AppData\Local\AvgSetupLog
2017-10-12 22:21 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2017-10-12 20:17 - 2016-04-24 12:40 - 000000000 ____D C:\Users\eve\AppData\Local\CrashDumps
2017-10-12 15:47 - 2016-04-11 15:07 - 000000000 ____D C:\AdwCleaner
2017-10-12 10:06 - 2016-04-25 10:54 - 000000000 ____D C:\Users\eve\AppData\Roaming\Notepad++
2017-10-12 09:41 - 2013-08-22 17:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-10-12 09:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-10-11 21:28 - 2016-10-25 18:30 - 000000000 ____D C:\ProgramData\TechSmith
2017-10-11 21:28 - 2014-10-27 19:11 - 000000000 ____D C:\ProgramData\Package Cache
2017-10-11 21:20 - 2016-10-27 11:16 - 000000000 ____D C:\Users\eve\AppData\Local\TechSmith
2017-10-11 18:36 - 2013-08-22 16:44 - 000379544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-11 18:30 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2017-10-11 16:04 - 2013-08-22 17:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-10-11 12:56 - 2016-04-27 13:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-11 11:58 - 2016-04-27 13:03 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-10-09 09:04 - 2016-04-20 11:47 - 000000000 ____D C:\Users\eve\.gimp-2.8
2017-09-30 10:28 - 2015-03-06 17:59 - 000813248 _____ C:\WINDOWS\system32\perfh00C.dat
2017-09-30 10:28 - 2015-03-06 17:59 - 000159750 _____ C:\WINDOWS\system32\perfc00C.dat
2017-09-30 10:28 - 2014-03-18 12:03 - 001826754 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-28 22:34 - 2016-05-26 21:39 - 000000000 ____D C:\Users\eve\AppData\Roaming\Audacity
2017-09-25 11:36 - 2016-04-24 12:08 - 000000000 ____D C:\Users\eve\AppData\Local\VirtualStore
2017-09-22 08:41 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-22 08:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-17 16:55 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache

==================== Fichiers Ã  la racine de certains dossiers =======

2017-10-11 11:32 - 2017-10-11 18:06 - 000000096 _____ () C:\Users\eve\AppData\Roaming\Camdata.ini
2017-10-11 11:32 - 2017-10-11 18:06 - 000000408 _____ () C:\Users\eve\AppData\Roaming\CamLayout.ini
2017-10-11 11:32 - 2017-10-11 18:06 - 000000408 _____ () C:\Users\eve\AppData\Roaming\CamShapes.ini
2017-10-11 10:53 - 2017-10-11 18:06 - 000004509 _____ () C:\Users\eve\AppData\Roaming\CamStudio.cfg
2016-06-03 16:13 - 2016-12-01 18:31 - 000000600 _____ () C:\Users\eve\AppData\Roaming\winscp.rnd
2016-10-14 22:10 - 2016-10-14 22:17 - 000008704 _____ () C:\Users\eve\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-06-06 08:30 - 2017-06-06 08:30 - 000000000 _____ () C:\Users\eve\AppData\Local\{353C76E3-20EA-423F-A7DB-81F2B7AEB3F0}
2015-03-06 10:22 - 2015-03-06 10:22 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2017-10-11 19:26 - 2017-10-11 19:26 - 000004992 _____ () C:\ProgramData\eslierbc.jnj
2017-10-11 19:26 - 2017-10-11 19:26 - 000000016 _____ () C:\ProgramData\mntemp

Certains fichiers dans TEMP:
====================
2016-11-10 11:57 - 2014-06-19 18:42 - 007031360 _____ (Foxit Corporation) C:\Users\eve\AppData\Local\Temp\Foxit PhantomPDF Updater.exe
2017-06-01 10:04 - 2017-06-01 10:04 - 002990616 _____ () C:\Users\eve\AppData\Local\Temp\npp.7.4.1.Installer.exe
2017-08-10 20:05 - 2017-08-10 20:05 - 003051288 _____ () C:\Users\eve\AppData\Local\Temp\npp.7.4.2.Installer.exe
2017-10-07 17:41 - 2017-10-07 17:41 - 002885168 _____ () C:\Users\eve\AppData\Local\Temp\npp.7.5.1.Installer.exe
2017-10-07 08:47 - 2017-10-07 08:48 - 041565936 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\oct1393.tmp.exe
2017-08-11 15:45 - 2017-08-12 17:09 - 127220792 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\oct1694.tmp.exe
2017-05-19 06:59 - 2017-05-19 22:26 - 128237728 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\oct2BC3.tmp.exe
2017-05-20 07:00 - 2017-05-20 07:29 - 076383785 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\oct6A90.tmp.exe
2017-05-20 22:36 - 2017-05-20 22:42 - 064118864 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\oct8F9A.tmp.exe
2017-09-24 11:05 - 2017-09-24 11:09 - 041563000 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\oct98E0.tmp.exe
2016-11-17 09:17 - 2016-11-17 09:18 - 064111920 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\oct993F.tmp.exe
2017-08-13 09:25 - 2017-08-13 09:26 - 063610200 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\octAF03.tmp.exe
2017-09-27 20:08 - 2017-09-27 20:09 - 041564368 _____ (SweetLabs,Inc.) C:\Users\eve\AppData\Local\Temp\octD30E.tmp.exe
2017-06-29 18:49 - 2017-06-29 18:49 - 001555456 _____ (Opera Software) C:\Users\eve\AppData\Local\Temp\Opera_installer_20176294916835.dll
2017-06-29 18:49 - 2017-06-29 18:49 - 001555456 _____ (Opera Software) C:\Users\eve\AppData\Local\Temp\Opera_installer_20176294917292.dll
2017-06-29 18:49 - 2017-06-29 18:49 - 001555456 _____ (Opera Software) C:\Users\eve\AppData\Local\Temp\Opera_installer_20176294922437.dll

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\explorer.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\system32\services.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\system32\User32.dll => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signÃ© numÃ©riquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signÃ© numÃ©riquement

LastRegBack: 2017-10-12 13:36

==================== Fin de FRST.txt ============================