1. ========================= SEAF 1.0.1.0 - C_XX
2. 
3. Commencé à: 18:15:04 le 18/12/2016
4. 
5. Valeur(s) recherchée(s):
6. AdAnti
7. 
8. Légende: TC => Date de création, TM => Date de modification, DA => Dernier accès
9. 
10. (!) --- Recherche registre
11. 
12. ====== Fichier(s) ======
13. 
14. 
15. "C:\$RECYCLE.BIN\S-1-5-18\$RO28EZU\AdAntiHS.dll" [ NOT_CONTENT_INDEXED|ARCHIVE | 29 Ko ]
16. TC: 26/10/2016,08:53:57 | TM: 26/10/2016,09:09:47 | DA: 05/11/2016,14:31:20
17. 
18. 
19. =========================
20. 
21. 
22. "C:\$RECYCLE.BIN\S-1-5-18\$RQAL188\AdAntiHS.dll" [ NOT_CONTENT_INDEXED|ARCHIVE | 29 Ko ]
23. TC: 25/10/2016,17:43:57 | TM: 26/10/2016,08:45:58 | DA: 05/11/2016,14:31:21
24. 
25. 
26. =========================
27. 
28. 
29. "C:\Users\Bruno\AppData\Roaming\AdAnti\AdAntiHS.dll" [ NOT_CONTENT_INDEXED|ARCHIVE | 29 Ko ]
30. TC: 18/12/2016,15:59:08 | TM: 18/12/2016,18:14:39 | DA: 18/12/2016,18:14:39
31. 
32. 
33. =========================
34. 
35. 
36. "C:\Users\Bruno\Desktop\Fichiers txt\Adanti passé de dll à txt.txt" [ ARCHIVE | 29 Ko ]
37. TC: 09/11/2016,14:55:00 | TM: 09/11/2016,14:55:00 | DA: 09/11/2016,14:55:00
38. 
39. 
40. =========================
41. 
42. 
43. "C:\Users\Bruno\Downloads\Anti_AdAnti.exe" [ ARCHIVE | 859 Ko ]
44. TC: 18/12/2016,14:54:57 | TM: 18/12/2016,14:55:04 | DA: 18/12/2016,14:55:04
45. 
46. 
47. =========================
48. 
49. 
50. "C:\Users\Bruno\Pictures\AdAnti Lockhunter 041216.jpg" [ ARCHIVE | 300 Ko ]
51. TC: 04/12/2016,23:27:14 | TM: 04/12/2016,23:27:14 | DA: 18/12/2016,15:33:03
52. 
53. 
54. =========================
55. 
56. 
57. "C:\Users\Bruno\Pictures\AdAnti Lockhunter 2.jpg" [ ARCHIVE | 102 Ko ]
58. TC: 26/10/2016,08:54:39 | TM: 26/10/2016,08:54:39 | DA: 18/12/2016,15:33:03
59. 
60. 
61. =========================
62. 
63. 
64. "C:\Users\Bruno\Pictures\Adanti lockhunter.bmp" [ ARCHIVE | 4915 Ko ]
65. TC: 26/10/2016,08:49:05 | TM: 26/10/2016,08:49:05 | DA: 18/12/2016,15:33:03
66. 
67. 
68. =========================
69. 
70. 
71. "C:\Users\Bruno\Pictures\Adanti lockhunter.jpg" [ ARCHIVE | 101 Ko ]
72. TC: 26/10/2016,08:50:01 | TM: 26/10/2016,08:52:15 | DA: 18/12/2016,15:33:03
73. 
74. 
75. =========================
76. 
77. 
78. "C:\Users\Bruno\Pictures\AntiAdanti demarrage.jpg" [ ARCHIVE | 42 Ko ]
79. TC: 18/12/2016,15:34:01 | TM: 18/12/2016,15:34:01 | DA: 18/12/2016,15:34:02
80. 
81. 
82. =========================
83. 
84. 
85. "C:\Users\Bruno\Pictures\capture guitar.bruno Adanti.jpg" [ ARCHIVE | 1647 Ko ]
86. TC: 02/10/2016,14:29:17 | TM: 02/10/2016,08:11:40 | DA: 18/12/2016,15:33:04
87. 
88. 
89. =========================
90. 
91. 
92. "C:\Users\Bruno\Pictures\guitar.bruno Adanti détails.jpg" [ ARCHIVE | 116 Ko ]
93. TC: 02/10/2016,14:47:37 | TM: 02/10/2016,14:47:37 | DA: 18/12/2016,15:33:04
94. 
95. 
96. =========================
97. 
98. 
99. 
100. ====== Entrée(s) du registre ======
101. 
102. 
103. [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\ApprovedByRegRun2\AntiRepl\0]
104. "Target"="\??\C:\USERS\BRUNO\APPDATA\ROAMING\ADANTI" (REG_SZ)
105. 
106. [HKLM\System\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
107. "{8DF8C961-F41C-4994-9AA6-4607C5B8A97A}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe|Name=Anti_AdAnti.exe|" (REG_SZ)
108. 
109. [HKLM\System\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
110. "{CF1B8D56-5D18-4077-83BC-78DF90C84EA8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe|Name=Anti_AdAnti.exe|" (REG_SZ)
111. 
112. [HKLM\System\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
113. "{FD6B293C-7C44-4EA2-991E-4C15178DA773}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe|Name=Anti_AdAnti.exe|" (REG_SZ)
114. 
115. [HKLM\System\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
116. "{373187DE-6A35-4DC8-B7DB-029B92487025}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe|Name=Anti_AdAnti.exe|" (REG_SZ)
117. 
118. [HKLM\System\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
119. "{8DF8C961-F41C-4994-9AA6-4607C5B8A97A}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe|Name=Anti_AdAnti.exe|" (REG_SZ)
120. 
121. [HKLM\System\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
122. "{CF1B8D56-5D18-4077-83BC-78DF90C84EA8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe|Name=Anti_AdAnti.exe|" (REG_SZ)
123. 
124. [HKLM\System\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
125. "{FD6B293C-7C44-4EA2-991E-4C15178DA773}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe|Name=Anti_AdAnti.exe|" (REG_SZ)
126. 
127. [HKLM\System\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
128. "{373187DE-6A35-4DC8-B7DB-029B92487025}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe|Name=Anti_AdAnti.exe|" (REG_SZ)
129. 
130. [HKU\S-1-5-21-1413675022-3679237491-1003182551-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
131. "C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe"="Anti_AdAnti.exe" (REG_SZ)
132. 
133. [HKU\S-1-5-21-1413675022-3679237491-1003182551-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
134. "C:\Users\Bruno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anti_AdAnti.exe"="Anti_AdAnti.exe" (REG_SZ)
135. 
136. =========================
137. 
138. Fin à: 18:18:55 le 18/12/2016
139. 628890 Éléments analysés
140. 
141. =========================
142. E.O.F