Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2017
Exécuté par Maxou (administrateur) sur MAXOU-PC (08-05-2017 21:58:49)
Exécuté depuis C:\Users\Maxou\Desktop
Profils chargés: Maxou (Profils disponibles: Maxou)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: "C:\Program Files (x86)\Bookness\Application\chrome.exe" "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\R.A.T.TE\RAT_TE_Profiler.exe
(Safer Networking Limited) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(Spotify Ltd) C:\Users\Maxou\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Akamai Technologies, Inc.) C:\Users\Maxou\AppData\Local\Akamai\netsession_win.exe
(Tablet Driver) C:\Windows\SysWOW64\WTClient.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Akamai Technologies, Inc.) C:\Users\Maxou\AppData\Local\Akamai\netsession_win.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
(Guangzhou Ugee Computer Technology Co.,Ltd.) C:\Windows\System32\drivers\WTSrv.exe
() C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(BlackBerry Limited) C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(BlackBerry Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-01-20] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [R.A.T.TE] => C:\Program Files\Mad Catz\R.A.T.TE\RAT_TE_Profiler.exe [195072 2015-09-18] (Mad Catz Inc)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
HKLM-x32\...\Run: [WTClient] => C:\Windows\system32\WTClient.exe [94344 2016-07-20] (Tablet Driver)
HKLM-x32\...\Run: [TrojanScanner] => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [1666432 2014-05-22] (Simply Super Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [704424 2017-03-10] (Autodesk, Inc.)
HKLM\...\RunOnce: [MAXOU-PC] => C:\Windows\TEMP\g4329.tmp.exe [302592 2017-05-08] () <===== ATTENTION
HKLM-x32\...\Winlogon: [Userinit] userinit.exe,"C:\Windows\system32\monitor.exe",
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088 2009-01-26] (Safer Networking Limited)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [Spotify Web Helper] => C:\Users\Maxou\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-04-13] (Spotify Ltd)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [MyComGames] => C:\Users\Maxou\AppData\Local\MyComGames\MyComGames.exe [5377936 2017-04-14] (MY.COM B.V.)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Maxou\AppData\Local\Akamai\netsession_win.exe [4490200 2017-01-03] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9292504 2016-12-21] (Piriform Ltd)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\MountPoints2: {94df24c1-888e-11e6-ac19-027005270901} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\demarrer.html
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\MountPoints2: {afe5bbf7-0924-11e6-9ca1-e66785c613f7} - F:\autorun.exe
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\MountPoints2: {bc4c1eb3-fbce-11e5-9653-fdf3638f160c} - E:\Startme.exe
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [script_fcbd] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat [351 2016-11-11] ()
IFEO\avgwdsvc.exe: [Debugger] C:\Windows\System32\svchost.exe
ShellExecuteHooks: Pas de nom - {D05DB088-9EBF-11E6-B6CD-64006A5CFC23} - -> Pas de fichier
ShellExecuteHooks: Pas de nom - {7E69FF54-20E2-11E7-8377-64006A5CFC23} - -> Pas de fichier
ShellExecuteHooks: Pas de nom - {ED4A8166-307E-11E7-8B1F-64006A5CFC23} - C:\Users\Maxou\AppData\Roaming\Beligeanergosy\Ziloknerpugh.dll -> Pas de fichier
ShellExecuteHooks: Pas de nom - {8EEDD9B0-307E-11E7-9875-64006A5CFC23} - C:\Users\Maxou\AppData\Roaming\Drinucult\Anervick.dll -> Pas de fichier
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Fichier hosts non détecté dans le dossier par défaut
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{05E18C2E-8480-4296-92FC-92C4EECE1672}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{08A5064E-E5A7-4305-8044-14699EED0B57}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{1BC3FCA7-D2E8-4161-8FCD-691EA28587C0}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{22FBDD3A-9718-4BF3-9FF2-303B10859448}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{66D3F8AE-FF93-4780-AECD-75810578AE4B}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{97741F65-4E1D-44DC-B48A-80FA617020ED}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.startpageing123.com/?type=hp&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.startpageing123.com/search/?type=ds&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.startpageing123.com/?type=hp&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.startpageing123.com/search/?type=ds&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA&q={searchTerms}
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ourluckysites.com/?type=hp&ts=1491065451&z=acb27d50f5ae688d572b655g4z9t5g9e4q5w7z7wcg&from=gggn1&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.startpageing123.com/?type=hp&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA
SearchScopes: HKU\S-1-5-21-1987299526-3664676351-2479547558-1000 -> {7ABE770D-7E44-43AB-A0E7-095A0A69575B} URL = hxxp://www-searching.com/s.ashx?prd=opensearch&q={searchTerms}&s=H57zbcnbl1BU,a55a104d-8051-4593-8ab9-b367bc9cee4c,
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-03] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll [2017-01-10] (Perfect World Entertainment Inc)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-03] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: hbyi4rqv.default
FF ProfilePath: C:\Users\Maxou\AppData\Roaming\Firefox\Firefox\Profiles\hbyi4rqv.default [2017-04-19]
FF Extension: (Français Language Pack) - C:\Users\Maxou\AppData\Roaming\Firefox\Firefox\Profiles\hbyi4rqv.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-04-17] [non signé]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-03] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Arc\Plugins\npArcPluginFF.dll [2017-01-10] (Perfect World Entertainment Inc)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2015-05-22] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-1987299526-3664676351-2479547558-1000: @my.com/Games -> C:\Users\Maxou\AppData\Local\MyComGames\NPMyComDetector.dll [2017-04-13] (MY.COM B.V.)
FF Plugin HKU\S-1-5-21-1987299526-3664676351-2479547558-1000: @nsroblox.roblox.com/launcher -> C:\Users\Maxou\AppData\Local\Roblox\Versions\version-b6923b4ee6414bd0\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-1987299526-3664676351-2479547558-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\Maxou\AppData\Local\Roblox\Versions\version-b6923b4ee6414bd0\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://www.google.fr/
CHR StartupUrls: Profile 1 -> "hxxp://www-searching.com/?pid=s&s=H57zbcnbl1BU,a55a104d-8051-4593-8ab9-b367bc9cee4c,&vp=ch&prd=set_ch"
CHR Profile: C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-05-08]
CHR Extension: (Google Slides) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-11]
CHR Extension: (Theme Creator) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\akpelnjfckgfiplcikojhomllgombffc [2016-11-11]
CHR Extension: (Google Docs) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-11]
CHR Extension: (Google Drive) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-11]
CHR Extension: (YouTube) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-11]
CHR Extension: (Adblock Plus) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-05-07]
CHR Extension: (Bouncy Mouse) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cgdllcbmneiklcmbeclfegccdjholomb [2016-11-11]
CHR Extension: (Star Legends) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chcaflnbhnoegjedbjaamecefhglfamc [2016-11-11]
CHR Extension: (Realm of the Mad God) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhjfmaldpppkmjjgkmadddbanpabfflp [2016-11-11]
CHR Extension: (Google Sheets) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-11]
CHR Extension: (Pocket Legends) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mhpdbcnfpodnaefldpdohoibdajcfabp [2016-11-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-07]
CHR Extension: (Gmail) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-11]
CHR Extension: (Chrome Media Router) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-07]
CHR HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jlcgehabolcakkjhgmgpkagpolbjlhfa] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1309176 2017-03-10] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated)
S3 ArcService; C:\Program Files (x86)\Arc\ArcService.exe [87064 2017-01-10] (Perfect World Entertainment Inc)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1530376 2017-04-14] ()
R3 BlackBerry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [588024 2014-10-31] (BlackBerry Limited)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2017-02-12] (BitRaider, LLC)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [245544 2017-04-29] (EasyAntiCheat Ltd)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-11-12] (GOG.com)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3416584 2017-03-02] (LogMeIn Inc.)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-03-28] (Hi-Rez Studios) [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-12-11] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2017-02-27] (LogMeIn, Inc.)
R2 MCSvc; C:\ProgramData\PreEmptive Solutions\Common\LAC\sos\1.1.4322__3.1.1.0.dll [344064 2016-11-25] () [Fichier non signé]
S3 mi-raysat_3dsmax2016_64; C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [Fichier non signé]
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-13] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-13] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-02-25] ()
R2 RIM MDNS; C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [396024 2015-05-26] (Apple Inc.)
R2 RIM Tunnel Service; C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1355000 2015-05-26] (BlackBerry Limited)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7534864 2016-08-25] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WinInstallSvc; C:\ProgramData\Microsoft\AppV\Setup\Integrator.dll [105984 2017-05-08] () [Fichier non signé]
R2 WinTabService; C:\Windows\System32\Drivers\WTSRV.EXE [138376 2016-07-28] (Guangzhou Ugee Computer Technology Co.,Ltd.)
R2 WlanWpsSvc; C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe [167936 2008-06-26] () [Fichier non signé]
S2 3DM; C:\Users\Maxou\AppData\Local\3DM\Kitty.dll [X]
S2 AdBlockerService; C:\Program Files (x86)\AdBlocker\AdBlockerService.exe [X]
S2 Kerotnry; C:\Program Files (x86)\Dowetraduge\ferjerlyServer.dll [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 70610a084a9fa14882c5ffff7721e78f; C:\Windows\system32\drivers\70610a084a9fa14882c5ffff7721e78f.sys [66408 2017-05-05] (QRDXPX) <==== ATTENTION
S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6_AMD64.sys [25600 2015-01-23] (BlackBerry Limited)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-02-12] (BitRaider)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-04-23] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-04-23] (Disc Soft Ltd)
S3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [495376 2013-05-30] (Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-03-22] ()
R3 hxctlflt; C:\Windows\System32\Drivers\hxctlflt.sys [111104 2009-02-08] (Guillemot Corporation)
R3 Larmkanal; C:\Windows\System32\DRIVERS\Larmkanal.sys [33112 2015-09-02] (Adoriasoft LLC)
S3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [111544 2017-05-06] (Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [82720 2017-05-06] (Malwarebytes) [Fichier non signé]
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 Phosgene; C:\Windows\System32\DRIVERS\Phosgene.sys [34136 2015-09-02] (Adoriasoft LLC)
R3 PTSimBus; C:\Windows\System32\DRIVERS\PTSimBus.sys [39048 2016-07-21] (UC-Logic Technology Corp.)
R3 PTSimHid; C:\Windows\System32\DRIVERS\PTSimHid.sys [31368 2016-07-21] (UGEE Technology Corp.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [80384 2015-01-14] (BlackBerry Limited)
R3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [18432 2015-05-26] (BlackBerry Limited)
R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S3 SaiH040B; C:\Windows\System32\DRIVERS\SaiH040B.sys [171144 2007-05-01] (Saitek)
R3 SaiK0728; C:\Windows\System32\DRIVERS\SaiK0728.sys [129024 2008-01-21] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [23968 2014-09-15] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [51488 2014-09-15] (Saitek)
S3 SaiU040B; C:\Windows\System32\DRIVERS\SaiU040B.sys [34304 2007-05-01] (Saitek)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3552384 2009-04-22] ()
U3 TrueSight; C:\Windows\SysWOW64\drivers\TrueSight.sys [33512 2017-04-20] ()
R3 voxaldriver; C:\Windows\System32\DRIVERS\voxaldriverx64.sys [52976 2017-04-14] ()
R3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2016-06-15] (SplitmediaLabs Limited)
R3 XtuAcpiDriver; C:\Windows\System32\DRIVERS\XtuAcpiDriver.sys [54344 2016-11-22] (Intel Corporation)
R3 _hid_0738_1704; C:\Windows\System32\DRIVERS\_hid_0738_1704.sys [179904 2014-09-15] (Saitek)
R3 _usb_0738_1704; C:\Windows\System32\DRIVERS\_usb_0738_1704.sys [46528 2014-09-15] (Saitek)
S2 BstHdDrv; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [X]
S2 BstkDrv; \??\C:\Program Files (x86)\BlueStacks\BstkDrv.sys [X]
S3 MBAMProtection; \??\C:\Windows\system32\drivers\mbam.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 Tablet2k; "%SystemRoot%\System32\Drivers\Tablet2k.sys" [X]
S3 WacHidRouter; system32\DRIVERS\wachidrouter.sys [X]
S3 wacomrouterfilter; system32\DRIVERS\wacomrouterfilter.sys [X]
U3 pgloypog; \??\C:\Users\Maxou\AppData\Local\Temp\pgloypog.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-08 21:58 - 2017-05-08 21:58 - 00028319 _____ C:\Users\Maxou\Desktop\FRST.txt
2017-05-08 21:52 - 2017-05-08 21:58 - 00000000 ____D C:\FRST
2017-05-08 21:52 - 2017-05-08 21:52 - 02429440 _____ (Farbar) C:\Users\Maxou\Desktop\FRST64.exe
2017-05-08 21:52 - 2017-05-08 21:52 - 00000000 ____D C:\Users\Maxou\Downloads\FRST-OlderVersion
2017-05-08 18:40 - 2017-05-08 18:40 - 00004028 _____ C:\Windows\System32\Tasks\{CBB8FA6C-7C13-4DC7-C23C-309FA56228AB}
2017-05-08 18:40 - 2017-05-08 18:40 - 00000000 ____D C:\ProgramData\{795525ca-712c-1}
2017-05-08 18:40 - 2017-05-08 18:40 - 00000000 ____D C:\ProgramData\{4b8c4964-512c-0}
2017-05-08 18:40 - 2017-05-08 18:40 - 00000000 ____D C:\ProgramData\{401DBDBA-F7B6-0A11-2A71-86832084BE01}
2017-05-08 18:39 - 2017-05-08 18:49 - 00000000 ____D C:\ProgramData\bf1c05c8-7761-1
2017-05-08 18:39 - 2017-05-08 18:40 - 00000000 ____D C:\ProgramData\bf1c05c8-04a7-0
2017-05-08 18:39 - 2017-05-08 18:39 - 00023616 _____ C:\Windows\System32\Tasks\{0D0B0C47-0D7E-0A7E-0D11-7F050F0C110F}
2017-05-08 16:53 - 2017-05-08 16:53 - 00000000 ____D C:\Users\Public\Documents\Google
2017-05-08 16:49 - 2017-05-08 16:54 - 00000000 ____D C:\Users\Public\Documents\temp
2017-05-08 16:49 - 2017-05-08 16:50 - 00000000 ____D C:\Users\Public\Documents\chrome
2017-05-07 20:59 - 2017-05-07 20:59 - 00566128 _____ (Malwarebytes) C:\Users\Maxou\Downloads\mbam-clean-2.3.0.1001.exe
2017-05-07 20:53 - 2017-05-07 20:55 - 00541854 _____ C:\Windows\ntbtlog.txt
2017-05-07 19:17 - 2017-05-07 19:31 - 444205745 _____ C:\Users\Maxou\Downloads\Non confirmé 432333.crdownload
2017-05-07 13:35 - 2017-05-08 21:58 - 00016700 _____ C:\Windows\System32\Tasks\Word Tools
2017-05-07 13:35 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files\Word Tools
2017-05-07 12:40 - 2017-05-07 13:25 - 00000000 ____D C:\ProgramData\Microleaves
2017-05-07 12:38 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files (x86)\Coirgh
2017-05-07 12:38 - 2017-05-07 12:38 - 00000000 ____H C:\Windows\system32\BITFF2F.tmp
2017-05-07 12:34 - 2017-05-07 19:53 - 00000000 ____D C:\Windows\SysWOW64\SSL
2017-05-07 12:34 - 2017-05-07 19:53 - 00000000 ____D C:\ProgramData\17d69d4
2017-05-07 12:34 - 2017-05-07 12:34 - 00004028 _____ C:\Windows\System32\Tasks\{D85AC08B-6FF1-7720-8D99-AC8D81A50993}
2017-05-07 12:33 - 2017-05-07 12:33 - 01653760 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\libeay32.dll
2017-05-07 12:33 - 2017-05-07 12:33 - 00849360 _____ (Microsoft Corporation) C:\Windows\msvcr110.dll
2017-05-07 12:33 - 2017-05-07 12:33 - 00661456 _____ (Microsoft Corporation) C:\Windows\msvcp110.dll
2017-05-07 12:32 - 2017-05-07 12:32 - 00314656 _____ (NVIDIA Corporation) C:\Windows\cudart64_60.dll
2017-05-07 12:30 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files\3D UltraBite Project
2017-05-07 12:30 - 2017-05-07 13:27 - 00016742 _____ C:\Windows\System32\Tasks\3D UltraBite Project
2017-05-07 12:30 - 2017-05-07 12:30 - 00000000 ____D C:\Windows\system32\sstmp
2017-05-07 12:29 - 2017-05-07 12:30 - 00000132 _____ C:\ProgramData\log.binb
2017-05-07 12:29 - 2017-05-07 12:29 - 00006034 _____ C:\Windows\System32\Tasks\Anshwukasy Helper
2017-05-07 12:28 - 2017-05-07 19:53 - 00000000 ____D C:\Users\Maxou\AppData\Local\Zkughhbch
2017-05-07 12:28 - 2017-05-07 12:29 - 00014895 _____ C:\ProgramData\log.ewbt
2017-05-07 12:28 - 2017-05-07 12:29 - 00000128 _____ C:\ProgramData\log.ewbb
2017-05-06 21:48 - 2017-05-06 21:48 - 00001128 _____ C:\Users\Maxou\Desktop\Dolphin - Raccourci.lnk
2017-05-06 21:47 - 2017-05-06 21:48 - 00000000 ____D C:\Program Files\dolphinnet
2017-05-06 19:21 - 2017-05-07 20:46 - 00000000 ____D C:\Users\Maxou\Documents\ROM
2017-05-06 19:21 - 2017-05-06 20:24 - 1291176055 _____ C:\Users\Maxou\Downloads\Mario Kart - Double Dash!! (Europe) (En,Fr,De,Es,It).7z
2017-05-05 22:49 - 2017-05-05 22:51 - 41677949 _____ C:\Users\Maxou\Downloads\Mario Kart - Double Dash!! (Europe) (En,Fr,De,Es,It).7z.crdownload
2017-05-05 22:13 - 2017-05-07 21:27 - 00000000 ____D C:\Users\Maxou\Documents\Dolphin Emulator
2017-05-05 22:10 - 2017-05-05 22:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2017-05-05 22:10 - 2017-05-05 22:11 - 00000000 ____D C:\Program Files\Dolphin
2017-05-05 21:09 - 2017-05-05 21:09 - 00000000 ____D C:\Users\Maxou\AppData\LocalLow\Vonsnake
2017-05-05 10:19 - 2017-05-05 10:19 - 01386496 _____ C:\Windows\2459bf2ee749aebe6ab5db0536c7e7e8.exe
2017-05-05 10:19 - 2017-05-05 10:19 - 00066408 _____ (QRDXPX) C:\Windows\system32\Drivers\70610a084a9fa14882c5ffff7721e78f.sys
2017-05-05 10:19 - 2017-05-05 10:19 - 00051619 _____ C:\Windows\uninstaller.dat
2017-05-01 20:36 - 2017-05-01 20:36 - 00000000 ____D C:\Users\Maxou\Documents\MAGIX Téléchargements
2017-05-01 20:34 - 2017-05-01 20:36 - 00000000 ___RD C:\Users\Maxou\Documents\MAGIX
2017-05-01 20:34 - 2017-05-01 20:34 - 00000000 ____D C:\Users\Public\Documents\MAGIX
2017-05-01 20:34 - 2017-05-01 20:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2017-05-01 20:33 - 2017-05-08 18:46 - 00000372 _____ C:\Windows\Tasks\MAGIX Connector.job
2017-05-01 20:33 - 2017-05-01 20:34 - 00000000 ____D C:\ProgramData\Magix
2017-05-01 20:33 - 2017-05-01 20:33 - 00002756 _____ C:\Windows\System32\Tasks\MAGIX Connector
2017-05-01 20:33 - 2017-05-01 20:33 - 00000000 ____D C:\ProgramData\simplitec
2017-05-01 20:33 - 2017-05-01 20:33 - 00000000 ____D C:\Program Files (x86)\MAGIX
2017-05-01 19:47 - 2017-05-01 20:34 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\MAGIX
2017-05-01 19:47 - 2017-05-01 19:47 - 04769840 _____ (MAGIX Software GmbH) C:\Users\Maxou\Downloads\musicmaker.exe
2017-05-01 19:47 - 2017-05-01 19:47 - 00000000 ____D C:\Users\Maxou\Documents\MAGIX Downloads
2017-04-29 19:25 - 2017-04-29 19:25 - 00000000 ____D C:\Users\Maxou\AppData\LocalLow\Freejam
2017-04-29 16:10 - 2017-04-29 16:10 - 00044786 _____ C:\Windows\SysWOW64\report.txt
2017-04-29 11:47 - 2017-04-29 11:47 - 00000000 ____D C:\Users\Maxou\AppData\Local\Saber Interactive
2017-04-28 21:00 - 2017-04-28 21:01 - 00000000 ____D C:\Users\Maxou\AppData\Local\Bethesda.net Launcher
2017-04-28 20:58 - 2017-05-01 20:51 - 00000000 ____D C:\Program Files (x86)\Bethesda.net Launcher
2017-04-28 20:58 - 2017-04-28 20:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda.net Launcher
2017-04-28 20:57 - 2017-04-28 20:57 - 08176208 _____ (Bethesda Softworks ) C:\Users\Maxou\Downloads\BethesdaNetLauncher_Setup.exe
2017-04-23 20:27 - 2017-05-01 22:06 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-04-23 20:27 - 2017-04-23 22:20 - 00000249 _____ C:\Users\Maxou\AppData\LocalLow\rbxcsettings.rbx
2017-04-23 20:27 - 2017-04-23 20:48 - 00000000 ____D C:\Users\Maxou\AppData\Local\Roblox
2017-04-23 20:27 - 2017-04-23 20:27 - 00852024 _____ (ROBLOX Corporation) C:\Users\Maxou\Downloads\RobloxPlayerLauncher.exe
2017-04-22 21:14 - 2017-05-07 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-04-22 21:14 - 2017-05-06 21:23 - 00082720 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-04-22 21:14 - 2017-05-06 19:09 - 00111544 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-04-22 21:14 - 2017-03-22 11:02 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-04-22 19:35 - 2017-05-08 18:49 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2017-04-21 17:03 - 2017-04-21 17:06 - 00000000 ____D C:\Program Files\Guild Wars 2
2017-04-21 17:03 - 2017-04-21 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2017-04-21 17:00 - 2017-04-21 17:04 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Guild Wars 2
2017-04-21 17:00 - 2017-04-21 17:00 - 30588072 _____ (ArenaNet) C:\Users\Maxou\Downloads\Gw2Setup-64.tmp
2017-04-21 17:00 - 2017-04-21 17:00 - 00000000 ____D C:\Users\Maxou\Downloads\bin64
2017-04-21 17:00 - 2017-04-21 17:00 - 00000000 _____ C:\Users\Maxou\Downloads\Gw2.tmp
2017-04-21 17:00 - 2017-04-21 17:00 - 00000000 _____ C:\Users\Maxou\Downloads\Gw2.dat
2017-04-21 16:57 - 2017-04-21 17:00 - 30588072 _____ (ArenaNet) C:\Users\Maxou\Downloads\Gw2Setup-64.exe
2017-04-21 13:35 - 2017-04-22 21:25 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\NetCtl
2017-04-20 17:18 - 2017-04-20 19:52 - 00000000 ____D C:\ProgramData\AppxadsulP
2017-04-20 15:14 - 2017-04-20 15:14 - 00000000 _____ C:\Windows\SysWOW64\1
2017-04-20 14:09 - 2017-04-20 14:12 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Awesomium
2017-04-20 13:47 - 2017-04-20 13:47 - 00000000 ____D C:\Program Files (x86)\n1
2017-04-20 11:04 - 2017-04-20 13:47 - 00000000 _____ C:\Windows\SysWOW64\22
2017-04-20 11:04 - 2017-04-20 13:47 - 00000000 _____ C:\Windows\SysWOW64\11
2017-04-20 10:41 - 2017-04-21 13:36 - 00000000 ____D C:\Users\Maxou\AppData\Local\FreeReign
2017-04-20 10:41 - 2017-04-20 10:41 - 00000000 ____D C:\Users\Maxou\Documents\FreeReign
2017-04-19 23:39 - 2017-04-19 23:39 - 00297951 _____ C:\Users\Maxou\Downloads\f.txt
2017-04-19 23:39 - 2017-04-19 23:39 - 00297923 _____ C:\Users\Maxou\Downloads\f (1).txt
2017-04-19 10:23 - 2017-04-20 17:07 - 00000000 ____D C:\Users\Maxou\AppData\Local\3DM
2017-04-19 10:11 - 2017-04-19 10:11 - 00000000 ____H C:\Users\Maxou\AppData\Local\BITCDAA.tmp
2017-04-19 10:11 - 2017-04-19 10:11 - 00000000 _____ C:\Users\Maxou\AppData\Local\{1CDC6DF2-8B52-455E-9144-70E77AC4FF18}
2017-04-18 10:12 - 2017-04-18 10:12 - 00000000 ____D C:\Windows\Update
2017-04-17 22:50 - 2017-04-17 22:50 - 00000000 ____D C:\Users\Maxou\AppData\Local\Tempzxpsignb98c92134fde07f2
2017-04-17 22:49 - 2017-04-17 22:49 - 00000000 ____D C:\Users\Maxou\AppData\Local\Tempzxpsignc4d0d29280a9ef3c
2017-04-17 22:49 - 2017-04-17 22:49 - 00000000 ____D C:\Users\Maxou\AppData\Local\Tempzxpsign7d46418da246a23b
2017-04-17 13:04 - 2017-04-17 13:04 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Firefox
2017-04-16 20:08 - 2017-04-20 15:12 - 00000000 ____D C:\ProgramData\locep
2017-04-16 18:47 - 2017-04-16 18:48 - 00000000 _____ C:\Windows\SysWOW64\2
2017-04-16 18:46 - 2017-04-16 18:48 - 03754488 _____ (Google) C:\Users\Maxou\Downloads\chrome_cleanup_tool.exe
2017-04-16 18:35 - 2017-05-07 19:53 - 00000000 ____D C:\Users\Maxou\AppData\Local\AdvinstAnalytics
2017-04-16 18:35 - 2017-05-07 13:25 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Microleaves
2017-04-16 18:35 - 2017-04-20 15:12 - 00000000 ____D C:\Program Files (x86)\Clafospgovation
2017-04-16 18:35 - 2017-04-16 18:35 - 00006020 _____ C:\Windows\System32\Tasks\Kepisesterpeght Manager
2017-04-16 18:07 - 2017-04-22 21:30 - 00000000 ____D C:\Program Files\Common Files\pqh3wdfy
2017-04-16 18:07 - 2017-04-16 18:07 - 00003388 _____ C:\Windows\System32\Tasks\1nwvrzic
2017-04-16 17:34 - 2017-04-20 15:12 - 00000000 ____D C:\Users\Maxou\AppData\Local\Stoymutertain
2017-04-16 17:07 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files\BitTorrent
2017-04-16 17:07 - 2017-04-20 19:52 - 00000000 ____D C:\ProgramData\Logic Cramble
2017-04-16 17:07 - 2017-04-16 17:07 - 00018432 _____ C:\Users\Maxou\AppData\Roaming\Main.dat
2017-04-16 17:06 - 2017-04-16 17:06 - 00140288 _____ C:\Users\Maxou\AppData\Roaming\Installer.dat
2017-04-16 17:05 - 2017-04-16 17:05 - 00003818 _____ C:\Windows\System32\Tasks\{8FDEFC6B-3875-4BC0-AAD1-5DE556C7D5F2}
2017-04-16 17:04 - 2017-04-20 17:07 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Huvepy
2017-04-16 17:04 - 2017-04-20 15:12 - 00000000 ____D C:\Users\Maxou\AppData\Local\Sosowardaromersh
2017-04-16 17:04 - 2017-04-16 17:04 - 00006046 _____ C:\Windows\System32\Tasks\Aracisy Center
2017-04-16 16:55 - 2017-05-07 19:53 - 00000000 ____D C:\Users\Public\Documents\ZBrushData
2017-04-16 15:04 - 2017-04-16 15:04 - 00000000 ____D C:\Users\Public\Pixologic
2017-04-16 15:04 - 2017-04-16 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixologic
2017-04-16 15:03 - 2017-04-16 15:03 - 00000000 ____D C:\Program Files (x86)\Pixologic
2017-04-16 14:45 - 2017-04-16 15:14 - 00000000 ____D C:\Users\Maxou\Desktop\ZBRUSH
2017-04-16 14:45 - 2017-04-16 15:00 - 597195048 _____ (Pixologic) C:\Users\Maxou\Downloads\ZBrush_4R7_Trial_Installer_WIN.exe
2017-04-16 14:36 - 2017-04-16 14:36 - 00000000 _____ C:\Windows\system32\__000000013FCEC39D__C0000005.dmp
2017-04-16 14:28 - 2017-04-16 14:28 - 00005978 _____ C:\Windows\System32\Tasks\Hmechhebity Engine
2017-04-16 12:20 - 2017-04-16 12:20 - 00000000 ____D C:\Users\Public\Documents\Autodesk
2017-04-16 11:17 - 2017-04-16 11:17 - 00000000 ____D C:\Users\Maxou\Autodesk
2017-04-16 11:05 - 2017-04-16 11:05 - 00000000 ____D C:\ProgramData\FLEXnet
2017-04-15 19:20 - 2017-04-16 11:12 - 00000000 ____D C:\Users\Maxou\AppData\Local\Autodesk
2017-04-15 19:20 - 2017-04-15 19:20 - 00000000 ____D C:\Users\Maxou\Documents\Autodesk Application Manager
2017-04-15 19:01 - 2017-04-15 19:55 - 00000000 ____D C:\Program Files (x86)\Autodesk
2017-04-15 18:50 - 2017-04-15 18:50 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared
2017-04-15 18:40 - 2017-04-16 11:12 - 00000000 ____D C:\Users\Maxou\Documents\3dsMax
2017-04-15 18:39 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files\Autodesk
2017-04-15 18:39 - 2017-04-15 19:19 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2017-04-15 17:40 - 2017-04-15 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2017-04-15 17:24 - 2017-05-07 19:53 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Autodesk
2017-04-15 17:24 - 2017-05-07 19:53 - 00000000 ____D C:\ProgramData\Autodesk
2017-04-15 17:23 - 2017-04-15 17:23 - 00000000 ____D C:\Autodesk
2017-04-15 17:22 - 2017-04-15 17:23 - 09539928 _____ C:\Users\Maxou\Downloads\Autodesk_3ds_Max_2016_EFGJKS_Win_64bit_wi_fr-FR_Setup.exe
2017-04-15 17:22 - 2017-04-15 17:22 - 00377760 _____ (Autodesk Inc.) C:\Users\Maxou\Downloads\Autodesk_3ds_Max_2016_EFGJKS_Win_64bit_wi_fr-FR_Setup_webinstall.exe
2017-04-15 17:21 - 2017-04-20 19:56 - 00001138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2017.lnk
2017-04-15 17:20 - 2017-04-15 17:20 - 00000000 ____D C:\Users\Public\Documents\Adobe
2017-04-15 17:06 - 2017-04-15 17:07 - 00000013 _____ C:\Users\Maxou\Downloads\mdp (1).txt
2017-04-15 16:46 - 2017-04-15 16:46 - 00000000 ____D C:\Users\Maxou\Desktop\LOW POLY MASK
2017-04-15 15:46 - 2017-04-16 11:02 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Apple Computer
2017-04-15 15:46 - 2017-04-15 15:46 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2017-04-15 15:46 - 2017-04-15 15:46 - 00000000 ____D C:\Users\Maxou\AppData\Local\Apple Computer
2017-04-15 15:45 - 2017-04-15 15:45 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2017-04-15 15:44 - 2017-04-15 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2017-04-15 15:44 - 2017-04-15 15:44 - 00000000 ____D C:\ProgramData\Apple Computer
2017-04-15 15:44 - 2017-04-15 15:44 - 00000000 ____D C:\Program Files (x86)\QuickTime
2017-04-15 15:43 - 2017-04-20 19:56 - 00002507 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-04-15 15:43 - 2017-04-15 15:43 - 00000000 ____D C:\Users\Maxou\AppData\Local\Apple
2017-04-15 15:43 - 2017-04-15 15:43 - 00000000 ____D C:\ProgramData\Apple
2017-04-15 15:42 - 2017-04-15 15:42 - 00000000 ____D C:\Users\Maxou\AppData\LocalLow\Apple Computer
2017-04-15 15:41 - 2017-04-15 15:42 - 41896256 _____ (Apple Inc.) C:\Users\Maxou\Downloads\QuickTimeInstaller.exe
2017-04-15 15:19 - 2017-04-15 15:19 - 12441161 _____ C:\Users\Maxou\Downloads\Douille_8mm_01.rar
2017-04-15 15:06 - 2017-04-15 15:06 - 00342716 _____ C:\Users\Maxou\Downloads\Smoke_puff.rar
2017-04-15 14:56 - 2017-04-15 14:56 - 00037987 _____ C:\Users\Maxou\Downloads\Pre-Keyed Muzzle Flash Side (FREE Stock Footage 3).mp4
2017-04-15 14:44 - 2017-04-20 19:56 - 00001254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2017.lnk
2017-04-15 11:00 - 2017-04-20 19:56 - 00001137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2017-04-15 10:58 - 2017-04-15 10:58 - 00000013 _____ C:\Users\Maxou\Downloads\mdp .txt
2017-04-14 22:38 - 2017-05-07 13:33 - 00000000 ____D C:\Users\Maxou\Desktop\VOICE
2017-04-14 22:38 - 2017-04-14 22:38 - 01035480 _____ (NCH Software) C:\Users\Maxou\Downloads\vxlsetup (1).exe
2017-04-14 22:38 - 2017-04-14 22:38 - 00052976 _____ C:\Windows\system32\Drivers\voxaldriverx64.sys
2017-04-14 22:38 - 2016-05-06 18:54 - 00000524 _____ C:\Users\Maxou\Downloads\instructions.txt
2017-04-14 22:38 - 2016-05-06 18:17 - 00000115 _____ C:\Users\Maxou\Downloads\Visit - PirateCity.NET.url
2017-04-14 21:27 - 2017-04-14 21:27 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-04-14 21:27 - 2017-04-14 21:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-04-13 22:46 - 2017-05-08 18:46 - 00000000 ____D C:\Users\Maxou\AppData\Local\MyComGames
2017-04-13 22:46 - 2017-04-14 10:52 - 00000000 ____D C:\MyGames
2017-04-13 22:46 - 2017-04-13 22:46 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2017-04-13 22:45 - 2017-04-13 22:45 - 05690304 _____ (MY.COM B.V.) C:\Users\Maxou\Downloads\SkyforgeLoader_865d181066ad81834f95968a550cf1fd__fr.exe
2017-04-13 18:53 - 2017-04-13 18:53 - 00000014 _____ C:\Windows\SysWOW64\vxcode.dll
2017-04-13 18:53 - 2017-04-13 18:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video X Converter
2017-04-13 18:53 - 2017-04-13 18:53 - 00000000 ____D C:\ProgramData\DVD X Studios
2017-04-13 18:53 - 2017-04-13 18:53 - 00000000 ____D C:\Program Files (x86)\Video X Converter
2017-04-13 18:47 - 2017-04-13 18:52 - 29089621 _____ ( ) C:\Users\Maxou\Downloads\VideoXConverterSetup2.0.4.0.exe
2017-04-13 18:42 - 2017-05-07 13:44 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\MPC-HC
2017-04-13 18:35 - 2017-04-13 18:35 - 00003160 _____ C:\Windows\System32\Tasks\klcp_update
2017-04-13 18:35 - 2017-04-13 18:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-04-13 18:35 - 2017-04-13 18:35 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2017-04-13 18:35 - 2016-05-08 12:27 - 03613696 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll
2017-04-13 18:35 - 2016-05-08 12:19 - 03642880 _____ (x264vfw project) C:\Windows\system32\x264vfw64.dll
2017-04-13 18:35 - 2015-12-18 12:00 - 00755200 _____ C:\Windows\system32\xvidcore.dll
2017-04-13 18:35 - 2015-12-18 12:00 - 00674816 _____ C:\Windows\SysWOW64\xvidcore.dll
2017-04-13 18:35 - 2015-12-18 12:00 - 00309248 _____ C:\Windows\system32\xvidvfw.dll
2017-04-13 18:35 - 2015-12-18 12:00 - 00282112 _____ C:\Windows\SysWOW64\xvidvfw.dll
2017-04-13 18:35 - 2015-10-24 19:00 - 00126976 _____ C:\Windows\system32\ff_vfw.dll
2017-04-13 18:35 - 2015-10-24 19:00 - 00112128 _____ C:\Windows\SysWOW64\ff_vfw.dll
2017-04-13 18:35 - 2012-07-21 13:55 - 00180736 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2017-04-13 18:35 - 2012-07-21 13:54 - 00122880 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm
2017-04-13 18:35 - 2011-12-07 20:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2017-04-13 18:35 - 2011-12-07 20:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2017-04-13 18:30 - 2017-04-13 18:31 - 44213414 _____ (KLCP ) C:\Users\Maxou\Downloads\k-lite-mega-codec-pack_13-0-0_fr_35535.exe
2017-04-13 17:42 - 2017-04-15 16:56 - 00000000 ____D C:\Users\Maxou\Desktop\VLOG
2017-04-13 17:32 - 2017-04-13 17:33 - 04684794 _____ C:\Users\Maxou\Downloads\billy_ohio.zip
2017-04-13 17:08 - 2017-04-20 15:12 - 00000000 ____D C:\Users\Maxou\AppData\Local\Kitty
2017-04-10 22:12 - 2017-04-10 22:12 - 00000000 ____D C:\Update
2017-04-10 12:12 - 2017-04-10 12:12 - 00000000 ____D C:\Program Files (x86)\deskapp
2017-04-09 21:31 - 2017-04-09 21:31 - 00000000 ____D C:\Users\Maxou\Documents\4A Games
2017-04-09 21:25 - 2017-04-09 21:25 - 00000000 ____D C:\Users\Maxou\AppData\Local\4A Games
2017-04-09 21:22 - 2017-04-09 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metro Last Light Redux
2017-04-09 21:17 - 2017-04-09 21:22 - 00000000 ____D C:\Program Files (x86)\Metro Last Light Redux
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-08 21:40 - 2016-06-12 20:41 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-05-08 21:25 - 2017-02-11 17:15 - 00020972 _____ C:\Users\Maxou\AppData\Local\kritarc
2017-05-08 21:24 - 2016-07-16 19:41 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\DS4Windows
2017-05-08 21:23 - 2016-03-12 10:27 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-08 20:48 - 2016-03-20 17:02 - 00000000 ____D C:\Users\Maxou\AppData\Local\CrashDumps
2017-05-08 20:33 - 2017-02-24 18:16 - 00000000 ____D C:\ProgramData\TEMP
2017-05-08 20:21 - 2016-09-17 19:42 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-05-08 19:16 - 2016-06-12 21:03 - 00000000 ____D C:\Users\Maxou\Desktop\DIVERS
2017-05-08 19:14 - 2016-03-08 20:35 - 00000000 ____D C:\Users\Maxou
2017-05-08 18:55 - 2009-07-14 06:45 - 00022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-08 18:55 - 2009-07-14 06:45 - 00022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-08 18:47 - 2016-08-13 23:39 - 00000000 ____D C:\Users\Maxou\AppData\Local\LogMeIn Hamachi
2017-05-08 18:47 - 2016-03-12 17:22 - 00000000 __SHD C:\Users\Maxou\IntelGraphicsProfiles
2017-05-08 18:46 - 2016-03-18 13:34 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-08 18:45 - 2016-04-23 13:31 - 00000950 ____H C:\Windows\Tasks\{61A6DD24-FCB8-4646-8BAE-254B0D0CF85D}.job
2017-05-08 18:45 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-08 17:51 - 2016-06-12 21:03 - 00000000 ___RD C:\Users\Maxou\Desktop\JEU
2017-05-08 17:25 - 2016-04-04 10:34 - 00000000 ____D C:\Users\Maxou\Desktop\TRAVAIL
2017-05-08 16:59 - 2016-06-12 20:38 - 00000000 ____D C:\Users\Maxou\AppData\Local\Adobe
2017-05-08 16:53 - 2016-03-08 20:47 - 00002086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-08 16:51 - 2017-02-05 15:56 - 00000000 ___RD C:\Users\Maxou\Creative Cloud Files
2017-05-08 16:51 - 2017-02-05 15:56 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-05-07 21:18 - 2016-11-11 12:14 - 00002360 __RSH C:\ProgramData\ntuser.pol
2017-05-07 21:02 - 2017-02-22 21:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-07 20:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-07 20:52 - 2017-02-24 19:26 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-05-07 19:53 - 2017-02-24 18:01 - 00000000 ____D C:\ProgramData\MFAData
2017-05-07 19:53 - 2017-02-24 18:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-05-07 19:53 - 2017-02-05 14:55 - 00000000 ____D C:\Users\Maxou\Desktop\CLEANER
2017-05-07 19:53 - 2016-05-29 19:03 - 00000000 ____D C:\Users\Maxou\AppData\Local\Akamai
2017-05-07 19:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2017-05-07 19:45 - 2016-07-16 19:40 - 00000000 ____D C:\Users\Maxou\Desktop\DS4
2017-05-07 14:12 - 2016-03-20 02:54 - 00000000 ____D C:\Windows\Minidump
2017-05-07 13:26 - 2017-02-15 23:16 - 00001992 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-07 13:26 - 2016-03-08 20:35 - 00001345 _____ C:\Users\Maxou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-05-07 12:34 - 2017-02-23 23:48 - 00003724 _____ C:\Windows\System32\Tasks\{071B1B61-C930-3B72-C805-1CBFBA38994F}
2017-05-07 12:28 - 2017-02-23 22:28 - 00000000 ____D C:\Program Files\GridinSoft Anti-Malware
2017-05-06 22:30 - 2016-06-12 20:41 - 00001064 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-05-05 18:40 - 2016-03-12 16:47 - 00122808 _____ C:\Users\Maxou\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-05 18:40 - 2009-07-14 06:45 - 05102240 _____ C:\Windows\system32\FNTCACHE.DAT
2017-04-30 15:30 - 2016-03-19 15:34 - 00000000 ____D C:\Users\Maxou\AppData\Local\Spotify
2017-04-30 14:21 - 2016-03-19 15:31 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Spotify
2017-04-29 18:57 - 2016-12-02 21:57 - 00245544 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2017-04-29 11:56 - 2016-04-27 16:54 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.4
2017-04-29 06:00 - 2016-03-08 20:47 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-29 06:00 - 2016-03-08 20:47 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-23 16:39 - 2017-02-24 18:18 - 00000000 ____D C:\ProgramData\AVG2013
2017-04-23 16:39 - 2016-07-16 19:35 - 00000000 ____D C:\Program Files (x86)\DSDCS
2017-04-23 10:30 - 2009-07-14 07:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\Windows\Temp1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\Users\Maxou\AppData\LocalLow\Youtube AdBlock1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\GOG Games1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\Fraps1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\download1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\AdwCleaner1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\1
2017-04-22 21:54 - 2016-04-05 11:48 - 00000000 ____D C:\download
2017-04-22 21:54 - 2016-03-18 23:26 - 00000000 ____D C:\GOG Games
2017-04-22 21:54 - 2016-03-12 20:31 - 00000000 ____D C:\Fraps
2017-04-22 21:33 - 2016-12-27 13:33 - 00000000 ____D C:\ProgramData\gadgj
2017-04-22 20:55 - 2016-03-08 20:41 - 01645124 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-04-22 20:55 - 2011-04-12 11:16 - 00747644 _____ C:\Windows\system32\perfh00C.dat
2017-04-22 20:55 - 2011-04-12 11:16 - 00150168 _____ C:\Windows\system32\perfc00C.dat
2017-04-22 20:55 - 2009-07-14 07:13 - 01645124 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-22 19:11 - 2017-02-26 13:04 - 00000000 ____D C:\Users\Maxou\Desktop\VIDEO KONCEPT
2017-04-22 19:10 - 2016-03-19 15:33 - 00000000 ____D C:\Users\Maxou\Desktop\VIDEO EN COURS
2017-04-21 23:02 - 2017-02-05 13:00 - 00000000 ____D C:\tmp
2017-04-21 17:02 - 2016-03-13 16:28 - 00000000 ____D C:\Users\Maxou\AppData\Local\Sony
2017-04-21 17:02 - 2016-03-13 16:28 - 00000000 ____D C:\ProgramData\Sony
2017-04-21 17:02 - 2016-03-13 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2017-04-21 17:02 - 2016-03-13 16:28 - 00000000 ____D C:\Program Files (x86)\Sony
2017-04-21 16:58 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-04-21 14:44 - 2016-06-20 17:29 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Audacity
2017-04-20 19:56 - 2017-03-26 19:03 - 00001096 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voxal Voice Changer.lnk
2017-04-20 19:56 - 2017-02-05 16:29 - 00001072 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2017.lnk
2017-04-20 19:56 - 2016-09-11 17:35 - 00001035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2017-04-20 19:56 - 2016-08-26 17:37 - 00000950 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riders of Asgard.lnk
2017-04-20 19:56 - 2016-07-13 17:58 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Floor is Jelly.lnk
2017-04-20 19:56 - 2016-06-24 14:19 - 00000985 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2017-04-20 19:56 - 2016-06-20 17:29 - 00001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2017-04-20 19:56 - 2016-04-13 13:42 - 00002515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2017-04-20 19:56 - 2016-03-19 15:34 - 00001753 _____ C:\Users\Maxou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-04-20 19:56 - 2016-03-08 20:31 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-04-20 19:56 - 2016-03-08 20:31 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-04-20 19:56 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2017-04-20 19:56 - 2009-07-14 06:57 - 00001535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-04-20 19:56 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2017-04-20 19:56 - 2009-07-14 06:57 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2017-04-20 19:56 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2017-04-20 19:56 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2017-04-20 19:56 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2017-04-20 19:52 - 2017-04-07 20:20 - 00000000 ____D C:\Users\Maxou\AppData\Local\AMD
2017-04-20 19:49 - 2016-11-11 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2017-04-20 17:07 - 2016-12-11 20:13 - 00000000 ___HD C:\Users\Maxou\AppData\Local\Temp1
2017-04-20 15:14 - 2016-03-09 16:28 - 148601744 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-04-20 15:14 - 2016-03-09 16:28 - 00000000 ____D C:\Windows\system32\MRT
2017-04-20 15:12 - 2016-12-20 21:12 - 00000000 ____D C:\Program Files (x86)\Please Don’t Touch Anything
2017-04-20 15:12 - 2016-05-01 13:48 - 00000000 ____D C:\Program Files (x86)\Audiosurf 2
2017-04-20 14:52 - 2017-02-24 18:05 - 00033512 _____ C:\Windows\SysWOW64\Drivers\TrueSight.sys
2017-04-20 14:08 - 2016-05-01 21:35 - 00000000 ___HD C:\Windows\msdownld.tmp
2017-04-20 13:40 - 2017-02-11 16:10 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-04-20 13:38 - 2017-02-11 16:21 - 00000000 ____D C:\Users\Maxou\AppData\Local\Battle.net
2017-04-20 13:38 - 2016-11-11 12:12 - 00000000 ____D C:\Windows\system32\SSL
2017-04-20 13:38 - 2016-10-21 15:19 - 00000000 ____D C:\Users\Maxou\AppData\Local\Ubisoft Game Launcher
2017-04-19 15:13 - 2017-02-15 23:17 - 00000000 ____D C:\Users\Maxou\AppData\LocalLow\Mozilla
2017-04-18 10:46 - 2017-02-13 20:34 - 00000000 ____D C:\Program Files (x86)\Arc
2017-04-17 22:44 - 2016-03-12 10:35 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Skype
2017-04-17 12:14 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\addins
2017-04-16 21:47 - 2016-03-18 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2017-04-16 17:07 - 2017-04-01 19:03 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Mozilla
2017-04-16 16:59 - 2016-07-08 09:57 - 00000000 ____D C:\ProgramData\Leap Motion
2017-04-16 16:59 - 2016-07-08 09:56 - 00000000 ____D C:\Program Files (x86)\Leap Motion
2017-04-15 18:39 - 2009-07-14 04:34 - 00017570 _____ C:\Windows\system32\Drivers\etc\services
2017-04-15 17:23 - 2016-03-09 18:22 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Adobe
2017-04-15 17:21 - 2017-02-05 16:29 - 00000000 ____D C:\Users\Maxou\Documents\Adobe
2017-04-15 17:20 - 2016-06-24 14:19 - 00000000 ____D C:\Program Files\Adobe
2017-04-15 17:08 - 2017-02-05 17:25 - 00000000 ____D C:\Users\Maxou\Desktop\CRACK ADOBE
2017-04-15 14:44 - 2016-06-24 14:18 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-04-15 11:00 - 2016-06-24 14:19 - 00000000 ___HD C:\Program Files (x86)\Adobe
2017-04-14 22:40 - 2017-03-26 19:03 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2017-04-14 22:38 - 2017-03-26 19:03 - 00001181 _____ C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.txt
2017-04-14 22:38 - 2017-03-26 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2017-04-14 22:38 - 2017-03-26 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Related Programs
2017-04-14 22:38 - 2017-03-26 19:03 - 00000000 _____ C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2017-04-14 21:27 - 2016-03-12 10:34 - 00000000 ____D C:\ProgramData\Skype
2017-04-13 18:54 - 2016-03-08 20:35 - 00000000 ____D C:\Users\Maxou\AppData\Local\VirtualStore
2017-04-12 20:54 - 2016-11-19 22:40 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\discord
2017-04-12 17:10 - 2016-11-26 20:55 - 00000000 ____D C:\Windows\system32\log
2017-04-12 17:09 - 2016-04-17 19:38 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\uTorrent
2017-04-11 10:42 - 2017-01-15 20:48 - 00002151 _____ C:\Users\Maxou\AppData\Roaming\SpeedRunnersLog.txt
2017-04-11 10:39 - 2016-07-16 19:35 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\InputMapper2
2017-04-09 17:58 - 2017-03-04 23:50 - 00000000 ____D C:\Users\Maxou\Desktop\TONY
2017-04-08 16:41 - 2016-03-19 15:33 - 00000000 ____D C:\Users\Maxou\Desktop\JEU EN DOSSIER
2017-04-08 14:20 - 2017-02-11 16:37 - 00000000 ____D C:\Program Files (x86)\Hearthstone
==================== Fichiers à la racine de certains dossiers =======
2016-04-14 11:52 - 2016-04-14 11:52 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2017-02-05 18:37 - 2017-04-02 15:34 - 0000033 _____ () C:\Users\Maxou\AppData\Roaming\AdobeWLCMCache.dat
2017-04-16 17:06 - 2017-04-16 17:06 - 0140288 _____ () C:\Users\Maxou\AppData\Roaming\Installer.dat
2017-04-16 17:07 - 2017-04-16 17:07 - 0018432 _____ () C:\Users\Maxou\AppData\Roaming\Main.dat
2017-01-15 20:48 - 2017-04-11 10:42 - 0002151 _____ () C:\Users\Maxou\AppData\Roaming\SpeedRunnersLog.txt
2017-03-26 19:03 - 2017-03-26 19:03 - 0001181 _____ () C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.1.txt
2017-03-26 19:03 - 2017-04-14 22:38 - 0001181 _____ () C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.txt
2017-03-26 19:03 - 2017-04-14 22:38 - 0000000 _____ () C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2017-04-19 10:11 - 2017-04-19 10:11 - 0000000 ____H () C:\Users\Maxou\AppData\Local\BITCDAA.tmp
2017-02-11 17:16 - 2017-02-11 17:16 - 0000063 _____ () C:\Users\Maxou\AppData\Local\emaildefaults
2017-02-11 17:17 - 2017-02-11 17:17 - 0000426 _____ () C:\Users\Maxou\AppData\Local\karboncalligraphyrc
2017-02-26 23:08 - 2017-02-26 23:08 - 0009700 _____ () C:\Users\Maxou\AppData\Local\kritacrash.log
2017-02-11 17:15 - 2017-05-08 21:25 - 0020972 _____ () C:\Users\Maxou\AppData\Local\kritarc
2017-02-11 17:15 - 2017-02-11 17:15 - 0000218 _____ () C:\Users\Maxou\AppData\Local\recently-used.xbel
2017-04-19 10:11 - 2017-04-19 10:11 - 0000000 _____ () C:\Users\Maxou\AppData\Local\{1CDC6DF2-8B52-455E-9144-70E77AC4FF18}
2016-03-08 20:47 - 2016-03-08 20:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2017-05-07 12:29 - 2017-05-07 12:30 - 0000132 _____ () C:\ProgramData\log.binb
2017-05-07 12:28 - 2017-05-07 12:29 - 0000128 _____ () C:\ProgramData\log.ewbb
2017-05-07 12:28 - 2017-05-07 12:29 - 0014895 _____ () C:\ProgramData\log.ewbt
2016-07-31 14:54 - 2016-07-31 14:54 - 0000016 _____ () C:\ProgramData\mntemp
Fichiers à déplacer ou supprimer:
====================
C:\Windows\TEMP\g4329.tmp.exe
C:\Windows\Tasks\{61A6DD24-FCB8-4646-8BAE-254B0D0CF85D}.job
Certains fichiers dans TEMP:
====================
2017-05-07 12:31 - 2017-05-07 12:31 - 1042800 _____ (Star Line ) C:\Users\Maxou\AppData\Local\Temp\AdBlocker.exe
2017-05-07 12:28 - 2017-05-07 12:28 - 0951520 _____ (Olimp company) C:\Users\Maxou\AppData\Local\Temp\msclean.exe
2014-11-08 10:33 - 2015-03-29 21:06 - 0606208 _____ () C:\Users\Maxou\AppData\Local\Temp\Quarantine.exe
2017-05-07 12:28 - 2017-05-07 12:28 - 0606748 _____ ( ) C:\Users\Maxou\AppData\Local\Temp\speedownloader.exe
2014-11-08 10:47 - 2014-10-17 13:39 - 0665682 _____ (SQLite Development Team) C:\Users\Maxou\AppData\Local\Temp\sqlite3.dll
2017-05-07 12:29 - 2017-05-07 12:29 - 1199825 _____ () C:\Users\Maxou\AppData\Local\Temp\unins000.exe
2017-05-07 12:28 - 2017-05-07 12:29 - 0597261 _____ (VideoBox ) C:\Users\Maxou\AppData\Local\Temp\vbsetup.exe
2017-05-07 12:29 - 2017-05-07 12:30 - 1320703 _____ ( ) C:\Users\Maxou\AppData\Local\Temp\webfriend.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-05-05 19:01
==================== Fin de FRST.txt ============================
Exécuté par Maxou (administrateur) sur MAXOU-PC (08-05-2017 21:58:49)
Exécuté depuis C:\Users\Maxou\Desktop
Profils chargés: Maxou (Profils disponibles: Maxou)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: "C:\Program Files (x86)\Bookness\Application\chrome.exe" "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\R.A.T.TE\RAT_TE_Profiler.exe
(Safer Networking Limited) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(Spotify Ltd) C:\Users\Maxou\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Akamai Technologies, Inc.) C:\Users\Maxou\AppData\Local\Akamai\netsession_win.exe
(Tablet Driver) C:\Windows\SysWOW64\WTClient.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Akamai Technologies, Inc.) C:\Users\Maxou\AppData\Local\Akamai\netsession_win.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
(Guangzhou Ugee Computer Technology Co.,Ltd.) C:\Windows\System32\drivers\WTSrv.exe
() C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(BlackBerry Limited) C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(BlackBerry Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-01-20] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [R.A.T.TE] => C:\Program Files\Mad Catz\R.A.T.TE\RAT_TE_Profiler.exe [195072 2015-09-18] (Mad Catz Inc)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
HKLM-x32\...\Run: [WTClient] => C:\Windows\system32\WTClient.exe [94344 2016-07-20] (Tablet Driver)
HKLM-x32\...\Run: [TrojanScanner] => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [1666432 2014-05-22] (Simply Super Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [704424 2017-03-10] (Autodesk, Inc.)
HKLM\...\RunOnce: [MAXOU-PC] => C:\Windows\TEMP\g4329.tmp.exe [302592 2017-05-08] () <===== ATTENTION
HKLM-x32\...\Winlogon: [Userinit] userinit.exe,"C:\Windows\system32\monitor.exe",
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088 2009-01-26] (Safer Networking Limited)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [Spotify Web Helper] => C:\Users\Maxou\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-04-13] (Spotify Ltd)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [MyComGames] => C:\Users\Maxou\AppData\Local\MyComGames\MyComGames.exe [5377936 2017-04-14] (MY.COM B.V.)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Maxou\AppData\Local\Akamai\netsession_win.exe [4490200 2017-01-03] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9292504 2016-12-21] (Piriform Ltd)
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\MountPoints2: {94df24c1-888e-11e6-ac19-027005270901} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\demarrer.html
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\MountPoints2: {afe5bbf7-0924-11e6-9ca1-e66785c613f7} - F:\autorun.exe
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\...\MountPoints2: {bc4c1eb3-fbce-11e5-9653-fdf3638f160c} - E:\Startme.exe
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [script_fcbd] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat [351 2016-11-11] ()
IFEO\avgwdsvc.exe: [Debugger] C:\Windows\System32\svchost.exe
ShellExecuteHooks: Pas de nom - {D05DB088-9EBF-11E6-B6CD-64006A5CFC23} - -> Pas de fichier
ShellExecuteHooks: Pas de nom - {7E69FF54-20E2-11E7-8377-64006A5CFC23} - -> Pas de fichier
ShellExecuteHooks: Pas de nom - {ED4A8166-307E-11E7-8B1F-64006A5CFC23} - C:\Users\Maxou\AppData\Roaming\Beligeanergosy\Ziloknerpugh.dll -> Pas de fichier
ShellExecuteHooks: Pas de nom - {8EEDD9B0-307E-11E7-9875-64006A5CFC23} - C:\Users\Maxou\AppData\Roaming\Drinucult\Anervick.dll -> Pas de fichier
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Fichier hosts non détecté dans le dossier par défaut
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{05E18C2E-8480-4296-92FC-92C4EECE1672}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{08A5064E-E5A7-4305-8044-14699EED0B57}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{1BC3FCA7-D2E8-4161-8FCD-691EA28587C0}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{22FBDD3A-9718-4BF3-9FF2-303B10859448}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{66D3F8AE-FF93-4780-AECD-75810578AE4B}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{97741F65-4E1D-44DC-B48A-80FA617020ED}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.startpageing123.com/?type=hp&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.startpageing123.com/search/?type=ds&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.startpageing123.com/?type=hp&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.startpageing123.com/search/?type=ds&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA&q={searchTerms}
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ourluckysites.com/?type=hp&ts=1491065451&z=acb27d50f5ae688d572b655g4z9t5g9e4q5w7z7wcg&from=gggn1&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA
HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.startpageing123.com/?type=hp&ts=1487710954&z=25dbd10dd5b3936dd7a5890gczeb6m4mfgde0t9wfc&from=ggg0221&uid=WDCXWD20EZRZ-00Z5HB0_WD-WCC4M4LAEJNAAEJNA
SearchScopes: HKU\S-1-5-21-1987299526-3664676351-2479547558-1000 -> {7ABE770D-7E44-43AB-A0E7-095A0A69575B} URL = hxxp://www-searching.com/s.ashx?prd=opensearch&q={searchTerms}&s=H57zbcnbl1BU,a55a104d-8051-4593-8ab9-b367bc9cee4c,
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-03] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll [2017-01-10] (Perfect World Entertainment Inc)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-03] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: hbyi4rqv.default
FF ProfilePath: C:\Users\Maxou\AppData\Roaming\Firefox\Firefox\Profiles\hbyi4rqv.default [2017-04-19]
FF Extension: (Français Language Pack) - C:\Users\Maxou\AppData\Roaming\Firefox\Firefox\Profiles\hbyi4rqv.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-04-17] [non signé]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-03] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Arc\Plugins\npArcPluginFF.dll [2017-01-10] (Perfect World Entertainment Inc)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2015-05-22] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-1987299526-3664676351-2479547558-1000: @my.com/Games -> C:\Users\Maxou\AppData\Local\MyComGames\NPMyComDetector.dll [2017-04-13] (MY.COM B.V.)
FF Plugin HKU\S-1-5-21-1987299526-3664676351-2479547558-1000: @nsroblox.roblox.com/launcher -> C:\Users\Maxou\AppData\Local\Roblox\Versions\version-b6923b4ee6414bd0\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-1987299526-3664676351-2479547558-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\Maxou\AppData\Local\Roblox\Versions\version-b6923b4ee6414bd0\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://www.google.fr/
CHR StartupUrls: Profile 1 -> "hxxp://www-searching.com/?pid=s&s=H57zbcnbl1BU,a55a104d-8051-4593-8ab9-b367bc9cee4c,&vp=ch&prd=set_ch"
CHR Profile: C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-05-08]
CHR Extension: (Google Slides) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-11]
CHR Extension: (Theme Creator) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\akpelnjfckgfiplcikojhomllgombffc [2016-11-11]
CHR Extension: (Google Docs) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-11]
CHR Extension: (Google Drive) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-11]
CHR Extension: (YouTube) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-11]
CHR Extension: (Adblock Plus) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-05-07]
CHR Extension: (Bouncy Mouse) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cgdllcbmneiklcmbeclfegccdjholomb [2016-11-11]
CHR Extension: (Star Legends) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chcaflnbhnoegjedbjaamecefhglfamc [2016-11-11]
CHR Extension: (Realm of the Mad God) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhjfmaldpppkmjjgkmadddbanpabfflp [2016-11-11]
CHR Extension: (Google Sheets) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-11]
CHR Extension: (Pocket Legends) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mhpdbcnfpodnaefldpdohoibdajcfabp [2016-11-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-07]
CHR Extension: (Gmail) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-11]
CHR Extension: (Chrome Media Router) - C:\Users\Maxou\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-07]
CHR HKU\S-1-5-21-1987299526-3664676351-2479547558-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jlcgehabolcakkjhgmgpkagpolbjlhfa] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1309176 2017-03-10] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated)
S3 ArcService; C:\Program Files (x86)\Arc\ArcService.exe [87064 2017-01-10] (Perfect World Entertainment Inc)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1530376 2017-04-14] ()
R3 BlackBerry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [588024 2014-10-31] (BlackBerry Limited)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2017-02-12] (BitRaider, LLC)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [245544 2017-04-29] (EasyAntiCheat Ltd)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-11-12] (GOG.com)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3416584 2017-03-02] (LogMeIn Inc.)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-03-28] (Hi-Rez Studios) [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-12-11] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2017-02-27] (LogMeIn, Inc.)
R2 MCSvc; C:\ProgramData\PreEmptive Solutions\Common\LAC\sos\1.1.4322__3.1.1.0.dll [344064 2016-11-25] () [Fichier non signé]
S3 mi-raysat_3dsmax2016_64; C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [Fichier non signé]
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-13] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-13] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-02-25] ()
R2 RIM MDNS; C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [396024 2015-05-26] (Apple Inc.)
R2 RIM Tunnel Service; C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1355000 2015-05-26] (BlackBerry Limited)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7534864 2016-08-25] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WinInstallSvc; C:\ProgramData\Microsoft\AppV\Setup\Integrator.dll [105984 2017-05-08] () [Fichier non signé]
R2 WinTabService; C:\Windows\System32\Drivers\WTSRV.EXE [138376 2016-07-28] (Guangzhou Ugee Computer Technology Co.,Ltd.)
R2 WlanWpsSvc; C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe [167936 2008-06-26] () [Fichier non signé]
S2 3DM; C:\Users\Maxou\AppData\Local\3DM\Kitty.dll [X]
S2 AdBlockerService; C:\Program Files (x86)\AdBlocker\AdBlockerService.exe [X]
S2 Kerotnry; C:\Program Files (x86)\Dowetraduge\ferjerlyServer.dll [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 70610a084a9fa14882c5ffff7721e78f; C:\Windows\system32\drivers\70610a084a9fa14882c5ffff7721e78f.sys [66408 2017-05-05] (QRDXPX) <==== ATTENTION
S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6_AMD64.sys [25600 2015-01-23] (BlackBerry Limited)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-02-12] (BitRaider)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-04-23] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-04-23] (Disc Soft Ltd)
S3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [495376 2013-05-30] (Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-03-22] ()
R3 hxctlflt; C:\Windows\System32\Drivers\hxctlflt.sys [111104 2009-02-08] (Guillemot Corporation)
R3 Larmkanal; C:\Windows\System32\DRIVERS\Larmkanal.sys [33112 2015-09-02] (Adoriasoft LLC)
S3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [111544 2017-05-06] (Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [82720 2017-05-06] (Malwarebytes) [Fichier non signé]
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 Phosgene; C:\Windows\System32\DRIVERS\Phosgene.sys [34136 2015-09-02] (Adoriasoft LLC)
R3 PTSimBus; C:\Windows\System32\DRIVERS\PTSimBus.sys [39048 2016-07-21] (UC-Logic Technology Corp.)
R3 PTSimHid; C:\Windows\System32\DRIVERS\PTSimHid.sys [31368 2016-07-21] (UGEE Technology Corp.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [80384 2015-01-14] (BlackBerry Limited)
R3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [18432 2015-05-26] (BlackBerry Limited)
R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S3 SaiH040B; C:\Windows\System32\DRIVERS\SaiH040B.sys [171144 2007-05-01] (Saitek)
R3 SaiK0728; C:\Windows\System32\DRIVERS\SaiK0728.sys [129024 2008-01-21] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [23968 2014-09-15] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [51488 2014-09-15] (Saitek)
S3 SaiU040B; C:\Windows\System32\DRIVERS\SaiU040B.sys [34304 2007-05-01] (Saitek)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3552384 2009-04-22] ()
U3 TrueSight; C:\Windows\SysWOW64\drivers\TrueSight.sys [33512 2017-04-20] ()
R3 voxaldriver; C:\Windows\System32\DRIVERS\voxaldriverx64.sys [52976 2017-04-14] ()
R3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2016-06-15] (SplitmediaLabs Limited)
R3 XtuAcpiDriver; C:\Windows\System32\DRIVERS\XtuAcpiDriver.sys [54344 2016-11-22] (Intel Corporation)
R3 _hid_0738_1704; C:\Windows\System32\DRIVERS\_hid_0738_1704.sys [179904 2014-09-15] (Saitek)
R3 _usb_0738_1704; C:\Windows\System32\DRIVERS\_usb_0738_1704.sys [46528 2014-09-15] (Saitek)
S2 BstHdDrv; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [X]
S2 BstkDrv; \??\C:\Program Files (x86)\BlueStacks\BstkDrv.sys [X]
S3 MBAMProtection; \??\C:\Windows\system32\drivers\mbam.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 Tablet2k; "%SystemRoot%\System32\Drivers\Tablet2k.sys" [X]
S3 WacHidRouter; system32\DRIVERS\wachidrouter.sys [X]
S3 wacomrouterfilter; system32\DRIVERS\wacomrouterfilter.sys [X]
U3 pgloypog; \??\C:\Users\Maxou\AppData\Local\Temp\pgloypog.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-08 21:58 - 2017-05-08 21:58 - 00028319 _____ C:\Users\Maxou\Desktop\FRST.txt
2017-05-08 21:52 - 2017-05-08 21:58 - 00000000 ____D C:\FRST
2017-05-08 21:52 - 2017-05-08 21:52 - 02429440 _____ (Farbar) C:\Users\Maxou\Desktop\FRST64.exe
2017-05-08 21:52 - 2017-05-08 21:52 - 00000000 ____D C:\Users\Maxou\Downloads\FRST-OlderVersion
2017-05-08 18:40 - 2017-05-08 18:40 - 00004028 _____ C:\Windows\System32\Tasks\{CBB8FA6C-7C13-4DC7-C23C-309FA56228AB}
2017-05-08 18:40 - 2017-05-08 18:40 - 00000000 ____D C:\ProgramData\{795525ca-712c-1}
2017-05-08 18:40 - 2017-05-08 18:40 - 00000000 ____D C:\ProgramData\{4b8c4964-512c-0}
2017-05-08 18:40 - 2017-05-08 18:40 - 00000000 ____D C:\ProgramData\{401DBDBA-F7B6-0A11-2A71-86832084BE01}
2017-05-08 18:39 - 2017-05-08 18:49 - 00000000 ____D C:\ProgramData\bf1c05c8-7761-1
2017-05-08 18:39 - 2017-05-08 18:40 - 00000000 ____D C:\ProgramData\bf1c05c8-04a7-0
2017-05-08 18:39 - 2017-05-08 18:39 - 00023616 _____ C:\Windows\System32\Tasks\{0D0B0C47-0D7E-0A7E-0D11-7F050F0C110F}
2017-05-08 16:53 - 2017-05-08 16:53 - 00000000 ____D C:\Users\Public\Documents\Google
2017-05-08 16:49 - 2017-05-08 16:54 - 00000000 ____D C:\Users\Public\Documents\temp
2017-05-08 16:49 - 2017-05-08 16:50 - 00000000 ____D C:\Users\Public\Documents\chrome
2017-05-07 20:59 - 2017-05-07 20:59 - 00566128 _____ (Malwarebytes) C:\Users\Maxou\Downloads\mbam-clean-2.3.0.1001.exe
2017-05-07 20:53 - 2017-05-07 20:55 - 00541854 _____ C:\Windows\ntbtlog.txt
2017-05-07 19:17 - 2017-05-07 19:31 - 444205745 _____ C:\Users\Maxou\Downloads\Non confirmé 432333.crdownload
2017-05-07 13:35 - 2017-05-08 21:58 - 00016700 _____ C:\Windows\System32\Tasks\Word Tools
2017-05-07 13:35 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files\Word Tools
2017-05-07 12:40 - 2017-05-07 13:25 - 00000000 ____D C:\ProgramData\Microleaves
2017-05-07 12:38 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files (x86)\Coirgh
2017-05-07 12:38 - 2017-05-07 12:38 - 00000000 ____H C:\Windows\system32\BITFF2F.tmp
2017-05-07 12:34 - 2017-05-07 19:53 - 00000000 ____D C:\Windows\SysWOW64\SSL
2017-05-07 12:34 - 2017-05-07 19:53 - 00000000 ____D C:\ProgramData\17d69d4
2017-05-07 12:34 - 2017-05-07 12:34 - 00004028 _____ C:\Windows\System32\Tasks\{D85AC08B-6FF1-7720-8D99-AC8D81A50993}
2017-05-07 12:33 - 2017-05-07 12:33 - 01653760 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\libeay32.dll
2017-05-07 12:33 - 2017-05-07 12:33 - 00849360 _____ (Microsoft Corporation) C:\Windows\msvcr110.dll
2017-05-07 12:33 - 2017-05-07 12:33 - 00661456 _____ (Microsoft Corporation) C:\Windows\msvcp110.dll
2017-05-07 12:32 - 2017-05-07 12:32 - 00314656 _____ (NVIDIA Corporation) C:\Windows\cudart64_60.dll
2017-05-07 12:30 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files\3D UltraBite Project
2017-05-07 12:30 - 2017-05-07 13:27 - 00016742 _____ C:\Windows\System32\Tasks\3D UltraBite Project
2017-05-07 12:30 - 2017-05-07 12:30 - 00000000 ____D C:\Windows\system32\sstmp
2017-05-07 12:29 - 2017-05-07 12:30 - 00000132 _____ C:\ProgramData\log.binb
2017-05-07 12:29 - 2017-05-07 12:29 - 00006034 _____ C:\Windows\System32\Tasks\Anshwukasy Helper
2017-05-07 12:28 - 2017-05-07 19:53 - 00000000 ____D C:\Users\Maxou\AppData\Local\Zkughhbch
2017-05-07 12:28 - 2017-05-07 12:29 - 00014895 _____ C:\ProgramData\log.ewbt
2017-05-07 12:28 - 2017-05-07 12:29 - 00000128 _____ C:\ProgramData\log.ewbb
2017-05-06 21:48 - 2017-05-06 21:48 - 00001128 _____ C:\Users\Maxou\Desktop\Dolphin - Raccourci.lnk
2017-05-06 21:47 - 2017-05-06 21:48 - 00000000 ____D C:\Program Files\dolphinnet
2017-05-06 19:21 - 2017-05-07 20:46 - 00000000 ____D C:\Users\Maxou\Documents\ROM
2017-05-06 19:21 - 2017-05-06 20:24 - 1291176055 _____ C:\Users\Maxou\Downloads\Mario Kart - Double Dash!! (Europe) (En,Fr,De,Es,It).7z
2017-05-05 22:49 - 2017-05-05 22:51 - 41677949 _____ C:\Users\Maxou\Downloads\Mario Kart - Double Dash!! (Europe) (En,Fr,De,Es,It).7z.crdownload
2017-05-05 22:13 - 2017-05-07 21:27 - 00000000 ____D C:\Users\Maxou\Documents\Dolphin Emulator
2017-05-05 22:10 - 2017-05-05 22:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2017-05-05 22:10 - 2017-05-05 22:11 - 00000000 ____D C:\Program Files\Dolphin
2017-05-05 21:09 - 2017-05-05 21:09 - 00000000 ____D C:\Users\Maxou\AppData\LocalLow\Vonsnake
2017-05-05 10:19 - 2017-05-05 10:19 - 01386496 _____ C:\Windows\2459bf2ee749aebe6ab5db0536c7e7e8.exe
2017-05-05 10:19 - 2017-05-05 10:19 - 00066408 _____ (QRDXPX) C:\Windows\system32\Drivers\70610a084a9fa14882c5ffff7721e78f.sys
2017-05-05 10:19 - 2017-05-05 10:19 - 00051619 _____ C:\Windows\uninstaller.dat
2017-05-01 20:36 - 2017-05-01 20:36 - 00000000 ____D C:\Users\Maxou\Documents\MAGIX Téléchargements
2017-05-01 20:34 - 2017-05-01 20:36 - 00000000 ___RD C:\Users\Maxou\Documents\MAGIX
2017-05-01 20:34 - 2017-05-01 20:34 - 00000000 ____D C:\Users\Public\Documents\MAGIX
2017-05-01 20:34 - 2017-05-01 20:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2017-05-01 20:33 - 2017-05-08 18:46 - 00000372 _____ C:\Windows\Tasks\MAGIX Connector.job
2017-05-01 20:33 - 2017-05-01 20:34 - 00000000 ____D C:\ProgramData\Magix
2017-05-01 20:33 - 2017-05-01 20:33 - 00002756 _____ C:\Windows\System32\Tasks\MAGIX Connector
2017-05-01 20:33 - 2017-05-01 20:33 - 00000000 ____D C:\ProgramData\simplitec
2017-05-01 20:33 - 2017-05-01 20:33 - 00000000 ____D C:\Program Files (x86)\MAGIX
2017-05-01 19:47 - 2017-05-01 20:34 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\MAGIX
2017-05-01 19:47 - 2017-05-01 19:47 - 04769840 _____ (MAGIX Software GmbH) C:\Users\Maxou\Downloads\musicmaker.exe
2017-05-01 19:47 - 2017-05-01 19:47 - 00000000 ____D C:\Users\Maxou\Documents\MAGIX Downloads
2017-04-29 19:25 - 2017-04-29 19:25 - 00000000 ____D C:\Users\Maxou\AppData\LocalLow\Freejam
2017-04-29 16:10 - 2017-04-29 16:10 - 00044786 _____ C:\Windows\SysWOW64\report.txt
2017-04-29 11:47 - 2017-04-29 11:47 - 00000000 ____D C:\Users\Maxou\AppData\Local\Saber Interactive
2017-04-28 21:00 - 2017-04-28 21:01 - 00000000 ____D C:\Users\Maxou\AppData\Local\Bethesda.net Launcher
2017-04-28 20:58 - 2017-05-01 20:51 - 00000000 ____D C:\Program Files (x86)\Bethesda.net Launcher
2017-04-28 20:58 - 2017-04-28 20:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda.net Launcher
2017-04-28 20:57 - 2017-04-28 20:57 - 08176208 _____ (Bethesda Softworks ) C:\Users\Maxou\Downloads\BethesdaNetLauncher_Setup.exe
2017-04-23 20:27 - 2017-05-01 22:06 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-04-23 20:27 - 2017-04-23 22:20 - 00000249 _____ C:\Users\Maxou\AppData\LocalLow\rbxcsettings.rbx
2017-04-23 20:27 - 2017-04-23 20:48 - 00000000 ____D C:\Users\Maxou\AppData\Local\Roblox
2017-04-23 20:27 - 2017-04-23 20:27 - 00852024 _____ (ROBLOX Corporation) C:\Users\Maxou\Downloads\RobloxPlayerLauncher.exe
2017-04-22 21:14 - 2017-05-07 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-04-22 21:14 - 2017-05-06 21:23 - 00082720 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-04-22 21:14 - 2017-05-06 19:09 - 00111544 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-04-22 21:14 - 2017-03-22 11:02 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-04-22 19:35 - 2017-05-08 18:49 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2017-04-21 17:03 - 2017-04-21 17:06 - 00000000 ____D C:\Program Files\Guild Wars 2
2017-04-21 17:03 - 2017-04-21 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2017-04-21 17:00 - 2017-04-21 17:04 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Guild Wars 2
2017-04-21 17:00 - 2017-04-21 17:00 - 30588072 _____ (ArenaNet) C:\Users\Maxou\Downloads\Gw2Setup-64.tmp
2017-04-21 17:00 - 2017-04-21 17:00 - 00000000 ____D C:\Users\Maxou\Downloads\bin64
2017-04-21 17:00 - 2017-04-21 17:00 - 00000000 _____ C:\Users\Maxou\Downloads\Gw2.tmp
2017-04-21 17:00 - 2017-04-21 17:00 - 00000000 _____ C:\Users\Maxou\Downloads\Gw2.dat
2017-04-21 16:57 - 2017-04-21 17:00 - 30588072 _____ (ArenaNet) C:\Users\Maxou\Downloads\Gw2Setup-64.exe
2017-04-21 13:35 - 2017-04-22 21:25 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\NetCtl
2017-04-20 17:18 - 2017-04-20 19:52 - 00000000 ____D C:\ProgramData\AppxadsulP
2017-04-20 15:14 - 2017-04-20 15:14 - 00000000 _____ C:\Windows\SysWOW64\1
2017-04-20 14:09 - 2017-04-20 14:12 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Awesomium
2017-04-20 13:47 - 2017-04-20 13:47 - 00000000 ____D C:\Program Files (x86)\n1
2017-04-20 11:04 - 2017-04-20 13:47 - 00000000 _____ C:\Windows\SysWOW64\22
2017-04-20 11:04 - 2017-04-20 13:47 - 00000000 _____ C:\Windows\SysWOW64\11
2017-04-20 10:41 - 2017-04-21 13:36 - 00000000 ____D C:\Users\Maxou\AppData\Local\FreeReign
2017-04-20 10:41 - 2017-04-20 10:41 - 00000000 ____D C:\Users\Maxou\Documents\FreeReign
2017-04-19 23:39 - 2017-04-19 23:39 - 00297951 _____ C:\Users\Maxou\Downloads\f.txt
2017-04-19 23:39 - 2017-04-19 23:39 - 00297923 _____ C:\Users\Maxou\Downloads\f (1).txt
2017-04-19 10:23 - 2017-04-20 17:07 - 00000000 ____D C:\Users\Maxou\AppData\Local\3DM
2017-04-19 10:11 - 2017-04-19 10:11 - 00000000 ____H C:\Users\Maxou\AppData\Local\BITCDAA.tmp
2017-04-19 10:11 - 2017-04-19 10:11 - 00000000 _____ C:\Users\Maxou\AppData\Local\{1CDC6DF2-8B52-455E-9144-70E77AC4FF18}
2017-04-18 10:12 - 2017-04-18 10:12 - 00000000 ____D C:\Windows\Update
2017-04-17 22:50 - 2017-04-17 22:50 - 00000000 ____D C:\Users\Maxou\AppData\Local\Tempzxpsignb98c92134fde07f2
2017-04-17 22:49 - 2017-04-17 22:49 - 00000000 ____D C:\Users\Maxou\AppData\Local\Tempzxpsignc4d0d29280a9ef3c
2017-04-17 22:49 - 2017-04-17 22:49 - 00000000 ____D C:\Users\Maxou\AppData\Local\Tempzxpsign7d46418da246a23b
2017-04-17 13:04 - 2017-04-17 13:04 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Firefox
2017-04-16 20:08 - 2017-04-20 15:12 - 00000000 ____D C:\ProgramData\locep
2017-04-16 18:47 - 2017-04-16 18:48 - 00000000 _____ C:\Windows\SysWOW64\2
2017-04-16 18:46 - 2017-04-16 18:48 - 03754488 _____ (Google) C:\Users\Maxou\Downloads\chrome_cleanup_tool.exe
2017-04-16 18:35 - 2017-05-07 19:53 - 00000000 ____D C:\Users\Maxou\AppData\Local\AdvinstAnalytics
2017-04-16 18:35 - 2017-05-07 13:25 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Microleaves
2017-04-16 18:35 - 2017-04-20 15:12 - 00000000 ____D C:\Program Files (x86)\Clafospgovation
2017-04-16 18:35 - 2017-04-16 18:35 - 00006020 _____ C:\Windows\System32\Tasks\Kepisesterpeght Manager
2017-04-16 18:07 - 2017-04-22 21:30 - 00000000 ____D C:\Program Files\Common Files\pqh3wdfy
2017-04-16 18:07 - 2017-04-16 18:07 - 00003388 _____ C:\Windows\System32\Tasks\1nwvrzic
2017-04-16 17:34 - 2017-04-20 15:12 - 00000000 ____D C:\Users\Maxou\AppData\Local\Stoymutertain
2017-04-16 17:07 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files\BitTorrent
2017-04-16 17:07 - 2017-04-20 19:52 - 00000000 ____D C:\ProgramData\Logic Cramble
2017-04-16 17:07 - 2017-04-16 17:07 - 00018432 _____ C:\Users\Maxou\AppData\Roaming\Main.dat
2017-04-16 17:06 - 2017-04-16 17:06 - 00140288 _____ C:\Users\Maxou\AppData\Roaming\Installer.dat
2017-04-16 17:05 - 2017-04-16 17:05 - 00003818 _____ C:\Windows\System32\Tasks\{8FDEFC6B-3875-4BC0-AAD1-5DE556C7D5F2}
2017-04-16 17:04 - 2017-04-20 17:07 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Huvepy
2017-04-16 17:04 - 2017-04-20 15:12 - 00000000 ____D C:\Users\Maxou\AppData\Local\Sosowardaromersh
2017-04-16 17:04 - 2017-04-16 17:04 - 00006046 _____ C:\Windows\System32\Tasks\Aracisy Center
2017-04-16 16:55 - 2017-05-07 19:53 - 00000000 ____D C:\Users\Public\Documents\ZBrushData
2017-04-16 15:04 - 2017-04-16 15:04 - 00000000 ____D C:\Users\Public\Pixologic
2017-04-16 15:04 - 2017-04-16 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixologic
2017-04-16 15:03 - 2017-04-16 15:03 - 00000000 ____D C:\Program Files (x86)\Pixologic
2017-04-16 14:45 - 2017-04-16 15:14 - 00000000 ____D C:\Users\Maxou\Desktop\ZBRUSH
2017-04-16 14:45 - 2017-04-16 15:00 - 597195048 _____ (Pixologic) C:\Users\Maxou\Downloads\ZBrush_4R7_Trial_Installer_WIN.exe
2017-04-16 14:36 - 2017-04-16 14:36 - 00000000 _____ C:\Windows\system32\__000000013FCEC39D__C0000005.dmp
2017-04-16 14:28 - 2017-04-16 14:28 - 00005978 _____ C:\Windows\System32\Tasks\Hmechhebity Engine
2017-04-16 12:20 - 2017-04-16 12:20 - 00000000 ____D C:\Users\Public\Documents\Autodesk
2017-04-16 11:17 - 2017-04-16 11:17 - 00000000 ____D C:\Users\Maxou\Autodesk
2017-04-16 11:05 - 2017-04-16 11:05 - 00000000 ____D C:\ProgramData\FLEXnet
2017-04-15 19:20 - 2017-04-16 11:12 - 00000000 ____D C:\Users\Maxou\AppData\Local\Autodesk
2017-04-15 19:20 - 2017-04-15 19:20 - 00000000 ____D C:\Users\Maxou\Documents\Autodesk Application Manager
2017-04-15 19:01 - 2017-04-15 19:55 - 00000000 ____D C:\Program Files (x86)\Autodesk
2017-04-15 18:50 - 2017-04-15 18:50 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared
2017-04-15 18:40 - 2017-04-16 11:12 - 00000000 ____D C:\Users\Maxou\Documents\3dsMax
2017-04-15 18:39 - 2017-05-07 19:53 - 00000000 ____D C:\Program Files\Autodesk
2017-04-15 18:39 - 2017-04-15 19:19 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2017-04-15 17:40 - 2017-04-15 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2017-04-15 17:24 - 2017-05-07 19:53 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Autodesk
2017-04-15 17:24 - 2017-05-07 19:53 - 00000000 ____D C:\ProgramData\Autodesk
2017-04-15 17:23 - 2017-04-15 17:23 - 00000000 ____D C:\Autodesk
2017-04-15 17:22 - 2017-04-15 17:23 - 09539928 _____ C:\Users\Maxou\Downloads\Autodesk_3ds_Max_2016_EFGJKS_Win_64bit_wi_fr-FR_Setup.exe
2017-04-15 17:22 - 2017-04-15 17:22 - 00377760 _____ (Autodesk Inc.) C:\Users\Maxou\Downloads\Autodesk_3ds_Max_2016_EFGJKS_Win_64bit_wi_fr-FR_Setup_webinstall.exe
2017-04-15 17:21 - 2017-04-20 19:56 - 00001138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2017.lnk
2017-04-15 17:20 - 2017-04-15 17:20 - 00000000 ____D C:\Users\Public\Documents\Adobe
2017-04-15 17:06 - 2017-04-15 17:07 - 00000013 _____ C:\Users\Maxou\Downloads\mdp (1).txt
2017-04-15 16:46 - 2017-04-15 16:46 - 00000000 ____D C:\Users\Maxou\Desktop\LOW POLY MASK
2017-04-15 15:46 - 2017-04-16 11:02 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Apple Computer
2017-04-15 15:46 - 2017-04-15 15:46 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2017-04-15 15:46 - 2017-04-15 15:46 - 00000000 ____D C:\Users\Maxou\AppData\Local\Apple Computer
2017-04-15 15:45 - 2017-04-15 15:45 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2017-04-15 15:44 - 2017-04-15 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2017-04-15 15:44 - 2017-04-15 15:44 - 00000000 ____D C:\ProgramData\Apple Computer
2017-04-15 15:44 - 2017-04-15 15:44 - 00000000 ____D C:\Program Files (x86)\QuickTime
2017-04-15 15:43 - 2017-04-20 19:56 - 00002507 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-04-15 15:43 - 2017-04-15 15:43 - 00000000 ____D C:\Users\Maxou\AppData\Local\Apple
2017-04-15 15:43 - 2017-04-15 15:43 - 00000000 ____D C:\ProgramData\Apple
2017-04-15 15:42 - 2017-04-15 15:42 - 00000000 ____D C:\Users\Maxou\AppData\LocalLow\Apple Computer
2017-04-15 15:41 - 2017-04-15 15:42 - 41896256 _____ (Apple Inc.) C:\Users\Maxou\Downloads\QuickTimeInstaller.exe
2017-04-15 15:19 - 2017-04-15 15:19 - 12441161 _____ C:\Users\Maxou\Downloads\Douille_8mm_01.rar
2017-04-15 15:06 - 2017-04-15 15:06 - 00342716 _____ C:\Users\Maxou\Downloads\Smoke_puff.rar
2017-04-15 14:56 - 2017-04-15 14:56 - 00037987 _____ C:\Users\Maxou\Downloads\Pre-Keyed Muzzle Flash Side (FREE Stock Footage 3).mp4
2017-04-15 14:44 - 2017-04-20 19:56 - 00001254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2017.lnk
2017-04-15 11:00 - 2017-04-20 19:56 - 00001137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2017-04-15 10:58 - 2017-04-15 10:58 - 00000013 _____ C:\Users\Maxou\Downloads\mdp .txt
2017-04-14 22:38 - 2017-05-07 13:33 - 00000000 ____D C:\Users\Maxou\Desktop\VOICE
2017-04-14 22:38 - 2017-04-14 22:38 - 01035480 _____ (NCH Software) C:\Users\Maxou\Downloads\vxlsetup (1).exe
2017-04-14 22:38 - 2017-04-14 22:38 - 00052976 _____ C:\Windows\system32\Drivers\voxaldriverx64.sys
2017-04-14 22:38 - 2016-05-06 18:54 - 00000524 _____ C:\Users\Maxou\Downloads\instructions.txt
2017-04-14 22:38 - 2016-05-06 18:17 - 00000115 _____ C:\Users\Maxou\Downloads\Visit - PirateCity.NET.url
2017-04-14 21:27 - 2017-04-14 21:27 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-04-14 21:27 - 2017-04-14 21:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-04-13 22:46 - 2017-05-08 18:46 - 00000000 ____D C:\Users\Maxou\AppData\Local\MyComGames
2017-04-13 22:46 - 2017-04-14 10:52 - 00000000 ____D C:\MyGames
2017-04-13 22:46 - 2017-04-13 22:46 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2017-04-13 22:45 - 2017-04-13 22:45 - 05690304 _____ (MY.COM B.V.) C:\Users\Maxou\Downloads\SkyforgeLoader_865d181066ad81834f95968a550cf1fd__fr.exe
2017-04-13 18:53 - 2017-04-13 18:53 - 00000014 _____ C:\Windows\SysWOW64\vxcode.dll
2017-04-13 18:53 - 2017-04-13 18:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video X Converter
2017-04-13 18:53 - 2017-04-13 18:53 - 00000000 ____D C:\ProgramData\DVD X Studios
2017-04-13 18:53 - 2017-04-13 18:53 - 00000000 ____D C:\Program Files (x86)\Video X Converter
2017-04-13 18:47 - 2017-04-13 18:52 - 29089621 _____ ( ) C:\Users\Maxou\Downloads\VideoXConverterSetup2.0.4.0.exe
2017-04-13 18:42 - 2017-05-07 13:44 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\MPC-HC
2017-04-13 18:35 - 2017-04-13 18:35 - 00003160 _____ C:\Windows\System32\Tasks\klcp_update
2017-04-13 18:35 - 2017-04-13 18:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-04-13 18:35 - 2017-04-13 18:35 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2017-04-13 18:35 - 2016-05-08 12:27 - 03613696 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll
2017-04-13 18:35 - 2016-05-08 12:19 - 03642880 _____ (x264vfw project) C:\Windows\system32\x264vfw64.dll
2017-04-13 18:35 - 2015-12-18 12:00 - 00755200 _____ C:\Windows\system32\xvidcore.dll
2017-04-13 18:35 - 2015-12-18 12:00 - 00674816 _____ C:\Windows\SysWOW64\xvidcore.dll
2017-04-13 18:35 - 2015-12-18 12:00 - 00309248 _____ C:\Windows\system32\xvidvfw.dll
2017-04-13 18:35 - 2015-12-18 12:00 - 00282112 _____ C:\Windows\SysWOW64\xvidvfw.dll
2017-04-13 18:35 - 2015-10-24 19:00 - 00126976 _____ C:\Windows\system32\ff_vfw.dll
2017-04-13 18:35 - 2015-10-24 19:00 - 00112128 _____ C:\Windows\SysWOW64\ff_vfw.dll
2017-04-13 18:35 - 2012-07-21 13:55 - 00180736 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2017-04-13 18:35 - 2012-07-21 13:54 - 00122880 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm
2017-04-13 18:35 - 2011-12-07 20:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2017-04-13 18:35 - 2011-12-07 20:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2017-04-13 18:30 - 2017-04-13 18:31 - 44213414 _____ (KLCP ) C:\Users\Maxou\Downloads\k-lite-mega-codec-pack_13-0-0_fr_35535.exe
2017-04-13 17:42 - 2017-04-15 16:56 - 00000000 ____D C:\Users\Maxou\Desktop\VLOG
2017-04-13 17:32 - 2017-04-13 17:33 - 04684794 _____ C:\Users\Maxou\Downloads\billy_ohio.zip
2017-04-13 17:08 - 2017-04-20 15:12 - 00000000 ____D C:\Users\Maxou\AppData\Local\Kitty
2017-04-10 22:12 - 2017-04-10 22:12 - 00000000 ____D C:\Update
2017-04-10 12:12 - 2017-04-10 12:12 - 00000000 ____D C:\Program Files (x86)\deskapp
2017-04-09 21:31 - 2017-04-09 21:31 - 00000000 ____D C:\Users\Maxou\Documents\4A Games
2017-04-09 21:25 - 2017-04-09 21:25 - 00000000 ____D C:\Users\Maxou\AppData\Local\4A Games
2017-04-09 21:22 - 2017-04-09 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metro Last Light Redux
2017-04-09 21:17 - 2017-04-09 21:22 - 00000000 ____D C:\Program Files (x86)\Metro Last Light Redux
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-08 21:40 - 2016-06-12 20:41 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-05-08 21:25 - 2017-02-11 17:15 - 00020972 _____ C:\Users\Maxou\AppData\Local\kritarc
2017-05-08 21:24 - 2016-07-16 19:41 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\DS4Windows
2017-05-08 21:23 - 2016-03-12 10:27 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-08 20:48 - 2016-03-20 17:02 - 00000000 ____D C:\Users\Maxou\AppData\Local\CrashDumps
2017-05-08 20:33 - 2017-02-24 18:16 - 00000000 ____D C:\ProgramData\TEMP
2017-05-08 20:21 - 2016-09-17 19:42 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-05-08 19:16 - 2016-06-12 21:03 - 00000000 ____D C:\Users\Maxou\Desktop\DIVERS
2017-05-08 19:14 - 2016-03-08 20:35 - 00000000 ____D C:\Users\Maxou
2017-05-08 18:55 - 2009-07-14 06:45 - 00022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-08 18:55 - 2009-07-14 06:45 - 00022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-08 18:47 - 2016-08-13 23:39 - 00000000 ____D C:\Users\Maxou\AppData\Local\LogMeIn Hamachi
2017-05-08 18:47 - 2016-03-12 17:22 - 00000000 __SHD C:\Users\Maxou\IntelGraphicsProfiles
2017-05-08 18:46 - 2016-03-18 13:34 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-08 18:45 - 2016-04-23 13:31 - 00000950 ____H C:\Windows\Tasks\{61A6DD24-FCB8-4646-8BAE-254B0D0CF85D}.job
2017-05-08 18:45 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-08 17:51 - 2016-06-12 21:03 - 00000000 ___RD C:\Users\Maxou\Desktop\JEU
2017-05-08 17:25 - 2016-04-04 10:34 - 00000000 ____D C:\Users\Maxou\Desktop\TRAVAIL
2017-05-08 16:59 - 2016-06-12 20:38 - 00000000 ____D C:\Users\Maxou\AppData\Local\Adobe
2017-05-08 16:53 - 2016-03-08 20:47 - 00002086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-08 16:51 - 2017-02-05 15:56 - 00000000 ___RD C:\Users\Maxou\Creative Cloud Files
2017-05-08 16:51 - 2017-02-05 15:56 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-05-07 21:18 - 2016-11-11 12:14 - 00002360 __RSH C:\ProgramData\ntuser.pol
2017-05-07 21:02 - 2017-02-22 21:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-07 20:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-07 20:52 - 2017-02-24 19:26 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-05-07 19:53 - 2017-02-24 18:01 - 00000000 ____D C:\ProgramData\MFAData
2017-05-07 19:53 - 2017-02-24 18:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-05-07 19:53 - 2017-02-05 14:55 - 00000000 ____D C:\Users\Maxou\Desktop\CLEANER
2017-05-07 19:53 - 2016-05-29 19:03 - 00000000 ____D C:\Users\Maxou\AppData\Local\Akamai
2017-05-07 19:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2017-05-07 19:45 - 2016-07-16 19:40 - 00000000 ____D C:\Users\Maxou\Desktop\DS4
2017-05-07 14:12 - 2016-03-20 02:54 - 00000000 ____D C:\Windows\Minidump
2017-05-07 13:26 - 2017-02-15 23:16 - 00001992 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-07 13:26 - 2016-03-08 20:35 - 00001345 _____ C:\Users\Maxou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-05-07 12:34 - 2017-02-23 23:48 - 00003724 _____ C:\Windows\System32\Tasks\{071B1B61-C930-3B72-C805-1CBFBA38994F}
2017-05-07 12:28 - 2017-02-23 22:28 - 00000000 ____D C:\Program Files\GridinSoft Anti-Malware
2017-05-06 22:30 - 2016-06-12 20:41 - 00001064 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-05-05 18:40 - 2016-03-12 16:47 - 00122808 _____ C:\Users\Maxou\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-05 18:40 - 2009-07-14 06:45 - 05102240 _____ C:\Windows\system32\FNTCACHE.DAT
2017-04-30 15:30 - 2016-03-19 15:34 - 00000000 ____D C:\Users\Maxou\AppData\Local\Spotify
2017-04-30 14:21 - 2016-03-19 15:31 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Spotify
2017-04-29 18:57 - 2016-12-02 21:57 - 00245544 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2017-04-29 11:56 - 2016-04-27 16:54 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.4
2017-04-29 06:00 - 2016-03-08 20:47 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-29 06:00 - 2016-03-08 20:47 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-23 16:39 - 2017-02-24 18:18 - 00000000 ____D C:\ProgramData\AVG2013
2017-04-23 16:39 - 2016-07-16 19:35 - 00000000 ____D C:\Program Files (x86)\DSDCS
2017-04-23 10:30 - 2009-07-14 07:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\Windows\Temp1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\Users\Maxou\AppData\LocalLow\Youtube AdBlock1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\GOG Games1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\Fraps1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\download1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\AdwCleaner1
2017-04-22 21:54 - 2016-12-11 20:13 - 00000000 ___HD C:\1
2017-04-22 21:54 - 2016-04-05 11:48 - 00000000 ____D C:\download
2017-04-22 21:54 - 2016-03-18 23:26 - 00000000 ____D C:\GOG Games
2017-04-22 21:54 - 2016-03-12 20:31 - 00000000 ____D C:\Fraps
2017-04-22 21:33 - 2016-12-27 13:33 - 00000000 ____D C:\ProgramData\gadgj
2017-04-22 20:55 - 2016-03-08 20:41 - 01645124 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-04-22 20:55 - 2011-04-12 11:16 - 00747644 _____ C:\Windows\system32\perfh00C.dat
2017-04-22 20:55 - 2011-04-12 11:16 - 00150168 _____ C:\Windows\system32\perfc00C.dat
2017-04-22 20:55 - 2009-07-14 07:13 - 01645124 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-22 19:11 - 2017-02-26 13:04 - 00000000 ____D C:\Users\Maxou\Desktop\VIDEO KONCEPT
2017-04-22 19:10 - 2016-03-19 15:33 - 00000000 ____D C:\Users\Maxou\Desktop\VIDEO EN COURS
2017-04-21 23:02 - 2017-02-05 13:00 - 00000000 ____D C:\tmp
2017-04-21 17:02 - 2016-03-13 16:28 - 00000000 ____D C:\Users\Maxou\AppData\Local\Sony
2017-04-21 17:02 - 2016-03-13 16:28 - 00000000 ____D C:\ProgramData\Sony
2017-04-21 17:02 - 2016-03-13 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2017-04-21 17:02 - 2016-03-13 16:28 - 00000000 ____D C:\Program Files (x86)\Sony
2017-04-21 16:58 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-04-21 14:44 - 2016-06-20 17:29 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Audacity
2017-04-20 19:56 - 2017-03-26 19:03 - 00001096 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voxal Voice Changer.lnk
2017-04-20 19:56 - 2017-02-05 16:29 - 00001072 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2017.lnk
2017-04-20 19:56 - 2016-09-11 17:35 - 00001035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2017-04-20 19:56 - 2016-08-26 17:37 - 00000950 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riders of Asgard.lnk
2017-04-20 19:56 - 2016-07-13 17:58 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Floor is Jelly.lnk
2017-04-20 19:56 - 2016-06-24 14:19 - 00000985 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2017-04-20 19:56 - 2016-06-20 17:29 - 00001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2017-04-20 19:56 - 2016-04-13 13:42 - 00002515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2017-04-20 19:56 - 2016-03-19 15:34 - 00001753 _____ C:\Users\Maxou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-04-20 19:56 - 2016-03-08 20:31 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-04-20 19:56 - 2016-03-08 20:31 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-04-20 19:56 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2017-04-20 19:56 - 2009-07-14 06:57 - 00001535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-04-20 19:56 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2017-04-20 19:56 - 2009-07-14 06:57 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2017-04-20 19:56 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2017-04-20 19:56 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2017-04-20 19:56 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2017-04-20 19:52 - 2017-04-07 20:20 - 00000000 ____D C:\Users\Maxou\AppData\Local\AMD
2017-04-20 19:49 - 2016-11-11 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2017-04-20 17:07 - 2016-12-11 20:13 - 00000000 ___HD C:\Users\Maxou\AppData\Local\Temp1
2017-04-20 15:14 - 2016-03-09 16:28 - 148601744 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-04-20 15:14 - 2016-03-09 16:28 - 00000000 ____D C:\Windows\system32\MRT
2017-04-20 15:12 - 2016-12-20 21:12 - 00000000 ____D C:\Program Files (x86)\Please Don’t Touch Anything
2017-04-20 15:12 - 2016-05-01 13:48 - 00000000 ____D C:\Program Files (x86)\Audiosurf 2
2017-04-20 14:52 - 2017-02-24 18:05 - 00033512 _____ C:\Windows\SysWOW64\Drivers\TrueSight.sys
2017-04-20 14:08 - 2016-05-01 21:35 - 00000000 ___HD C:\Windows\msdownld.tmp
2017-04-20 13:40 - 2017-02-11 16:10 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-04-20 13:38 - 2017-02-11 16:21 - 00000000 ____D C:\Users\Maxou\AppData\Local\Battle.net
2017-04-20 13:38 - 2016-11-11 12:12 - 00000000 ____D C:\Windows\system32\SSL
2017-04-20 13:38 - 2016-10-21 15:19 - 00000000 ____D C:\Users\Maxou\AppData\Local\Ubisoft Game Launcher
2017-04-19 15:13 - 2017-02-15 23:17 - 00000000 ____D C:\Users\Maxou\AppData\LocalLow\Mozilla
2017-04-18 10:46 - 2017-02-13 20:34 - 00000000 ____D C:\Program Files (x86)\Arc
2017-04-17 22:44 - 2016-03-12 10:35 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Skype
2017-04-17 12:14 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\addins
2017-04-16 21:47 - 2016-03-18 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2017-04-16 17:07 - 2017-04-01 19:03 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Mozilla
2017-04-16 16:59 - 2016-07-08 09:57 - 00000000 ____D C:\ProgramData\Leap Motion
2017-04-16 16:59 - 2016-07-08 09:56 - 00000000 ____D C:\Program Files (x86)\Leap Motion
2017-04-15 18:39 - 2009-07-14 04:34 - 00017570 _____ C:\Windows\system32\Drivers\etc\services
2017-04-15 17:23 - 2016-03-09 18:22 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\Adobe
2017-04-15 17:21 - 2017-02-05 16:29 - 00000000 ____D C:\Users\Maxou\Documents\Adobe
2017-04-15 17:20 - 2016-06-24 14:19 - 00000000 ____D C:\Program Files\Adobe
2017-04-15 17:08 - 2017-02-05 17:25 - 00000000 ____D C:\Users\Maxou\Desktop\CRACK ADOBE
2017-04-15 14:44 - 2016-06-24 14:18 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-04-15 11:00 - 2016-06-24 14:19 - 00000000 ___HD C:\Program Files (x86)\Adobe
2017-04-14 22:40 - 2017-03-26 19:03 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2017-04-14 22:38 - 2017-03-26 19:03 - 00001181 _____ C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.txt
2017-04-14 22:38 - 2017-03-26 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2017-04-14 22:38 - 2017-03-26 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Related Programs
2017-04-14 22:38 - 2017-03-26 19:03 - 00000000 _____ C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2017-04-14 21:27 - 2016-03-12 10:34 - 00000000 ____D C:\ProgramData\Skype
2017-04-13 18:54 - 2016-03-08 20:35 - 00000000 ____D C:\Users\Maxou\AppData\Local\VirtualStore
2017-04-12 20:54 - 2016-11-19 22:40 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\discord
2017-04-12 17:10 - 2016-11-26 20:55 - 00000000 ____D C:\Windows\system32\log
2017-04-12 17:09 - 2016-04-17 19:38 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\uTorrent
2017-04-11 10:42 - 2017-01-15 20:48 - 00002151 _____ C:\Users\Maxou\AppData\Roaming\SpeedRunnersLog.txt
2017-04-11 10:39 - 2016-07-16 19:35 - 00000000 ____D C:\Users\Maxou\AppData\Roaming\InputMapper2
2017-04-09 17:58 - 2017-03-04 23:50 - 00000000 ____D C:\Users\Maxou\Desktop\TONY
2017-04-08 16:41 - 2016-03-19 15:33 - 00000000 ____D C:\Users\Maxou\Desktop\JEU EN DOSSIER
2017-04-08 14:20 - 2017-02-11 16:37 - 00000000 ____D C:\Program Files (x86)\Hearthstone
==================== Fichiers à la racine de certains dossiers =======
2016-04-14 11:52 - 2016-04-14 11:52 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2017-02-05 18:37 - 2017-04-02 15:34 - 0000033 _____ () C:\Users\Maxou\AppData\Roaming\AdobeWLCMCache.dat
2017-04-16 17:06 - 2017-04-16 17:06 - 0140288 _____ () C:\Users\Maxou\AppData\Roaming\Installer.dat
2017-04-16 17:07 - 2017-04-16 17:07 - 0018432 _____ () C:\Users\Maxou\AppData\Roaming\Main.dat
2017-01-15 20:48 - 2017-04-11 10:42 - 0002151 _____ () C:\Users\Maxou\AppData\Roaming\SpeedRunnersLog.txt
2017-03-26 19:03 - 2017-03-26 19:03 - 0001181 _____ () C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.1.txt
2017-03-26 19:03 - 2017-04-14 22:38 - 0001181 _____ () C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.txt
2017-03-26 19:03 - 2017-04-14 22:38 - 0000000 _____ () C:\Users\Maxou\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2017-04-19 10:11 - 2017-04-19 10:11 - 0000000 ____H () C:\Users\Maxou\AppData\Local\BITCDAA.tmp
2017-02-11 17:16 - 2017-02-11 17:16 - 0000063 _____ () C:\Users\Maxou\AppData\Local\emaildefaults
2017-02-11 17:17 - 2017-02-11 17:17 - 0000426 _____ () C:\Users\Maxou\AppData\Local\karboncalligraphyrc
2017-02-26 23:08 - 2017-02-26 23:08 - 0009700 _____ () C:\Users\Maxou\AppData\Local\kritacrash.log
2017-02-11 17:15 - 2017-05-08 21:25 - 0020972 _____ () C:\Users\Maxou\AppData\Local\kritarc
2017-02-11 17:15 - 2017-02-11 17:15 - 0000218 _____ () C:\Users\Maxou\AppData\Local\recently-used.xbel
2017-04-19 10:11 - 2017-04-19 10:11 - 0000000 _____ () C:\Users\Maxou\AppData\Local\{1CDC6DF2-8B52-455E-9144-70E77AC4FF18}
2016-03-08 20:47 - 2016-03-08 20:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2017-05-07 12:29 - 2017-05-07 12:30 - 0000132 _____ () C:\ProgramData\log.binb
2017-05-07 12:28 - 2017-05-07 12:29 - 0000128 _____ () C:\ProgramData\log.ewbb
2017-05-07 12:28 - 2017-05-07 12:29 - 0014895 _____ () C:\ProgramData\log.ewbt
2016-07-31 14:54 - 2016-07-31 14:54 - 0000016 _____ () C:\ProgramData\mntemp
Fichiers à déplacer ou supprimer:
====================
C:\Windows\TEMP\g4329.tmp.exe
C:\Windows\Tasks\{61A6DD24-FCB8-4646-8BAE-254B0D0CF85D}.job
Certains fichiers dans TEMP:
====================
2017-05-07 12:31 - 2017-05-07 12:31 - 1042800 _____ (Star Line ) C:\Users\Maxou\AppData\Local\Temp\AdBlocker.exe
2017-05-07 12:28 - 2017-05-07 12:28 - 0951520 _____ (Olimp company) C:\Users\Maxou\AppData\Local\Temp\msclean.exe
2014-11-08 10:33 - 2015-03-29 21:06 - 0606208 _____ () C:\Users\Maxou\AppData\Local\Temp\Quarantine.exe
2017-05-07 12:28 - 2017-05-07 12:28 - 0606748 _____ ( ) C:\Users\Maxou\AppData\Local\Temp\speedownloader.exe
2014-11-08 10:47 - 2014-10-17 13:39 - 0665682 _____ (SQLite Development Team) C:\Users\Maxou\AppData\Local\Temp\sqlite3.dll
2017-05-07 12:29 - 2017-05-07 12:29 - 1199825 _____ () C:\Users\Maxou\AppData\Local\Temp\unins000.exe
2017-05-07 12:28 - 2017-05-07 12:29 - 0597261 _____ (VideoBox ) C:\Users\Maxou\AppData\Local\Temp\vbsetup.exe
2017-05-07 12:29 - 2017-05-07 12:30 - 1320703 _____ ( ) C:\Users\Maxou\AppData\Local\Temp\webfriend.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-05-05 19:01
==================== Fin de FRST.txt ============================