Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 24-11-2017 01
Exécuté par Diaby (administrateur) sur DIABY-PC (25-11-2017 08:56:47)
Exécuté depuis C:\Users\Diaby\Desktop
Profils chargés: Diaby (Profils disponibles: Diaby & 123 & Administrateur)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(DESlock Limited.) C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Intel) C:\Program Files\Intel Driver and Support Assistant\DSAService.exe
(AnchorFree Inc.) C:\Program Files\Hotspot Shield\bin\cmw_srv.exe
() C:\Program Files\nordvpn-service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Dashlane, Inc.) C:\Users\Diaby\AppData\Roaming\Dashlane\Dashlane.exe
(Dashlane, Inc.) C:\Users\Diaby\AppData\Roaming\Dashlane\DashlanePlugin.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(NordVPN) C:\Program Files\NordVPN.exe
(The OpenVPN Project) C:\Program Files\Resources\Binaries\32bit\openvpn-nordvpn.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [16553472 2017-10-07] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [300440 2017-11-10] (ESET)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Run: [Dashlane] => C:\Users\Diaby\AppData\Roaming\Dashlane\Dashlane.exe [437200 2017-11-08] (Dashlane, Inc.)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Run: [DashlanePlugin] => C:\Users\Diaby\AppData\Roaming\Dashlane\DashlanePlugin.exe [481232 2017-11-08] (Dashlane, Inc.)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2124360 2014-01-14] (PeerBlock, LLC)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN.exe [15669896 2017-10-26] (NordVPN)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Policies\system: [EnableLUA] 0
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{1E4C86FB-419F-455B-A6AE-03C7459DB4F6}: [DhcpNameServer]
Tcpip\..\Interfaces\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: [NameServer]
Tcpip\..\Interfaces\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: [DhcpNameServer]
Tcpip\..\Interfaces\{CF0EADD1-4233-4C77-BE3C-B3722AFDBAA7}: [NameServer]

Internet Explorer:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-377985148-792701347-3327087119-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-377985148-792701347-3327087119-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: livecall - Pas de valeur CLSID -

FF DefaultProfile: d5euczvv.default
FF DefaultProfile: mamou851@hotmail.com
FF ProfilePath: C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default [2017-11-25]
FF Homepage: Mozilla\Firefox\Profiles\d5euczvv.default -> hxxps://www.qwant.com/?client=ext-firefox-hp
FF Extension: (Dashlane) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\jetpack-extension@dashlane.com.xpi [2017-10-19]
FF Extension: (Nom:) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\qwantcomforfirefox@jetpack.xpi [2017-11-22]
FF Extension: (uBlock Origin) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\uBlock0@raymondhill.net.xpi [2017-11-09]
FF Extension: (Disable Media WMF NV12 format) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\features\{4a3fca39-0359-4785-97fd-0cc05518b7e6}\disable-media-wmf-nv12@mozilla.org.xpi [2017-11-22] [Lagacy]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext => non trouvé(e)
FF HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Firefox\Extensions: [{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}] - C:\Program Files\DAP\DAPFireFox => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_159.dll [2017-10-14] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2017-04-04] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll [2009-08-17] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-377985148-792701347-3327087119-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Diaby\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [Pas de fichier]

CHR Profile: C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default [2017-11-24]
CHR Extension: (Slides) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-14]
CHR Extension: (Docs) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-14]
CHR Extension: (Google Drive) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-14]
CHR Extension: (YouTube) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-14]
CHR Extension: (Sheets) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-14]
CHR Extension: (Gmail) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-11-14]
CHR Extension: (Chrome Media Router) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-16]

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [1291784 2017-10-20] ()
R2 dlpsrv; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [485056 2016-07-08] (DESlock Limited.)
R2 DSAService; C:\Program Files\Intel Driver and Support Assistant\DSAService.exe [22816 2017-09-18] (Intel)
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [383016 2017-06-09] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1533864 2017-11-10] (ESET)
R2 hshld; C:\Program Files\Hotspot Shield\bin\cmw_srv.exe [53168 2017-10-25] (AnchorFree Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4430792 2017-08-21] (Malwarebytes)
R2 nordvpn-service; C:\Program Files\nordvpn-service.exe [416904 2017-10-26] ()
S3 npggsvc; C:\Windows\system32\GameMon.des [5691912 2016-05-18] (INCA Internet Co., Ltd.)
S4 Ntp2NetSvc; C:\Program Files\notepad2\notepad2.exe [2340864 2017-02-16] (Don HO don.h@free.fr) [Fichier non signé]
S4 Ntp2UpSvc; C:\Program Files\Common Files\ntp2UpSvc\notepad2.exe [2340864 2017-07-13] (Don HO don.h@free.fr) [Fichier non signé]
S3 PSEXESVC; C:\Windows\PSEXESVC.exe [189792 2017-10-09] (Sysinternals)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [279552 2017-10-07] (Realtek Semiconductor)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 ServiceDevMgmt; "C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe" [X]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AFTrafMgr1.3; C:\Program Files\Hotspot Shield\bin\TrafMgr_1_3_32.sys [57736 2017-10-10] (AnchorFree Inc.)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [38984 2016-10-11] (The OpenVPN Project)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-03-11] (Baidu, Inc.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [108032 2017-10-07] (Samsung Electronics Co., Ltd.)
R0 DLMFENC; C:\Windows\System32\DRIVERS\DLMFENC.sys [146936 2017-01-18] (DESlock Ltd.)
R0 DLPCRYPT; C:\Windows\System32\DRIVERS\dlpcrypt.sys [109824 2017-01-18] (DESlock Ltd.)
R0 dlpvdisk; C:\Windows\System32\DRIVERS\dlpvdisk.sys [84984 2017-01-18] (DESlock Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [114048 2017-10-17] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [90648 2017-09-25] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [141480 2017-10-05] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [42824 2017-09-25] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [71856 2017-09-25] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [53192 2017-09-25] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [90136 2017-09-25] (ESET)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27968 2017-05-22] (LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-05-26] (REALiX(tm))
S3 ksapi; C:\Windows\system32\drivers\ksapi.sys [81768 2017-07-07] (Kingsoft Corporation)
S3 NPPTNT2; C:\Windows\system32\npptNT2.sys [4682 2004-12-30] (INCA Internet Co., Ltd.) [Fichier non signé]
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [20040 2014-01-14] ()
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [23040 2014-11-05] (The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\DRIVERS\tapnordvpn.sys [65872 2017-03-29] (The OpenVPN Project)
S1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [113432 2017-04-18] (Oracle Corporation)
R0 VDLPToken2; C:\Windows\System32\DRIVERS\vdlptkn2.sys [125432 2017-01-18] (DESlock Ltd.)
S3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2009-07-24] (RealVNC Ltd.) [Fichier non signé]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-11-25 08:56 - 2017-11-25 08:58 - 000012923 _____ C:\Users\Diaby\Desktop\FRST.txt
2017-11-25 08:55 - 2017-11-25 08:56 - 000000000 ____D C:\FRST
2017-11-25 08:52 - 2017-11-25 08:52 - 000133280 _____ C:\Users\Diaby\Desktop\ZHPDiag.txt
2017-11-25 08:34 - 2017-11-25 08:38 - 001789440 _____ (Farbar) C:\Users\Diaby\Desktop\FRST.exe
2017-11-25 08:17 - 2017-11-25 08:18 - 000763520 _____ (ESET) C:\Users\Diaby\Downloads\ESETUninstaller.exe
2017-11-24 21:07 - 2017-11-24 21:07 - 000000000 ____D C:\Users\Diaby\AppData\Local\ESET
2017-11-24 20:57 - 2017-11-24 21:44 - 000003132 _____ C:\Users\Diaby\Desktop\settings.xml
2017-11-24 20:56 - 2017-11-23 12:07 - 000088742 _____ C:\Users\Diaby\Desktop\RamoXO_D3D_V2.1.dll
2017-11-24 20:55 - 2017-04-28 20:56 - 001978880 _____ (master131) C:\Users\Diaby\Desktop\Extreme Injector.exe
2017-11-24 20:54 - 2017-11-24 20:55 - 001311996 _____ C:\Users\Diaby\Downloads\Extreme Injector.rar
2017-11-24 20:54 - 2017-11-24 20:55 - 000086734 _____ C:\Users\Diaby\Downloads\RamoXO_D3D_V2.1.rar
2017-11-24 18:04 - 2017-08-24 04:11 - 021609085 _____ C:\RF002.REZ
2017-11-24 18:02 - 2017-11-24 18:11 - 262198686 _____ C:\Users\Diaby\Downloads\rf016.rez
2017-11-24 17:45 - 2017-11-24 17:45 - 005534619 _____ C:\Users\Diaby\Downloads\Nobug.zip
2017-11-24 17:40 - 2017-11-24 17:40 - 000136000 _____ C:\Users\Diaby\Downloads\Fast Fire and Reload Awm.rar
2017-11-24 17:37 - 2017-11-24 17:38 - 015146693 _____ C:\Users\Diaby\Downloads\Green and Red Chams + Normal for all Characters.zip
2017-11-24 17:35 - 2017-11-24 17:38 - 014504479 _____ C:\Users\Diaby\Downloads\RF002.rar
2017-11-24 17:08 - 2017-11-24 17:10 - 004254840 _____ (ESET) C:\Users\Diaby\Downloads\eset_smart_security_premium_live_installer(2).exe
2017-11-23 19:27 - 2017-11-23 19:28 - 000978473 _____ C:\Users\Diaby\Downloads\FAST ATTACK MOD and Fast Realod BY JAYMIKE GAMAO.zip
2017-11-23 19:24 - 2017-11-23 19:25 - 000116508 _____ C:\Users\Diaby\Downloads\fast knifeeee no client error.rar
2017-11-23 18:55 - 2017-11-22 15:56 - 020858685 _____ C:\RB001.REZ
2017-11-23 18:52 - 2017-11-23 20:21 - 000000000 ____D C:\mon fils
2017-11-23 18:49 - 2017-11-23 18:49 - 002517227 _____ C:\Users\Diaby\Downloads\Fast Knife ala Cf.rar
2017-11-23 18:46 - 2017-11-23 18:46 - 003194334 _____ C:\Users\Diaby\Downloads\WTW AND WTW DOUBLE JUMP AND JUMP TELEPORT.rar
2017-11-23 18:40 - 2017-11-23 18:41 - 005432828 _____ C:\Users\Diaby\Downloads\NoBugAndNoFallDamage+ModWallForMutants.zip
2017-11-23 12:40 - 2017-11-23 12:40 - 000000000 ____D C:\CFLog
2017-11-23 11:56 - 2017-11-23 11:56 - 000000000 ____D C:\Windows\system32\EventProviders
2017-11-22 20:14 - 2017-11-22 20:22 - 100271992 _____ (Microsoft Corporation) C:\Users\Diaby\Downloads\directx_Jun2010_redist (1).exe
2017-11-22 19:49 - 2017-11-22 20:53 - 563934504 _____ (Microsoft Corporation) C:\Users\Diaby\Downloads\windows6.1-KB976932-X86.exe
2017-11-22 19:43 - 2017-11-22 19:44 - 014157672 _____ (Microsoft Corporation) C:\Users\Diaby\Downloads\vc_redist.x86.exe
2017-11-22 19:38 - 2017-11-22 19:38 - 000887896 _____ (Microsoft Corporation) C:\Users\Diaby\Downloads\dotNetFx40_Client_setup.exe
2017-11-22 18:28 - 2017-11-22 18:28 - 000000782 _____ C:\Users\Diaby\Desktop\ZHPDiag.lnk
2017-11-22 18:22 - 2017-11-22 18:24 - 002929536 _____ C:\Users\Diaby\Downloads\ZHPDiag3.exe
2017-11-22 18:00 - 2017-11-22 18:01 - 002900480 _____ C:\Users\Diaby\Downloads\zhpdiag_v2017.10.9.179.exe
2017-11-22 17:03 - 2016-07-26 05:41 - 210386456 _____ C:\RF016.REZ
2017-11-22 15:39 - 2017-11-22 15:39 - 000001988 _____ C:\Users\Diaby\Desktop\CrossFire.lnk
2017-11-22 15:39 - 2017-11-22 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Z8Games
2017-11-22 15:15 - 2017-11-22 15:15 - 000000000 ____D C:\Program Files\Z8Games
2017-11-21 17:52 - 2017-11-21 17:54 - 000000000 _____ C:\Users\Diaby\Downloads\lightshot-5-2-1-1-multi-win.exe
2017-11-20 20:02 - 2017-11-22 14:50 - 000000000 ____D C:\Users\Diaby\Desktop\Nouveau dossier
2017-11-19 17:16 - 2017-11-19 17:16 - 000000000 ____D C:\Users\Diaby\AppData\Local\VirtualStore
2017-11-19 14:08 - 2017-11-19 15:17 - 000000000 ____D C:\CrossFire Installer
2017-11-19 14:05 - 2017-11-19 14:06 - 002146952 _____ (Smilegate - Z8 Games) C:\Users\Diaby\Downloads\CrossFire_NA.exe
2017-11-18 14:13 - 2017-11-18 14:20 - 001113080 _____ (Symantec Corporation) C:\Users\Diaby\Downloads\NSPremiumDownloader.exe
2017-11-17 17:14 - 2017-11-17 17:15 - 000000000 ____D C:\Program Files\Hotspot Shield
2017-11-17 17:14 - 2017-11-17 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2017-11-17 17:12 - 2017-11-17 17:14 - 000000000 ____D C:\ProgramData\Hotspot Shield
2017-11-17 17:00 - 2017-11-17 17:02 - 018161600 _____ (AnchorFree Inc.) C:\Users\Diaby\Downloads\HotspotShield-7.2.1-17454292.exe
2017-11-17 16:52 - 2017-11-17 16:55 - 007176472 _____ (AVAST Software) C:\Users\Diaby\Downloads\avast_premier_antivirus_setup_online.exe
2017-11-17 11:47 - 2017-11-17 11:47 - 000000000 __SHD C:\found.003
2017-11-15 14:32 - 2017-11-15 14:32 - 000002201 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-15 13:16 - 2017-11-15 13:23 - 197781295 _____ C:\Users\Diaby\Downloads\Crossfire Hack Knife+Commando+HMX+Hulk 15092017.rar
2017-11-15 12:36 - 2017-10-18 07:45 - 000347336 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-11-15 12:36 - 2017-10-18 02:55 - 000285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-11-15 12:36 - 2017-10-18 02:55 - 000259584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-11-15 12:36 - 2017-10-18 02:55 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-11-15 12:36 - 2017-10-18 02:55 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-11-15 12:36 - 2017-10-18 02:55 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-11-15 12:36 - 2017-10-18 02:55 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-11-15 12:36 - 2017-10-18 02:55 - 000006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-11-15 12:36 - 2017-10-16 23:49 - 001213672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-11-15 12:36 - 2017-10-16 23:25 - 002402816 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-11-15 12:36 - 2017-10-16 22:55 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2017-11-15 12:36 - 2017-10-14 08:14 - 020269056 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-11-15 12:36 - 2017-10-14 07:53 - 000499200 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-11-15 12:36 - 2017-10-14 07:52 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-11-15 12:36 - 2017-10-14 07:50 - 002293760 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-11-15 12:36 - 2017-10-14 07:47 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-11-15 12:36 - 2017-10-14 07:46 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-11-15 12:36 - 2017-10-14 07:45 - 000662016 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-11-15 12:36 - 2017-10-14 07:45 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-11-15 12:36 - 2017-10-14 07:45 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-11-15 12:36 - 2017-10-14 07:41 - 000667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-11-15 12:36 - 2017-10-14 07:38 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-11-15 12:36 - 2017-10-14 07:33 - 004542464 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-11-15 12:36 - 2017-10-14 07:33 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-11-15 12:36 - 2017-10-14 07:32 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-11-15 12:36 - 2017-10-14 07:31 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-11-15 12:36 - 2017-10-14 07:30 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-11-15 12:36 - 2017-10-14 07:28 - 013680128 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-11-15 12:36 - 2017-10-14 07:25 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-11-15 12:36 - 2017-10-14 07:24 - 000694272 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-11-15 12:36 - 2017-10-14 07:24 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-11-15 12:36 - 2017-10-14 07:23 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-11-15 12:36 - 2017-10-14 07:23 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-11-15 12:36 - 2017-10-14 07:10 - 002767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-11-15 12:36 - 2017-10-14 07:07 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-11-15 12:36 - 2017-10-14 07:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-11-15 12:36 - 2017-10-12 01:40 - 000308456 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-11-15 12:36 - 2017-10-12 01:37 - 011410944 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-11-15 12:36 - 2017-10-12 01:37 - 001549824 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-11-15 12:36 - 2017-10-12 01:37 - 001400320 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-11-15 12:36 - 2017-10-12 01:37 - 001363968 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-11-15 12:36 - 2017-10-12 01:37 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-11-15 12:36 - 2017-10-12 01:37 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-11-15 12:36 - 2017-10-12 01:37 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-11-15 12:36 - 2017-10-12 01:14 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2017-11-15 12:36 - 2017-09-07 14:05 - 000922432 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-11-15 12:36 - 2017-09-07 14:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-11-15 12:35 - 2017-10-14 08:03 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-11-15 12:35 - 2017-10-14 08:03 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-11-15 12:35 - 2017-10-14 07:53 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-11-15 12:35 - 2017-10-14 07:52 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-11-15 12:35 - 2017-10-14 07:51 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-11-15 12:35 - 2017-10-14 07:47 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-11-15 12:35 - 2017-10-14 07:45 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-11-15 12:35 - 2017-10-14 07:35 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-11-15 12:35 - 2017-10-14 07:35 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-11-15 12:35 - 2017-10-14 07:34 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-11-15 12:35 - 2017-10-12 01:37 - 012574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2017-11-15 12:35 - 2017-10-12 01:37 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-11-15 12:35 - 2017-10-12 01:37 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-11-15 12:35 - 2017-10-12 01:37 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-11-15 12:35 - 2017-10-12 01:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-11-15 12:35 - 2017-10-12 01:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-11-15 12:35 - 2017-10-12 01:37 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-11-15 12:35 - 2017-10-12 01:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-11-15 12:35 - 2017-10-12 01:26 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-11-15 12:35 - 2017-10-12 01:26 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-11-15 12:35 - 2017-10-12 01:25 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-11-15 12:35 - 2017-10-12 01:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-11-15 12:35 - 2017-10-12 01:24 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2017-11-15 12:35 - 2017-10-12 01:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2017-11-15 12:35 - 2017-10-12 01:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2017-11-15 12:35 - 2017-10-12 01:16 - 000034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-11-14 16:39 - 2017-11-15 14:32 - 000002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-02 19:16 - 2017-11-02 19:20 - 000000000 ____D C:\ProgramData\NordVpn
2017-11-02 19:16 - 2017-11-02 19:16 - 000001749 _____ C:\Users\Public\Desktop\NordVPN.lnk
2017-11-02 19:15 - 2017-11-02 19:17 - 000000000 ____D C:\Users\Diaby\AppData\Local\NordVPN
2017-11-02 19:14 - 2017-11-02 19:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordVPN
2017-11-02 19:14 - 2017-11-02 19:14 - 000000000 ____D C:\Program Files\Resources
2017-11-02 19:11 - 2017-11-02 19:11 - 000000000 ____D C:\Program Files\TAP-NordVPN
2017-11-02 19:06 - 2017-11-02 19:09 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\NordVPN
2017-10-31 16:59 - 2017-10-31 16:59 - 000000000 ____D C:\Users\Diaby\AppData\Local\IsolatedStorage
2017-10-31 16:58 - 2017-10-31 16:58 - 000000000 ____D C:\ProgramData\Caphyon
2017-10-31 16:33 - 2017-10-31 16:33 - 024328176 _____ (NordVPN) C:\Users\Diaby\Downloads\NordVPNSetup.exe
2017-10-31 15:01 - 2017-10-31 15:01 - 000002101 _____ C:\Users\Diaby\Desktop\Crossfire Europe EU.lnk
2017-10-31 15:01 - 2017-10-31 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smilegate Europe
2017-10-30 14:55 - 2017-10-30 14:55 - 000000000 ____D C:\Users\Diaby\AppData\Local\DESlock+
2017-10-30 12:53 - 2017-10-30 12:54 - 018161600 _____ (AnchorFree Inc.) C:\Users\Diaby\Downloads\HotspotShield-7.2.1-15960537.exe
2017-10-30 12:08 - 2017-10-30 12:08 - 018161600 _____ (AnchorFree Inc.) C:\Users\Diaby\Downloads\HotspotShield-7.2.1-15958571.exe
2017-10-30 08:40 - 2017-10-30 08:58 - 000000000 ____D C:\Users\Diaby\.VirtualBox
2017-10-30 08:36 - 2017-10-30 08:36 - 000001380 _____ C:\Users\Diaby\Desktop\peerblock.exe.lnk
2017-10-29 20:36 - 2017-10-29 20:36 - 000001947 _____ C:\Users\Public\Desktop\ESET Protection des transactions bancaires.lnk
2017-10-29 20:34 - 2017-10-30 14:52 - 000000000 ____D C:\Program Files\ESET
2017-10-29 20:34 - 2017-10-29 20:34 - 000000000 ____D C:\ProgramData\ESET
2017-10-29 19:08 - 2017-10-29 19:12 - 004254840 _____ (ESET) C:\Users\Diaby\Downloads\eset_smart_security_premium_live_installer(1).exe
2017-10-29 17:29 - 2017-10-29 17:32 - 000000617 _____ C:\bdlog.txt
2017-10-29 17:10 - 2017-10-29 17:13 - 009621896 _____ C:\Users\Diaby\Downloads\Bitdefender_2018_UninstallTool.exe
2017-10-29 12:25 - 2017-11-24 17:00 - 000000000 ____D C:\Program Files\PeerBlock
2017-10-29 12:25 - 2017-10-29 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
2017-10-29 12:10 - 2017-10-29 12:11 - 002374320 _____ (PeerBlock, LLC ) C:\Users\Diaby\Downloads\PeerBlock-Setup_v1-1.2.0-r693.2_r693.exe
2017-10-27 14:32 - 2017-10-27 14:32 - 000000000 ____D C:\Users\Diaby\.QtWebEngineProcess
2017-10-26 17:49 - 2017-10-26 17:49 - 015669896 _____ (NordVPN) C:\Program Files\NordVPN.exe
2017-10-26 17:49 - 2017-10-26 17:49 - 000416904 _____ () C:\Program Files\nordvpn-service.exe
2017-10-26 17:49 - 2017-10-26 17:49 - 000111616 _____ () C:\Program Files\NordVpn.Controls.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000100352 _____ () C:\Program Files\NordVpn.DiagnosticsTool.Logic.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000052224 _____ () C:\Program Files\NordVpn.Core.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000050312 _____ () C:\Program Files\Diagnostics.exe
2017-10-26 17:49 - 2017-10-26 17:49 - 000046080 _____ () C:\Program Files\NordVpn.Persistence.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000019968 _____ () C:\Program Files\NordVpn.DiagnosticsTool.UI.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000017408 _____ () C:\Program Files\NordVpn.ServiceProxy.dll
2017-10-26 15:54 - 2017-10-26 15:54 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Little Fighter 2 v1.9
2017-10-26 14:53 - 2017-10-26 14:53 - 000000000 ____D C:\Users\Diaby\AppData\Local\Microsoft_Corporation
2017-10-26 14:36 - 2017-10-26 14:53 - 000000000 ____D C:\56d5685b1e3612092c4c39b42f817e
2017-10-26 14:15 - 2017-10-26 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2017-10-26 14:13 - 2017-10-26 14:13 - 000000000 ____D C:\Windows\system32\1036
2017-10-26 14:06 - 2017-10-26 14:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2012
2017-10-26 13:49 - 2017-11-22 20:22 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2017-10-26 12:41 - 2017-10-26 12:41 - 000005414 _____ C:\Program Files\NordVPN.exe.config
2017-10-26 12:41 - 2017-10-26 12:41 - 000001247 _____ C:\Program Files\Diagnostics.exe.config
2017-10-26 12:41 - 2017-10-26 12:41 - 000000271 _____ C:\Program Files\nordvpn-service.exe.config

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-11-25 08:57 - 2009-07-14 05:34 - 000041248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-25 08:57 - 2009-07-14 05:34 - 000041248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-25 08:55 - 2016-11-23 13:25 - 000000000 ____D C:\Users\Diaby\AppData\LocalLow\Mozilla
2017-11-25 08:21 - 2017-07-30 16:37 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\ZHP
2017-11-25 08:18 - 2017-07-30 16:37 - 000000000 ____D C:\Users\Diaby\AppData\Local\ZHP
2017-11-25 07:56 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-23 19:35 - 2017-02-05 20:16 - 000000000 ____D C:\Users\Diaby\AppData\Local\CrashDumps
2017-11-22 19:19 - 2017-10-10 17:33 - 000000000 ____D C:\Program Files\Intel Driver and Support Assistant
2017-11-19 15:37 - 2017-03-16 11:48 - 000000000 ____D C:\ProgramData\Solid State Networks
2017-11-19 12:54 - 2016-06-22 09:46 - 000007628 _____ C:\Users\Diaby\AppData\Local\Resmon.ResmonCfg
2017-11-18 17:36 - 2017-10-25 10:57 - 000000618 _____ C:\DelFix.txt
2017-11-17 19:05 - 2017-09-21 17:13 - 000000376 _____ C:\Windows\Tasks\update-sys.job
2017-11-17 17:12 - 2016-06-05 18:26 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-17 15:45 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\rescache
2017-11-17 13:45 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2017-11-17 13:13 - 2017-09-16 17:38 - 000316328 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-16 07:17 - 2017-07-13 09:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-11-16 07:17 - 2016-11-23 13:25 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-11-15 12:35 - 2016-06-15 12:21 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Mozilla
2017-11-15 07:24 - 2016-07-23 09:37 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Dashlane
2017-11-14 19:20 - 2017-07-07 14:01 - 000000000 ____D C:\Users\Diaby\Documents\Cross Fire
2017-11-14 16:40 - 2016-05-25 18:28 - 000000000 ____D C:\Users\Diaby\AppData\Local\Google
2017-11-14 16:38 - 2016-05-25 18:28 - 000000000 ____D C:\Program Files\Google
2017-11-13 19:54 - 2017-10-23 13:22 - 000000000 ____D C:\Users\Diaby\Desktop\Quarantine
2017-11-10 18:14 - 2017-08-25 09:43 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2017-10-31 17:03 - 2016-05-25 18:10 - 000000000 ____D C:\Windows\pss
2017-10-30 18:30 - 2016-05-25 17:26 - 000000000 ____D C:\Users\Diaby
2017-10-30 08:31 - 2011-04-12 02:35 - 000749022 _____ C:\Windows\system32\perfh00C.dat
2017-10-30 08:31 - 2011-04-12 02:35 - 000150586 _____ C:\Windows\system32\perfc00C.dat
2017-10-30 08:31 - 2010-11-20 22:01 - 001668256 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-29 17:28 - 2017-10-25 11:55 - 000000000 ____D C:\ProgramData\BDLogging
2017-10-27 14:06 - 2016-10-23 13:06 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-10-26 14:13 - 2017-06-20 12:16 - 000000000 ____D C:\Windows\system32\1033
2017-10-26 10:00 - 2017-08-22 19:21 - 000000000 ____D C:\Users\Diaby\AppData\Local\AVAST Software

==================== Fichiers à la racine de certains dossiers =======

2017-04-04 06:35 - 2017-04-04 06:35 - 000217088 _____ (Autofac) C:\Program Files\Autofac.dll
2016-11-10 13:11 - 2016-11-10 13:11 - 000010752 _____ () C:\Program Files\Caliburn.Micro.Autofac.dll
2017-01-09 22:58 - 2017-01-09 22:58 - 000061440 _____ (Blue Spire Consulting, Inc.) C:\Program Files\Caliburn.Micro.dll
2017-01-09 22:58 - 2017-01-09 22:58 - 000014848 _____ (Blue Spire Consulting, Inc.) C:\Program Files\Caliburn.Micro.Platform.Core.dll
2017-01-09 22:58 - 2017-01-09 22:58 - 000078848 _____ (Blue Spire Consulting, Inc.) C:\Program Files\Caliburn.Micro.Platform.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000050312 _____ () C:\Program Files\Diagnostics.exe
2017-10-26 12:41 - 2017-10-26 12:41 - 000001247 _____ () C:\Program Files\Diagnostics.exe.config
2016-04-22 16:28 - 2016-04-22 16:28 - 000029184 _____ (GalaSoft Laurent Bugnion @ http://www.galasoft.ch) C:\Program Files\GalaSoft.MvvmLight.dll
2016-04-22 16:28 - 2016-04-22 16:28 - 000017920 _____ (GalaSoft Laurent Bugnion @ http://www.galasoft.ch) C:\Program Files\GalaSoft.MvvmLight.Extras.dll
2016-04-22 16:28 - 2016-04-22 16:28 - 000013824 _____ (GalaSoft Laurent Bugnion @ http://www.galasoft.ch) C:\Program Files\GalaSoft.MvvmLight.Platform.dll
2016-04-02 09:02 - 2016-04-02 09:02 - 000045056 _____ (hardcodet.net) C:\Program Files\Hardcodet.Wpf.TaskbarNotification.dll
2017-08-12 17:04 - 2017-08-12 17:04 - 000057344 _____ (Liberation) C:\Program Files\Liberation.Api.dll
2017-04-28 12:04 - 2017-04-28 12:04 - 000030208 _____ (Liberation) C:\Program Files\Liberation.CrashReporting.dll
2017-05-12 10:16 - 2017-05-12 10:16 - 000010752 _____ (Liberation) C:\Program Files\Liberation.Logging.dll
2017-08-11 15:10 - 2017-08-11 15:10 - 000024064 _____ (Liberation) C:\Program Files\Liberation.OS.dll
2017-08-11 15:16 - 2017-08-11 15:16 - 000011264 _____ () C:\Program Files\Liberation.ServiceModel.dll
2017-06-21 11:41 - 2017-06-21 11:41 - 000027136 _____ (Liberation) C:\Program Files\Liberation.Vpn.dll
2017-02-24 17:23 - 2017-07-31 16:48 - 000192716 _____ () C:\Program Files\metadata
2013-02-18 15:30 - 2013-02-18 15:30 - 000139888 _____ (Microsoft Corporation) C:\Program Files\Microsoft.Expression.Effects.dll
2013-02-18 15:30 - 2013-02-18 15:30 - 000108168 _____ (Microsoft Corporation) C:\Program Files\Microsoft.Expression.Interactions.dll
2017-01-24 17:55 - 2017-01-24 17:55 - 000225008 _____ (Microsoft) C:\Program Files\Microsoft.HockeyApp.Core45.dll
2017-01-24 17:55 - 2017-01-24 17:55 - 000062688 _____ (Microsoft) C:\Program Files\Microsoft.HockeyApp.Kit.dll
2014-05-05 11:25 - 2014-05-05 11:25 - 000018112 _____ (Microsoft) C:\Program Files\Microsoft.Practices.ServiceLocation.dll
2016-07-28 18:19 - 2016-07-28 18:19 - 000295424 _____ (CodePlex Community) C:\Program Files\Microsoft.Win32.TaskScheduler.dll
2015-02-15 00:58 - 2015-03-12 00:20 - 000000165 _____ () C:\Program Files\Mods-ITST.ini
2015-02-15 00:58 - 2015-03-12 00:19 - 000000165 _____ () C:\Program Files\Mods.ini
2017-04-02 17:46 - 2017-04-02 17:46 - 000652288 _____ (Newtonsoft) C:\Program Files\Newtonsoft.Json.dll
2017-05-05 21:19 - 2017-05-05 21:19 - 000608256 _____ (NLog) C:\Program Files\NLog.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000416904 _____ () C:\Program Files\nordvpn-service.exe
2017-10-26 12:41 - 2017-10-26 12:41 - 000000271 _____ () C:\Program Files\nordvpn-service.exe.config
2017-10-26 17:49 - 2017-10-26 17:49 - 000111616 _____ () C:\Program Files\NordVpn.Controls.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000052224 _____ () C:\Program Files\NordVpn.Core.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000100352 _____ () C:\Program Files\NordVpn.DiagnosticsTool.Logic.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000019968 _____ () C:\Program Files\NordVpn.DiagnosticsTool.UI.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 015669896 _____ (NordVPN) C:\Program Files\NordVPN.exe
2017-10-26 12:41 - 2017-10-26 12:41 - 000005414 _____ () C:\Program Files\NordVPN.exe.config
2017-10-26 17:49 - 2017-10-26 17:49 - 000046080 _____ () C:\Program Files\NordVpn.Persistence.dll
2017-10-26 17:49 - 2017-10-26 17:49 - 000017408 _____ () C:\Program Files\NordVpn.ServiceProxy.dll
2016-12-20 14:05 - 2016-12-20 14:05 - 002314121 _____ () C:\Program Files\nPwImRe.psd
2015-02-15 00:58 - 2014-06-04 03:36 - 000000038 _____ () C:\Program Files\Run_ITST_Mod.bat
2015-02-15 00:58 - 2015-01-31 09:02 - 000000031 _____ () C:\Program Files\Run_TE_Vanilla.bat
2017-07-19 10:01 - 2017-07-19 10:01 - 000079208 _____ (Microsoft Corporation) C:\Program Files\System.ValueTuple.dll
2016-04-22 16:28 - 2016-04-22 16:28 - 000055904 _____ (Microsoft Corporation) C:\Program Files\System.Windows.Interactivity.dll
2015-02-15 00:58 - 2015-03-12 01:02 - 000000379 _____ () C:\Program Files\UnpackSound.bat
2016-12-13 11:48 - 2016-12-13 11:48 - 001054720 _____ (Xceed Software Inc.) C:\Program Files\Xceed.Wpf.Toolkit.dll
2016-05-29 07:04 - 2016-05-29 07:04 - 000000000 _____ () C:\Users\Diaby\AppData\Roaming\1.bin
2017-02-11 15:28 - 2017-10-09 18:51 - 000001157 _____ () C:\Users\Diaby\AppData\Roaming\droid4xinstaller.log
2016-08-03 08:44 - 2017-02-07 20:05 - 000000003 _____ () C:\Users\Diaby\AppData\Roaming\Maintenance.log
2017-03-11 20:43 - 2017-04-14 12:05 - 000000002 _____ () C:\Users\Diaby\AppData\Roaming\Maintenance3.log
2017-10-24 19:22 - 2017-09-05 01:16 - 016384000 _____ () C:\Users\Diaby\AppData\Roaming\Sandra.mdb
2017-02-19 11:26 - 2017-03-03 18:08 - 000532842 _____ () C:\Users\Diaby\AppData\Roaming\spritesa
2017-02-10 09:43 - 2017-02-10 09:45 - 000033193 _____ () C:\Users\Diaby\AppData\Roaming\UserTile.png
2016-09-28 11:09 - 2017-05-13 07:52 - 000000301 _____ () C:\Users\Diaby\AppData\Roaming\WB.CFG
2016-05-28 19:05 - 2017-05-08 15:02 - 000005632 _____ () C:\Users\Diaby\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-08 17:21 - 2017-07-09 07:51 - 000000600 _____ () C:\Users\Diaby\AppData\Local\PUTTY.RND
2016-06-22 09:46 - 2017-11-19 12:54 - 000007628 _____ () C:\Users\Diaby\AppData\Local\Resmon.ResmonCfg
2016-09-02 15:25 - 2014-10-14 00:55 - 000061786 _____ () C:\Users\Diaby\AppData\Local\Tempcapturada5.png
2016-09-02 15:25 - 2007-06-13 20:37 - 000000111 _____ () C:\Users\Diaby\AppData\Local\Tempgrey.png
2016-09-02 15:25 - 2011-12-06 21:01 - 000012869 _____ () C:\Users\Diaby\AppData\Local\TempMBoxSkin.png
2016-09-02 15:25 - 2014-09-29 13:52 - 000161372 _____ () C:\Users\Diaby\AppData\Local\Tempv2.png
2016-09-14 18:15 - 2016-09-14 18:15 - 000000003 _____ () C:\Users\Diaby\AppData\Local\updater.log
2016-09-14 18:15 - 2017-09-21 17:13 - 000000413 _____ () C:\Users\Diaby\AppData\Local\UserProducts.xml

Certains fichiers dans TEMP:
2017-11-23 19:08 - 2017-11-23 19:08 - 001376256 _____ () C:\Users\Diaby\AppData\Local\temp\1.exe
2017-11-18 10:35 - 2017-11-24 22:43 - 000000000 _____ () C:\Users\Diaby\AppData\Local\temp\19480092594194a127310869d618ccd6.dll
2011-03-30 11:40 - 2011-03-30 11:40 - 000095576 _____ (Microsoft Corporation) C:\Users\Diaby\AppData\Local\temp\DSETUP.dll
2011-03-30 11:40 - 2011-03-30 11:40 - 001566040 _____ () C:\Users\Diaby\AppData\Local\temp\dsetup32.dll
2011-03-30 11:40 - 2011-03-30 11:40 - 000517976 _____ () C:\Users\Diaby\AppData\Local\temp\DXSETUP.exe

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2017-11-22 21:10

==================== Fin de FRST.txt ============================


