Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 24.02.2018
Exécuté par nakhfatli (administrateur) sur alicahh (25-02-2018 03:46:59)
Exécuté depuis C:\Users\nakhfatli\Downloads\Programs
Profils chargés: nakhfatli (Profils disponibles: nakhfatli & DefaultAppPool)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Two Pilots) C:\Windows\VPDAgent.exe
(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(AuthenTec, Inc.) C:\Program Files\Fingerprint Sensor\AtService.exe
(AOMEI Tech Co., Ltd.) C:\Program Files\AOMEI Backupper\ABService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files\MeditelInternet\MeditelInternet_Service.exe
() C:\Program Files\Wi-Fi\WiFiGxSvc.exe
(RealNetworks, Inc.) C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(Realtek) C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
() C:\Windows\runSW.exe
(Chris Pietschmann (hxxp://pietschsoft.com)) C:\Program Files\Virtual Router\VirtualRouterService.exe
(VMware, Inc.) C:\Windows\System32\vmnat.exe
(ZhangKong Soft) C:\Program Files\zksoft\marswifi\zkservice.exe
(Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
(VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe
(VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
() C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
(Symantec) C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\uTorrent.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtWLan.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\updates\3.5.3_44358\utorrentie.exe
(Realtek) C:\Windows\SwUSB.exe
(BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\updates\3.5.3_44358\utorrentie.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [300440 2017-12-18] (ESET)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4014136 2017-08-05] (Tonec Inc.)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [uTorrent] => C:\Users\nakhfatli\AppData\Roaming\uTorrent\uTorrent.exe [2148024 2018-02-23] (BitTorrent Inc.)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office15\lync.exe [18993824 2014-01-23] (Microsoft Corporation)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: G - G:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {30ea5844-99a4-11e7-afc6-c0cb38ccc09a} - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {40b2ef7a-9ac6-11e7-8d2e-c0cb38ccc09a} - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {41566578-ad16-11e7-bdfd-c0cb38ccc09a} - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {46b42d07-a7b7-11e7-a999-c0cb38ccc09a} - G:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {69876fc7-99a3-11e7-8ef7-c0cb38ccc09a} - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {6bf75928-a096-11e7-9e12-c0cb38ccc09a} - F:\setup.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {c9480402-164e-11e8-81e2-f04da2ab5a96} - G:\.\Setup.exe AUTORUN=1
HKU\S-1-5-18\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of "Microsoft 6to4 Adapter" devices.
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0756E652-FE55-49EE-98B2-80B63420800D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0900694E-ED80-4914-9830-1CE106ACB0E1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{32FC1503-F35E-48E8-92B0-5F077B2917F8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{34ECC496-4066-4D54-BCD6-CB89318E4FB4}: [NameServer] 192.168.0.1
Tcpip\..\Interfaces\{4219A296-BCF9-43F6-9DE7-A960745A9C0D}: [NameServer] 41.214.140.5 8.8.8.8
Tcpip\..\Interfaces\{5754BF01-1A7A-4E08-A986-81224BC251AC}: [DhcpNameServer] 192.168.56.1
Tcpip\..\Interfaces\{5CBB7ED3-D6FF-4527-9631-6CD3A6089DE6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{889C3E0C-62AE-4876-B274-6BFEFC356C1B}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9A00F582-B4E8-4210-B0CE-D39DBE038144}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9D24035D-2635-4720-A223-0F9C77221491}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A3EC6704-82F9-4F71-A171-026C848C5AB1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A9F06C4B-84EB-4A0F-8B11-244A742C2C6D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C364346A-4705-435E-A405-170D7DB56233}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D151875A-6672-4625-AEF9-B3ADD4D93D0D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E4504F60-BC91-4AC7-A5F6-A81045E196D7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FD783C41-02F1-47AD-9903-7A899EEF9D3B}: [DhcpNameServer] 192.168.153.2
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2407163642-931976920-2894012920-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp10_adw_ch&p={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2017-07-12] (Internet Download Manager, Tonec Inc.)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2017-11-29] (RealDownloader)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: bfb9jeem.nakhfatli
FF ProfilePath: C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\xlklisv9.default [non trouvé(e)] <==== ATTENTION
FF ProfilePath: C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli [2018-02-25]
FF Homepage: Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli -> www.google.fr/
FF Extension: (Update 75.66.11) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{8a0699a0-09c3-4cf1-b38d-fec25441650c}.xpi [2018-01-28]
FF Extension: (Video DownloadHelper) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-02-22]
FF Extension: (Web Developer) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2018-01-20]
FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc3.xpi
FF Extension: (Pas de nom) - C:\Program Files\Internet Download Manager\idmmzcc3.xpi [2017-07-14]
FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\nakhfatli\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\nakhfatli\AppData\Roaming\IDM\idmmzcc5 [2017-09-16] [Legacy] [non signé]
FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-12-07] ()
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-23] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=18.1.10.217 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2017-12-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=18.1.10.217 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2017-12-07] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.fr/
CHR NewTab: Default -> Not-active:"chrome-extension://imhlianhlhdicjchlbmbfaefhhjencbe/newtab.html"
CHR Profile: C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default [2018-02-25]
CHR Extension: (Slides) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20]
CHR Extension: (Docs) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-15]
CHR Extension: (YouTube) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-15]
CHR Extension: (Adobe Acrobat) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-16]
CHR Extension: (ZenMate VPN - Sécurité internet & Unblock) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2018-02-17]
CHR Extension: (Sheets) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-15]
CHR Extension: (NewTab) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\imhlianhlhdicjchlbmbfaefhhjencbe [2017-09-16]
CHR Extension: (IDM Integration Module) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2018-01-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-15]
CHR Extension: (Gmail) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-15]
CHR Extension: (Chrome Media Router) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-29]
CHR Profile: C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\System Profile [2018-02-25]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [imhlianhlhdicjchlbmbfaefhhjencbe] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-07-14]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Agent; C:\Windows\VPDAgent.exe [200704 2012-10-01] (Two Pilots) [Fichier non signé]
S3 AIPS; C:\Program Files\arcai.com\aips.exe [1833472 2017-05-19] (Arcai.com) [Fichier non signé]
R2 ATService; C:\Program Files\Fingerprint Sensor\AtService.exe [1803584 2010-03-03] (AuthenTec, Inc.)
R2 Backupper Service; C:\Program Files\AOMEI Backupper\ABService.exe [122728 2017-09-04] (AOMEI Tech Co., Ltd.)
S2 ByteFenceService; C:\Program Files\ByteFence\ByteFenceService.exe [145888 2017-07-20] (Byte Technologies LLC)
R2 dcpsysmgrsvc; C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe [390000 2011-07-28] (Dell Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1539560 2017-12-18] (ESET)
S3 GenericMount Helper Service; C:\Program Files\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [1574408 2010-02-12] (Symantec)
S3 jswpbapi; C:\Program Files\Jumpstart\jswpbapi.exe [188416 2008-09-26] (Atheros Communications, Inc.) [Fichier non signé]
S3 jswpsapi; C:\Program Files\Jumpstart\jswpsapi.exe [954368 2008-09-26] (Atheros Communications, Inc.) [Fichier non signé]
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE [2999664 2007-09-26] (Symantec Corporation)
R2 MeditelInternet_Service; C:\Program Files\MeditelInternet\MeditelInternet_Service.exe [346680 2014-05-22] ()
R2 MyWiFiRouterDHCP; C:\Program Files\Wi-Fi\WiFiGxSvc.exe [47464 2014-11-18] ()
S2 Norton Ghost; C:\Program Files\Norton Ghost\Agent\VProSvc.exe [4590432 2010-03-03] (Symantec Corporation)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [37104 2017-11-29] (RealNetworks, Inc.)
R2 Realtek87B; C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek) [Fichier non signé]
R2 RealTimes Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [989912 2017-12-07] (RealNetworks, Inc.)
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [302920 2017-09-17] ()
R2 RunSwUSB; C:\Windows\runSW.exe [48856 2013-10-18] ()
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-05-22] (DEVGURU Co., LTD.)
R3 SymSnapService; C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe [1964528 2009-09-21] (Symantec)
R2 Virtual Router; C:\Program Files\Virtual Router\VirtualRouterService.exe [12288 2013-02-10] (Chris Pietschmann (hxxp://pietschsoft.com)) [Fichier non signé]
R3 VMAuthdService; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [79872 2012-08-15] (VMware, Inc.) [Fichier non signé]
R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [357016 2012-08-15] (VMware, Inc.)
R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [719512 2012-08-01] (VMware, Inc.)
R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [435864 2012-08-15] (VMware, Inc.)
R2 VMwareHostd; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [15680000 2012-08-15] () [Fichier non signé]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 zkservice; C:\Program Files\zksoft\marswifi\zkservice.exe [412424 2017-12-04] (ZhangKong Soft)
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
S3 Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe /Processid:{AFAACC1C-04BA-47BE-8970-5D50DF836271}
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Acceler; C:\Windows\System32\DRIVERS\accelern.sys [44144 2012-05-23] (ST Microelectronics)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [46896 2016-12-21] ()
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [150192 2016-12-21] ()
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [34864 2017-09-01] ()
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [46440 2015-03-31] (Baidu, Inc.)
R3 BTWAMPFL; C:\Windows\System32\DRIVERS\btwampfl.sys [302120 2017-09-06] (Broadcom Corporation.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-05-22] (Samsung Electronics Co., Ltd.)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [232512 2017-09-23] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [114552 2017-11-07] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [90640 2017-11-07] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [141480 2017-11-07] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [42816 2017-11-07] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [71856 2017-11-07] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [53184 2017-11-07] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [90136 2017-11-07] (ESET)
R3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [57840 2010-02-12] (Symantec Corporation)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [41496 2012-08-01] (VMware, Inc.)
S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [108032 2013-10-23] (Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [316544 2013-11-01] (Huawei Technologies Co., Ltd.)
R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [37408 2014-08-14] (NT Kernel Resources)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R0 PBADRV; C:\Windows\System32\DRIVERS\PBADRV.sys [26608 2008-06-04] (Dell Inc)
R2 risdpcie; C:\Windows\System32\DRIVERS\risdpe86.sys [49152 2009-06-30] (REDC)
R3 RTL8187; C:\Windows\System32\DRIVERS\rtl8187.sys [375808 2010-01-07] (Realtek Semiconductor Corporation )
R3 RtlvVga; C:\Windows\System32\DRIVERS\RtlvVga.sys [12432 2014-03-18] (Realtek Semiconductor Corporation )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [443448 2017-09-23] ()
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147344 2017-05-22] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [147344 2017-05-22] (Samsung Electronics Co., Ltd.)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [17904 2011-07-15] (ST Microelectronics)
R3 ST_ACCEL; C:\Windows\System32\DRIVERS\ST_ACCEL.sys [59888 2012-05-21] (STMicroelectronics)
R1 txwifinat; C:\Windows\System32\DRIVERS\txwifinat.sys [31152 2014-12-01] (Nanjing Tongxiang Network Technology Co.,LTD)
S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [171104 2017-09-13] (Oracle Corporation)
S3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [16664 2012-08-15] (VMware, Inc.)
R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37016 2012-08-15] (VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [25752 2012-08-15] (VMware, Inc.)
R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [23832 2012-08-15] (VMware, Inc.)
S3 vmusb; C:\Windows\System32\Drivers\vmusb.sys [31280 2012-08-01] (VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [61848 2012-08-15] (VMware, Inc.)
S3 VProEventMonitor; C:\Windows\System32\DRIVERS\vproeventmonitor.sys [15096 2009-09-21] (Symantec Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [61296 2012-07-06] (VMware, Inc.)
R2 vstor2-mntapi10-shared; C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys [22768 2011-07-12] (VMware, Inc.)
R1 zknetdrv; C:\Windows\System32\DRIVERS\zknetdrv.sys [30472 2017-12-04] (ZK Internet)
U3 af8k1xcv; C:\Windows\system32\Drivers\af8k1xcv.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zéro octet Fichier/Dossier)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 PCFApiUtil; \??\C:\Program Files\PC Faster\5.1.0.0\PCFApiUtil.sys [X]
U2 V2iMount; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-02-25 03:46 - 2018-02-25 03:46 - 000000000 ____D C:\FRST
2018-02-25 01:53 - 2018-02-25 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\LocalLow\uTorrent
2018-02-24 02:19 - 2018-02-14 00:26 - 020274176 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-02-24 02:18 - 2018-02-14 18:57 - 000347288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-02-24 02:18 - 2018-02-14 00:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-02-24 02:18 - 2018-02-14 00:16 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-02-24 02:18 - 2018-02-14 00:06 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-02-24 02:18 - 2018-02-14 00:05 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-02-24 02:18 - 2018-02-14 00:05 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-02-24 02:18 - 2018-02-14 00:05 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-02-24 02:18 - 2018-02-14 00:04 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-02-24 02:18 - 2018-02-14 00:02 - 002294272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-02-24 02:18 - 2018-02-14 00:00 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-02-24 02:18 - 2018-02-14 00:00 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-02-24 02:18 - 2018-02-13 23:58 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-02-24 02:18 - 2018-02-13 23:57 - 000662528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-02-24 02:18 - 2018-02-13 23:57 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-02-24 02:18 - 2018-02-13 23:57 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-02-24 02:18 - 2018-02-13 23:57 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-02-24 02:18 - 2018-02-13 23:53 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-02-24 02:18 - 2018-02-13 23:50 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-02-24 02:18 - 2018-02-13 23:47 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-02-24 02:18 - 2018-02-13 23:46 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-02-24 02:18 - 2018-02-13 23:46 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-02-24 02:18 - 2018-02-13 23:44 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-02-24 02:18 - 2018-02-13 23:43 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-02-24 02:18 - 2018-02-13 23:43 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-02-24 02:18 - 2018-02-13 23:42 - 004498944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-02-24 02:18 - 2018-02-13 23:42 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-02-24 02:18 - 2018-02-13 23:39 - 013680640 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-02-24 02:18 - 2018-02-13 23:37 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-02-24 02:18 - 2018-02-13 23:35 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-02-24 02:18 - 2018-02-13 23:35 - 000694784 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-02-24 02:18 - 2018-02-13 23:35 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-02-24 02:18 - 2018-02-13 23:34 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-02-24 02:18 - 2018-02-13 23:22 - 002767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-02-24 02:18 - 2018-02-13 23:18 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-02-24 02:18 - 2018-02-13 23:16 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-02-24 02:18 - 2018-01-15 19:40 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-02-24 02:18 - 2018-01-12 16:26 - 000308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ___RD C:\Program Files\Skype
2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Skype
2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\Program Files\Common Files\Skype
2018-02-22 23:22 - 2018-02-22 23:22 - 000000000 ____D C:\ProgramData\Skype
2018-02-22 22:46 - 2018-02-22 22:46 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2018-02-22 22:46 - 2018-02-22 22:46 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2018-02-22 18:16 - 2018-02-22 18:17 - 000000000 ____D C:\Users\nakhfatli\Downloads\[ Torrent9.bz ] Criminal.Squad.2018.TRUEFRENCH.TS.LD.XViD-SKRiN
2018-02-22 18:14 - 2018-02-22 18:14 - 000059419 _____ C:\Users\nakhfatli\Downloads\criminal-squad-french-ts-2018.torrent
2018-02-22 16:39 - 2018-02-22 16:39 - 000017911 _____ C:\Users\nakhfatli\Downloads\dc-s-legends-of-tomorrow-s03e11-vostfr-hdtv.torrent
2018-02-21 22:12 - 2018-02-21 22:13 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Appԁata
2018-02-21 22:12 - 2018-02-21 22:12 - 000000000 __SHD C:\Users\nakhfatli\AppData\Roaming\Pr
2018-02-21 22:00 - 2018-02-21 22:30 - 000000000 __SHD C:\Users\nakhfatli\AppData\Roaming\Latas
2018-02-21 21:48 - 2018-02-21 21:48 - 000001354 _____ C:\Users\nakhfatli\Desktop\Hein Recovery 1.8.lnk
2018-02-21 21:48 - 2018-02-21 21:48 - 000001279 _____ C:\Users\nakhfatli\Desktop\Hein 4.5.2.lnk
2018-02-21 21:44 - 2018-02-21 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-02-21 21:44 - 2018-02-21 21:44 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2018-02-21 17:55 - 2018-02-21 17:55 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\your-appname-companyname-folder
2018-02-21 09:11 - 2018-02-21 09:11 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Google
2018-02-20 15:05 - 2018-02-20 15:05 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2018-02-20 15:04 - 2013-11-01 09:24 - 000316544 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_wwanecm.sys
2018-02-20 15:04 - 2013-10-23 10:42 - 000108032 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_cdcacm.sys
2018-02-20 15:04 - 2013-09-02 14:48 - 000381952 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys
2018-02-20 15:04 - 2013-06-29 16:16 - 000208384 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys
2018-02-20 15:04 - 2013-03-04 15:31 - 000101248 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys
2018-02-20 15:04 - 2013-03-04 15:31 - 000077824 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys
2018-02-20 15:04 - 2013-03-04 15:31 - 000070528 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys
2018-02-20 15:04 - 2013-03-04 15:31 - 000027776 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys
2018-02-20 15:04 - 2013-03-04 15:20 - 000199168 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys
2018-02-20 15:04 - 2013-01-25 08:16 - 000095232 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys
2018-02-20 15:04 - 2012-12-22 08:46 - 000011904 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys
2018-02-20 15:04 - 2012-08-20 07:37 - 001112288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2018-02-20 15:04 - 2010-10-08 15:55 - 000025856 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys
2018-02-20 15:04 - 2010-09-26 17:09 - 000019200 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys
2018-02-20 15:03 - 2018-02-21 06:32 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\MeditelInternet
2018-02-20 15:03 - 2018-02-20 15:03 - 000001969 _____ C:\Users\Public\Desktop\Meditel Internet.lnk
2018-02-20 15:03 - 2018-02-20 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Meditel Internet
2018-02-20 15:03 - 2018-02-20 15:03 - 000000000 ____D C:\Program Files\MeditelInternet
2018-02-20 11:39 - 2018-02-20 11:39 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Symantec
2018-02-20 11:30 - 2018-02-20 11:30 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Symantec_Corporation
2018-02-20 11:11 - 2018-02-20 11:15 - 000628181 _____ C:\BESR2010PatchLog.txt
2018-02-20 10:33 - 2018-02-20 10:33 - 000000000 ____D C:\Program Files\Symantec
2018-02-20 10:33 - 2007-09-26 10:56 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\capicom.dll
2018-02-20 10:33 - 2007-03-21 20:39 - 001060864 _____ (Microsoft Corporation) C:\Windows\system32\MFC71.DLL
2018-02-20 10:33 - 2007-03-21 20:33 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\MSVCP71.DLL
2018-02-20 10:33 - 2007-03-21 20:33 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\MSVCR71.DLL
2018-02-20 10:32 - 2009-10-01 22:03 - 000131000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys
2018-02-20 10:31 - 2018-02-20 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Ghost
2018-02-20 10:31 - 2018-02-20 10:31 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_GenericMount_01009.Wdf
2018-02-20 10:31 - 2009-09-21 20:40 - 000015096 _____ (Symantec Corporation) C:\Windows\system32\Drivers\vproeventmonitor.sys
2018-02-20 10:31 - 2009-09-21 20:20 - 000138592 _____ (StorageCraft) C:\Windows\system32\Drivers\symsnap.sys
2018-02-20 10:30 - 2018-02-20 10:33 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2018-02-20 10:30 - 2009-05-18 14:17 - 000026600 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2018-02-20 10:30 - 2008-04-17 13:12 - 000107368 _____ (GEAR Software Inc.) C:\Windows\system32\GEARAspi.dll
2018-02-20 10:29 - 2018-02-20 11:11 - 000000000 ____D C:\ProgramData\Symantec
2018-02-20 10:29 - 2018-02-20 10:30 - 000000000 ____D C:\ProgramData\{1C6FDDD8-FC9E-4C12-9FA5-1AAD377097B3}
2018-02-20 10:29 - 2018-02-20 10:30 - 000000000 ____D C:\Program Files\Norton Ghost
2018-02-20 04:30 - 2018-02-20 04:51 - 000000000 ____D C:\Users\nakhfatli\Downloads\Ghost_15_Fr
2018-02-20 04:30 - 2018-02-20 04:30 - 000021488 _____ C:\Users\nakhfatli\Downloads\norton-ghost-15-fr-serial.torrent
2018-02-20 04:13 - 2018-02-20 04:13 - 000033519 _____ C:\Users\nakhfatli\Downloads\Paragon Hard Disk Manager 15.torrent
2018-02-20 03:43 - 2018-02-25 02:07 - 000000082 _____ C:\Windows\system32\winsevr.dat
2018-02-20 03:34 - 2018-02-20 03:34 - 000001019 _____ C:\Users\Public\Desktop\AOMEI Backupper Professional.lnk
2018-02-20 03:34 - 2018-02-20 03:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2018-02-20 01:26 - 2018-02-23 12:25 - 000001024 ____H C:\SYSTAG.BIN
2018-02-20 01:23 - 2018-02-23 12:26 - 000000000 ____D C:\ProgramData\AomeiBR
2018-02-20 01:22 - 2018-02-25 00:51 - 000000000 ____D C:\Program Files\AOMEI Backupper
2018-02-20 01:22 - 2017-09-01 18:12 - 000034864 _____ C:\Windows\system32\amwrtdrv.sys
2018-02-20 01:22 - 2016-12-21 22:54 - 000046896 _____ C:\Windows\system32\ambakdrv.sys
2018-02-20 01:22 - 2016-12-21 22:53 - 000150192 _____ C:\Windows\system32\ammntdrv.sys
2018-02-20 00:59 - 2018-02-20 01:06 - 086801738 ____R C:\Users\nakhfatli\Downloads\AOMEI Backupper Professional 4.0.2 + License + Patch + KeyGen - Crackingpatching.com.zip
2018-02-13 18:34 - 2018-01-12 16:29 - 004014312 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2018-02-13 18:34 - 2018-01-12 16:29 - 003959016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-02-13 18:34 - 2018-01-12 16:29 - 001309928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-02-13 18:34 - 2018-01-12 16:29 - 000250600 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-02-13 18:34 - 2018-01-12 16:29 - 000240872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2018-02-13 18:34 - 2018-01-12 16:29 - 000187624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2018-02-13 18:34 - 2018-01-12 16:29 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-02-13 18:34 - 2018-01-12 16:29 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-02-13 18:34 - 2018-01-12 16:27 - 001310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-02-13 18:34 - 2018-01-12 16:16 - 003405824 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2018-02-13 18:34 - 2018-01-12 16:05 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2018-02-13 18:34 - 2018-01-12 16:05 - 000025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2018-02-13 18:34 - 2018-01-12 16:05 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2018-02-13 18:34 - 2018-01-12 16:02 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-02-13 18:34 - 2018-01-12 16:02 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-02-13 18:34 - 2018-01-12 16:02 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-02-13 18:34 - 2018-01-12 16:02 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-02-13 18:34 - 2018-01-12 16:02 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-02-13 18:34 - 2018-01-12 15:59 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-02-13 18:34 - 2018-01-12 15:57 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-02-13 18:34 - 2018-01-12 15:57 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-02-13 18:34 - 2018-01-12 15:57 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-02-13 18:34 - 2018-01-12 15:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-02-13 18:34 - 2018-01-12 15:56 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-02-13 18:34 - 2018-01-12 15:56 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-02-13 18:34 - 2018-01-12 15:56 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-02-13 18:34 - 2018-01-11 16:22 - 000805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2018-02-13 18:34 - 2018-01-11 16:01 - 002403328 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-02-13 18:34 - 2018-01-05 16:14 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-02-13 18:34 - 2018-01-05 16:11 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-02-13 18:34 - 2018-01-05 16:11 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-02-13 18:34 - 2018-01-05 16:11 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-02-13 18:34 - 2018-01-05 16:11 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-02-13 18:34 - 2018-01-05 15:50 - 000034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-02-13 18:26 - 2018-01-21 23:42 - 000117480 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-02-13 18:26 - 2018-01-21 23:20 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 001893888 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-02-13 18:26 - 2018-01-19 14:05 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000594944 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000508416 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000337920 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000311808 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-02-09 13:10 - 2018-02-09 13:10 - 000059206 _____ C:\Users\nakhfatli\Downloads\jungle-french-dvdrip-2017.torrent
2018-02-09 13:09 - 2018-02-09 13:09 - 000030693 _____ C:\Users\nakhfatli\Downloads\a-ceux-qui-nous-ont-offenses-french-dvdrip-2017 (1).torrent
2018-02-09 13:02 - 2018-02-09 13:02 - 000030813 _____ C:\Users\nakhfatli\Downloads\the-circle-truefrench-dvdrip-2017.torrent
2018-02-06 11:18 - 2018-02-06 11:18 - 000058710 _____ C:\Users\nakhfatli\Downloads\le-roi-arthur-la-legende-d-excalibur-french-dvdrip-2017.torrent
2018-02-05 20:27 - 2018-02-05 20:27 - 000030621 _____ C:\Users\nakhfatli\Downloads\si-j-etais-un-homme-french-dvdrip-2017.torrent
2018-02-05 17:54 - 2018-02-05 17:54 - 000065005 _____ C:\Users\nakhfatli\Desktop\Progress_TNCAP95435E.txt
2018-02-04 07:18 - 2018-02-04 07:18 - 000016348 _____ C:\Users\nakhfatli\Downloads\prince-of-persia-les-sables-du-temps-french-dvdrip-2010.torrent
2018-02-04 07:15 - 2018-02-04 07:15 - 000031457 _____ C:\Users\nakhfatli\Downloads\batman-gotham-by-gaslight-french-dvdrip-2018.torrent
2018-02-04 07:01 - 2018-02-04 07:05 - 076480092 _____ C:\Users\nakhfatli\Downloads\Latina Shemale finds a toy to play with - XNXX.COM.TS
2018-02-03 04:21 - 2015-07-20 02:50 - 000000000 ____D C:\Users\nakhfatli\Desktop\Router Scan v2.52
2018-02-03 03:39 - 2018-02-03 03:39 - 000000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Voisinage réseau
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Voisinage d'impression
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Modèles
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Mes documents
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Menu Démarrer
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes vidéos
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes images
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Ma musique
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historique
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 ____D C:\Users\DefaultAppPool
2018-02-03 03:39 - 2009-07-14 09:00 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2018-02-03 03:11 - 2018-02-03 03:11 - 000002306 _____ C:\Users\Public\Desktop\Port Forward Network Utilities.lnk
2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\PortForward.com
2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PortForward.com
2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\Program Files\Portforward
2018-02-03 02:59 - 2018-02-03 02:59 - 000000969 _____ C:\Users\nakhfatli\Downloads\35462.txt
2018-01-31 13:38 - 2017-12-14 19:23 - 000000000 ____D C:\Users\nakhfatli\Desktop\Waircut V1.8
2018-01-31 13:34 - 2018-01-31 13:34 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\GitHubDesktop
2018-01-30 12:00 - 2018-01-30 12:02 - 000000000 ____D C:\Users\nakhfatli\Downloads\Lake.Bodom.2017.FRENCH.BDRiP.XviD-Slay3R.WwW.Torrent9.pe
2018-01-30 01:57 - 2018-01-30 14:15 - 734497342 ____R C:\Users\nakhfatli\Downloads\[ Torrent9.tv ] Trespass.Against.Us.2016.FRENCH.BDRip.XviD-GZR.avi
2018-01-30 01:56 - 2018-01-30 01:56 - 000030693 _____ C:\Users\nakhfatli\Downloads\a-ceux-qui-nous-ont-offenses-french-dvdrip-2017.torrent
2018-01-30 01:53 - 2018-01-30 01:53 - 000031091 _____ C:\Users\nakhfatli\Downloads\lake-bodom-french-dvdrip-2017 (1).torrent
2018-01-30 01:21 - 2018-01-30 01:21 - 000031091 _____ C:\Users\nakhfatli\Downloads\lake-bodom-french-dvdrip-2017.torrent
2018-01-29 09:14 - 2018-01-29 13:26 - 000000000 ____D C:\Users\nakhfatli\Downloads\Overdrive.2017.LIMITED.FRENCH.BDRip.XviD-EXTREME.WwW.Torrent9.tv
2018-01-29 09:14 - 2018-01-29 09:14 - 000030972 _____ C:\Users\nakhfatli\Downloads\overdrive-french-dvdrip-2017.torrent
2018-01-29 09:11 - 2018-01-29 09:11 - 000058663 _____ C:\Users\nakhfatli\Downloads\raid-dingue-french-dvdrip-2017.torrent
2018-01-29 09:10 - 2018-01-29 09:10 - 000031151 _____ C:\Users\nakhfatli\Downloads\sleepless-french-dvdrip-2017.torrent
2018-01-28 01:38 - 2017-12-05 17:08 - 001176576 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2018-01-28 01:38 - 2017-12-05 15:54 - 000334848 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2018-01-27 09:49 - 2018-01-27 09:49 - 000000000 ____D C:\Users\nakhfatli\Downloads\Flatliners.2017.FRENCH.BDRip.XviD-GZR.WwW.Torrent9.tv
2018-01-27 09:48 - 2018-01-27 17:17 - 726680438 ____R C:\Users\nakhfatli\Downloads\[ Torrent9.tv ] Kidnap.2017.TRUEFRENCH.BDRip.XviD-CR4ZYTiME.avi
2018-01-27 09:48 - 2018-01-27 09:48 - 000031153 _____ C:\Users\nakhfatli\Downloads\l-experience-interdite-flatliners-french-dvdrip-2017.torrent
2018-01-27 09:48 - 2018-01-27 09:48 - 000030410 _____ C:\Users\nakhfatli\Downloads\kidnap-french-dvdrip-2017.torrent
2018-01-27 08:32 - 2018-01-27 08:44 - 000000000 ____D C:\Users\nakhfatli\Downloads\WinAVI Video Converter 9.0+ Serial UPDATED
2018-01-26 09:43 - 2018-01-26 09:43 - 000014835 _____ C:\Users\nakhfatli\Downloads\Titanic Dvdrip French 1998.torrent
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-02-25 03:46 - 2017-09-16 07:16 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\uTorrent
2018-02-25 03:34 - 2017-09-16 09:18 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-02-25 03:32 - 2017-09-22 00:38 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\WhatsApp
2018-02-25 03:32 - 2017-09-19 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\WhatsApp
2018-02-25 03:32 - 2017-09-19 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2018-02-25 03:31 - 2018-01-10 01:04 - 000000000 ____D C:\Users\nakhfatli\Documents\Fichiers Outlook
2018-02-25 03:31 - 2017-09-16 10:48 - 000000354 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
2018-02-25 03:31 - 2017-09-14 23:23 - 000111056 _____ C:\Users\nakhfatli\AppData\Local\GDIPFONTCACHEV1.DAT
2018-02-25 03:30 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\DMCache
2018-02-25 03:28 - 2017-10-01 17:31 - 000007608 _____ C:\Users\nakhfatli\AppData\Local\resmon.resmoncfg
2018-02-25 03:27 - 2009-07-14 04:34 - 000025808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-02-25 03:27 - 2009-07-14 04:34 - 000025808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-02-25 02:40 - 2017-09-16 07:08 - 000000000 ____D C:\Users\nakhfatli\AppData\LocalLow\Mozilla
2018-02-25 02:34 - 2017-09-06 00:13 - 001804558 _____ C:\Windows\system32\PerfStringBackup.INI
2018-02-25 02:34 - 2009-07-14 08:39 - 000801188 _____ C:\Windows\system32\perfh00C.dat
2018-02-25 02:34 - 2009-07-14 08:39 - 000169084 _____ C:\Windows\system32\perfc00C.dat
2018-02-25 02:34 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\inf
2018-02-25 02:14 - 2017-10-21 17:39 - 000000000 ____D C:\Windows\Minidump
2018-02-25 02:08 - 2017-10-20 17:43 - 000000000 ____D C:\ProgramData\VMware
2018-02-25 02:07 - 2009-07-14 04:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-02-24 03:03 - 2017-10-06 21:29 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Skype
2018-02-24 01:25 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\Downloads\Compressed
2018-02-24 00:15 - 2009-07-14 02:04 - 000000478 _____ C:\Windows\win.ini
2018-02-23 20:38 - 2009-07-14 02:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-02-23 19:53 - 2017-10-02 22:03 - 000000000 ____D C:\Users\nakhfatli\Documents\Bigasoft Total Video Converter
2018-02-23 19:53 - 2017-09-06 00:12 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\VirtualStore
2018-02-23 19:50 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\Downloads\Video
2018-02-23 19:38 - 2017-09-16 07:23 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\vlc
2018-02-22 23:24 - 2017-10-06 21:29 - 000002685 _____ C:\Users\Public\Desktop\Skype.lnk
2018-02-22 23:09 - 2009-07-14 04:33 - 000433064 _____ C:\Windows\system32\FNTCACHE.DAT
2018-02-22 22:53 - 2009-07-14 02:37 - 000000000 ____D C:\Program Files\Common Files\System
2018-02-20 16:15 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\Registration
2018-02-20 03:28 - 2017-09-19 00:17 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-02-20 02:25 - 2017-09-16 07:07 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-02-16 13:28 - 2017-09-16 07:45 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-02-16 13:28 - 2017-09-16 07:45 - 000002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2018-02-13 23:34 - 2017-10-25 14:29 - 000000000 ____D C:\Windows\system32\appraiser
2018-02-13 19:47 - 2017-09-16 07:17 - 000000000 ____D C:\Windows\system32\MRT
2018-02-13 19:18 - 2017-10-11 13:08 - 127229528 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-02-13 19:18 - 2017-09-16 07:16 - 127229528 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-02-13 18:16 - 2017-10-20 17:49 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\VMware
2018-02-13 18:15 - 2017-10-20 17:49 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\VMware
2018-02-05 09:14 - 2017-09-16 07:47 - 000000000 ____D C:\Program Files\Recuva
2018-02-04 17:40 - 2017-10-03 19:35 - 000000442 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2018-02-04 17:20 - 2017-12-05 21:22 - 000000000 ____D C:\Program Files\Wi-Fi
2018-02-03 03:11 - 2017-09-14 23:14 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Downloaded Installations
2018-01-31 13:34 - 2017-09-19 02:24 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\SquirrelTemp
2018-01-29 21:41 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\system32\NDF
2018-01-28 10:58 - 2009-07-14 04:53 - 000032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Fichiers à la racine de certains dossiers =======
2017-12-09 02:01 - 2013-08-09 15:47 - 000915128 _____ (Riverbed Technology, Inc.) C:\Users\nakhfatli\WinPcap_4_1_3.exe
2017-11-02 09:54 - 2017-11-02 09:54 - 002924416 _____ () C:\Users\nakhfatli\ZHPDiag3.exe
2017-10-01 17:31 - 2018-02-25 03:28 - 000007608 _____ () C:\Users\nakhfatli\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-02-20 00:17
==================== Fin de FRST.txt ============================
Exécuté par nakhfatli (administrateur) sur alicahh (25-02-2018 03:46:59)
Exécuté depuis C:\Users\nakhfatli\Downloads\Programs
Profils chargés: nakhfatli (Profils disponibles: nakhfatli & DefaultAppPool)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Two Pilots) C:\Windows\VPDAgent.exe
(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(AuthenTec, Inc.) C:\Program Files\Fingerprint Sensor\AtService.exe
(AOMEI Tech Co., Ltd.) C:\Program Files\AOMEI Backupper\ABService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files\MeditelInternet\MeditelInternet_Service.exe
() C:\Program Files\Wi-Fi\WiFiGxSvc.exe
(RealNetworks, Inc.) C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(Realtek) C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
() C:\Windows\runSW.exe
(Chris Pietschmann (hxxp://pietschsoft.com)) C:\Program Files\Virtual Router\VirtualRouterService.exe
(VMware, Inc.) C:\Windows\System32\vmnat.exe
(ZhangKong Soft) C:\Program Files\zksoft\marswifi\zkservice.exe
(Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
(VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe
(VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
() C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
(Symantec) C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\uTorrent.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtWLan.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\updates\3.5.3_44358\utorrentie.exe
(Realtek) C:\Windows\SwUSB.exe
(BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\updates\3.5.3_44358\utorrentie.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [300440 2017-12-18] (ESET)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4014136 2017-08-05] (Tonec Inc.)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [uTorrent] => C:\Users\nakhfatli\AppData\Roaming\uTorrent\uTorrent.exe [2148024 2018-02-23] (BitTorrent Inc.)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office15\lync.exe [18993824 2014-01-23] (Microsoft Corporation)
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: G - G:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {30ea5844-99a4-11e7-afc6-c0cb38ccc09a} - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {40b2ef7a-9ac6-11e7-8d2e-c0cb38ccc09a} - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {41566578-ad16-11e7-bdfd-c0cb38ccc09a} - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {46b42d07-a7b7-11e7-a999-c0cb38ccc09a} - G:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {69876fc7-99a3-11e7-8ef7-c0cb38ccc09a} - F:\AutoRun.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {6bf75928-a096-11e7-9e12-c0cb38ccc09a} - F:\setup.exe
HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {c9480402-164e-11e8-81e2-f04da2ab5a96} - G:\.\Setup.exe AUTORUN=1
HKU\S-1-5-18\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of "Microsoft 6to4 Adapter" devices.
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0756E652-FE55-49EE-98B2-80B63420800D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0900694E-ED80-4914-9830-1CE106ACB0E1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{32FC1503-F35E-48E8-92B0-5F077B2917F8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{34ECC496-4066-4D54-BCD6-CB89318E4FB4}: [NameServer] 192.168.0.1
Tcpip\..\Interfaces\{4219A296-BCF9-43F6-9DE7-A960745A9C0D}: [NameServer] 41.214.140.5 8.8.8.8
Tcpip\..\Interfaces\{5754BF01-1A7A-4E08-A986-81224BC251AC}: [DhcpNameServer] 192.168.56.1
Tcpip\..\Interfaces\{5CBB7ED3-D6FF-4527-9631-6CD3A6089DE6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{889C3E0C-62AE-4876-B274-6BFEFC356C1B}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9A00F582-B4E8-4210-B0CE-D39DBE038144}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9D24035D-2635-4720-A223-0F9C77221491}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A3EC6704-82F9-4F71-A171-026C848C5AB1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A9F06C4B-84EB-4A0F-8B11-244A742C2C6D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C364346A-4705-435E-A405-170D7DB56233}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D151875A-6672-4625-AEF9-B3ADD4D93D0D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E4504F60-BC91-4AC7-A5F6-A81045E196D7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FD783C41-02F1-47AD-9903-7A899EEF9D3B}: [DhcpNameServer] 192.168.153.2
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2407163642-931976920-2894012920-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp10_adw_ch&p={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2017-07-12] (Internet Download Manager, Tonec Inc.)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2017-11-29] (RealDownloader)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: bfb9jeem.nakhfatli
FF ProfilePath: C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\xlklisv9.default [non trouvé(e)] <==== ATTENTION
FF ProfilePath: C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli [2018-02-25]
FF Homepage: Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli -> www.google.fr/
FF Extension: (Update 75.66.11) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{8a0699a0-09c3-4cf1-b38d-fec25441650c}.xpi [2018-01-28]
FF Extension: (Video DownloadHelper) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-02-22]
FF Extension: (Web Developer) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2018-01-20]
FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc3.xpi
FF Extension: (Pas de nom) - C:\Program Files\Internet Download Manager\idmmzcc3.xpi [2017-07-14]
FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\nakhfatli\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\nakhfatli\AppData\Roaming\IDM\idmmzcc5 [2017-09-16] [Legacy] [non signé]
FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-12-07] ()
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-23] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=18.1.10.217 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2017-12-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=18.1.10.217 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2017-12-07] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.fr/
CHR NewTab: Default -> Not-active:"chrome-extension://imhlianhlhdicjchlbmbfaefhhjencbe/newtab.html"
CHR Profile: C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default [2018-02-25]
CHR Extension: (Slides) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20]
CHR Extension: (Docs) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-15]
CHR Extension: (YouTube) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-15]
CHR Extension: (Adobe Acrobat) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-16]
CHR Extension: (ZenMate VPN - Sécurité internet & Unblock) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2018-02-17]
CHR Extension: (Sheets) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-15]
CHR Extension: (NewTab) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\imhlianhlhdicjchlbmbfaefhhjencbe [2017-09-16]
CHR Extension: (IDM Integration Module) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2018-01-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-15]
CHR Extension: (Gmail) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-15]
CHR Extension: (Chrome Media Router) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-29]
CHR Profile: C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\System Profile [2018-02-25]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [imhlianhlhdicjchlbmbfaefhhjencbe] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-07-14]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Agent; C:\Windows\VPDAgent.exe [200704 2012-10-01] (Two Pilots) [Fichier non signé]
S3 AIPS; C:\Program Files\arcai.com\aips.exe [1833472 2017-05-19] (Arcai.com) [Fichier non signé]
R2 ATService; C:\Program Files\Fingerprint Sensor\AtService.exe [1803584 2010-03-03] (AuthenTec, Inc.)
R2 Backupper Service; C:\Program Files\AOMEI Backupper\ABService.exe [122728 2017-09-04] (AOMEI Tech Co., Ltd.)
S2 ByteFenceService; C:\Program Files\ByteFence\ByteFenceService.exe [145888 2017-07-20] (Byte Technologies LLC)
R2 dcpsysmgrsvc; C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe [390000 2011-07-28] (Dell Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1539560 2017-12-18] (ESET)
S3 GenericMount Helper Service; C:\Program Files\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [1574408 2010-02-12] (Symantec)
S3 jswpbapi; C:\Program Files\Jumpstart\jswpbapi.exe [188416 2008-09-26] (Atheros Communications, Inc.) [Fichier non signé]
S3 jswpsapi; C:\Program Files\Jumpstart\jswpsapi.exe [954368 2008-09-26] (Atheros Communications, Inc.) [Fichier non signé]
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE [2999664 2007-09-26] (Symantec Corporation)
R2 MeditelInternet_Service; C:\Program Files\MeditelInternet\MeditelInternet_Service.exe [346680 2014-05-22] ()
R2 MyWiFiRouterDHCP; C:\Program Files\Wi-Fi\WiFiGxSvc.exe [47464 2014-11-18] ()
S2 Norton Ghost; C:\Program Files\Norton Ghost\Agent\VProSvc.exe [4590432 2010-03-03] (Symantec Corporation)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [37104 2017-11-29] (RealNetworks, Inc.)
R2 Realtek87B; C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek) [Fichier non signé]
R2 RealTimes Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [989912 2017-12-07] (RealNetworks, Inc.)
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [302920 2017-09-17] ()
R2 RunSwUSB; C:\Windows\runSW.exe [48856 2013-10-18] ()
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-05-22] (DEVGURU Co., LTD.)
R3 SymSnapService; C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe [1964528 2009-09-21] (Symantec)
R2 Virtual Router; C:\Program Files\Virtual Router\VirtualRouterService.exe [12288 2013-02-10] (Chris Pietschmann (hxxp://pietschsoft.com)) [Fichier non signé]
R3 VMAuthdService; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [79872 2012-08-15] (VMware, Inc.) [Fichier non signé]
R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [357016 2012-08-15] (VMware, Inc.)
R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [719512 2012-08-01] (VMware, Inc.)
R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [435864 2012-08-15] (VMware, Inc.)
R2 VMwareHostd; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [15680000 2012-08-15] () [Fichier non signé]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 zkservice; C:\Program Files\zksoft\marswifi\zkservice.exe [412424 2017-12-04] (ZhangKong Soft)
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
S3 Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe /Processid:{AFAACC1C-04BA-47BE-8970-5D50DF836271}
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Acceler; C:\Windows\System32\DRIVERS\accelern.sys [44144 2012-05-23] (ST Microelectronics)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [46896 2016-12-21] ()
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [150192 2016-12-21] ()
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [34864 2017-09-01] ()
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [46440 2015-03-31] (Baidu, Inc.)
R3 BTWAMPFL; C:\Windows\System32\DRIVERS\btwampfl.sys [302120 2017-09-06] (Broadcom Corporation.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-05-22] (Samsung Electronics Co., Ltd.)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [232512 2017-09-23] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [114552 2017-11-07] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [90640 2017-11-07] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [141480 2017-11-07] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [42816 2017-11-07] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [71856 2017-11-07] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [53184 2017-11-07] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [90136 2017-11-07] (ESET)
R3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [57840 2010-02-12] (Symantec Corporation)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [41496 2012-08-01] (VMware, Inc.)
S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [108032 2013-10-23] (Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [316544 2013-11-01] (Huawei Technologies Co., Ltd.)
R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [37408 2014-08-14] (NT Kernel Resources)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R0 PBADRV; C:\Windows\System32\DRIVERS\PBADRV.sys [26608 2008-06-04] (Dell Inc)
R2 risdpcie; C:\Windows\System32\DRIVERS\risdpe86.sys [49152 2009-06-30] (REDC)
R3 RTL8187; C:\Windows\System32\DRIVERS\rtl8187.sys [375808 2010-01-07] (Realtek Semiconductor Corporation )
R3 RtlvVga; C:\Windows\System32\DRIVERS\RtlvVga.sys [12432 2014-03-18] (Realtek Semiconductor Corporation )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [443448 2017-09-23] ()
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147344 2017-05-22] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [147344 2017-05-22] (Samsung Electronics Co., Ltd.)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [17904 2011-07-15] (ST Microelectronics)
R3 ST_ACCEL; C:\Windows\System32\DRIVERS\ST_ACCEL.sys [59888 2012-05-21] (STMicroelectronics)
R1 txwifinat; C:\Windows\System32\DRIVERS\txwifinat.sys [31152 2014-12-01] (Nanjing Tongxiang Network Technology Co.,LTD)
S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [171104 2017-09-13] (Oracle Corporation)
S3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [16664 2012-08-15] (VMware, Inc.)
R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37016 2012-08-15] (VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [25752 2012-08-15] (VMware, Inc.)
R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [23832 2012-08-15] (VMware, Inc.)
S3 vmusb; C:\Windows\System32\Drivers\vmusb.sys [31280 2012-08-01] (VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [61848 2012-08-15] (VMware, Inc.)
S3 VProEventMonitor; C:\Windows\System32\DRIVERS\vproeventmonitor.sys [15096 2009-09-21] (Symantec Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [61296 2012-07-06] (VMware, Inc.)
R2 vstor2-mntapi10-shared; C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys [22768 2011-07-12] (VMware, Inc.)
R1 zknetdrv; C:\Windows\System32\DRIVERS\zknetdrv.sys [30472 2017-12-04] (ZK Internet)
U3 af8k1xcv; C:\Windows\system32\Drivers\af8k1xcv.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zéro octet Fichier/Dossier)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 PCFApiUtil; \??\C:\Program Files\PC Faster\5.1.0.0\PCFApiUtil.sys [X]
U2 V2iMount; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-02-25 03:46 - 2018-02-25 03:46 - 000000000 ____D C:\FRST
2018-02-25 01:53 - 2018-02-25 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\LocalLow\uTorrent
2018-02-24 02:19 - 2018-02-14 00:26 - 020274176 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-02-24 02:18 - 2018-02-14 18:57 - 000347288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-02-24 02:18 - 2018-02-14 00:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-02-24 02:18 - 2018-02-14 00:16 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-02-24 02:18 - 2018-02-14 00:06 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-02-24 02:18 - 2018-02-14 00:05 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-02-24 02:18 - 2018-02-14 00:05 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-02-24 02:18 - 2018-02-14 00:05 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-02-24 02:18 - 2018-02-14 00:04 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-02-24 02:18 - 2018-02-14 00:02 - 002294272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-02-24 02:18 - 2018-02-14 00:00 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-02-24 02:18 - 2018-02-14 00:00 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-02-24 02:18 - 2018-02-13 23:58 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-02-24 02:18 - 2018-02-13 23:57 - 000662528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-02-24 02:18 - 2018-02-13 23:57 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-02-24 02:18 - 2018-02-13 23:57 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-02-24 02:18 - 2018-02-13 23:57 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-02-24 02:18 - 2018-02-13 23:53 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-02-24 02:18 - 2018-02-13 23:50 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-02-24 02:18 - 2018-02-13 23:47 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-02-24 02:18 - 2018-02-13 23:46 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-02-24 02:18 - 2018-02-13 23:46 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-02-24 02:18 - 2018-02-13 23:44 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-02-24 02:18 - 2018-02-13 23:43 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-02-24 02:18 - 2018-02-13 23:43 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-02-24 02:18 - 2018-02-13 23:42 - 004498944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-02-24 02:18 - 2018-02-13 23:42 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-02-24 02:18 - 2018-02-13 23:39 - 013680640 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-02-24 02:18 - 2018-02-13 23:37 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-02-24 02:18 - 2018-02-13 23:35 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-02-24 02:18 - 2018-02-13 23:35 - 000694784 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-02-24 02:18 - 2018-02-13 23:35 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-02-24 02:18 - 2018-02-13 23:34 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-02-24 02:18 - 2018-02-13 23:22 - 002767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-02-24 02:18 - 2018-02-13 23:18 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-02-24 02:18 - 2018-02-13 23:16 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-02-24 02:18 - 2018-01-15 19:40 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-02-24 02:18 - 2018-01-12 16:26 - 000308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ___RD C:\Program Files\Skype
2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Skype
2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\Program Files\Common Files\Skype
2018-02-22 23:22 - 2018-02-22 23:22 - 000000000 ____D C:\ProgramData\Skype
2018-02-22 22:46 - 2018-02-22 22:46 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2018-02-22 22:46 - 2018-02-22 22:46 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2018-02-22 18:16 - 2018-02-22 18:17 - 000000000 ____D C:\Users\nakhfatli\Downloads\[ Torrent9.bz ] Criminal.Squad.2018.TRUEFRENCH.TS.LD.XViD-SKRiN
2018-02-22 18:14 - 2018-02-22 18:14 - 000059419 _____ C:\Users\nakhfatli\Downloads\criminal-squad-french-ts-2018.torrent
2018-02-22 16:39 - 2018-02-22 16:39 - 000017911 _____ C:\Users\nakhfatli\Downloads\dc-s-legends-of-tomorrow-s03e11-vostfr-hdtv.torrent
2018-02-21 22:12 - 2018-02-21 22:13 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Appԁata
2018-02-21 22:12 - 2018-02-21 22:12 - 000000000 __SHD C:\Users\nakhfatli\AppData\Roaming\Pr
2018-02-21 22:00 - 2018-02-21 22:30 - 000000000 __SHD C:\Users\nakhfatli\AppData\Roaming\Latas
2018-02-21 21:48 - 2018-02-21 21:48 - 000001354 _____ C:\Users\nakhfatli\Desktop\Hein Recovery 1.8.lnk
2018-02-21 21:48 - 2018-02-21 21:48 - 000001279 _____ C:\Users\nakhfatli\Desktop\Hein 4.5.2.lnk
2018-02-21 21:44 - 2018-02-21 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-02-21 21:44 - 2018-02-21 21:44 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2018-02-21 17:55 - 2018-02-21 17:55 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\your-appname-companyname-folder
2018-02-21 09:11 - 2018-02-21 09:11 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Google
2018-02-20 15:05 - 2018-02-20 15:05 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2018-02-20 15:04 - 2013-11-01 09:24 - 000316544 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_wwanecm.sys
2018-02-20 15:04 - 2013-10-23 10:42 - 000108032 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_cdcacm.sys
2018-02-20 15:04 - 2013-09-02 14:48 - 000381952 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys
2018-02-20 15:04 - 2013-06-29 16:16 - 000208384 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys
2018-02-20 15:04 - 2013-03-04 15:31 - 000101248 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys
2018-02-20 15:04 - 2013-03-04 15:31 - 000077824 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys
2018-02-20 15:04 - 2013-03-04 15:31 - 000070528 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys
2018-02-20 15:04 - 2013-03-04 15:31 - 000027776 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys
2018-02-20 15:04 - 2013-03-04 15:20 - 000199168 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys
2018-02-20 15:04 - 2013-01-25 08:16 - 000095232 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys
2018-02-20 15:04 - 2012-12-22 08:46 - 000011904 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys
2018-02-20 15:04 - 2012-08-20 07:37 - 001112288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2018-02-20 15:04 - 2010-10-08 15:55 - 000025856 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys
2018-02-20 15:04 - 2010-09-26 17:09 - 000019200 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys
2018-02-20 15:03 - 2018-02-21 06:32 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\MeditelInternet
2018-02-20 15:03 - 2018-02-20 15:03 - 000001969 _____ C:\Users\Public\Desktop\Meditel Internet.lnk
2018-02-20 15:03 - 2018-02-20 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Meditel Internet
2018-02-20 15:03 - 2018-02-20 15:03 - 000000000 ____D C:\Program Files\MeditelInternet
2018-02-20 11:39 - 2018-02-20 11:39 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Symantec
2018-02-20 11:30 - 2018-02-20 11:30 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Symantec_Corporation
2018-02-20 11:11 - 2018-02-20 11:15 - 000628181 _____ C:\BESR2010PatchLog.txt
2018-02-20 10:33 - 2018-02-20 10:33 - 000000000 ____D C:\Program Files\Symantec
2018-02-20 10:33 - 2007-09-26 10:56 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\capicom.dll
2018-02-20 10:33 - 2007-03-21 20:39 - 001060864 _____ (Microsoft Corporation) C:\Windows\system32\MFC71.DLL
2018-02-20 10:33 - 2007-03-21 20:33 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\MSVCP71.DLL
2018-02-20 10:33 - 2007-03-21 20:33 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\MSVCR71.DLL
2018-02-20 10:32 - 2009-10-01 22:03 - 000131000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys
2018-02-20 10:31 - 2018-02-20 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Ghost
2018-02-20 10:31 - 2018-02-20 10:31 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_GenericMount_01009.Wdf
2018-02-20 10:31 - 2009-09-21 20:40 - 000015096 _____ (Symantec Corporation) C:\Windows\system32\Drivers\vproeventmonitor.sys
2018-02-20 10:31 - 2009-09-21 20:20 - 000138592 _____ (StorageCraft) C:\Windows\system32\Drivers\symsnap.sys
2018-02-20 10:30 - 2018-02-20 10:33 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2018-02-20 10:30 - 2009-05-18 14:17 - 000026600 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2018-02-20 10:30 - 2008-04-17 13:12 - 000107368 _____ (GEAR Software Inc.) C:\Windows\system32\GEARAspi.dll
2018-02-20 10:29 - 2018-02-20 11:11 - 000000000 ____D C:\ProgramData\Symantec
2018-02-20 10:29 - 2018-02-20 10:30 - 000000000 ____D C:\ProgramData\{1C6FDDD8-FC9E-4C12-9FA5-1AAD377097B3}
2018-02-20 10:29 - 2018-02-20 10:30 - 000000000 ____D C:\Program Files\Norton Ghost
2018-02-20 04:30 - 2018-02-20 04:51 - 000000000 ____D C:\Users\nakhfatli\Downloads\Ghost_15_Fr
2018-02-20 04:30 - 2018-02-20 04:30 - 000021488 _____ C:\Users\nakhfatli\Downloads\norton-ghost-15-fr-serial.torrent
2018-02-20 04:13 - 2018-02-20 04:13 - 000033519 _____ C:\Users\nakhfatli\Downloads\Paragon Hard Disk Manager 15.torrent
2018-02-20 03:43 - 2018-02-25 02:07 - 000000082 _____ C:\Windows\system32\winsevr.dat
2018-02-20 03:34 - 2018-02-20 03:34 - 000001019 _____ C:\Users\Public\Desktop\AOMEI Backupper Professional.lnk
2018-02-20 03:34 - 2018-02-20 03:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2018-02-20 01:26 - 2018-02-23 12:25 - 000001024 ____H C:\SYSTAG.BIN
2018-02-20 01:23 - 2018-02-23 12:26 - 000000000 ____D C:\ProgramData\AomeiBR
2018-02-20 01:22 - 2018-02-25 00:51 - 000000000 ____D C:\Program Files\AOMEI Backupper
2018-02-20 01:22 - 2017-09-01 18:12 - 000034864 _____ C:\Windows\system32\amwrtdrv.sys
2018-02-20 01:22 - 2016-12-21 22:54 - 000046896 _____ C:\Windows\system32\ambakdrv.sys
2018-02-20 01:22 - 2016-12-21 22:53 - 000150192 _____ C:\Windows\system32\ammntdrv.sys
2018-02-20 00:59 - 2018-02-20 01:06 - 086801738 ____R C:\Users\nakhfatli\Downloads\AOMEI Backupper Professional 4.0.2 + License + Patch + KeyGen - Crackingpatching.com.zip
2018-02-13 18:34 - 2018-01-12 16:29 - 004014312 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2018-02-13 18:34 - 2018-01-12 16:29 - 003959016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-02-13 18:34 - 2018-01-12 16:29 - 001309928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-02-13 18:34 - 2018-01-12 16:29 - 000250600 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-02-13 18:34 - 2018-01-12 16:29 - 000240872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2018-02-13 18:34 - 2018-01-12 16:29 - 000187624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2018-02-13 18:34 - 2018-01-12 16:29 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-02-13 18:34 - 2018-01-12 16:29 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-02-13 18:34 - 2018-01-12 16:27 - 001310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-02-13 18:34 - 2018-01-12 16:26 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-02-13 18:34 - 2018-01-12 16:16 - 003405824 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2018-02-13 18:34 - 2018-01-12 16:05 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2018-02-13 18:34 - 2018-01-12 16:05 - 000025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2018-02-13 18:34 - 2018-01-12 16:05 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2018-02-13 18:34 - 2018-01-12 16:02 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-02-13 18:34 - 2018-01-12 16:02 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-02-13 18:34 - 2018-01-12 16:02 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-02-13 18:34 - 2018-01-12 16:02 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-02-13 18:34 - 2018-01-12 16:02 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-02-13 18:34 - 2018-01-12 15:59 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-02-13 18:34 - 2018-01-12 15:57 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-02-13 18:34 - 2018-01-12 15:57 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-02-13 18:34 - 2018-01-12 15:57 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-02-13 18:34 - 2018-01-12 15:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-02-13 18:34 - 2018-01-12 15:56 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-02-13 18:34 - 2018-01-12 15:56 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-02-13 18:34 - 2018-01-12 15:56 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-02-13 18:34 - 2018-01-11 16:22 - 000805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2018-02-13 18:34 - 2018-01-11 16:01 - 002403328 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-02-13 18:34 - 2018-01-05 16:14 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-02-13 18:34 - 2018-01-05 16:11 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-02-13 18:34 - 2018-01-05 16:11 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-02-13 18:34 - 2018-01-05 16:11 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-02-13 18:34 - 2018-01-05 16:11 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-02-13 18:34 - 2018-01-05 15:50 - 000034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-02-13 18:26 - 2018-01-21 23:42 - 000117480 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-02-13 18:26 - 2018-01-21 23:20 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 001893888 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-02-13 18:26 - 2018-01-19 14:05 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000594944 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000508416 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000337920 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000311808 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-02-13 18:26 - 2018-01-19 14:05 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-02-09 13:10 - 2018-02-09 13:10 - 000059206 _____ C:\Users\nakhfatli\Downloads\jungle-french-dvdrip-2017.torrent
2018-02-09 13:09 - 2018-02-09 13:09 - 000030693 _____ C:\Users\nakhfatli\Downloads\a-ceux-qui-nous-ont-offenses-french-dvdrip-2017 (1).torrent
2018-02-09 13:02 - 2018-02-09 13:02 - 000030813 _____ C:\Users\nakhfatli\Downloads\the-circle-truefrench-dvdrip-2017.torrent
2018-02-06 11:18 - 2018-02-06 11:18 - 000058710 _____ C:\Users\nakhfatli\Downloads\le-roi-arthur-la-legende-d-excalibur-french-dvdrip-2017.torrent
2018-02-05 20:27 - 2018-02-05 20:27 - 000030621 _____ C:\Users\nakhfatli\Downloads\si-j-etais-un-homme-french-dvdrip-2017.torrent
2018-02-05 17:54 - 2018-02-05 17:54 - 000065005 _____ C:\Users\nakhfatli\Desktop\Progress_TNCAP95435E.txt
2018-02-04 07:18 - 2018-02-04 07:18 - 000016348 _____ C:\Users\nakhfatli\Downloads\prince-of-persia-les-sables-du-temps-french-dvdrip-2010.torrent
2018-02-04 07:15 - 2018-02-04 07:15 - 000031457 _____ C:\Users\nakhfatli\Downloads\batman-gotham-by-gaslight-french-dvdrip-2018.torrent
2018-02-04 07:01 - 2018-02-04 07:05 - 076480092 _____ C:\Users\nakhfatli\Downloads\Latina Shemale finds a toy to play with - XNXX.COM.TS
2018-02-03 04:21 - 2015-07-20 02:50 - 000000000 ____D C:\Users\nakhfatli\Desktop\Router Scan v2.52
2018-02-03 03:39 - 2018-02-03 03:39 - 000000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Voisinage réseau
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Voisinage d'impression
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Modèles
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Mes documents
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Menu Démarrer
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes vidéos
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes images
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Ma musique
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historique
2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 ____D C:\Users\DefaultAppPool
2018-02-03 03:39 - 2009-07-14 09:00 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2018-02-03 03:11 - 2018-02-03 03:11 - 000002306 _____ C:\Users\Public\Desktop\Port Forward Network Utilities.lnk
2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\PortForward.com
2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PortForward.com
2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\Program Files\Portforward
2018-02-03 02:59 - 2018-02-03 02:59 - 000000969 _____ C:\Users\nakhfatli\Downloads\35462.txt
2018-01-31 13:38 - 2017-12-14 19:23 - 000000000 ____D C:\Users\nakhfatli\Desktop\Waircut V1.8
2018-01-31 13:34 - 2018-01-31 13:34 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\GitHubDesktop
2018-01-30 12:00 - 2018-01-30 12:02 - 000000000 ____D C:\Users\nakhfatli\Downloads\Lake.Bodom.2017.FRENCH.BDRiP.XviD-Slay3R.WwW.Torrent9.pe
2018-01-30 01:57 - 2018-01-30 14:15 - 734497342 ____R C:\Users\nakhfatli\Downloads\[ Torrent9.tv ] Trespass.Against.Us.2016.FRENCH.BDRip.XviD-GZR.avi
2018-01-30 01:56 - 2018-01-30 01:56 - 000030693 _____ C:\Users\nakhfatli\Downloads\a-ceux-qui-nous-ont-offenses-french-dvdrip-2017.torrent
2018-01-30 01:53 - 2018-01-30 01:53 - 000031091 _____ C:\Users\nakhfatli\Downloads\lake-bodom-french-dvdrip-2017 (1).torrent
2018-01-30 01:21 - 2018-01-30 01:21 - 000031091 _____ C:\Users\nakhfatli\Downloads\lake-bodom-french-dvdrip-2017.torrent
2018-01-29 09:14 - 2018-01-29 13:26 - 000000000 ____D C:\Users\nakhfatli\Downloads\Overdrive.2017.LIMITED.FRENCH.BDRip.XviD-EXTREME.WwW.Torrent9.tv
2018-01-29 09:14 - 2018-01-29 09:14 - 000030972 _____ C:\Users\nakhfatli\Downloads\overdrive-french-dvdrip-2017.torrent
2018-01-29 09:11 - 2018-01-29 09:11 - 000058663 _____ C:\Users\nakhfatli\Downloads\raid-dingue-french-dvdrip-2017.torrent
2018-01-29 09:10 - 2018-01-29 09:10 - 000031151 _____ C:\Users\nakhfatli\Downloads\sleepless-french-dvdrip-2017.torrent
2018-01-28 01:38 - 2017-12-05 17:08 - 001176576 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2018-01-28 01:38 - 2017-12-05 17:08 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2018-01-28 01:38 - 2017-12-05 15:54 - 000334848 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2018-01-27 09:49 - 2018-01-27 09:49 - 000000000 ____D C:\Users\nakhfatli\Downloads\Flatliners.2017.FRENCH.BDRip.XviD-GZR.WwW.Torrent9.tv
2018-01-27 09:48 - 2018-01-27 17:17 - 726680438 ____R C:\Users\nakhfatli\Downloads\[ Torrent9.tv ] Kidnap.2017.TRUEFRENCH.BDRip.XviD-CR4ZYTiME.avi
2018-01-27 09:48 - 2018-01-27 09:48 - 000031153 _____ C:\Users\nakhfatli\Downloads\l-experience-interdite-flatliners-french-dvdrip-2017.torrent
2018-01-27 09:48 - 2018-01-27 09:48 - 000030410 _____ C:\Users\nakhfatli\Downloads\kidnap-french-dvdrip-2017.torrent
2018-01-27 08:32 - 2018-01-27 08:44 - 000000000 ____D C:\Users\nakhfatli\Downloads\WinAVI Video Converter 9.0+ Serial UPDATED
2018-01-26 09:43 - 2018-01-26 09:43 - 000014835 _____ C:\Users\nakhfatli\Downloads\Titanic Dvdrip French 1998.torrent
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-02-25 03:46 - 2017-09-16 07:16 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\uTorrent
2018-02-25 03:34 - 2017-09-16 09:18 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-02-25 03:32 - 2017-09-22 00:38 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\WhatsApp
2018-02-25 03:32 - 2017-09-19 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\WhatsApp
2018-02-25 03:32 - 2017-09-19 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2018-02-25 03:31 - 2018-01-10 01:04 - 000000000 ____D C:\Users\nakhfatli\Documents\Fichiers Outlook
2018-02-25 03:31 - 2017-09-16 10:48 - 000000354 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
2018-02-25 03:31 - 2017-09-14 23:23 - 000111056 _____ C:\Users\nakhfatli\AppData\Local\GDIPFONTCACHEV1.DAT
2018-02-25 03:30 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\DMCache
2018-02-25 03:28 - 2017-10-01 17:31 - 000007608 _____ C:\Users\nakhfatli\AppData\Local\resmon.resmoncfg
2018-02-25 03:27 - 2009-07-14 04:34 - 000025808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-02-25 03:27 - 2009-07-14 04:34 - 000025808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-02-25 02:40 - 2017-09-16 07:08 - 000000000 ____D C:\Users\nakhfatli\AppData\LocalLow\Mozilla
2018-02-25 02:34 - 2017-09-06 00:13 - 001804558 _____ C:\Windows\system32\PerfStringBackup.INI
2018-02-25 02:34 - 2009-07-14 08:39 - 000801188 _____ C:\Windows\system32\perfh00C.dat
2018-02-25 02:34 - 2009-07-14 08:39 - 000169084 _____ C:\Windows\system32\perfc00C.dat
2018-02-25 02:34 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\inf
2018-02-25 02:14 - 2017-10-21 17:39 - 000000000 ____D C:\Windows\Minidump
2018-02-25 02:08 - 2017-10-20 17:43 - 000000000 ____D C:\ProgramData\VMware
2018-02-25 02:07 - 2009-07-14 04:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-02-24 03:03 - 2017-10-06 21:29 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Skype
2018-02-24 01:25 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\Downloads\Compressed
2018-02-24 00:15 - 2009-07-14 02:04 - 000000478 _____ C:\Windows\win.ini
2018-02-23 20:38 - 2009-07-14 02:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-02-23 19:53 - 2017-10-02 22:03 - 000000000 ____D C:\Users\nakhfatli\Documents\Bigasoft Total Video Converter
2018-02-23 19:53 - 2017-09-06 00:12 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\VirtualStore
2018-02-23 19:50 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\Downloads\Video
2018-02-23 19:38 - 2017-09-16 07:23 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\vlc
2018-02-22 23:24 - 2017-10-06 21:29 - 000002685 _____ C:\Users\Public\Desktop\Skype.lnk
2018-02-22 23:09 - 2009-07-14 04:33 - 000433064 _____ C:\Windows\system32\FNTCACHE.DAT
2018-02-22 22:53 - 2009-07-14 02:37 - 000000000 ____D C:\Program Files\Common Files\System
2018-02-20 16:15 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\Registration
2018-02-20 03:28 - 2017-09-19 00:17 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-02-20 02:25 - 2017-09-16 07:07 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-02-16 13:28 - 2017-09-16 07:45 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-02-16 13:28 - 2017-09-16 07:45 - 000002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2018-02-13 23:34 - 2017-10-25 14:29 - 000000000 ____D C:\Windows\system32\appraiser
2018-02-13 19:47 - 2017-09-16 07:17 - 000000000 ____D C:\Windows\system32\MRT
2018-02-13 19:18 - 2017-10-11 13:08 - 127229528 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-02-13 19:18 - 2017-09-16 07:16 - 127229528 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-02-13 18:16 - 2017-10-20 17:49 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\VMware
2018-02-13 18:15 - 2017-10-20 17:49 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\VMware
2018-02-05 09:14 - 2017-09-16 07:47 - 000000000 ____D C:\Program Files\Recuva
2018-02-04 17:40 - 2017-10-03 19:35 - 000000442 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2018-02-04 17:20 - 2017-12-05 21:22 - 000000000 ____D C:\Program Files\Wi-Fi
2018-02-03 03:11 - 2017-09-14 23:14 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Downloaded Installations
2018-01-31 13:34 - 2017-09-19 02:24 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\SquirrelTemp
2018-01-29 21:41 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\system32\NDF
2018-01-28 10:58 - 2009-07-14 04:53 - 000032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Fichiers à la racine de certains dossiers =======
2017-12-09 02:01 - 2013-08-09 15:47 - 000915128 _____ (Riverbed Technology, Inc.) C:\Users\nakhfatli\WinPcap_4_1_3.exe
2017-11-02 09:54 - 2017-11-02 09:54 - 002924416 _____ () C:\Users\nakhfatli\ZHPDiag3.exe
2017-10-01 17:31 - 2018-02-25 03:28 - 000007608 _____ () C:\Users\nakhfatli\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-02-20 00:17
==================== Fin de FRST.txt ============================