Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 24.02.2018 Exécuté par nakhfatli (administrateur) sur alicahh (25-02-2018 03:46:59) Exécuté depuis C:\Users\nakhfatli\Downloads\Programs Profils chargés: nakhfatli (Profils disponibles: nakhfatli & DefaultAppPool) Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Two Pilots) C:\Windows\VPDAgent.exe (ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (AuthenTec, Inc.) C:\Program Files\Fingerprint Sensor\AtService.exe (AOMEI Tech Co., Ltd.) C:\Program Files\AOMEI Backupper\ABService.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe () C:\Program Files\MeditelInternet\MeditelInternet_Service.exe () C:\Program Files\Wi-Fi\WiFiGxSvc.exe (RealNetworks, Inc.) C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe (Realtek) C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe () C:\Windows\runSW.exe (Chris Pietschmann (hxxp://pietschsoft.com)) C:\Program Files\Virtual Router\VirtualRouterService.exe (VMware, Inc.) C:\Windows\System32\vmnat.exe (ZhangKong Soft) C:\Program Files\zksoft\marswifi\zkservice.exe (Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe (VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe (VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe () C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe (Symantec) C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe (DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe (BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\uTorrent.exe (ESET) C:\Program Files\ESET\ESET Security\egui.exe (Realtek Semiconductor Corp.) C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtWLan.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe (BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\updates\3.5.3_44358\utorrentie.exe (Realtek) C:\Windows\SwUSB.exe (BitTorrent Inc.) C:\Users\nakhfatli\AppData\Roaming\uTorrent\updates\3.5.3_44358\utorrentie.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [300440 2017-12-18] (ESET) HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd) HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4014136 2017-08-05] (Tonec Inc.) HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [uTorrent] => C:\Users\nakhfatli\AppData\Roaming\uTorrent\uTorrent.exe [2148024 2018-02-23] (BitTorrent Inc.) HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office15\lync.exe [18993824 2014-01-23] (Microsoft Corporation) HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: F - F:\AutoRun.exe HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: G - G:\AutoRun.exe HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {30ea5844-99a4-11e7-afc6-c0cb38ccc09a} - F:\AutoRun.exe HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {40b2ef7a-9ac6-11e7-8d2e-c0cb38ccc09a} - F:\AutoRun.exe HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {41566578-ad16-11e7-bdfd-c0cb38ccc09a} - F:\AutoRun.exe HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {46b42d07-a7b7-11e7-a999-c0cb38ccc09a} - G:\AutoRun.exe HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {69876fc7-99a3-11e7-8ef7-c0cb38ccc09a} - F:\AutoRun.exe HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {6bf75928-a096-11e7-9e12-c0cb38ccc09a} - F:\setup.exe HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\MountPoints2: {c9480402-164e-11e8-81e2-f04da2ab5a96} - G:\.\Setup.exe AUTORUN=1 HKU\S-1-5-18\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 GroupPolicy: Restriction ? <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of "Microsoft 6to4 Adapter" devices. Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0756E652-FE55-49EE-98B2-80B63420800D}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0900694E-ED80-4914-9830-1CE106ACB0E1}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{32FC1503-F35E-48E8-92B0-5F077B2917F8}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{34ECC496-4066-4D54-BCD6-CB89318E4FB4}: [NameServer] 192.168.0.1 Tcpip\..\Interfaces\{4219A296-BCF9-43F6-9DE7-A960745A9C0D}: [NameServer] 41.214.140.5 8.8.8.8 Tcpip\..\Interfaces\{5754BF01-1A7A-4E08-A986-81224BC251AC}: [DhcpNameServer] 192.168.56.1 Tcpip\..\Interfaces\{5CBB7ED3-D6FF-4527-9631-6CD3A6089DE6}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{889C3E0C-62AE-4876-B274-6BFEFC356C1B}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{9A00F582-B4E8-4210-B0CE-D39DBE038144}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{9D24035D-2635-4720-A223-0F9C77221491}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{A3EC6704-82F9-4F71-A171-026C848C5AB1}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{A9F06C4B-84EB-4A0F-8B11-244A742C2C6D}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{C364346A-4705-435E-A405-170D7DB56233}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{D151875A-6672-4625-AEF9-B3ADD4D93D0D}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{E4504F60-BC91-4AC7-A5F6-A81045E196D7}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{FD783C41-02F1-47AD-9903-7A899EEF9D3B}: [DhcpNameServer] 192.168.153.2 Internet Explorer: ================== SearchScopes: HKU\S-1-5-21-2407163642-931976920-2894012920-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp10_adw_ch&p={searchTerms} BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2017-07-12] (Internet Download Manager, Tonec Inc.) BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2017-11-29] (RealDownloader) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: bfb9jeem.nakhfatli FF ProfilePath: C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\xlklisv9.default [non trouvé(e)] <==== ATTENTION FF ProfilePath: C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli [2018-02-25] FF Homepage: Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli -> www.google.fr/ FF Extension: (Update 75.66.11) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{8a0699a0-09c3-4cf1-b38d-fec25441650c}.xpi [2018-01-28] FF Extension: (Video DownloadHelper) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-02-22] FF Extension: (Web Developer) - C:\Users\nakhfatli\AppData\Roaming\Mozilla\Firefox\Profiles\bfb9jeem.nakhfatli\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2018-01-20] FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc3.xpi FF Extension: (Pas de nom) - C:\Program Files\Internet Download Manager\idmmzcc3.xpi [2017-07-14] FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\nakhfatli\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\nakhfatli\AppData\Roaming\IDM\idmmzcc5 [2017-09-16] [Legacy] [non signé] FF HKU\S-1-5-21-2407163642-931976920-2894012920-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26] [Legacy] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-12-07] () FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-23] (Microsoft Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin: @real.com/nppl3260;version=18.1.10.217 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2017-12-07] (RealNetworks, Inc.) FF Plugin: @real.com/nprpplugin;version=18.1.10.217 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2017-12-07] (RealPlayer) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.fr/ CHR NewTab: Default -> Not-active:"chrome-extension://imhlianhlhdicjchlbmbfaefhhjencbe/newtab.html" CHR Profile: C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default [2018-02-25] CHR Extension: (Slides) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20] CHR Extension: (Docs) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20] CHR Extension: (Google Drive) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-15] CHR Extension: (YouTube) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-15] CHR Extension: (Adobe Acrobat) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-16] CHR Extension: (ZenMate VPN - Sécurité internet & Unblock) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2018-02-17] CHR Extension: (Sheets) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20] CHR Extension: (Google Docs hors connexion) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-15] CHR Extension: (NewTab) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\imhlianhlhdicjchlbmbfaefhhjencbe [2017-09-16] CHR Extension: (IDM Integration Module) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2018-01-14] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-15] CHR Extension: (Gmail) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-15] CHR Extension: (Chrome Media Router) - C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-29] CHR Profile: C:\Users\nakhfatli\AppData\Local\Google\Chrome\User Data\System Profile [2018-02-25] CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [imhlianhlhdicjchlbmbfaefhhjencbe] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-07-14] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Agent; C:\Windows\VPDAgent.exe [200704 2012-10-01] (Two Pilots) [Fichier non signé] S3 AIPS; C:\Program Files\arcai.com\aips.exe [1833472 2017-05-19] (Arcai.com) [Fichier non signé] R2 ATService; C:\Program Files\Fingerprint Sensor\AtService.exe [1803584 2010-03-03] (AuthenTec, Inc.) R2 Backupper Service; C:\Program Files\AOMEI Backupper\ABService.exe [122728 2017-09-04] (AOMEI Tech Co., Ltd.) S2 ByteFenceService; C:\Program Files\ByteFence\ByteFenceService.exe [145888 2017-07-20] (Byte Technologies LLC) R2 dcpsysmgrsvc; C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe [390000 2011-07-28] (Dell Inc.) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1539560 2017-12-18] (ESET) S3 GenericMount Helper Service; C:\Program Files\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [1574408 2010-02-12] (Symantec) S3 jswpbapi; C:\Program Files\Jumpstart\jswpbapi.exe [188416 2008-09-26] (Atheros Communications, Inc.) [Fichier non signé] S3 jswpsapi; C:\Program Files\Jumpstart\jswpsapi.exe [954368 2008-09-26] (Atheros Communications, Inc.) [Fichier non signé] S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE [2999664 2007-09-26] (Symantec Corporation) R2 MeditelInternet_Service; C:\Program Files\MeditelInternet\MeditelInternet_Service.exe [346680 2014-05-22] () R2 MyWiFiRouterDHCP; C:\Program Files\Wi-Fi\WiFiGxSvc.exe [47464 2014-11-18] () S2 Norton Ghost; C:\Program Files\Norton Ghost\Agent\VProSvc.exe [4590432 2010-03-03] (Symantec Corporation) R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [37104 2017-11-29] (RealNetworks, Inc.) R2 Realtek87B; C:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek) [Fichier non signé] R2 RealTimes Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [989912 2017-12-07] (RealNetworks, Inc.) R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [302920 2017-09-17] () R2 RunSwUSB; C:\Windows\runSW.exe [48856 2013-10-18] () S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-05-22] (DEVGURU Co., LTD.) R3 SymSnapService; C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe [1964528 2009-09-21] (Symantec) R2 Virtual Router; C:\Program Files\Virtual Router\VirtualRouterService.exe [12288 2013-02-10] (Chris Pietschmann (hxxp://pietschsoft.com)) [Fichier non signé] R3 VMAuthdService; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [79872 2012-08-15] (VMware, Inc.) [Fichier non signé] R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [357016 2012-08-15] (VMware, Inc.) R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [719512 2012-08-01] (VMware, Inc.) R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [435864 2012-08-15] (VMware, Inc.) R2 VMwareHostd; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [15680000 2012-08-15] () [Fichier non signé] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) R2 zkservice; C:\Program Files\zksoft\marswifi\zkservice.exe [412424 2017-12-04] (ZhangKong Soft) S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X] S3 Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe /Processid:{AFAACC1C-04BA-47BE-8970-5D50DF836271} ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 Acceler; C:\Windows\System32\DRIVERS\accelern.sys [44144 2012-05-23] (ST Microelectronics) R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [46896 2016-12-21] () R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [150192 2016-12-21] () R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [34864 2017-09-01] () R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [46440 2015-03-31] (Baidu, Inc.) R3 BTWAMPFL; C:\Windows\System32\DRIVERS\btwampfl.sys [302120 2017-09-06] (Broadcom Corporation.) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-05-22] (Samsung Electronics Co., Ltd.) R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [232512 2017-09-23] (DT Soft Ltd) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [114552 2017-11-07] (ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [90640 2017-11-07] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [141480 2017-11-07] (ESET) R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [42816 2017-11-07] (ESET) R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [71856 2017-11-07] (ESET) R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [53184 2017-11-07] (ESET) R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [90136 2017-11-07] (ESET) R3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [57840 2010-02-12] (Symantec Corporation) R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [41496 2012-08-01] (VMware, Inc.) S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [108032 2013-10-23] (Huawei Technologies Co., Ltd.) S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [316544 2013-11-01] (Huawei Technologies Co., Ltd.) R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [37408 2014-08-14] (NT Kernel Resources) R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.) R0 PBADRV; C:\Windows\System32\DRIVERS\PBADRV.sys [26608 2008-06-04] (Dell Inc) R2 risdpcie; C:\Windows\System32\DRIVERS\risdpe86.sys [49152 2009-06-30] (REDC) R3 RTL8187; C:\Windows\System32\DRIVERS\rtl8187.sys [375808 2010-01-07] (Realtek Semiconductor Corporation ) R3 RtlvVga; C:\Windows\System32\DRIVERS\RtlvVga.sys [12432 2014-03-18] (Realtek Semiconductor Corporation ) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [443448 2017-09-23] () S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147344 2017-05-22] (Samsung Electronics Co., Ltd.) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [147344 2017-05-22] (Samsung Electronics Co., Ltd.) R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [17904 2011-07-15] (ST Microelectronics) R3 ST_ACCEL; C:\Windows\System32\DRIVERS\ST_ACCEL.sys [59888 2012-05-21] (STMicroelectronics) R1 txwifinat; C:\Windows\System32\DRIVERS\txwifinat.sys [31152 2014-12-01] (Nanjing Tongxiang Network Technology Co.,LTD) S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [171104 2017-09-13] (Oracle Corporation) S3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [16664 2012-08-15] (VMware, Inc.) R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37016 2012-08-15] (VMware, Inc.) R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [25752 2012-08-15] (VMware, Inc.) R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [23832 2012-08-15] (VMware, Inc.) S3 vmusb; C:\Windows\System32\Drivers\vmusb.sys [31280 2012-08-01] (VMware, Inc.) R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [61848 2012-08-15] (VMware, Inc.) S3 VProEventMonitor; C:\Windows\System32\DRIVERS\vproeventmonitor.sys [15096 2009-09-21] (Symantec Corporation) R0 vsock; C:\Windows\System32\drivers\vsock.sys [61296 2012-07-06] (VMware, Inc.) R2 vstor2-mntapi10-shared; C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys [22768 2011-07-12] (VMware, Inc.) R1 zknetdrv; C:\Windows\System32\DRIVERS\zknetdrv.sys [30472 2017-12-04] (ZK Internet) U3 af8k1xcv; C:\Windows\system32\Drivers\af8k1xcv.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zéro octet Fichier/Dossier) S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X] S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X] S3 PCFApiUtil; \??\C:\Program Files\PC Faster\5.1.0.0\PCFApiUtil.sys [X] U2 V2iMount; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-02-25 03:46 - 2018-02-25 03:46 - 000000000 ____D C:\FRST 2018-02-25 01:53 - 2018-02-25 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\LocalLow\uTorrent 2018-02-24 02:19 - 2018-02-14 00:26 - 020274176 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2018-02-24 02:18 - 2018-02-14 18:57 - 000347288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2018-02-24 02:18 - 2018-02-14 00:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2018-02-24 02:18 - 2018-02-14 00:16 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2018-02-24 02:18 - 2018-02-14 00:06 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2018-02-24 02:18 - 2018-02-14 00:05 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2018-02-24 02:18 - 2018-02-14 00:05 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2018-02-24 02:18 - 2018-02-14 00:05 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2018-02-24 02:18 - 2018-02-14 00:04 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2018-02-24 02:18 - 2018-02-14 00:02 - 002294272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2018-02-24 02:18 - 2018-02-14 00:00 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2018-02-24 02:18 - 2018-02-14 00:00 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2018-02-24 02:18 - 2018-02-13 23:58 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2018-02-24 02:18 - 2018-02-13 23:57 - 000662528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2018-02-24 02:18 - 2018-02-13 23:57 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2018-02-24 02:18 - 2018-02-13 23:57 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2018-02-24 02:18 - 2018-02-13 23:57 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2018-02-24 02:18 - 2018-02-13 23:53 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2018-02-24 02:18 - 2018-02-13 23:50 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2018-02-24 02:18 - 2018-02-13 23:47 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2018-02-24 02:18 - 2018-02-13 23:46 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2018-02-24 02:18 - 2018-02-13 23:46 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2018-02-24 02:18 - 2018-02-13 23:44 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2018-02-24 02:18 - 2018-02-13 23:43 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2018-02-24 02:18 - 2018-02-13 23:43 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2018-02-24 02:18 - 2018-02-13 23:42 - 004498944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2018-02-24 02:18 - 2018-02-13 23:42 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2018-02-24 02:18 - 2018-02-13 23:39 - 013680640 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2018-02-24 02:18 - 2018-02-13 23:37 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2018-02-24 02:18 - 2018-02-13 23:35 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2018-02-24 02:18 - 2018-02-13 23:35 - 000694784 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2018-02-24 02:18 - 2018-02-13 23:35 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2018-02-24 02:18 - 2018-02-13 23:34 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2018-02-24 02:18 - 2018-02-13 23:22 - 002767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2018-02-24 02:18 - 2018-02-13 23:18 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2018-02-24 02:18 - 2018-02-13 23:16 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2018-02-24 02:18 - 2018-01-15 19:40 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2018-02-24 02:18 - 2018-01-12 16:26 - 000308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll 2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ___RD C:\Program Files\Skype 2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Skype 2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2018-02-22 23:24 - 2018-02-22 23:24 - 000000000 ____D C:\Program Files\Common Files\Skype 2018-02-22 23:22 - 2018-02-22 23:22 - 000000000 ____D C:\ProgramData\Skype 2018-02-22 22:46 - 2018-02-22 22:46 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2018-02-22 22:46 - 2018-02-22 22:46 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2018-02-22 18:16 - 2018-02-22 18:17 - 000000000 ____D C:\Users\nakhfatli\Downloads\[ Torrent9.bz ] Criminal.Squad.2018.TRUEFRENCH.TS.LD.XViD-SKRiN 2018-02-22 18:14 - 2018-02-22 18:14 - 000059419 _____ C:\Users\nakhfatli\Downloads\criminal-squad-french-ts-2018.torrent 2018-02-22 16:39 - 2018-02-22 16:39 - 000017911 _____ C:\Users\nakhfatli\Downloads\dc-s-legends-of-tomorrow-s03e11-vostfr-hdtv.torrent 2018-02-21 22:12 - 2018-02-21 22:13 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Appԁata 2018-02-21 22:12 - 2018-02-21 22:12 - 000000000 __SHD C:\Users\nakhfatli\AppData\Roaming\Pr 2018-02-21 22:00 - 2018-02-21 22:30 - 000000000 __SHD C:\Users\nakhfatli\AppData\Roaming\Latas 2018-02-21 21:48 - 2018-02-21 21:48 - 000001354 _____ C:\Users\nakhfatli\Desktop\Hein Recovery 1.8.lnk 2018-02-21 21:48 - 2018-02-21 21:48 - 000001279 _____ C:\Users\nakhfatli\Desktop\Hein 4.5.2.lnk 2018-02-21 21:44 - 2018-02-21 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2018-02-21 21:44 - 2018-02-21 21:44 - 000000000 ____D C:\Program Files\Microsoft Silverlight 2018-02-21 17:55 - 2018-02-21 17:55 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\your-appname-companyname-folder 2018-02-21 09:11 - 2018-02-21 09:11 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Google 2018-02-20 15:05 - 2018-02-20 15:05 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf 2018-02-20 15:04 - 2013-11-01 09:24 - 000316544 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_wwanecm.sys 2018-02-20 15:04 - 2013-10-23 10:42 - 000108032 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_cdcacm.sys 2018-02-20 15:04 - 2013-09-02 14:48 - 000381952 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys 2018-02-20 15:04 - 2013-06-29 16:16 - 000208384 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys 2018-02-20 15:04 - 2013-03-04 15:31 - 000101248 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys 2018-02-20 15:04 - 2013-03-04 15:31 - 000077824 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys 2018-02-20 15:04 - 2013-03-04 15:31 - 000070528 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys 2018-02-20 15:04 - 2013-03-04 15:31 - 000027776 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys 2018-02-20 15:04 - 2013-03-04 15:20 - 000199168 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys 2018-02-20 15:04 - 2013-01-25 08:16 - 000095232 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys 2018-02-20 15:04 - 2012-12-22 08:46 - 000011904 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys 2018-02-20 15:04 - 2012-08-20 07:37 - 001112288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll 2018-02-20 15:04 - 2010-10-08 15:55 - 000025856 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys 2018-02-20 15:04 - 2010-09-26 17:09 - 000019200 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys 2018-02-20 15:03 - 2018-02-21 06:32 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\MeditelInternet 2018-02-20 15:03 - 2018-02-20 15:03 - 000001969 _____ C:\Users\Public\Desktop\Meditel Internet.lnk 2018-02-20 15:03 - 2018-02-20 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Meditel Internet 2018-02-20 15:03 - 2018-02-20 15:03 - 000000000 ____D C:\Program Files\MeditelInternet 2018-02-20 11:39 - 2018-02-20 11:39 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Symantec 2018-02-20 11:30 - 2018-02-20 11:30 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Symantec_Corporation 2018-02-20 11:11 - 2018-02-20 11:15 - 000628181 _____ C:\BESR2010PatchLog.txt 2018-02-20 10:33 - 2018-02-20 10:33 - 000000000 ____D C:\Program Files\Symantec 2018-02-20 10:33 - 2007-09-26 10:56 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\capicom.dll 2018-02-20 10:33 - 2007-03-21 20:39 - 001060864 _____ (Microsoft Corporation) C:\Windows\system32\MFC71.DLL 2018-02-20 10:33 - 2007-03-21 20:33 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\MSVCP71.DLL 2018-02-20 10:33 - 2007-03-21 20:33 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\MSVCR71.DLL 2018-02-20 10:32 - 2009-10-01 22:03 - 000131000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys 2018-02-20 10:31 - 2018-02-20 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Ghost 2018-02-20 10:31 - 2018-02-20 10:31 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_GenericMount_01009.Wdf 2018-02-20 10:31 - 2009-09-21 20:40 - 000015096 _____ (Symantec Corporation) C:\Windows\system32\Drivers\vproeventmonitor.sys 2018-02-20 10:31 - 2009-09-21 20:20 - 000138592 _____ (StorageCraft) C:\Windows\system32\Drivers\symsnap.sys 2018-02-20 10:30 - 2018-02-20 10:33 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared 2018-02-20 10:30 - 2009-05-18 14:17 - 000026600 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys 2018-02-20 10:30 - 2008-04-17 13:12 - 000107368 _____ (GEAR Software Inc.) C:\Windows\system32\GEARAspi.dll 2018-02-20 10:29 - 2018-02-20 11:11 - 000000000 ____D C:\ProgramData\Symantec 2018-02-20 10:29 - 2018-02-20 10:30 - 000000000 ____D C:\ProgramData\{1C6FDDD8-FC9E-4C12-9FA5-1AAD377097B3} 2018-02-20 10:29 - 2018-02-20 10:30 - 000000000 ____D C:\Program Files\Norton Ghost 2018-02-20 04:30 - 2018-02-20 04:51 - 000000000 ____D C:\Users\nakhfatli\Downloads\Ghost_15_Fr 2018-02-20 04:30 - 2018-02-20 04:30 - 000021488 _____ C:\Users\nakhfatli\Downloads\norton-ghost-15-fr-serial.torrent 2018-02-20 04:13 - 2018-02-20 04:13 - 000033519 _____ C:\Users\nakhfatli\Downloads\Paragon Hard Disk Manager 15.torrent 2018-02-20 03:43 - 2018-02-25 02:07 - 000000082 _____ C:\Windows\system32\winsevr.dat 2018-02-20 03:34 - 2018-02-20 03:34 - 000001019 _____ C:\Users\Public\Desktop\AOMEI Backupper Professional.lnk 2018-02-20 03:34 - 2018-02-20 03:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper 2018-02-20 01:26 - 2018-02-23 12:25 - 000001024 ____H C:\SYSTAG.BIN 2018-02-20 01:23 - 2018-02-23 12:26 - 000000000 ____D C:\ProgramData\AomeiBR 2018-02-20 01:22 - 2018-02-25 00:51 - 000000000 ____D C:\Program Files\AOMEI Backupper 2018-02-20 01:22 - 2017-09-01 18:12 - 000034864 _____ C:\Windows\system32\amwrtdrv.sys 2018-02-20 01:22 - 2016-12-21 22:54 - 000046896 _____ C:\Windows\system32\ambakdrv.sys 2018-02-20 01:22 - 2016-12-21 22:53 - 000150192 _____ C:\Windows\system32\ammntdrv.sys 2018-02-20 00:59 - 2018-02-20 01:06 - 086801738 ____R C:\Users\nakhfatli\Downloads\AOMEI Backupper Professional 4.0.2 + License + Patch + KeyGen - Crackingpatching.com.zip 2018-02-13 18:34 - 2018-01-12 16:29 - 004014312 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2018-02-13 18:34 - 2018-01-12 16:29 - 003959016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2018-02-13 18:34 - 2018-01-12 16:29 - 001309928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2018-02-13 18:34 - 2018-01-12 16:29 - 000250600 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys 2018-02-13 18:34 - 2018-01-12 16:29 - 000240872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2018-02-13 18:34 - 2018-01-12 16:29 - 000187624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2018-02-13 18:34 - 2018-01-12 16:29 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2018-02-13 18:34 - 2018-01-12 16:29 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2018-02-13 18:34 - 2018-01-12 16:27 - 001310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2018-02-13 18:34 - 2018-01-12 16:26 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2018-02-13 18:34 - 2018-01-12 16:16 - 003405824 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe 2018-02-13 18:34 - 2018-01-12 16:05 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2018-02-13 18:34 - 2018-01-12 16:05 - 000025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2018-02-13 18:34 - 2018-01-12 16:05 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys 2018-02-13 18:34 - 2018-01-12 16:02 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2018-02-13 18:34 - 2018-01-12 16:02 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2018-02-13 18:34 - 2018-01-12 16:02 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2018-02-13 18:34 - 2018-01-12 16:02 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2018-02-13 18:34 - 2018-01-12 16:02 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2018-02-13 18:34 - 2018-01-12 15:59 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2018-02-13 18:34 - 2018-01-12 15:57 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2018-02-13 18:34 - 2018-01-12 15:57 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2018-02-13 18:34 - 2018-01-12 15:57 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2018-02-13 18:34 - 2018-01-12 15:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2018-02-13 18:34 - 2018-01-12 15:56 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2018-02-13 18:34 - 2018-01-12 15:56 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2018-02-13 18:34 - 2018-01-12 15:56 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2018-02-13 18:34 - 2018-01-11 16:22 - 000805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll 2018-02-13 18:34 - 2018-01-11 16:01 - 002403328 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2018-02-13 18:34 - 2018-01-05 16:14 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2018-02-13 18:34 - 2018-01-05 16:11 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll 2018-02-13 18:34 - 2018-01-05 16:11 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2018-02-13 18:34 - 2018-01-05 16:11 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2018-02-13 18:34 - 2018-01-05 16:11 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2018-02-13 18:34 - 2018-01-05 15:50 - 000034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2018-02-13 18:26 - 2018-01-21 23:42 - 000117480 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2018-02-13 18:26 - 2018-01-21 23:20 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2018-02-13 18:26 - 2018-01-19 14:05 - 001893888 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2018-02-13 18:26 - 2018-01-19 14:05 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2018-02-13 18:26 - 2018-01-19 14:05 - 000594944 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2018-02-13 18:26 - 2018-01-19 14:05 - 000508416 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2018-02-13 18:26 - 2018-01-19 14:05 - 000337920 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2018-02-13 18:26 - 2018-01-19 14:05 - 000311808 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2018-02-13 18:26 - 2018-01-19 14:05 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2018-02-13 18:26 - 2018-01-19 14:05 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2018-02-09 13:10 - 2018-02-09 13:10 - 000059206 _____ C:\Users\nakhfatli\Downloads\jungle-french-dvdrip-2017.torrent 2018-02-09 13:09 - 2018-02-09 13:09 - 000030693 _____ C:\Users\nakhfatli\Downloads\a-ceux-qui-nous-ont-offenses-french-dvdrip-2017 (1).torrent 2018-02-09 13:02 - 2018-02-09 13:02 - 000030813 _____ C:\Users\nakhfatli\Downloads\the-circle-truefrench-dvdrip-2017.torrent 2018-02-06 11:18 - 2018-02-06 11:18 - 000058710 _____ C:\Users\nakhfatli\Downloads\le-roi-arthur-la-legende-d-excalibur-french-dvdrip-2017.torrent 2018-02-05 20:27 - 2018-02-05 20:27 - 000030621 _____ C:\Users\nakhfatli\Downloads\si-j-etais-un-homme-french-dvdrip-2017.torrent 2018-02-05 17:54 - 2018-02-05 17:54 - 000065005 _____ C:\Users\nakhfatli\Desktop\Progress_TNCAP95435E.txt 2018-02-04 07:18 - 2018-02-04 07:18 - 000016348 _____ C:\Users\nakhfatli\Downloads\prince-of-persia-les-sables-du-temps-french-dvdrip-2010.torrent 2018-02-04 07:15 - 2018-02-04 07:15 - 000031457 _____ C:\Users\nakhfatli\Downloads\batman-gotham-by-gaslight-french-dvdrip-2018.torrent 2018-02-04 07:01 - 2018-02-04 07:05 - 076480092 _____ C:\Users\nakhfatli\Downloads\Latina Shemale finds a toy to play with - XNXX.COM.TS 2018-02-03 04:21 - 2015-07-20 02:50 - 000000000 ____D C:\Users\nakhfatli\Desktop\Router Scan v2.52 2018-02-03 03:39 - 2018-02-03 03:39 - 000000020 ___SH C:\Users\DefaultAppPool\ntuser.ini 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Voisinage réseau 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Voisinage d'impression 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Modèles 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Mes documents 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Menu Démarrer 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes vidéos 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes images 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Ma musique 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historique 2018-02-03 03:39 - 2018-02-03 03:39 - 000000000 ____D C:\Users\DefaultAppPool 2018-02-03 03:39 - 2009-07-14 09:00 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs 2018-02-03 03:11 - 2018-02-03 03:11 - 000002306 _____ C:\Users\Public\Desktop\Port Forward Network Utilities.lnk 2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\PortForward.com 2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PortForward.com 2018-02-03 03:11 - 2018-02-03 03:11 - 000000000 ____D C:\Program Files\Portforward 2018-02-03 02:59 - 2018-02-03 02:59 - 000000969 _____ C:\Users\nakhfatli\Downloads\35462.txt 2018-01-31 13:38 - 2017-12-14 19:23 - 000000000 ____D C:\Users\nakhfatli\Desktop\Waircut V1.8 2018-01-31 13:34 - 2018-01-31 13:34 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\GitHubDesktop 2018-01-30 12:00 - 2018-01-30 12:02 - 000000000 ____D C:\Users\nakhfatli\Downloads\Lake.Bodom.2017.FRENCH.BDRiP.XviD-Slay3R.WwW.Torrent9.pe 2018-01-30 01:57 - 2018-01-30 14:15 - 734497342 ____R C:\Users\nakhfatli\Downloads\[ Torrent9.tv ] Trespass.Against.Us.2016.FRENCH.BDRip.XviD-GZR.avi 2018-01-30 01:56 - 2018-01-30 01:56 - 000030693 _____ C:\Users\nakhfatli\Downloads\a-ceux-qui-nous-ont-offenses-french-dvdrip-2017.torrent 2018-01-30 01:53 - 2018-01-30 01:53 - 000031091 _____ C:\Users\nakhfatli\Downloads\lake-bodom-french-dvdrip-2017 (1).torrent 2018-01-30 01:21 - 2018-01-30 01:21 - 000031091 _____ C:\Users\nakhfatli\Downloads\lake-bodom-french-dvdrip-2017.torrent 2018-01-29 09:14 - 2018-01-29 13:26 - 000000000 ____D C:\Users\nakhfatli\Downloads\Overdrive.2017.LIMITED.FRENCH.BDRip.XviD-EXTREME.WwW.Torrent9.tv 2018-01-29 09:14 - 2018-01-29 09:14 - 000030972 _____ C:\Users\nakhfatli\Downloads\overdrive-french-dvdrip-2017.torrent 2018-01-29 09:11 - 2018-01-29 09:11 - 000058663 _____ C:\Users\nakhfatli\Downloads\raid-dingue-french-dvdrip-2017.torrent 2018-01-29 09:10 - 2018-01-29 09:10 - 000031151 _____ C:\Users\nakhfatli\Downloads\sleepless-french-dvdrip-2017.torrent 2018-01-28 01:38 - 2017-12-05 17:08 - 001176576 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2018-01-28 01:38 - 2017-12-05 17:08 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2018-01-28 01:38 - 2017-12-05 17:08 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2018-01-28 01:38 - 2017-12-05 17:08 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll 2018-01-28 01:38 - 2017-12-05 17:08 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2018-01-28 01:38 - 2017-12-05 17:08 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll 2018-01-28 01:38 - 2017-12-05 15:54 - 000334848 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe 2018-01-27 09:49 - 2018-01-27 09:49 - 000000000 ____D C:\Users\nakhfatli\Downloads\Flatliners.2017.FRENCH.BDRip.XviD-GZR.WwW.Torrent9.tv 2018-01-27 09:48 - 2018-01-27 17:17 - 726680438 ____R C:\Users\nakhfatli\Downloads\[ Torrent9.tv ] Kidnap.2017.TRUEFRENCH.BDRip.XviD-CR4ZYTiME.avi 2018-01-27 09:48 - 2018-01-27 09:48 - 000031153 _____ C:\Users\nakhfatli\Downloads\l-experience-interdite-flatliners-french-dvdrip-2017.torrent 2018-01-27 09:48 - 2018-01-27 09:48 - 000030410 _____ C:\Users\nakhfatli\Downloads\kidnap-french-dvdrip-2017.torrent 2018-01-27 08:32 - 2018-01-27 08:44 - 000000000 ____D C:\Users\nakhfatli\Downloads\WinAVI Video Converter 9.0+ Serial UPDATED 2018-01-26 09:43 - 2018-01-26 09:43 - 000014835 _____ C:\Users\nakhfatli\Downloads\Titanic Dvdrip French 1998.torrent ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-02-25 03:46 - 2017-09-16 07:16 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\uTorrent 2018-02-25 03:34 - 2017-09-16 09:18 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2018-02-25 03:32 - 2017-09-22 00:38 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\WhatsApp 2018-02-25 03:32 - 2017-09-19 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\WhatsApp 2018-02-25 03:32 - 2017-09-19 03:31 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2018-02-25 03:31 - 2018-01-10 01:04 - 000000000 ____D C:\Users\nakhfatli\Documents\Fichiers Outlook 2018-02-25 03:31 - 2017-09-16 10:48 - 000000354 _____ C:\Windows\Tasks\DriverToolkit Autorun.job 2018-02-25 03:31 - 2017-09-14 23:23 - 000111056 _____ C:\Users\nakhfatli\AppData\Local\GDIPFONTCACHEV1.DAT 2018-02-25 03:30 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\DMCache 2018-02-25 03:28 - 2017-10-01 17:31 - 000007608 _____ C:\Users\nakhfatli\AppData\Local\resmon.resmoncfg 2018-02-25 03:27 - 2009-07-14 04:34 - 000025808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2018-02-25 03:27 - 2009-07-14 04:34 - 000025808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2018-02-25 02:40 - 2017-09-16 07:08 - 000000000 ____D C:\Users\nakhfatli\AppData\LocalLow\Mozilla 2018-02-25 02:34 - 2017-09-06 00:13 - 001804558 _____ C:\Windows\system32\PerfStringBackup.INI 2018-02-25 02:34 - 2009-07-14 08:39 - 000801188 _____ C:\Windows\system32\perfh00C.dat 2018-02-25 02:34 - 2009-07-14 08:39 - 000169084 _____ C:\Windows\system32\perfc00C.dat 2018-02-25 02:34 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\inf 2018-02-25 02:14 - 2017-10-21 17:39 - 000000000 ____D C:\Windows\Minidump 2018-02-25 02:08 - 2017-10-20 17:43 - 000000000 ____D C:\ProgramData\VMware 2018-02-25 02:07 - 2009-07-14 04:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-02-24 03:03 - 2017-10-06 21:29 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\Skype 2018-02-24 01:25 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\Downloads\Compressed 2018-02-24 00:15 - 2009-07-14 02:04 - 000000478 _____ C:\Windows\win.ini 2018-02-23 20:38 - 2009-07-14 02:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2018-02-23 19:53 - 2017-10-02 22:03 - 000000000 ____D C:\Users\nakhfatli\Documents\Bigasoft Total Video Converter 2018-02-23 19:53 - 2017-09-06 00:12 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\VirtualStore 2018-02-23 19:50 - 2017-09-16 08:36 - 000000000 ____D C:\Users\nakhfatli\Downloads\Video 2018-02-23 19:38 - 2017-09-16 07:23 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\vlc 2018-02-22 23:24 - 2017-10-06 21:29 - 000002685 _____ C:\Users\Public\Desktop\Skype.lnk 2018-02-22 23:09 - 2009-07-14 04:33 - 000433064 _____ C:\Windows\system32\FNTCACHE.DAT 2018-02-22 22:53 - 2009-07-14 02:37 - 000000000 ____D C:\Program Files\Common Files\System 2018-02-20 16:15 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\Registration 2018-02-20 03:28 - 2017-09-19 00:17 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service 2018-02-20 02:25 - 2017-09-16 07:07 - 000000000 ____D C:\Program Files\Mozilla Firefox 2018-02-16 13:28 - 2017-09-16 07:45 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2018-02-16 13:28 - 2017-09-16 07:45 - 000002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2018-02-13 23:34 - 2017-10-25 14:29 - 000000000 ____D C:\Windows\system32\appraiser 2018-02-13 19:47 - 2017-09-16 07:17 - 000000000 ____D C:\Windows\system32\MRT 2018-02-13 19:18 - 2017-10-11 13:08 - 127229528 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe 2018-02-13 19:18 - 2017-09-16 07:16 - 127229528 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-02-13 18:16 - 2017-10-20 17:49 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\VMware 2018-02-13 18:15 - 2017-10-20 17:49 - 000000000 ____D C:\Users\nakhfatli\AppData\Roaming\VMware 2018-02-05 09:14 - 2017-09-16 07:47 - 000000000 ____D C:\Program Files\Recuva 2018-02-04 17:40 - 2017-10-03 19:35 - 000000442 _____ C:\Windows\system32\Drivers\etc\hosts.ics 2018-02-04 17:20 - 2017-12-05 21:22 - 000000000 ____D C:\Program Files\Wi-Fi 2018-02-03 03:11 - 2017-09-14 23:14 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\Downloaded Installations 2018-01-31 13:34 - 2017-09-19 02:24 - 000000000 ____D C:\Users\nakhfatli\AppData\Local\SquirrelTemp 2018-01-29 21:41 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\system32\NDF 2018-01-28 10:58 - 2009-07-14 04:53 - 000032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT ==================== Fichiers à la racine de certains dossiers ======= 2017-12-09 02:01 - 2013-08-09 15:47 - 000915128 _____ (Riverbed Technology, Inc.) C:\Users\nakhfatli\WinPcap_4_1_3.exe 2017-11-02 09:54 - 2017-11-02 09:54 - 002924416 _____ () C:\Users\nakhfatli\ZHPDiag3.exe 2017-10-01 17:31 - 2018-02-25 03:28 - 000007608 _____ () C:\Users\nakhfatli\AppData\Local\resmon.resmoncfg ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2018-02-20 00:17 ==================== Fin de FRST.txt ============================