Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020 Exécuté par User (administrateur) sur USER-PC (Dell Inc. Latitude E5430 vPro) (30-12-2020 02:02:14) Exécuté depuis C:\Users\User\AppData\Roaming\Microsoft\Windows\Network Shortcuts Profils chargés: User Platform: Windows 10 Pro Version 1511 10586.1176 (X64) Langue: Français (France) Navigateur par défaut: "C:\Program Files (x86)\Comodo\IceDragon\icedragon.exe" -osint -url "%1" Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\ElevationService.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <21> (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.1000_x86__8wekyb3d8bbwe\SkypeHost.exe (Microsoft Windows -> Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\7cfbbb0039622a54de3ac6a0a992f827\WindowsUpdateBox.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\Temp\89F5181F-5E56-4875-89FD-E8192FEEAF84\DismHost.exe (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Microsoft Windows Hardware Compatibility Publisher -> O2Micro International) C:\Windows\System32\drivers\o2flash.exe (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\User\ZHPSuite.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [745288 2020-12-04] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [337720 2020-11-12] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [TechSmithSnagit] => C:\Program Files\TechSmith\Snagit 2021\Snagit32.exe [9496544 2020-12-09] (TechSmith Corporation -> TechSmith Corporation) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-08-16] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET) HKU\S-1-5-21-1091347942-1850174796-2752133433-1000\...\Run: [AdwCleaner] => "C:\Users\User\AppData\Local\6AdwCleaner.exe" -auto HKU\S-1-5-21-1091347942-1850174796-2752133433-1000\...\Run: [ApowerManager] => C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe [56449584 2020-09-29] (Apowersoft Ltd -> Apowersoft Ltd.) HKU\S-1-5-21-1091347942-1850174796-2752133433-1000\...\Run: [ApowerMirror] => C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe [4670616 2018-07-11] (Apowersoft Ltd -> Apowersoft) HKU\S-1-5-21-1091347942-1850174796-2752133433-1000\...\MountPoints2: {93b6d2b3-269d-11eb-824f-f01faf3cb735} - "F:\setup.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> %SystemRoot%\inf\unregmp2.exe /ShowWMP HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-07] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UltraMon.lnk [2020-12-10] ShortcutTarget: UltraMon.lnk -> C:\Windows\Installer\{2CB51501-DA86-4216-9C9B-2C52A64BA047}\IcoUltraMon.ico () [Fichier non signé] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WAPT session setup.lnk [2020-11-15] ShortcutTarget: WAPT session setup.lnk -> C:\wapt\wapt-get.exe (TRANQUIL I.T. SYSTEMS -> Tranquil IT Systems) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WAPT tray helper.lnk [2020-11-15] ShortcutTarget: WAPT tray helper.lnk -> C:\wapt\wapttray.exe (TRANQUIL I.T. SYSTEMS -> Tranquil IT Systems) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WSAndroidAppHelper.lnk [2020-12-28] ShortcutTarget: WSAndroidAppHelper.lnk -> C:\Program Files (x86)\Wondershare\drfone\Addins\SocialApps\WSAndroidAppHelper.exe (Wondershare Technology Co.,Ltd -> Microsoft) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WSAppHelper.lnk [2020-12-28] ShortcutTarget: WSAppHelper.lnk -> C:\Program Files (x86)\Wondershare\drfone\Addins\SocialApps\WSAppHelper.exe (Wondershare Technology Co.,Ltd -> Microsoft) BootExecute: autocheck autochk * SmartDefragBootTime.exe GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0802EC40-6B79-461F-8D0F-B146A7EAF8E2} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit) Task: {123E1417-265E-4442-A2A9-42E71DB24264} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-14] (Google LLC -> Google LLC) Task: {1D3C948F-3525-4E3B-921B-0637A77F91BC} - System32\Tasks\Altening Alt Loader => %windir%\System32\cmd.exe /C start %AppData%\altening\altening.launcher.exe --background Task: {3080F2CB-6D87-468E-A72C-950ED0CE53D2} - System32\Tasks\NCH Software\VideoPadCacheDeleteAll => C:\Program Files (x86)\NCH Software\VideoPad\videopad.exe [7919200 2020-09-07] (NCH Software, Inc. -> NCH Software) Task: {317107BF-13F6-48B4-AA5A-BA0B03A02F4B} - System32\Tasks\Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate => {FE285C8C-5360-41C1-A700-045501C740DE} C:\Windows\System32\ErrorDetailsUpdate.dll [39936 2015-10-30] (Microsoft Windows -> Microsoft Corporation) Task: {37D3C606-1D84-4AEC-AF78-4BE8909AB4F0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-14] (Google LLC -> Google LLC) Task: {45561755-0BB2-49DF-9B3C-3F0CEB4AB61E} - System32\Tasks\Microsoft\Windows\WS\Badge Update => {00CCDDF6-5107-424D-853D-3907AE5502DC} Task: {4CCED8BF-181E-456B-B7A5-A3983B2A414D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {4D37510C-CE15-47BA-BB0A-333A0FC50B96} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {53097477-8FBE-4C71-AAED-77EEBBF97830} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-24] (Microsoft Corporation -> Microsoft Corporation) Task: {6B3AC80A-A4D6-43AA-9CB5-C1D0CD864997} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693456 2020-12-24] (Mozilla Corporation -> Mozilla Foundation) Task: {6C4D0897-714A-46CE-942C-433D510C456C} - System32\Tasks\DSL Subsystem => C:\Users\User\Desktop\Virus Maker 3.0 Hack.exe Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {71E53243-3A2D-47EE-9DAB-6D71B2366657} - System32\Tasks\Microsoft\Windows\ErrorDetails\ErrorDetailsUpdate => {9CDA66BE-3271-4723-8D35-DD834C58AD92} C:\Windows\System32\ErrorDetailsUpdate.dll [39936 2015-10-30] (Microsoft Windows -> Microsoft Corporation) Task: {86CB6F4F-189E-489B-938A-C50DC8C8B07C} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3031824 2020-07-07] (IObit Information Technology -> IObit) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {9C8E21C9-6AB1-4D66-8DF5-73AF5359B24E} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses => {10F591BE-3C84-418A-86DD-BAA002E2F36E} Task: {BAC8B851-B27F-4F45-9554-81EA54C4BF40} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {C0567C6A-78AF-4DBE-9D72-19020EDE8DDA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {F2B5464C-FB6C-4D5C-A9E2-BACAC63EEE15} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [5938960 2020-12-24] (IObit Information Technology -> IObit) Task: {FA7ED3B9-8737-42E1-9C56-5B227CB92DD3} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe Task: {FC8B74FA-8CAB-4152-BD22-B616512EFADA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-24] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{4817ebdf-f272-482b-8861-efd621306071}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{630adf0f-b946-4ad9-ac81-4c173fb7aed4}: [DhcpNameServer] 192.168.1.1 Edge: ====== Edge DefaultProfile: Default Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-28] Edge Extension: (Screen Shader | Smart Screen Tinting) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fmlboobidmkelggdainpknloccojpppi [2020-11-15] Edge Extension: (ZenMate VPN Gratuit – Meilleur VPN pour Edge) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kepdippgcikacmcdaijnponnfgljfbea [2020-11-15] Edge Extension: (Google Hangouts) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2020-11-15] FireFox: ======== FF DefaultProfile: f9h17f4u.default FF DefaultProfile: ywb8lfmp.default FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f9h17f4u.default [2020-12-28] FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\f9h17f4u.default\searchplugins\AdTrustMediaIceDragon.xml [2020-12-07] FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\cwigfiby.default-release-1608553082593 [2020-12-29] FF Notifications: Mozilla\Firefox\Profiles\cwigfiby.default-release-1608553082593 -> hxxps://aternos.org FF Extension: (Hoxx VPN Proxy) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\cwigfiby.default-release-1608553082593\Extensions\@hoxx-vpn.xpi [2020-12-21] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\cwigfiby.default-release-1608553082593\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-12-21] FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\cwigfiby.default-release-1608553082593\searchplugins\duckduckgo.xml [2020-11-29] FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\cwigfiby.default-release-1608553082593\searchplugins\nchfastsearch.xml [2020-11-29] FF ProfilePath: C:\Users\User\AppData\Roaming\Comodo\IceDragon\Profiles\ywb8lfmp.default [2020-12-30] FF Homepage: Comodo\IceDragon\Profiles\ywb8lfmp.default -> hxxps://www.google.com/ FF Extension: (Online Security Pro) - C:\Users\User\AppData\Roaming\Comodo\IceDragon\Profiles\ywb8lfmp.default\Extensions\cos@comodo.com.xpi [2020-12-09] FF Extension: (Dictionnaire français) - C:\Users\User\AppData\Roaming\Comodo\IceDragon\Profiles\ywb8lfmp.default\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org.xpi [2020-12-28] FF Extension: (Https Enforcement) - C:\Users\User\AppData\Roaming\Comodo\IceDragon\Profiles\ywb8lfmp.default\Extensions\https@comodo.com.xpi [2019-03-15] FF Extension: (Français Language Pack) - C:\Users\User\AppData\Roaming\Comodo\IceDragon\Profiles\ywb8lfmp.default\Extensions\langpack-fr@comodo.icedragon.com.xpi [2020-12-30] FF Extension: (Français Language Pack) - C:\Users\User\AppData\Roaming\Comodo\IceDragon\Profiles\ywb8lfmp.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2020-12-28] FF Extension: (Media Downloader) - C:\Users\User\AppData\Roaming\Comodo\IceDragon\Profiles\ywb8lfmp.default\Extensions\{5e9eca63-6e0d-47ce-9862-07d938121575}.xpi [2019-03-15] [] FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-11-14] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-11-14] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-11-18] (Microsoft Corporation -> Microsoft Corporation) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-12-29] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2020-12-30] CHR Notifications: Default -> hxxps://aternos.org CHR HomePage: Default -> hxxp://www.google.com CHR StartupUrls: Default -> "hxxps://www.google.fr/","hxxp://www.google.com/" CHR DefaultSearchURL: Default -> hxxps://www.gstatic.com/youtube/media/ytm/images/applauncher/music_icon_48x48.png CHR Extension: (YouTube Music) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cinhimbnkkaeohfgghhklpknlkffjgod [2020-12-06] CHR Extension: (Outlook) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\eigpmdhekjlgjgcppnanaanbdmnlnagl [2020-11-14] CHR Extension: (ZenMate VPN Gratuit – Meilleur VPN pour Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2020-12-27] CHR Extension: (Screen Shader | Smart Screen Tinting) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmlboobidmkelggdainpknloccojpppi [2020-11-14] CHR Extension: (Google Hangouts) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2020-11-14] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-11-14] CHR Extension: (TeamViewer) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\oooiobdokpcfdlahlmcddobejikcmkfo [2020-11-14] CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-27] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-12-27] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-27] CHR HKU\S-1-5-21-1091347942-1850174796-2752133433-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hcjjaajflhellmcfcecojihhmdbjmmlm] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [96120 2020-12-04] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9105800 2020-12-01] (Microsoft Corporation -> Microsoft Corporation) S4 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [3733456 2020-06-24] (Binary Fortress Software Ltd -> Binary Fortress Software) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET) R2 ElevationService; C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\ElevationService.exe [913408 2020-08-11] () [Fichier non signé] S4 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [2616800 2019-05-29] (Comodo Security Solutions, Inc. -> Comodo Inc.) R2 O2FLASH; C:\WINDOWS\System32\drivers\o2flash.exe [65536 2020-12-07] (Microsoft Windows Hardware Compatibility Publisher -> O2Micro International) S4 SoundBoosterService; C:\Program Files (x86)\Letasoft Sound Booster\SoundBoosterService.exe [153272 2019-02-21] (Letasoft LLC -> Letasoft) R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-08-16] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13273104 2020-10-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746504 2020-10-16] (Oracle Corporation -> Oracle Corporation) S3 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [15476144 2019-11-04] (VMware, Inc. -> ) S4 WAPTNginx; c:\wapt\waptservice\win64\nssm.exe [374976 2020-06-12] (TRANQUIL I.T. SYSTEMS -> Iain Patterson) S4 WAPTPostgresql; c:\wapt\waptserver\pgsql-9.6\bin\pg_ctl.exe [95232 2020-06-12] (PostgreSQL Global Development Group) [Fichier non signé] S4 WAPTServer; c:\wapt\waptservice\win64\nssm.exe [374976 2020-06-12] (TRANQUIL I.T. SYSTEMS -> Iain Patterson) S4 WAPTService; c:\wapt\waptservice\win64\nssm.exe [374976 2020-06-12] (TRANQUIL I.T. SYSTEMS -> Iain Patterson) S4 WAPTTasks; c:\wapt\waptservice\win64\nssm.exe [374976 2020-06-12] (TRANQUIL I.T. SYSTEMS -> Iain Patterson) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-09-05] (Microsoft Corporation -> Microsoft Corporation) R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-12-10] (Wondershare Technology Co.,Ltd -> Wondershare) S2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Addins\Repair\DriverInstall.exe [124304 2020-12-22] (Wondershare Technology Co.,Ltd -> Wondershare) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 BadlionAnticheat; C:\WINDOWS\system32\drivers\BadlionAnticheat.sys [2506784 2020-12-08] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 bcmfn; C:\WINDOWS\System32\drivers\bcmfn.sys [9728 2015-10-30] (Microsoft Windows -> Windows (R) Win 7 DDK provider) S0 cmdboot; C:\WINDOWS\System32\drivers\cmdboot.sys [17944 2018-07-13] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO) R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [10752 2013-01-24] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.) R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET) R3 guardian2; C:\WINDOWS\System32\Drivers\oz776x64.sys [99496 2020-12-07] (BayHub Technology Inc. -> O2Micro) R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2w7x64.sys [208312 2020-12-07] (O2Micro -> O2Micro) R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit) R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics) R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [551936 2020-12-07] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2020-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 VBAudioVACMME; C:\WINDOWS\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2020-07-31] (Vincent Burel -> Windows (R) Win 7 DDK provider) S3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [239432 2020-10-16] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249344 2020-10-16] (Oracle Corporation -> Oracle Corporation) S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [174536 2020-10-16] (Oracle Corporation -> Oracle Corporation) S3 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [66368 2019-11-04] (VMware, Inc. -> VMware, Inc.) S3 vmparport; C:\WINDOWS\system32\DRIVERS\vmparport.sys [49216 2019-11-04] (VMware, Inc. -> VMware, Inc.) S3 vsock; C:\WINDOWS\system32\DRIVERS\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-x64.sys [52576 2018-02-28] (VMware, Inc. -> VMware, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2020-12-06] (NGO -> MBB) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-12-30 01:55 - 2020-12-30 01:55 - 000468067 _____ C:\Users\User\Desktop\ZHPDiag.html 2020-12-30 01:55 - 2020-12-30 01:55 - 000381835 _____ C:\Users\User\Desktop\ZHPDiag.txt 2020-12-30 01:44 - 2020-12-30 01:45 - 003479936 _____ (Nicolas Coolman) C:\Users\User\ZHPSuite.exe 2020-12-30 01:44 - 2020-12-30 01:45 - 000000764 _____ C:\Users\User\Desktop\ZHPSuite.lnk 2020-12-30 01:28 - 2020-12-30 01:30 - 003479936 _____ (Nicolas Coolman) C:\Users\User\Desktop\ZHPSuite.exe 2020-12-30 00:30 - 2020-12-30 00:38 - 732336128 _____ C:\Users\User\Downloads\ubuntu-6.06.1-desktop-i386.iso 2020-12-30 00:03 - 2020-12-30 00:11 - 548175872 _____ C:\Users\User\Downloads\warty-release-install-i386.iso 2020-12-29 22:11 - 2020-12-29 22:11 - 000000000 ____D C:\Users\User\AppData\LocalLow\Google 2020-12-29 22:10 - 2020-12-29 22:10 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk 2020-12-29 22:10 - 2020-12-29 22:10 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk 2020-12-29 21:59 - 2020-12-29 21:59 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TouchPad 2020-12-29 16:00 - 2020-12-29 16:00 - 000017458 _____ C:\Users\User\Downloads\serial.rar 2020-12-29 02:04 - 2020-12-29 02:04 - 001156152 _____ (Akeo Consulting) C:\Users\User\Downloads\rufus-3.13.exe 2020-12-29 01:30 - 2020-12-29 01:30 - 000860391 _____ C:\Users\User\Downloads\4.5.7_7z457.exe 2020-12-29 01:29 - 2020-12-29 01:29 - 000602282 _____ C:\Users\User\Downloads\winrar271.exe 2020-12-29 00:42 - 2020-12-29 00:49 - 424192311 _____ C:\Users\User\Downloads\MSOffice97.zip 2020-12-29 00:42 - 2020-12-29 00:42 - 000001678 _____ C:\Users\User\Downloads\DisplayPatch98.zip 2020-12-29 00:41 - 2020-12-29 00:49 - 576584234 _____ C:\Users\User\Downloads\Windows 98.zip 2020-12-29 00:10 - 2020-12-29 00:11 - 043493600 _____ C:\Users\User\Downloads\mozilla-firefox-45-0-1.exe 2020-12-28 23:52 - 2020-12-30 01:23 - 000000000 ____D C:\Users\User\Downloads\Windows Me 2020-12-28 23:15 - 2020-12-28 23:25 - 467694433 _____ C:\Users\User\Downloads\Microsoft Windows Me [VMware VM].7z 2020-12-28 23:15 - 2020-12-28 23:19 - 342471420 _____ C:\Users\User\Downloads\Windows ME 4.90.3000 [FR] (OEM).7z 2020-12-28 21:58 - 2020-12-30 01:23 - 000000000 ____D C:\Users\User\VirtualBox VMs 2020-12-28 21:43 - 2020-12-28 21:57 - 3167797248 _____ C:\Users\User\Downloads\2020-12-11-raspios-buster-i386.iso 2020-12-28 17:29 - 2020-12-28 17:30 - 000000000 ____D C:\ProgramData\IObit 2020-12-28 17:29 - 2020-12-28 17:29 - 000003244 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_AutoAnalyze 2020-12-28 17:29 - 2020-12-28 17:29 - 000003084 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_Startup 2020-12-28 17:29 - 2020-12-28 17:29 - 000003084 _____ C:\WINDOWS\system32\Tasks\IObitSelfCheckTask 2020-12-28 17:29 - 2020-12-28 17:29 - 000003080 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_Update 2020-12-28 17:29 - 2020-12-28 17:29 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled 2020-12-28 17:29 - 2020-12-28 17:29 - 000000000 ____D C:\Users\User\AppData\Roaming\IObit 2020-12-28 17:29 - 2020-12-28 17:29 - 000000000 ____D C:\Users\User\AppData\LocalLow\IObit 2020-12-28 17:29 - 2020-12-28 17:29 - 000000000 ____D C:\ProgramData\ProductData 2020-12-28 17:29 - 2020-12-28 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2020-12-28 17:29 - 2020-12-28 17:29 - 000000000 ____D C:\Program Files (x86)\IObit 2020-12-28 17:29 - 2019-09-12 09:59 - 000178960 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll 2020-12-28 17:29 - 2017-03-09 13:53 - 000030744 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys 2020-12-28 17:29 - 2016-03-22 11:02 - 000036824 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe 2020-12-28 17:28 - 2020-12-28 17:29 - 015949504 _____ (IObit ) C:\Users\User\Downloads\smart-defrag-setup.exe 2020-12-28 16:04 - 2020-12-28 16:04 - 000000000 ____D C:\Users\User\Downloads\DRIVER 2020-12-28 15:59 - 2020-12-28 16:02 - 000018013 _____ C:\Users\User\Downloads\Network_Driver_3MNPT_WN_15.10.0.10_A06.zip 2020-12-28 15:07 - 2020-12-28 15:08 - 093984806 _____ C:\Users\User\Downloads\ApowerManager_3.2.9.1_Full_Version_-_HaxPC.net.rar 2020-12-28 14:57 - 2020-12-28 14:58 - 083341344 _____ C:\Users\User\Downloads\Apowerr mirror By Technical Fadi.rar 2020-12-28 14:52 - 2020-12-28 14:52 - 000000000 ____D C:\.android 2020-12-28 14:51 - 2020-12-28 15:13 - 000000000 ____D C:\Users\User\Documents\Apowersoft 2020-12-28 14:51 - 2020-12-28 14:51 - 000000016 _____ C:\ProgramData\mntemp 2020-12-28 14:51 - 2020-12-28 14:51 - 000000000 ____D C:\Users\User\AppData\Roaming\MobileBackupForeverIni 2020-12-28 14:51 - 2020-12-28 14:51 - 000000000 ____D C:\Users\User\AppData\Local\DrFoneVirtualLocation 2020-12-28 14:49 - 2020-12-28 15:13 - 000000000 ____D C:\Users\User\AppData\Roaming\Apowersoft 2020-12-28 14:49 - 2020-12-28 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft 2020-12-28 14:48 - 2020-12-28 15:01 - 000000000 ____D C:\Program Files (x86)\Apowersoft 2020-12-28 14:48 - 2020-12-28 14:51 - 000000000 ____D C:\Users\User\Documents\Wondershare 2020-12-28 14:48 - 2020-12-28 14:48 - 001920032 _____ (Apowersoft) C:\Users\User\Downloads\apowermanager-setup.exe 2020-12-28 14:48 - 2020-12-28 14:48 - 000000000 ____D C:\Users\User\AppData\Roaming\HYXDevPsnList 2020-12-28 14:48 - 2020-12-28 14:48 - 000000000 ____D C:\Users\User\AppData\Roaming\dr.extra.config 2020-12-28 14:45 - 2020-12-28 14:48 - 000000000 ____D C:\Users\User\AppData\Roaming\Wondershare 2020-12-28 14:03 - 2020-12-28 14:05 - 620910592 _____ C:\Users\User\Downloads\fr_windows_xp_professional_with_service_pack_3_x86_cd_x14-80440.iso 2020-12-28 13:41 - 2020-12-28 13:41 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mauronofrio 2020-12-28 13:41 - 2020-12-28 13:41 - 000000000 ____D C:\Users\User\AppData\Local\Deployment 2020-12-28 13:41 - 2020-12-28 13:41 - 000000000 ____D C:\Users\User\AppData\Local\Apps\2.0 2020-12-28 13:40 - 2020-12-28 13:40 - 003269317 _____ C:\Users\User\Downloads\TOOL_ALL_IN_ONE_1.0.6.1.zip 2020-12-28 12:57 - 2020-12-28 12:59 - 022270017 _____ C:\Users\User\Downloads\TOOL_ALL_IN_ONE_1.1.1.6-NO-INSTALLER.zip 2020-12-28 11:24 - 2020-12-28 11:36 - 3231633408 _____ C:\Users\User\Downloads\Win8.1_French_x32.iso 2020-12-28 10:46 - 2020-12-28 10:51 - 1354811392 _____ C:\Users\User\Downloads\HBCD_PE_x64.iso 2020-12-28 01:46 - 2020-12-28 01:48 - 126850970 _____ C:\Users\User\Downloads\ReactOS-0.4.13-iso.zip 2020-12-28 01:45 - 2020-12-28 01:46 - 095362688 _____ C:\Users\User\Downloads\ReactOS-0.4.13-live.zip 2020-12-28 01:02 - 2020-12-28 01:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2020-12-28 01:02 - 2020-12-28 01:02 - 000000000 ____D C:\ProgramData\ESET 2020-12-28 01:02 - 2020-12-28 01:02 - 000000000 ____D C:\Program Files\ESET 2020-12-28 00:51 - 2020-12-28 00:51 - 006341552 _____ (ESET) C:\Users\User\Downloads\eset_internet_security_live_installer.exe 2020-12-28 00:36 - 2020-12-29 15:44 - 000000000 ____D C:\Users\User\Documents\Virtual Machines 2020-12-28 00:09 - 2020-12-28 00:09 - 000000848 _____ C:\Users\User\Desktop\FlashBoot.lnk 2020-12-28 00:09 - 2020-12-28 00:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashBoot 2020-12-28 00:09 - 2020-12-28 00:09 - 000000000 ____D C:\Program Files\FlashBoot 2020-12-28 00:08 - 2020-12-28 00:09 - 051420351 _____ (Mikhail Kupchik ) C:\Users\User\Downloads\flashboot-3.3e-setup.exe 2020-12-27 23:46 - 2020-12-27 23:57 - 3763959808 _____ C:\Users\User\Downloads\fr_windows_vista_sp2_x64_dvd_342277.iso 2020-12-27 22:37 - 2020-12-27 22:37 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TransMac 2020-12-27 22:37 - 2020-12-27 22:37 - 000000000 ____D C:\Users\User\AppData\Local\TransMac 2020-12-27 22:37 - 2020-12-27 22:37 - 000000000 ____D C:\Program Files (x86)\TransMac 2020-12-27 22:31 - 2020-12-27 22:34 - 002189712 _____ C:\Users\User\Downloads\tmsetup.zip 2020-12-27 22:27 - 2020-12-27 22:27 - 000127242 _____ C:\Users\User\Downloads\Hackintosh Big Sur Installer.zip 2020-12-27 22:27 - 2020-12-27 22:27 - 000001948 _____ C:\Users\User\Downloads\Readme.zip 2020-12-27 21:02 - 2020-12-27 21:02 - 000000000 ____H C:\Users\User\Documents\Default.rdp 2020-12-27 20:17 - 2020-12-27 20:17 - 000366944 _____ C:\Users\User\Downloads\Android Multi Tools v1.02b.zip 2020-12-27 20:16 - 2020-12-27 20:17 - 000000000 _____ C:\Users\User\Downloads\Android Multi Tools v1.02b allmobitools.com.zip 2020-12-27 20:07 - 2018-07-13 00:12 - 000017944 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdboot.sys 2020-12-27 19:31 - 2020-12-27 19:31 - 000000000 ____D C:\ProgramData\WsAppHelper 2020-12-27 19:11 - 2020-12-27 19:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-12-27 18:34 - 2020-12-27 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2020-12-27 18:33 - 2020-12-28 16:17 - 000000000 ____D C:\ProgramData\Wondershare 2020-12-27 18:33 - 2020-12-28 14:43 - 000000000 ____D C:\Program Files (x86)\Wondershare 2020-12-27 18:32 - 2020-12-28 14:45 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2020-12-27 18:32 - 2020-12-28 14:45 - 000000000 ____D C:\ProgramData\Documents\Wondershare 2020-12-27 18:31 - 2020-12-27 18:31 - 001000552 _____ C:\Users\User\Downloads\drfone_setup_full3438.exe 2020-12-27 16:50 - 2020-12-27 16:51 - 080662265 _____ C:\Users\User\Downloads\MiFlash20181115.zip 2020-12-27 16:14 - 2020-12-27 16:19 - 1809870117 _____ C:\Users\User\Downloads\RROS-Q-8.6.4-arm64-bgs-lancelot.7z 2020-12-27 15:26 - 2020-12-27 15:27 - 056331533 _____ C:\Users\User\Downloads\PBRP-lancelot-3.0.0-20200916-1313-UNOFFICIAL.zip 2020-12-27 15:17 - 2017-05-03 11:29 - 009614711 _____ (Snoop05) C:\Users\User\Desktop\adb-setup-1.4.3.exe 2020-12-27 15:14 - 2020-12-27 15:15 - 039327655 _____ C:\Users\User\Downloads\ROOT REDMI 9 11 0 8 E.rar 2020-12-27 14:52 - 2020-12-27 14:53 - 009324345 _____ C:\Users\User\Downloads\adb-setup-1.4.3(1).zip 2020-12-27 14:51 - 2020-12-27 14:33 - 1932402944 _____ C:\Users\User\Desktop\Havoc-OS-v3.8-20200821-Official-arm64-ab.img 2020-12-27 14:31 - 2020-12-27 14:33 - 559451136 _____ C:\Users\User\Downloads\Havoc-OS-v3.8-20200821-Official-arm64-ab.img.xz 2020-12-27 14:10 - 2020-12-27 14:15 - 1071237492 _____ C:\Users\User\Downloads\Havoc-OS-v3.8-20200821-Official-GApps-arm64-ab.img.xz 2020-12-27 13:59 - 2020-12-27 13:59 - 067108864 _____ C:\Users\User\Downloads\boot (11.0.8).img 2020-12-27 13:59 - 2020-12-27 13:59 - 006135789 _____ C:\Users\User\Downloads\Magisk-v21.1.zip 2020-12-27 13:59 - 2020-12-27 13:59 - 000004096 _____ C:\Users\User\Downloads\vbmeta_redmi9(1).img 2020-12-27 13:25 - 2020-12-27 13:25 - 000305252 _____ C:\Users\User\Downloads\Win64.NukeSped.zip 2020-12-27 13:20 - 2020-12-27 13:20 - 000836230 _____ C:\Users\User\Downloads\ytisf-theZoo-7bff252.zip 2020-12-27 13:11 - 2020-12-27 13:18 - 002402668 _____ C:\Users\User\Downloads\Ransomware.Wannacry_Plus.zip 2020-12-26 16:15 - 2020-12-26 16:15 - 000000000 ____D C:\Program Files\IDT 2020-12-26 16:15 - 2020-12-26 16:14 - 001897984 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl 2020-12-26 16:15 - 2013-08-16 11:21 - 006101504 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll 2020-12-26 16:15 - 2013-08-16 11:21 - 002213376 _____ (IDT, Inc.) C:\WINDOWS\system32\stapo64.dll 2020-12-26 16:15 - 2013-08-16 11:21 - 000697856 ____N (IDT, Inc.) C:\WINDOWS\system32\stapi64.dll 2020-12-26 16:14 - 2020-12-26 16:14 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2020-12-26 16:13 - 2020-12-26 16:14 - 027787973 _____ C:\Users\User\Downloads\3330_Audio_Driver_C6HVR_WN_1.0.6491.0_A08.zip 2020-12-25 21:32 - 2020-12-25 21:32 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics 2020-12-25 21:23 - 2020-12-25 21:29 - 000000000 ____D C:\Users\User\Documents\Test 2020-12-25 21:22 - 2020-12-25 21:22 - 000000000 ____D C:\Users\User\Documents\Programme by my 2020-12-25 21:17 - 2020-12-25 21:17 - 000000000 ____D C:\Users\User\Documents\SkidRow 2020-12-25 21:17 - 2020-12-25 21:17 - 000000000 ____D C:\Users\User\Documents\My Games 2020-12-25 00:19 - 2020-12-25 00:21 - 000003970 _____ C:\Users\User\Downloads\OCCT.config.json 2020-12-25 00:05 - 2020-12-25 00:05 - 017957104 _____ (OCCT - Ocbase - Adrien Mercier) C:\Users\User\Downloads\OCCT7.2.1.exe 2020-12-24 23:59 - 2020-12-24 23:59 - 000000000 ____D C:\Users\User\Downloads\MediCat USB v20.12 2020-12-24 23:58 - 2020-12-24 23:58 - 000151981 _____ C:\Users\User\Downloads\MediCat USB v20.12.torrent 2020-12-24 23:50 - 2020-12-24 23:50 - 000002475 _____ C:\Users\User\AppData\Local\Perfmon.PerfmonCfg 2020-12-24 23:49 - 2020-12-24 23:49 - 000000017 _____ C:\Users\User\AppData\Local\resmon.resmoncfg 2020-12-24 15:23 - 2020-12-24 15:23 - 000001017 _____ C:\Users\User\AppData\Roaming\AdobeWLCMR2Cache.dat 2020-12-24 15:23 - 2020-12-24 15:23 - 000000000 ____D C:\Users\User\.java 2020-12-24 15:17 - 2020-12-24 15:17 - 000000000 ____D C:\Users\User\AppData\Roaming\.az-client 2020-12-24 15:15 - 2020-12-24 15:15 - 000000901 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AZ Launcher - Minecraft.lnk 2020-12-24 15:14 - 2020-12-24 15:15 - 000000000 ____D C:\Program Files\AZ-Launcher 2020-12-24 15:14 - 2020-12-24 15:14 - 001799999 _____ ( ) C:\Users\User\Downloads\AZ-Launcher_Installer.exe 2020-12-24 14:56 - 2020-12-24 15:00 - 000000000 ____D C:\Users\User\AppData\Roaming\.tlauncher 2020-12-24 14:55 - 2020-12-24 14:55 - 017115424 _____ (TLauncher Inc.) C:\Users\User\Downloads\TLauncher-2.75-Installer-0.6.9.exe 2020-12-24 14:38 - 2020-12-24 14:38 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices 2020-12-24 14:38 - 2020-12-24 14:38 - 000000000 ____D C:\WINDOWS\system32\BestPractices 2020-12-24 13:51 - 2020-12-24 13:51 - 042112247 _____ C:\Users\User\Downloads\Magisk Manager Patched Images-20201224T125058Z-001.zip 2020-12-24 13:41 - 2020-12-24 13:42 - 039324973 _____ C:\Users\User\Downloads\ROOT REDMI 9 11.0.7.rar 2020-12-24 13:28 - 2020-12-24 13:28 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2020-12-24 13:24 - 2020-12-24 13:24 - 009324204 _____ C:\Users\User\Downloads\adb-setup-1.4.3.zip 2020-12-24 13:23 - 2020-12-24 13:23 - 034783232 _____ C:\Users\User\Downloads\Twrp_DI_Lancelot.img 2020-12-24 13:23 - 2020-12-24 13:23 - 000004096 _____ C:\Users\User\Downloads\vbmeta_redmi9.img 2020-12-24 13:12 - 2020-12-24 13:13 - 017060864 _____ C:\Users\User\Downloads\UniversalAdbDriverSetup.msi 2020-12-24 13:10 - 2020-12-24 13:10 - 031161349 _____ C:\Users\User\Downloads\341 redmi 9 LANCELOT(2).rar 2020-12-24 12:42 - 2020-12-24 14:44 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-12-24 12:10 - 2020-12-24 12:24 - 009275065 _____ C:\Users\User\Downloads\how-to-install-custom-recovery-in-xiaomi-redmi-9-lancelotany-android-device.mp4 2020-12-24 11:54 - 2020-12-24 11:54 - 031161349 _____ C:\Users\User\Downloads\341 redmi 9 LANCELOT.rar 2020-12-24 11:48 - 2020-12-24 11:48 - 030747820 _____ C:\Users\User\Downloads\3.4.2 Redmi 9 CN EN.rar 2020-12-24 11:26 - 2020-12-24 11:26 - 031161349 _____ C:\Users\User\Downloads\341 redmi 9 LANCELOT(1).rar 2020-12-24 11:21 - 2017-09-05 06:12 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp 2020-12-24 11:21 - 2016-03-29 07:27 - 000162816 _____ C:\WINDOWS\SysWOW64\MTF.dll 2020-12-24 11:20 - 2017-09-05 08:19 - 001862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2020-12-24 11:20 - 2017-07-29 04:22 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll 2020-12-24 11:20 - 2017-06-03 12:14 - 000316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2020-12-24 11:20 - 2017-03-04 06:15 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb 2020-12-24 11:20 - 2016-04-18 23:30 - 000002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml 2020-12-24 11:19 - 2017-09-05 05:51 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2020-12-24 11:19 - 2017-06-03 11:31 - 000037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2020-12-24 11:19 - 2016-10-25 06:50 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2020-12-24 11:18 - 2016-10-25 06:32 - 000738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2020-12-24 11:18 - 2016-09-07 05:28 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl 2020-12-24 11:16 - 2017-03-04 06:59 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb 2020-12-24 11:16 - 2017-03-04 06:31 - 000185856 _____ C:\WINDOWS\system32\ism32k.dll 2020-12-24 11:16 - 2016-03-29 08:00 - 000235008 _____ C:\WINDOWS\system32\MTF.dll 2020-12-24 11:15 - 2017-09-05 06:56 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2020-12-24 11:15 - 2017-06-03 14:31 - 000989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-12-24 11:13 - 2017-09-05 07:23 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp 2020-12-24 11:13 - 2016-10-25 03:19 - 000775336 _____ C:\WINDOWS\SysWOW64\locale.nls 2020-12-24 11:13 - 2016-10-25 03:19 - 000775336 _____ C:\WINDOWS\system32\locale.nls 2020-12-24 11:12 - 2017-09-05 10:31 - 002656960 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2020-12-24 11:12 - 2017-06-11 16:10 - 000448629 _____ C:\WINDOWS\system32\ApnDatabase.xml 2020-12-24 11:12 - 2017-04-28 03:15 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2020-12-24 11:12 - 2017-04-28 02:32 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2020-12-24 11:11 - 2016-10-25 05:53 - 000583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2020-12-24 11:11 - 2016-10-25 05:29 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2020-12-24 11:10 - 2017-09-05 06:48 - 002129920 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2020-12-24 11:10 - 2017-09-05 05:45 - 002051584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2020-12-24 11:10 - 2016-04-23 03:10 - 000002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml 2020-12-24 11:09 - 2017-06-03 13:12 - 000379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2020-12-24 11:09 - 2016-09-07 05:32 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl 2020-12-24 11:08 - 2017-06-03 12:39 - 000045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2020-12-24 11:07 - 2017-09-05 10:34 - 001030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-12-24 11:07 - 2017-04-28 05:30 - 001317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-12-24 11:07 - 2017-03-04 06:03 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2020-12-24 11:07 - 2016-10-25 07:58 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2020-12-24 10:58 - 2020-12-24 11:03 - 000000000 ____D C:\Users\User\Downloads\miflash_unlock-en-4.5.813.51(1) 2020-12-24 10:57 - 2020-12-24 10:57 - 050423290 _____ C:\Users\User\Downloads\miflash_unlock-en-4.5.813.51(1).zip 2020-12-23 23:34 - 2020-12-23 23:34 - 000619092 _____ C:\Users\User\Downloads\MyCraft.exe 2020-12-23 23:34 - 2020-12-23 23:34 - 000000000 ____D C:\Users\User\AppData\Roaming\.mycraft 2020-12-23 23:25 - 2020-12-24 15:12 - 000000000 ____D C:\Users\User\AppData\Roaming\.minecraft 2020-12-23 23:23 - 2020-12-23 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 2020-12-23 23:02 - 2020-12-23 23:04 - 000000000 ____D C:\Users\User\.lunarclient 2020-12-23 23:02 - 2020-12-23 23:03 - 000000000 ____D C:\Users\User\AppData\Roaming\lunarclient 2020-12-23 23:02 - 2020-12-23 23:02 - 000755728 _____ (Moonsworth, LLC) C:\Users\User\Downloads\Lunar Client v2.4.0.exe 2020-12-23 23:02 - 2020-12-23 23:02 - 000002345 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lunar Client.lnk 2020-12-23 23:02 - 2020-12-23 23:02 - 000000000 ____D C:\Users\User\AppData\Local\lunarclient-updater 2020-12-23 22:24 - 2020-12-23 22:24 - 000000000 ____D C:\Users\User\AppData\Local\TempCheckUpdate 2020-12-23 22:07 - 2020-12-23 22:07 - 000000000 ____D C:\4c4f18a52605f1dff4bc6558f8 2020-12-23 22:04 - 2020-12-23 22:05 - 008447152 _____ (Malwarebytes) C:\Users\User\Downloads\adwcleaner_8.0.8.exe 2020-12-23 21:48 - 2020-12-23 21:48 - 000000000 ____D C:\Users\User\AppData\Local\ActiveSync 2020-12-23 21:37 - 2020-12-23 21:37 - 000000020 ___SH C:\Users\User\ntuser.ini 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\Modèles 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\Mes documents 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\Documents\Mes images 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\Voisinage réseau 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\Voisinage d'impression 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\Modèles 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\Mes documents 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\Menu Démarrer 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\Documents\Mes vidéos 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\Documents\Mes images 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\Documents\Ma musique 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2020-12-23 21:07 - 2020-12-23 21:07 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historique 2020-12-23 20:52 - 2020-12-23 20:52 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2020-12-23 20:46 - 2020-12-23 20:53 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\Voisinage réseau 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\Voisinage d'impression 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\Modèles 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\Mes documents 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\Menu Démarrer 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\Documents\Mes vidéos 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\Documents\Mes images 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\Documents\Ma musique 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2020-12-23 20:43 - 2020-12-23 20:43 - 000000000 _SHDL C:\Users\User\AppData\Local\Historique 2020-12-23 20:42 - 2020-12-23 20:58 - 000000000 ____D C:\Users\DELL ADMIN CENTER 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\Voisinage réseau 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\Voisinage d'impression 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\Modèles 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\Mes documents 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\Menu Démarrer 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\Documents\Mes vidéos 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\Documents\Mes images 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\Documents\Ma musique 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2020-12-23 20:42 - 2020-12-23 20:42 - 000000000 _SHDL C:\Users\DELL ADMIN CENTER\AppData\Local\Historique 2020-12-23 20:39 - 2020-12-23 20:39 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf 2020-12-23 20:38 - 2020-12-24 13:30 - 000000000 ____D C:\Program Files\DIFX 2020-12-23 20:38 - 2020-12-23 20:39 - 000000000 ____D C:\Program Files\DellTPad 2020-12-23 20:38 - 2020-12-23 20:38 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ST_Accel_01011.Wdf 2020-12-23 20:38 - 2020-12-23 20:38 - 000000000 ____D C:\Program Files\STMicroelectronics 2020-12-23 20:38 - 2020-12-23 20:38 - 000000000 ____D C:\Program Files\Intel 2020-12-23 20:38 - 2016-06-15 11:32 - 000072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2020-12-23 20:38 - 2015-01-09 10:25 - 000023216 _____ (ST Microelectronics) C:\WINDOWS\system32\Drivers\stdcfltn.sys 2020-12-23 20:08 - 2020-12-29 17:14 - 000000000 ___DC C:\WINDOWS\Panther 2020-12-23 20:05 - 2020-12-24 17:30 - 000000000 ____D C:\Windows.old 2020-12-23 20:04 - 2020-12-23 20:04 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2020-12-23 20:02 - 2020-12-23 20:48 - 000000000 ____D C:\Program Files (x86)\MSBuild 2020-12-23 20:02 - 2020-12-23 20:02 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2020-12-23 20:02 - 2020-12-23 20:02 - 000000000 ____D C:\Program Files\Reference Assemblies 2020-12-23 20:02 - 2020-12-23 20:02 - 000000000 ____D C:\Program Files\MSBuild 2020-12-23 20:02 - 2020-12-23 20:02 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2020-12-23 18:02 - 2020-12-23 18:12 - 167182336 _____ C:\Users\User\Downloads\Win10_1511_2_French_x64.iso 2020-12-23 17:59 - 2020-12-23 18:03 - 2493845504 _____ C:\Users\User\Downloads\fr_windows_7_starter_with_sp1_x86_dvd_u_678275.iso 2020-12-23 16:09 - 2020-12-23 16:09 - 000000000 ____D C:\Users\User\Downloads\MAC_OSX_10-6-2_VMWARE_7 2020-12-23 16:08 - 2020-12-27 22:28 - 000000000 ____D C:\Users\User\AppData\Local\BitTorrentHelper 2020-12-23 16:06 - 2020-12-28 02:09 - 000000000 ____D C:\Users\User\AppData\Roaming\uTorrent 2020-12-23 16:06 - 2020-12-23 16:06 - 005152472 _____ (BitTorrent Inc.) C:\Users\User\Downloads\uTorrent.exe 2020-12-23 16:06 - 2020-12-23 16:06 - 000000895 _____ C:\Users\User\Desktop\µTorrent.lnk 2020-12-23 16:06 - 2020-12-23 16:06 - 000000875 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2020-12-23 16:05 - 2020-12-23 16:05 - 000015018 _____ C:\Users\User\Downloads\MacOSX_Snow_leopard_10.6.2.0_for_VmWare_(2010)-included.5542199.TPB.torrent 2020-12-23 15:53 - 2019-11-04 19:56 - 000100368 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmx86.sys 2020-12-23 15:53 - 2019-11-04 19:56 - 000049216 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmparport.sys 2020-12-23 15:53 - 2019-08-14 01:36 - 000103224 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vsock.sys 2020-12-23 15:53 - 2019-08-14 01:36 - 000046392 _____ (VMware, Inc.) C:\WINDOWS\system32\vsocklib.dll 2020-12-23 15:53 - 2019-08-14 01:36 - 000042296 _____ (VMware, Inc.) C:\WINDOWS\SysWOW64\vsocklib.dll 2020-12-23 15:52 - 2019-11-04 20:04 - 001271728 _____ (VMware, Inc.) C:\WINDOWS\system32\vnetlib64.dll 2020-12-23 15:52 - 2019-11-04 20:04 - 000399280 _____ (VMware, Inc.) C:\WINDOWS\SysWOW64\vmnat.exe 2020-12-23 15:52 - 2019-11-04 20:04 - 000370096 _____ (VMware, Inc.) C:\WINDOWS\SysWOW64\vmnetdhcp.exe 2020-12-23 15:52 - 2019-11-04 20:03 - 000043840 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmnetuserif.sys 2020-12-23 15:52 - 2019-08-21 08:12 - 000083984 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\hcmon.sys 2020-12-23 15:51 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware 2020-12-23 15:50 - 2020-12-23 15:50 - 000000000 ____D C:\Users\Public\Documents\Shared Virtual Machines 2020-12-23 15:50 - 2020-12-23 15:50 - 000000000 ____D C:\ProgramData\Documents\Shared Virtual Machines 2020-12-23 15:50 - 2020-12-23 15:50 - 000000000 ____D C:\Program Files\Common Files\VMware 2020-12-23 15:48 - 2020-12-23 15:48 - 013491551 _____ C:\Users\User\Downloads\Unlocker For VMware by Geekrar.rar 2020-12-23 15:28 - 2020-12-23 15:28 - 000000000 ____D C:\Users\User\AppData\Roaming\Mael Horz 2020-12-23 15:26 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HxD Hex Editor 2020-12-23 15:26 - 2020-12-23 15:26 - 000000000 ____D C:\Program Files\HxD 2020-12-23 15:24 - 2020-12-23 15:24 - 000031744 _____ (Coder for Life (www.coderforlife.com)) C:\Users\User\Downloads\signer64(1).exe 2020-12-23 15:05 - 2020-12-23 15:34 - 000000000 ____D C:\Users\User\AppData\Roaming\TechSmith 2020-12-23 15:05 - 2020-12-23 15:05 - 000000000 ____D C:\Users\User\AppData\Local\TechSmith 2020-12-23 15:03 - 2020-12-23 15:03 - 000000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2020-12-23 15:02 - 2020-12-23 15:02 - 000016148 _____ C:\WINDOWS\system32\USER-PC_DELL ADMIN CENTER_HistoryPrediction.bin 2020-12-23 14:33 - 2020-12-23 14:34 - 000000290 _____ C:\Users\DELL ADMIN CENTER\Desktop\Nouveau document texte.txt 2020-12-23 14:28 - 2020-12-23 14:29 - 000000000 ____D C:\Users\DELL ADMIN CENTER\Desktop\unlocker208 2020-12-23 14:27 - 2020-12-23 14:39 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\VMware 2020-12-23 14:27 - 2020-12-23 14:39 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\VMware 2020-12-23 14:26 - 2020-12-23 14:27 - 000000000 ____D C:\Users\DELL ADMIN CENTER\Desktop\AppNee.com.Mac.OS.X.Unlocker.for.VMware.v3.0.2 2020-12-23 14:01 - 2020-12-23 14:01 - 000063836 _____ C:\Users\DELL ADMIN CENTER\Downloads\OSX-Mavericks.iso_.torrent 2020-12-23 13:29 - 2020-12-23 14:42 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\BitTorrentHelper 2020-12-23 13:28 - 2020-12-23 14:42 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\uTorrent 2020-12-23 13:28 - 2020-12-23 14:02 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\LocalLow\uTorrent 2020-12-23 13:28 - 2020-12-23 13:28 - 000000908 _____ C:\Users\DELL ADMIN CENTER\Desktop\µTorrent.lnk 2020-12-23 13:28 - 2020-12-23 13:28 - 000000888 _____ C:\Users\DELL ADMIN CENTER\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2020-12-23 13:25 - 2020-12-23 13:25 - 000033380 _____ C:\Users\DELL ADMIN CENTER\Downloads\MacOSX10.9MavericksVMWareImage_archive.torrent 2020-12-22 23:13 - 2020-12-22 23:13 - 002844048 _____ (Kaspersky) C:\Users\DELL ADMIN CENTER\Downloads\ks4.021.2.16.590fr_24936(1).exe 2020-12-22 23:13 - 2020-12-22 23:13 - 002843992 _____ (Kaspersky) C:\Users\DELL ADMIN CENTER\Downloads\ks4.021.2.16.590fr_24936.exe 2020-12-22 21:44 - 2020-12-22 21:44 - 045626280 _____ (Mozilla) C:\Users\DELL ADMIN CENTER\Downloads\Firefox52esr.exe 2020-12-22 21:14 - 2020-12-22 21:15 - 620910592 _____ C:\Users\DELL ADMIN CENTER\Downloads\fr_windows_xp_professional_with_service_pack_3_x86_cd_x14-80440.iso 2020-12-22 20:41 - 2020-12-22 20:46 - 693108736 _____ C:\Users\DELL ADMIN CENTER\Downloads\WinXP_Corporate_SP3_FR.iso 2020-12-22 20:40 - 2020-12-22 20:48 - 721319936 _____ C:\Users\DELL ADMIN CENTER\Downloads\Gold_Windows_XP_SP3_2016_Drivers_v2.0.iso 2020-12-22 18:13 - 2020-12-22 18:13 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\TempCheckUpdate 2020-12-22 18:12 - 2020-12-22 18:12 - 007295464 _____ (HeiDoc V.O.F.) C:\Users\DELL ADMIN CENTER\Desktop\Fixed.Windows-ISO-Downloader.exe 2020-12-22 18:12 - 2020-12-22 18:12 - 000002367 _____ C:\Users\DELL ADMIN CENTER\Desktop\Fixed.Microsoft Edge.lnk 2020-12-22 18:12 - 2020-12-22 18:12 - 000002287 _____ C:\Users\DELL ADMIN CENTER\Desktop\Fixed.Discord.lnk 2020-12-22 18:12 - 2020-12-22 18:12 - 000000402 _____ C:\Users\DELL ADMIN CENTER\Documents\Fixed.desktop.ini 2020-12-22 18:12 - 2020-12-22 18:12 - 000000282 _____ C:\Users\DELL ADMIN CENTER\Desktop\Fixed.desktop.ini 2020-12-22 18:12 - 2020-12-22 18:12 - 000000278 _____ C:\Users\Public\Documents\Fixed.desktop.ini 2020-12-22 18:12 - 2020-12-22 18:12 - 000000278 _____ C:\ProgramData\Documents\Fixed.desktop.ini 2020-12-22 18:10 - 2020-12-22 18:10 - 004883746 _____ C:\Users\DELL ADMIN CENTER\Downloads\ransomware builder_pack(1).rar 2020-12-22 18:08 - 2020-12-22 18:08 - 000032776 _____ C:\Users\DELL ADMIN CENTER\AppData\Local\Lock.IconCache.db 2020-12-22 18:02 - 2020-12-22 18:02 - 004883746 _____ C:\Users\DELL ADMIN CENTER\Downloads\ransomware builder_pack.rar 2020-12-22 17:24 - 2020-12-22 17:24 - 000000000 ____D C:\Users\DELL ADMIN CENTER\Desktop\Snagit-202102-Crack-With-License-Key-Free-Download-2021 2020-12-22 17:23 - 2020-12-22 17:23 - 001538936 _____ C:\Users\DELL ADMIN CENTER\Downloads\5fe21d8ab2d4c__Snagit-202102-Crack-With-License-Key-Free-Download-2021.zip 2020-12-22 17:20 - 2020-12-22 17:20 - 000000000 ____D C:\Users\DELL ADMIN CENTER\Documents\Snagit 2020-12-22 17:17 - 2020-12-22 17:20 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\TechSmith 2020-12-22 17:13 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith 2020-12-22 17:12 - 2020-12-22 17:21 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\TechSmith 2020-12-22 17:12 - 2020-12-22 17:12 - 000000000 ____D C:\ProgramData\ABBYY 2020-12-22 17:12 - 2020-12-22 17:12 - 000000000 ____D C:\Program Files\Common Files\TechSmith Shared 2020-12-22 17:05 - 2020-12-22 17:05 - 000000000 ____D C:\Users\Public\TechSmith 2020-12-22 17:05 - 2020-12-22 17:05 - 000000000 ____D C:\ProgramData\TechSmith 2020-12-22 17:05 - 2020-12-22 17:05 - 000000000 ____D C:\Program Files\TechSmith 2020-12-22 17:00 - 2020-12-22 17:00 - 331972392 _____ (TechSmith Corporation) C:\Users\DELL ADMIN CENTER\Downloads\snagit.exe 2020-12-22 16:47 - 2020-12-22 16:51 - 3252740096 _____ C:\Users\DELL ADMIN CENTER\Downloads\TiterOS.iso 2020-12-22 15:56 - 2020-12-22 15:57 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\Resanance 2020-12-22 15:56 - 2020-12-22 15:56 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\Wasntafairfight 2020-12-22 15:42 - 2020-12-22 15:48 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\GeometryDash 2020-12-22 15:41 - 2020-12-22 15:41 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\OneDrive 2020-12-22 15:29 - 2020-12-22 15:36 - 3798939648 _____ C:\Users\DELL ADMIN CENTER\Downloads\kali-linux-2020.4-vbox-amd64.ova 2020-12-21 23:34 - 2020-12-21 23:35 - 331972392 _____ (TechSmith Corporation) C:\Users\User\Downloads\snagit.exe 2020-12-21 23:22 - 2020-12-21 23:22 - 001182144 _____ C:\Users\User\Downloads\PetyaDecryptor(1).rar 2020-12-21 23:14 - 2020-12-21 23:15 - 001182144 _____ C:\Users\User\Downloads\PetyaDecryptor.rar 2020-12-21 22:24 - 2020-12-21 22:24 - 002314805 _____ C:\Users\User\Downloads\Windows6.1-KB2533623-x64.msu 2020-12-21 21:52 - 2020-12-21 21:52 - 045626280 _____ (Mozilla) C:\Users\User\Downloads\Firefox52esr.exe 2020-12-21 21:46 - 2020-12-21 21:46 - 002405960 _____ (Opera Software) C:\Users\User\Downloads\OperaSetup.exe 2020-12-21 21:36 - 2020-12-21 21:37 - 081009168 _____ (COMODO) C:\Users\User\Downloads\icedragonsetup.exe 2020-12-21 21:34 - 2020-12-21 21:34 - 001321688 _____ (Google LLC) C:\Users\User\Downloads\ChromeSetup.exe 2020-12-21 19:54 - 2020-12-28 01:05 - 000000000 ____D C:\Users\User\AppData\Local\ESET 2020-12-21 19:54 - 2020-12-28 00:48 - 000000814 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2020-12-21 19:54 - 2020-12-28 00:48 - 000000686 _____ C:\Users\User\Desktop\ESET Online Scanner.lnk 2020-12-21 19:51 - 2020-12-28 00:48 - 015012440 _____ (ESET spol. s r.o.) C:\Users\User\Downloads\esetonlinescanner.exe 2020-12-21 18:43 - 2020-12-21 18:43 - 010127220 _____ C:\Users\User\Downloads\compte-a-rebours-5-sec-pellicule-vieux-film.mp4 2020-12-21 18:04 - 2020-12-23 20:44 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-12-21 18:03 - 2020-12-21 18:03 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\Discord 2020-12-21 16:13 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KEYZ PALLADIUM FR Gaming Keyboard 2020-12-21 16:13 - 2020-12-21 16:13 - 000000000 ____D C:\Program Files (x86)\KEYZ PALLADIUM FR Gaming Keyboard 2020-12-21 14:58 - 2020-12-21 14:58 - 001479535 _____ C:\Users\User\Downloads\worldedit-forge-mc1.12.2-6.1.10-dist.jar 2020-12-21 14:37 - 2020-12-21 14:37 - 001696157 _____ C:\Users\User\Downloads\[1.12.2]+SecurityCraft+v1.8.19.3.jar 2020-12-21 13:50 - 2020-12-21 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gamezor 2020-12-21 13:50 - 2020-12-21 20:03 - 000000000 ____D C:\Program Files (x86)\Gamezor 2020-12-21 13:37 - 2020-12-21 13:37 - 001717611 _____ C:\Users\User\Downloads\Pack de faux virus pour Windows (version 1.3.3).zip 2020-12-21 13:17 - 2020-12-21 13:17 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk 2020-12-21 13:16 - 2020-12-24 14:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-12-21 13:16 - 2020-12-24 13:28 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-12-21 13:14 - 2020-12-21 13:14 - 000333912 _____ (Mozilla) C:\Users\User\Downloads\Firefox Installer.exe 2020-12-20 22:07 - 2019-05-11 16:36 - 000031744 _____ () C:\Users\User\Downloads\INTRO.mp4.exe 2020-12-20 22:03 - 2020-12-20 22:03 - 003685436 _____ C:\Users\User\Downloads\video(1).mkv 2020-12-20 21:54 - 2020-12-20 21:55 - 005729359 _____ C:\Users\User\Downloads\video.mkv 2020-12-20 21:04 - 2020-12-29 17:15 - 000003388 _____ C:\WINDOWS\system32\Tasks\Altening Alt Loader 2020-12-20 21:02 - 2020-12-20 21:04 - 000000000 ____D C:\Users\User\AppData\Roaming\altening 2020-12-20 21:00 - 2020-12-20 21:01 - 034577027 _____ C:\Users\User\Downloads\TheAltening.zip 2020-12-20 20:33 - 2020-12-20 20:34 - 000267836 _____ C:\Users\User\Downloads\MCLeaksAuthenticator_4.4.0 (1).zip 2020-12-20 20:32 - 2020-12-20 20:32 - 000267836 _____ C:\Users\User\Downloads\MCLeaksAuthenticator_4.4.0(1).zip 2020-12-20 20:24 - 2020-12-20 20:24 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\obs-studio 2020-12-20 20:20 - 2020-12-20 20:20 - 000383786 _____ C:\Users\DELL ADMIN CENTER\Downloads\bootmgr 2020-12-20 20:12 - 2020-12-23 14:00 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\discord 2020-12-20 20:11 - 2020-12-20 20:11 - 000000000 ____D C:\Users\DELL ADMIN CENTER\Downloads\DiscordSetup 2020-12-20 20:08 - 2020-12-20 20:08 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\TeamViewer 2020-12-20 20:08 - 2020-12-20 20:08 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\TeamViewer 2020-12-20 20:03 - 2020-12-20 20:03 - 068822328 _____ (Discord Inc.) C:\Users\DELL ADMIN CENTER\Downloads\DiscordSetup(1).exe 2020-12-20 19:48 - 2020-12-21 18:04 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\SquirrelTemp 2020-12-20 19:44 - 2020-12-20 19:44 - 068822328 _____ (Discord Inc.) C:\Users\DELL ADMIN CENTER\Downloads\DiscordSetup.exe 2020-12-20 19:38 - 2020-12-20 19:38 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\WinRAR 2020-12-20 18:16 - 2020-12-27 13:02 - 000000000 ____D C:\Users\DELL ADMIN CENTER\VirtualBox VMs 2020-12-20 18:15 - 2020-12-23 13:27 - 000000000 ____D C:\Users\DELL ADMIN CENTER\.VirtualBox 2020-12-20 18:13 - 2020-12-20 18:13 - 000864317 _____ C:\Users\DELL ADMIN CENTER\Downloads\autoclicker-1-0-0-2.exe 2020-12-20 18:13 - 2020-12-20 18:13 - 000000000 ____D C:\Users\DELL ADMIN CENTER\Downloads\ACLib 2020-12-20 18:08 - 2020-12-20 18:15 - 1986619392 _____ C:\Users\DELL ADMIN CENTER\Downloads\6001.18000.080118-1840_x86fre_Server_fr-fr-KRMSFRE_FR_DVD.iso 2020-12-20 18:05 - 2020-12-23 14:41 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\LocalLow\Comodo 2020-12-20 18:05 - 2020-12-20 18:05 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\Comodo 2020-12-20 18:05 - 2020-12-20 18:05 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\Comodo 2020-12-20 18:00 - 2020-12-20 18:00 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\NetworkTiles 2020-12-20 17:59 - 2020-12-22 18:12 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\CrashDumps 2020-12-20 16:46 - 2020-12-27 13:42 - 000000000 ____D C:\Users\User\AppData\Roaming\obs-studio 2020-12-20 16:45 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio 2020-12-20 16:45 - 2020-12-20 16:45 - 000000000 ____D C:\ProgramData\obs-studio-hook 2020-12-20 16:45 - 2020-12-20 16:45 - 000000000 ____D C:\Program Files\obs-studio 2020-12-20 16:43 - 2020-12-20 16:44 - 075571336 _____ (obsproject.com) C:\Users\User\Downloads\OBS-Studio-26.1-Full-Installer-x64.exe 2020-12-20 16:41 - 2020-12-21 14:31 - 000000000 ____D C:\Users\User\AppData\Local\GeometryDash 2020-12-20 16:40 - 2020-12-20 16:40 - 070189061 _____ () C:\Users\User\Downloads\Geometry Dash.exe 2020-12-11 19:38 - 2020-12-11 19:38 - 000000000 ___HD C:\WINDOWS\msdownld.tmp 2020-12-11 19:22 - 2020-12-11 19:26 - 000666176 _____ C:\Users\User\Downloads\psx-emulator-1.13.rar 2020-12-11 18:58 - 2020-12-11 18:59 - 017103496 _____ (TLauncher Inc.) C:\Users\User\Downloads\TLauncher-2.72-Installer-0.6.8.exe 2020-12-11 18:54 - 2020-12-11 18:54 - 003650180 _____ () C:\Users\User\Downloads\shiginima-launcher-se-v3.100.exe 2020-12-11 18:50 - 2020-12-11 18:50 - 008910053 _____ C:\Users\User\Downloads\The-Escapists-2-Map.zip 2020-12-11 18:48 - 2020-12-11 18:48 - 000000000 ____D C:\Users\User\AppData\Roaming\MMFApplications 2020-12-11 18:47 - 2020-12-11 18:47 - 091775809 _____ () C:\Users\User\Downloads\The Escapists.exe 2020-12-10 22:21 - 2020-12-10 22:21 - 000000000 ____D C:\Users\User\AppData\Local\Wasntafairfight 2020-12-10 22:21 - 2020-12-10 22:21 - 000000000 ____D C:\Program Files\VB 2020-12-10 22:20 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resanance 2020-12-10 22:20 - 2020-12-10 22:22 - 000000000 ____D C:\Users\User\AppData\Roaming\Resanance 2020-12-10 22:20 - 2020-12-10 22:20 - 000000000 ____D C:\Program Files\Resanance 2020-12-10 22:19 - 2020-12-10 22:19 - 075367729 _____ C:\Users\User\Downloads\Resanance.zip 2020-12-10 20:31 - 2020-12-10 20:31 - 000000000 ____D C:\ProgramData\Binary Fortress Software 2020-12-10 20:11 - 2020-12-23 16:07 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps 2020-12-10 20:10 - 2020-12-10 20:10 - 000002551 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraMon.lnk 2020-12-10 20:10 - 2020-12-10 20:10 - 000000000 ____D C:\Users\User\AppData\Roaming\Realtime Soft 2020-12-10 20:10 - 2020-12-10 20:10 - 000000000 ____D C:\ProgramData\Realtime Soft 2020-12-10 20:10 - 2020-12-10 20:10 - 000000000 ____D C:\Program Files\UltraMon 2020-12-10 20:09 - 2020-12-10 20:09 - 003334144 _____ C:\Users\User\Downloads\UltraMon_3.4.1_en_x64.msi 2020-12-10 20:04 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion 2020-12-10 20:02 - 2020-12-10 20:04 - 000000000 ____D C:\Program Files (x86)\DisplayFusion 2020-12-10 19:53 - 2020-12-10 19:53 - 091715728 _____ (Binary Fortress Software ) C:\Users\User\Downloads\DisplayFusionSetup-9.7.exe 2020-12-10 18:14 - 2020-12-10 18:14 - 000000000 ____D C:\Users\User\AppData\Roaming\Goldberg SteamEmu Saves 2020-12-10 18:14 - 2020-12-10 18:14 - 000000000 ____D C:\Users\User\AppData\LocalLow\Innersloth 2020-12-10 18:09 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2020-12-10 18:09 - 2020-12-10 18:12 - 000000000 ____D C:\Program Files (x86)\Steam 2020-12-10 18:08 - 2020-12-10 18:08 - 001573568 _____ C:\Users\User\Downloads\SteamSetup.exe 2020-12-09 21:49 - 2020-12-09 21:49 - 000000000 ____D C:\Users\User\AppData\Local\Ndemic Creations 2020-12-09 21:49 - 2020-12-09 21:49 - 000000000 ____D C:\Users\Public\Documents\Steam 2020-12-09 21:49 - 2020-12-09 21:49 - 000000000 ____D C:\ProgramData\Documents\Steam 2020-12-09 21:41 - 2020-12-09 21:41 - 000000000 ____D C:\Users\User\AppData\Local\Microsoft_Corporation 2020-12-09 21:23 - 2020-12-09 21:23 - 000014747 _____ C:\Users\User\Downloads\TaskILL.zip 2020-12-09 21:03 - 2020-12-09 21:03 - 000000000 ____D C:\Users\User\AppData\LocalLow\Ndemic Creations 2020-12-09 20:58 - 2020-12-20 16:41 - 000000000 ____D C:\STG Games 2020-12-09 20:36 - 2020-12-09 20:37 - 530180148 _____ () C:\Users\User\Downloads\Plague Inc Evolved ALL DLC.exe 2020-12-09 20:19 - 2020-12-09 20:20 - 025581371 _____ C:\Users\User\Downloads\roms-20201207.zip 2020-12-09 20:17 - 2020-12-09 20:17 - 002999061 _____ C:\Users\User\Downloads\86Box-master.zip 2020-12-09 15:23 - 2020-12-09 15:24 - 000000000 ____D C:\Users\User\AppData\Roaming\betterdiscord 2020-12-09 15:23 - 2020-12-09 15:23 - 000000000 ____D C:\Users\User\AppData\Local\Zerebos 2020-12-09 15:22 - 2020-12-09 15:22 - 000114688 _____ (Zerebos) C:\Users\User\Downloads\BandagedBD.exe 2020-12-09 13:26 - 2020-12-09 13:26 - 000000000 ____D C:\Users\User\Downloads\Hirens.BootCD.14.1 2020-12-09 13:19 - 2020-12-09 13:20 - 548519835 _____ C:\Users\User\Downloads\Hirens.BootCD.14.1.zip 2020-12-09 13:13 - 2020-12-09 13:13 - 027656232 _____ C:\Users\User\Downloads\Hirens.BootCD.5.0.zip 2020-12-08 18:28 - 2020-12-23 20:53 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PreMiD 2020-12-08 18:28 - 2020-12-09 21:09 - 000000000 ____D C:\Users\User\AppData\Roaming\PreMiD 2020-12-08 18:16 - 2020-12-29 22:32 - 000000000 ____D C:\Users\User\AppData\Roaming\discord 2020-12-08 18:15 - 2020-12-08 18:16 - 000000000 ____D C:\Users\User\AppData\Local\Discord 2020-12-08 18:14 - 2020-12-08 18:15 - 068822328 _____ (Discord Inc.) C:\Users\User\Downloads\DiscordSetup(1).exe 2020-12-08 09:06 - 2020-12-08 09:45 - 000000036 _____ C:\WINDOWS\progress.ini 2020-12-08 08:38 - 2020-12-08 17:43 - 000000000 ___HD C:\$GetCurrent 2020-12-08 08:38 - 2020-12-08 09:06 - 000000000 ____D C:\Windows10Upgrade 2020-12-08 08:38 - 2020-12-08 08:38 - 000000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk 2020-12-08 08:35 - 2020-12-08 08:35 - 000000000 ____D C:\ProgramData\Shared Space 2020-12-07 22:25 - 2020-12-30 01:39 - 000000000 ____D C:\Users\User\Downloads\MalwareDatabase-master 2020-12-07 22:18 - 2020-12-23 21:03 - 000002590 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask 2020-12-07 22:10 - 2020-12-07 22:10 - 000608256 _____ (Microsoft) C:\Users\User\Downloads\Patcher_Letasoft_SoundBooster_2.exe 2020-12-07 22:08 - 2020-12-07 22:08 - 000000000 __SHD C:\ProgramData\ms-drivers 2020-12-07 22:08 - 2020-12-07 22:08 - 000000000 __SHD C:\ProgramData\icsxml 2020-12-07 22:01 - 2020-12-07 22:01 - 000008661 _____ C:\Users\User\Downloads\MEMZ.zip 2020-12-07 21:57 - 2020-12-27 20:07 - 000000000 ____D C:\ProgramData\Comodo 2020-12-07 21:57 - 2020-12-07 21:57 - 000000000 ____D C:\ProgramData\boost_interprocess 2020-12-07 21:51 - 2020-12-30 01:56 - 000000000 ____D C:\Users\User\AppData\LocalLow\Comodo 2020-12-07 21:51 - 2020-12-27 20:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo 2020-12-07 21:51 - 2020-12-27 20:07 - 000000000 ____D C:\Program Files (x86)\Comodo 2020-12-07 21:51 - 2020-12-21 20:03 - 000000000 ____D C:\Program Files (x86)\DSL Subsystem 2020-12-07 21:51 - 2020-12-07 21:54 - 000000000 ____D C:\Users\User\AppData\Roaming\VirusMaker 2020-12-07 21:51 - 2020-12-07 21:51 - 000002798 _____ C:\WINDOWS\system32\Tasks\DSL Subsystem 2020-12-07 21:51 - 2020-12-07 21:51 - 000000000 ____D C:\Users\User\AppData\Roaming\FB2635EA-FA63-4B39-ABA3-DD25F12FD02B 2020-12-07 21:51 - 2020-12-07 21:51 - 000000000 ____D C:\Users\User\AppData\Roaming\Comodo 2020-12-07 21:51 - 2020-12-07 21:51 - 000000000 ____D C:\Users\User\AppData\Local\Comodo 2020-12-07 21:50 - 2020-12-07 21:50 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll 2020-12-07 21:50 - 2020-12-07 21:50 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2020-12-07 21:49 - 2020-12-07 21:50 - 004538873 _____ C:\Users\User\Downloads\Virus Maker 3.0.rar 2020-12-07 21:48 - 2020-12-07 21:50 - 081009168 _____ (COMODO) C:\Users\User\Downloads\Top 10 des meilleurs navigateur web 1- Comodo Icedragon.exe 2020-12-07 21:45 - 2020-12-07 21:45 - 000646408 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys 2020-12-07 21:45 - 2020-12-07 21:45 - 000551936 _____ (IDT, Inc.) C:\WINDOWS\system32\Drivers\stwrt64.sys 2020-12-07 21:45 - 2020-12-07 21:45 - 000256000 _____ (IDT, Inc.) C:\WINDOWS\system32\st646491.dll 2020-12-07 21:45 - 2013-08-16 11:21 - 000499200 _____ (IDT, Inc.) C:\WINDOWS\system32\stcplx64.dll 2020-12-07 21:42 - 2020-12-07 21:42 - 001138688 _____ (O2Micro) C:\WINDOWS\system32\O2Icon.dll 2020-12-07 21:42 - 2020-12-07 21:42 - 000208312 _____ (O2Micro ) C:\WINDOWS\system32\Drivers\O2FJ2w7x64.sys 2020-12-07 21:42 - 2020-12-07 21:42 - 000065536 _____ (O2Micro International) C:\WINDOWS\system32\Drivers\o2flash.exe 2020-12-07 21:34 - 2020-12-07 21:34 - 000203896 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys 2020-12-07 21:34 - 2020-12-07 21:34 - 000099496 _____ (O2Micro) C:\WINDOWS\system32\Drivers\oz776x64.sys 2020-12-07 21:34 - 2020-12-07 21:34 - 000066040 _____ (O2Micro) C:\WINDOWS\SysWOW64\ct32O2.dll 2020-12-07 21:34 - 2020-12-07 21:34 - 000066040 _____ (O2Micro) C:\WINDOWS\system32\ct32O2.dll 2020-12-07 21:34 - 2020-12-07 21:34 - 000049416 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys 2020-12-07 21:33 - 2020-12-07 22:15 - 000000000 ____D C:\Users\User\AppData\Roaming\ROSTPAY LTD 2020-12-07 21:33 - 2020-12-07 21:47 - 000000000 ____D C:\Users\User\AppData\Roaming\DriverHub 2020-12-07 21:33 - 2020-12-07 21:33 - 000001889 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\DriverHub.lnk 2020-12-07 21:33 - 2020-12-07 21:33 - 000000000 ____D C:\Users\User\AppData\Local\ROSTPAY LTD 2020-12-07 21:31 - 2020-12-07 21:31 - 001198688 _____ C:\Users\User\Downloads\driverhub-1-1-2-1563.exe 2020-12-06 18:43 - 2020-12-06 18:43 - 000000000 ____D C:\Users\User\AppData\Local\paladiumlauncher 2020-12-06 18:42 - 2020-12-23 20:53 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paladium Launcher 2020-12-06 18:42 - 2020-12-20 21:07 - 000000000 ____D C:\Users\User\AppData\Local\Paladium Launcher 2020-12-06 18:41 - 2020-12-06 18:42 - 070081722 _____ (Paladium) C:\Users\User\Downloads\Paladium.exe 2020-12-06 18:16 - 2020-12-06 18:16 - 035497166 _____ C:\Users\User\Downloads\Network_Driver_0J8HP_WN32_20.1.0.0_A00.zip 2020-12-06 17:04 - 2020-12-06 17:04 - 051008610 _____ C:\Users\User\Downloads\MiFlash+Unlock+Tool+Unofficial.zip 2020-12-06 16:19 - 2020-12-06 16:19 - 000000000 ____D C:\Users\User\AppData\Roaming\com.xiaomitool.v2.gui.MainWindow 2020-12-06 16:17 - 2020-12-28 15:02 - 000000000 ____D C:\Users\User\.android 2020-12-06 16:16 - 2020-12-23 20:53 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XiaoMiTool V2 2020-12-06 16:16 - 2020-12-06 16:16 - 000000000 ____D C:\Xiaomi 2020-12-06 16:12 - 2020-12-06 16:12 - 000000000 ____D C:\Users\User\AppData\Roaming\com.xiaomitool.miunlock.a 2020-12-06 16:11 - 2020-12-06 16:11 - 005711586 _____ C:\Users\User\Downloads\MiUnlockTool.zip 2020-12-06 16:04 - 2020-12-06 16:04 - 000002153 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\MiFlash.lnk 2020-12-06 16:04 - 2020-12-06 16:04 - 000000000 ____D C:\Program Files (x86)\Xiaomi 2020-12-06 16:04 - 2015-10-28 08:11 - 000116736 _____ (XiaoMi Corporation) C:\WINDOWS\SysWOW64\qcCoInstaller.dll 2020-12-06 16:03 - 2020-12-06 16:03 - 027305815 _____ (XiaoMi Corporation) C:\Users\User\Downloads\Miflashtool20151028 old.exe 2020-12-06 16:00 - 2020-12-06 16:00 - 050423290 _____ C:\Users\User\Downloads\miflash_unlock-en-4.5.813.51.zip 2020-12-06 15:44 - 2020-12-06 15:44 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf 2020-12-06 15:39 - 2020-12-06 15:40 - 000000000 ____D C:\Users\User\AppData\Roaming\Xiaomi 2020-12-06 15:39 - 2020-12-06 15:39 - 000151184 _____ (MBB) C:\WINDOWS\system32\Drivers\usb2ser.sys 2020-12-06 15:38 - 2020-12-06 15:38 - 050483270 _____ C:\Users\User\Downloads\mi-globe.com_Xiaomi_Mi-UnlockTool_4.5.813.51.zip 2020-12-06 15:35 - 2020-12-06 15:36 - 048107203 _____ C:\Users\User\Downloads\MiFlash+2017.4.25.0.zip 2020-12-06 15:34 - 2020-12-06 15:36 - 010246607 _____ C:\Users\User\Downloads\Driver_Auto_Installer_EXE_v1.1352.00.rar 2020-12-06 12:08 - 2020-12-06 12:10 - 183655172 _____ C:\Users\User\Downloads\MCWIN10 .Appx 2020-12-06 11:29 - 2020-12-06 11:30 - 450924374 _____ C:\Users\User\Downloads\MinecraftW10E_1.16.rar 2020-12-06 10:28 - 2020-12-06 10:29 - 501381129 _____ C:\Users\User\Downloads\Disgaea - Hour of Darkness (USA).7z 2020-12-06 10:24 - 2020-12-06 10:24 - 007184137 _____ C:\Users\User\Downloads\pcsx2-1-6-0.exe 2020-12-06 10:24 - 2020-12-06 10:24 - 000001932 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PCSX2 1.6.0.lnk 2020-12-06 10:24 - 2020-12-06 10:24 - 000000000 ____D C:\Program Files (x86)\PCSX2 2020-12-06 09:44 - 2020-03-09 09:00 - 001078992 _____ C:\WINDOWS\system32\Drivers\vulkan-1-999-0-0-0.dll 2020-12-06 09:41 - 2020-12-06 09:41 - 020521570 _____ C:\Users\User\Downloads\rpcs3-v0.0.13-11342-d1e78374_win64.7z 2020-12-06 08:42 - 2020-12-06 08:42 - 000000000 ____D C:\WINDOWS\pss 2020-12-05 21:48 - 2020-12-05 21:48 - 000000000 ____D C:\Users\User\AppData\Local\drmingw 2020-12-05 21:48 - 2020-12-05 21:48 - 000000000 ____D C:\ProgramData\dbg 2020-12-05 21:32 - 2020-12-09 20:04 - 000000000 ____D C:\Users\User\AppData\Local\Badlion Client 2020-12-05 21:32 - 2020-12-08 20:11 - 002506784 _____ () C:\WINDOWS\system32\Drivers\BadlionAnticheat.sys 2020-12-05 21:32 - 2020-12-05 21:32 - 002488864 _____ () C:\WINDOWS\system32\Drivers\BadlionAnticheat.sys.old 2020-12-05 21:12 - 2020-12-23 23:15 - 000000000 ____D C:\Users\User\AppData\Roaming\Badlion Client 2020-12-05 21:12 - 2020-12-23 23:11 - 000000000 ____D C:\ProgramData\BadlionClient 2020-12-05 21:12 - 2020-12-05 21:12 - 000001942 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Badlion Client.lnk 2020-12-05 21:12 - 2020-12-05 21:12 - 000001930 _____ C:\Users\Public\Desktop\Badlion Client.lnk 2020-12-05 21:11 - 2020-12-23 22:56 - 000000000 ____D C:\Users\User\AppData\Local\badlion-client-updater 2020-12-05 21:11 - 2020-12-23 22:56 - 000000000 ____D C:\Program Files\Badlion Client 2020-12-05 21:11 - 2020-12-05 21:11 - 001094128 _____ (Badlion) C:\Users\User\Downloads\Badlion Client Web Setup 2.17.0.exe 2020-12-05 21:02 - 2020-12-05 21:02 - 000000024 _____ C:\Users\User\Downloads\Jeux_de_quentin_modif.bat 2020-12-05 20:58 - 2020-12-05 20:58 - 000000903 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\MinGW Installation Manager.lnk 2020-12-05 20:57 - 2020-12-05 21:05 - 000000000 ____D C:\MinGW 2020-12-05 20:56 - 2020-12-05 20:56 - 000093184 _____ (MinGW.org Project) C:\Users\User\Downloads\mingw-get-setup.exe 2020-12-05 20:45 - 2020-12-05 20:45 - 000000927 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk 2020-12-05 20:45 - 2020-12-05 20:45 - 000000000 ____D C:\Users\User\AppData\Roaming\Sublime Text 3 2020-12-05 20:45 - 2020-12-05 20:45 - 000000000 ____D C:\Users\User\AppData\Local\Sublime Text 3 2020-12-05 20:45 - 2020-12-05 20:45 - 000000000 ____D C:\Program Files\Sublime Text 3 2020-12-05 20:44 - 2020-12-05 20:44 - 010931184 _____ (Sublime HQ Pty Ltd ) C:\Users\User\Downloads\Sublime Text Build 3211 x64 Setup.exe 2020-12-05 20:17 - 2020-12-05 20:17 - 000000000 ____D C:\Program Files\Microsoft Synchronization Services 2020-12-05 20:17 - 2020-12-05 20:17 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2020-12-05 20:17 - 2020-12-05 20:17 - 000000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services 2020-12-05 20:17 - 2020-12-05 20:17 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2020-12-05 20:16 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express 2020-12-05 20:14 - 2020-12-05 20:16 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0 2020-12-05 20:13 - 2020-12-05 20:13 - 000000000 ____D C:\WINDOWS\symbols 2020-12-05 20:13 - 2020-12-05 20:13 - 000000000 ____D C:\Program Files\Microsoft Visual Studio 10.0 2020-12-05 20:13 - 2020-12-05 20:13 - 000000000 ____D C:\Program Files\Microsoft Help Viewer 2020-12-05 20:13 - 2020-12-05 20:13 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs 2020-12-05 20:09 - 2020-12-25 21:29 - 000000000 ____D C:\Users\User\AppData\Roaming\CodeBlocks 2020-12-05 20:05 - 2020-12-05 20:07 - 000000000 ____D C:\Users\User\AppData\Roaming\Visual Studio Setup 2020-12-05 20:05 - 2020-12-05 20:05 - 000001359 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk 2020-12-05 20:05 - 2020-12-05 20:05 - 000000000 ____D C:\Users\User\AppData\Roaming\vstelemetry 2020-12-05 20:05 - 2020-12-05 20:05 - 000000000 ____D C:\Users\User\AppData\Local\ServiceHub 2020-12-05 20:04 - 2020-12-23 20:53 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks 2020-12-05 20:04 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks 2020-12-05 20:04 - 2020-12-05 20:08 - 000000000 ____D C:\Program Files\CodeBlocks 2020-12-05 20:04 - 2020-12-05 20:04 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft Visual Studio 2020-12-05 20:03 - 2020-12-05 20:03 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio 2020-12-05 20:03 - 2020-12-05 20:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 2020-12-05 20:02 - 2020-12-05 20:02 - 152419674 _____ (The Code::Blocks Team) C:\Users\User\Downloads\codeblocks-20.03mingw-setup.exe 2020-12-05 20:01 - 2020-12-05 20:01 - 037451355 _____ (The Code::Blocks Team) C:\Users\User\Downloads\codeblocks-20.03-setup.exe 2020-12-05 17:59 - 2020-12-23 21:42 - 000002280 _____ C:\Users\User\Desktop\Google Chrome.lnk 2020-12-05 17:57 - 2020-12-23 20:53 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TouchPad 2020-12-05 11:56 - 2020-12-05 12:06 - 3252740096 _____ C:\Users\DELL ADMIN CENTER\Downloads\fr_windows_7_home_premium_with_sp1_x64_dvd_u_676521(1).iso 2020-12-05 11:50 - 2020-12-05 11:51 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\.minecraft 2020-12-05 11:50 - 2020-12-05 11:50 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\CEF 2020-12-05 11:45 - 2020-12-05 11:45 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\PeerDistRepub 2020-12-05 11:34 - 2020-12-05 11:55 - 000000183 _____ C:\Users\DELL ADMIN CENTER\Downloads\fr_windows_7_home_premium_with_sp1_x64_dvd_u_676521.iso 2020-12-05 11:33 - 2020-12-23 21:03 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1091347942-1850174796-2752133433-500 2020-12-05 11:31 - 2020-12-20 18:02 - 000002437 _____ C:\Users\DELL ADMIN CENTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-12-05 11:31 - 2020-12-20 18:02 - 000000000 ___RD C:\Users\DELL ADMIN CENTER\OneDrive 2020-12-05 11:28 - 2020-12-23 10:29 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\LocalLow\Mozilla 2020-12-05 11:28 - 2020-12-05 11:28 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Roaming\Mozilla 2020-12-05 11:28 - 2020-12-05 11:28 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\Mozilla 2020-12-04 19:22 - 2020-12-04 19:24 - 000049916 _____ C:\Users\User\Downloads\vcruntime140.dll (64-Bit).zip 2020-12-04 19:20 - 2020-12-04 14:17 - 000000000 ____D C:\WINDOWS\UpdateAssistant 2020-12-04 19:11 - 2020-12-04 19:20 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-12-04 19:06 - 2020-12-04 19:55 - 000000000 ____D C:\Program Files\CUAssistant 2020-12-04 18:57 - 2020-12-04 18:57 - 000616744 _____ (Alps Electric Co., Ltd.) C:\WINDOWS\system32\Drivers\Apfiltr.sys 2020-12-04 18:57 - 2020-12-04 18:57 - 000129072 _____ (Alps Electric Co., Ltd.) C:\WINDOWS\system32\Vxdif.dll 2020-12-04 18:55 - 2016-09-30 04:28 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll 2020-12-04 17:19 - 2020-12-30 01:32 - 000000000 ____D C:\Users\User\.VirtualBox 2020-12-04 17:19 - 2020-12-30 00:16 - 000000000 ____D C:\ProgramData\VirtualBox 2020-12-04 17:17 - 2020-12-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox 2020-12-04 17:16 - 2020-10-16 10:04 - 001037392 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys 2020-12-04 17:16 - 2020-10-16 10:04 - 000187456 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2020-12-04 17:15 - 2020-12-04 17:15 - 000000000 ____D C:\Program Files\Oracle 2020-12-04 17:10 - 2020-12-04 17:10 - 108077072 _____ (Oracle Corporation) C:\Users\User\Downloads\VirtualBox-6.1.16-140961-Win.exe 2020-12-04 16:56 - 2020-12-04 16:56 - 000001051 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fonctionnalités optionnelles.lnk 2020-12-04 16:56 - 2015-07-09 20:39 - 004847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll 2020-12-04 16:56 - 2015-07-09 20:36 - 002629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll 2020-12-04 14:12 - 2020-12-04 14:12 - 000267836 _____ C:\Users\User\Downloads\MCLeaksAuthenticator_4.4.0.zip 2020-12-04 13:44 - 2020-12-23 20:48 - 000000000 ____D C:\Program Files\CMAK 2020-12-04 13:44 - 2020-12-04 13:44 - 000000000 ____D C:\Program Files (x86)\CMAK 2020-12-04 13:38 - 2020-12-04 13:39 - 000000000 ____D C:\0c725f28c5c1ef4e13933efba4 ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-12-30 02:03 - 2020-11-15 16:37 - 000000000 ____D C:\FRST 2020-12-30 01:55 - 2020-11-15 16:26 - 000000000 ____D C:\Users\User\AppData\Roaming\ZHP 2020-12-30 00:27 - 2017-12-14 03:53 - 000000000 ___HD C:\$WINDOWS.~BT 2020-12-30 00:27 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\Registration 2020-12-30 00:26 - 2020-11-14 18:21 - 000003813 _____ C:\WINDOWS\diagwrn.xml 2020-12-30 00:26 - 2020-11-14 18:21 - 000003813 _____ C:\WINDOWS\diagerr.xml 2020-12-30 00:25 - 2015-10-30 08:21 - 000000000 ____D C:\WINDOWS\INF 2020-12-29 22:36 - 2020-11-21 19:39 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2020-12-29 22:36 - 2020-11-21 19:39 - 000000000 ____D C:\ProgramData\Mozilla 2020-12-29 22:11 - 2020-11-15 14:27 - 000004160 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{20D62520-B7CA-476D-8B0E-88789A44F49E} 2020-12-29 22:10 - 2020-11-14 18:41 - 000000000 ____D C:\Program Files\Google 2020-12-29 22:09 - 2020-11-18 18:05 - 000000000 ___RD C:\Users\User\Desktop\Rangement 2020-12-29 22:03 - 2020-11-14 17:23 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles 2020-12-29 21:58 - 2016-04-27 06:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-12-29 18:32 - 2015-10-30 07:28 - 000262144 ___SH C:\WINDOWS\system32\config\BBI 2020-12-29 16:19 - 2020-11-15 18:25 - 000000000 ____D C:\Users\User\AppData\Roaming\VMware 2020-12-29 15:35 - 2020-11-15 18:25 - 000000000 ____D C:\Users\User\AppData\Local\VMware 2020-12-29 02:12 - 2020-11-21 18:57 - 000000472 __RSH C:\ProgramData\ntuser.pol 2020-12-28 21:05 - 2020-11-15 16:13 - 001859260 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-12-28 21:05 - 2016-04-27 06:12 - 000829082 _____ C:\WINDOWS\system32\perfh00C.dat 2020-12-28 21:05 - 2016-04-27 06:12 - 000157312 _____ C:\WINDOWS\system32\perfc00C.dat 2020-12-28 19:49 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\rescache 2020-12-28 14:15 - 2020-11-18 12:19 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc 2020-12-28 01:02 - 2015-10-30 08:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-12-27 23:30 - 2020-11-15 18:19 - 000000000 ____D C:\ProgramData\VMware 2020-12-27 19:43 - 2020-11-15 16:22 - 000000000 ____D C:\Users\User\AppData\Local\Comms 2020-12-27 18:58 - 2016-04-26 21:39 - 000404432 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-12-27 16:37 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-12-27 12:16 - 2015-10-30 08:11 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-12-26 16:32 - 2015-10-30 08:24 - 000000000 ___HD C:\Program Files\WindowsApps 2020-12-25 00:30 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2020-12-24 23:54 - 2020-11-28 11:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software 2020-12-24 23:40 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2020-12-24 14:50 - 2016-04-27 06:53 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-12-24 14:39 - 2015-10-30 08:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2020-12-24 14:39 - 2015-10-30 08:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2020-12-24 14:39 - 2015-10-30 08:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2020-12-24 14:39 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2020-12-24 14:39 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2020-12-24 14:39 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\setup 2020-12-24 14:39 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-12-24 14:39 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-12-24 14:39 - 2015-10-30 07:31 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2020-12-24 14:39 - 2015-10-30 07:31 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2020-12-24 14:39 - 2015-10-30 07:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-12-24 14:39 - 2015-10-30 07:28 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ___RD C:\WINDOWS\DevicesFlow 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\Provisioning 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ____D C:\Program Files\Windows Defender 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2020-12-24 14:38 - 2015-10-30 08:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2020-12-24 14:36 - 2015-10-30 08:24 - 000015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2020-12-24 11:45 - 2015-10-30 08:19 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2020-12-24 11:45 - 2015-10-30 08:19 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2020-12-24 11:45 - 2015-10-30 08:18 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll 2020-12-24 10:55 - 2015-10-30 08:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-12-24 10:54 - 2020-11-18 12:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2020-12-24 10:49 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\appcompat 2020-12-23 23:23 - 2020-11-14 18:58 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher 2020-12-23 22:52 - 2020-11-14 18:35 - 000000000 ____D C:\Users\User\AppData\Local\Packages 2020-12-23 21:39 - 2020-11-14 18:45 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-12-23 21:38 - 2020-11-15 16:58 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2020-12-23 21:07 - 2015-10-30 08:24 - 000000000 ____D C:\Program Files\Windows NT 2020-12-23 21:05 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2020-12-23 21:03 - 2020-11-15 16:14 - 000023208 _____ C:\WINDOWS\system32\emptyregdb.dat 2020-12-23 21:03 - 2020-11-14 18:41 - 000002940 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1091347942-1850174796-2752133433-1000 2020-12-23 21:02 - 2020-11-15 22:46 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-12-23 21:02 - 2020-11-15 22:46 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-12-23 21:02 - 2020-11-15 16:34 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1091347942-1850174796-2752133433-1000 2020-12-23 21:02 - 2020-11-14 18:40 - 000003516 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-12-23 21:02 - 2020-11-14 18:40 - 000003292 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-12-23 21:02 - 2015-10-30 08:24 - 000000000 __RHD C:\Users\Public\Libraries 2020-12-23 20:59 - 2020-11-15 22:47 - 000002304 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-12-23 20:53 - 2020-11-29 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Utilities 2020-12-23 20:53 - 2020-11-29 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite 2020-12-23 20:53 - 2020-11-27 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2020-12-23 20:53 - 2020-11-27 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Restorator 2018 2020-12-23 20:53 - 2020-11-19 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico 2020-12-23 20:53 - 2020-11-18 15:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam 2020-12-23 20:53 - 2020-11-18 13:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tenorshare ReiBoot 2020-12-23 20:53 - 2020-11-18 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2020-12-23 20:53 - 2020-11-18 12:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2020-12-23 20:53 - 2020-11-18 07:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2020-12-23 20:53 - 2020-11-18 06:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3uTools 2020-12-23 20:53 - 2020-11-18 06:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2020-12-23 20:53 - 2020-11-15 20:22 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NationsGlory 2020-12-23 20:53 - 2020-11-15 18:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Letasoft Sound Booster 2020-12-23 20:53 - 2020-11-15 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WAPT Server 2020-12-23 20:53 - 2020-11-14 19:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2020-12-23 20:53 - 2020-11-14 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.0 2020-12-23 20:53 - 2020-11-14 18:51 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2020-12-23 20:53 - 2020-11-14 18:39 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-12-23 20:53 - 2020-11-14 18:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-12-23 20:53 - 2015-10-30 07:28 - 000032768 ___SH C:\WINDOWS\system32\config\ELAM 2020-12-23 20:52 - 2015-07-10 10:05 - 000000000 ____D C:\Users\Default.migrated 2020-12-23 20:49 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2020-12-23 20:49 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2020-12-23 20:49 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2020-12-23 20:49 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2020-12-23 20:49 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2020-12-23 20:49 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2020-12-23 20:48 - 2020-11-14 19:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2020-12-23 20:48 - 2016-04-27 06:17 - 000000000 ____D C:\WINDOWS\OCR 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ___RD C:\WINDOWS\PurchaseDialog 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\NDF 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\InputMethod 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\et-EE 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\InputMethod 2020-12-23 20:48 - 2015-10-30 08:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2020-12-23 20:48 - 2014-11-21 07:20 - 000000000 ____D C:\Program Files\Embedded Lockdown Manager 2020-12-23 20:48 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\ADFS 2020-12-23 20:46 - 2013-08-22 16:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2020-12-23 20:45 - 2020-11-14 18:45 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-12-23 20:44 - 2020-11-28 10:45 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\Packages 2020-12-23 20:42 - 2015-10-30 07:28 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2020-12-23 20:08 - 2015-10-30 08:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2020-12-23 20:02 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2020-12-23 20:02 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\system32\MUI 2020-12-23 15:51 - 2020-11-15 18:20 - 001871172 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2020-12-23 15:10 - 2020-11-15 18:19 - 000000000 ____D C:\Program Files (x86)\VMware 2020-12-23 15:08 - 2020-11-15 16:31 - 000002402 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-12-23 15:08 - 2020-11-15 16:31 - 000000000 ___RD C:\Users\User\OneDrive 2020-12-23 15:02 - 2020-11-28 10:45 - 000000000 __SHD C:\Users\DELL ADMIN CENTER\IntelGraphicsProfiles 2020-12-22 17:03 - 2020-11-15 17:19 - 000000000 ____D C:\ProgramData\Package Cache 2020-12-22 12:57 - 2020-11-19 17:54 - 000000000 ____D C:\Program Files\KMSpico 2020-12-20 20:40 - 2020-11-14 18:59 - 000000000 ____D C:\Users\User\AppData\Roaming\mcleaks 2020-12-20 17:55 - 2020-11-15 12:28 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-12-09 21:22 - 2020-11-15 12:28 - 000000000 ____D C:\Users\User\AppData\Roaming\TeamViewer 2020-12-09 21:14 - 2020-11-14 18:45 - 000002161 _____ C:\Users\User\Desktop\Discord!.lnk 2020-12-08 18:16 - 2020-11-14 18:41 - 000000000 ____D C:\Users\User\AppData\Local\SquirrelTemp 2020-12-07 22:12 - 2020-11-15 18:16 - 000000000 ____D C:\Program Files (x86)\Letasoft Sound Booster 2020-12-06 15:10 - 2020-11-15 16:22 - 000000000 ____D C:\Users\User\AppData\Local\TileDataLayer 2020-12-06 15:09 - 2020-11-28 10:44 - 000000000 ____D C:\Users\DELL ADMIN CENTER\AppData\Local\TileDataLayer 2020-12-06 13:27 - 2020-11-29 12:34 - 000000000 ____D C:\Program Files\rempl 2020-12-05 01:14 - 2020-11-18 14:42 - 000000000 ___RD C:\Users\User\3D Objects 2020-12-05 00:52 - 2020-11-14 17:17 - 000000000 ____D C:\Intel ==================== Fichiers à la racine de certains dossiers ======== 2020-12-30 01:44 - 2020-12-30 01:45 - 003479936 _____ (Nicolas Coolman) C:\Users\User\ZHPSuite.exe 2020-12-24 15:23 - 2020-12-24 15:23 - 000001017 _____ () C:\Users\User\AppData\Roaming\AdobeWLCMR2Cache.dat 2020-12-24 23:50 - 2020-12-24 23:50 - 000002475 _____ () C:\Users\User\AppData\Local\Perfmon.PerfmonCfg 2020-12-24 23:49 - 2020-12-24 23:49 - 000000017 _____ () C:\Users\User\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) LastRegBack: 2020-12-23 21:13 ==================== Fin de FRST.txt ========================