Problème dns windows 7
Fermé
Firexia
-
3 juil. 2016 à 13:49
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 3 juil. 2016 à 19:02
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 3 juil. 2016 à 19:02
A voir également:
- Problème dns windows 7
- Changer dns - Guide
- Passer de windows 7 à windows 10 - Accueil - Mise à jour
- Movie maker windows 7 - Télécharger - Montage & Édition
- Télécharger windows 7 32 bits usb - Télécharger - Systèmes d'exploitation
- Clé windows 7 - Guide
2 réponses
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 660
3 juil. 2016 à 13:59
3 juil. 2016 à 13:59
Salut,
Probablement malware.
Voici les étapes de la procédure à suivre :
1°) AdwCleaner
Suis le tutoriel AdwCleaner d'Xplode
Si le copié/collé ne fonctionne pas, utilise le site http://pjjoint.malekal.com/ pour héberger ton rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
2°) FRST
Suis le tutoriel FRST. ( prends le temps de lire attentivement - tout y est bien expliqué ).
Télécharge et lance le scan FRST, 3 rapports FRST seront générés :
Envoie ces 3 rapports sur le site http://pjjoint.malekal.com/ et en retour donne les 3 liens pjjoint qui mènent aux rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.
Probablement malware.
Voici les étapes de la procédure à suivre :
1°) AdwCleaner
Suis le tutoriel AdwCleaner d'Xplode
- Télécharge le sur ton Bureau ou dans ton dossier des téléchargements,
- Lance "AdwCleaner" et clique sur [Scanner],
- L'analyse va durer plusieurs minutes, patiente,
- Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer],
- Une fois le nettoyage terminé, un rapport va s'ouvrir,
- Copie/colle le contenu du rapport dans ta prochaine réponse.
Si le copié/collé ne fonctionne pas, utilise le site http://pjjoint.malekal.com/ pour héberger ton rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
2°) FRST
Suis le tutoriel FRST. ( prends le temps de lire attentivement - tout y est bien expliqué ).
Télécharge et lance le scan FRST, 3 rapports FRST seront générés :
- FRST.txt
- Shortcut.txt
- Additionnal.txt
Envoie ces 3 rapports sur le site http://pjjoint.malekal.com/ et en retour donne les 3 liens pjjoint qui mènent aux rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 660
3 juil. 2016 à 19:02
3 juil. 2016 à 19:02
Les rapports FRST sont à transmettre via pjjoint
Lis les instructions.
Lis les instructions.
3 juil. 2016 à 17:43
# Mis à jour le 30/06/2016 par ToolsLib
# Base de données : 2016-07-01.1 [Serveur]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (X64)
# Nom d'utilisateur : Stephane - STEPHANE-PC
# Exécuté depuis : C:\Users\Stephane\Downloads\adwcleaner_5.201.exe
# Option : Nettoyer
# Support : https://toolslib.net/forum
[-] Service supprimé : cherimoya
[-] Service supprimé : zigipyro
[-] Service supprimé : JtsLncs
[-] Service supprimé : dowidoly
[-] Service supprimé : rijufoze
[-] Service supprimé : zewohosyzbt
[!] Service Non supprimé : zigipyro
[-] Dossier supprimé : C:\ProgramData\LuckyBrowse
[#] Dossier supprimé : C:\ProgramData\Application Data\LuckyBrowse
[-] Dossier supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
[-] Dossier supprimé : C:\Program Files (x86)\DriverToolkit
[-] Dossier supprimé : C:\Program Files (x86)\WebShield
[-] Dossier supprimé : C:\Program Files (x86)\WeatherChickn
[-] Dossier supprimé : C:\Program Files (x86)\00000000-1467231982-0000-0000-D43D7EBBCBBF
[-] Dossier supprimé : C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}
[-] Dossier supprimé : C:\Users\Stephane\AppData\Local\DriverToolkit
[-] Dossier supprimé : C:\Users\Stephane\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
[-] Dossier supprimé : C:\Users\Stephane\AppData\Local\00000000-1467561177-0000-0000-D43D7EBBCBBF
[-] Dossier supprimé : C:\Users\Stephane\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}
[-] Dossier supprimé : C:\extensions
[-] Dossier supprimé : C:\uninst
[-] Fichier supprimé : C:\ProgramData\xldl.dll
[#] Fichier supprimé : C:\ProgramData\Application Data\xldl.dll
[-] Fichier supprimé : C:\Users\Stephane\AppData\Roaming\Bubble Dock.boostrap.log
[-] Fichier supprimé : C:\Users\Stephane\AppData\Roaming\WindApp.boostrap.log
[-] Fichier supprimé : C:\Windows\SysNative\drivers\cherimoya.sys
[#] Fichier supprimé : C:\ProgramData\xldl.dll
[-] Raccourci désinfecté : C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[-] Raccourci désinfecté : C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[-] Raccourci désinfecté : C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
[-] Raccourci désinfecté : C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[-] Tâche supprimée : LuckyBrowse
[-] Tâche supprimée : DRIVERTOOLKIT AUTORUN
[-] Clé supprimée : HKCU\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Clé supprimée : HKLM\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Clé supprimée : HKLM\SOFTWARE\Classes\AppID\{425F4ABF-B8E4-402D-9E49-06E494EB8DBF}
[-] Clé supprimée : HKLM\SOFTWARE\Classes\CLSID\{7D8DAE88-BC05-4578-8C29-E541FFBA5757}
[-] Clé supprimée : HKLM\SOFTWARE\Classes\CLSID\{C379EAD1-CB34-4B09-AF6B-7E587F8BCD80}
[-] Clé supprimée : HKLM\SOFTWARE\Classes\Interface\{A9582D7B-F24A-441D-9D26-450D58F3CD17}
[-] Clé supprimée : HKLM\SOFTWARE\Classes\Interface\{EE0D8859-2ED4-4B0D-9812-16865B9AFD65}
[-] Clé supprimée : HKLM\SOFTWARE\Classes\TypeLib\{14EF423E-3EE8-44AE-9337-07AC3F27B744}
[-] Clé supprimée : HKCU\Software\DriverToolkit
[-] Clé supprimée : HKCU\Software\IM
[-] Clé supprimée : HKCU\Software\Nosibay
[-] Clé supprimée : HKCU\Software\Store
[-] Clé supprimée : HKCU\Software\UCBrowser
[-] Clé supprimée : HKCU\Software\UCBrowserPID
[-] Clé supprimée : HKLM\SOFTWARE\LuckyBrowse
[-] Clé supprimée : HKLM\SOFTWARE\SrpnFiles
[-] Clé supprimée : HKLM\SOFTWARE\{E6276374-DE18-4AA5-A365-9016A2F98A2D}
[-] Clé supprimée : HKLM\SOFTWARE\UCBrowserPID
[-] Clé supprimée : HKLM\SOFTWARE\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
[-] Clé supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1
[-] Clé supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PopupProduct
[-] Clé supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
[-] Clé supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WebShield
[-] Clé supprimée : [x64] HKLM\SOFTWARE\Speedchecker Limited
[-] Clé supprimée : [x64] HKLM\SOFTWARE\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
[-] Clé supprimée : HKU\.DEFAULT\Software\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
[-] Valeur supprimée : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{A612D009-90AB-42DB-861C-9675469B5E1E}]
[-] Valeur supprimée : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{D88C5C30-1BC5-4A8D-8C0F-2319316228A3}]
[-] Donnée restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{8807857A-A11C-4867-A028-CAA84FEDC521} [NameServer]
:: Clés "Tracing" supprimées
:: Paramètres Winsock réinitialisés
C:\AdwCleaner\AdwCleaner[C1].txt - [11669 octets] - [20/06/2016 13:57:00]
C:\AdwCleaner\AdwCleaner[C2].txt - [1489 octets] - [20/06/2016 14:21:18]
C:\AdwCleaner\AdwCleaner[C3].txt - [5681 octets] - [03/07/2016 16:34:38]
C:\AdwCleaner\AdwCleaner[S1].txt - [16094 octets] - [20/06/2016 13:42:11]
C:\AdwCleaner\AdwCleaner[S2].txt - [1368 octets] - [20/06/2016 14:17:43]
C:\AdwCleaner\AdwCleaner[S3].txt - [1160 octets] - [20/06/2016 14:29:40]
C:\AdwCleaner\AdwCleaner[S4].txt - [6605 octets] - [03/07/2016 16:25:05]
########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [6052 octets] ##########
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-07-2016
Exécuté par Stephane (administrateur) sur STEPHANE-PC (03-07-2016 17:23:08)
Exécuté depuis C:\Users\Stephane\Downloads
Profils chargés: Stephane (Profils disponibles: Stephane)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() C:\Users\Stephane\AppData\Roaming\JulbHivi\Xetgi.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Users\Stephane\AppData\Roaming\Kojkac\Kojkac.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
() C:\Users\Stephane\AppData\Roaming\Kojkac\Ipicmh.exe
() C:\Users\Stephane\AppData\Roaming\Kojkac\Mavjav.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(BitTorrent Inc.) C:\Users\Stephane\AppData\Roaming\uTorrent\uTorrent.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
(Mega Limited) C:\Users\Stephane\AppData\Local\MEGAsync\MEGAsync.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-10-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-05-20] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-05-06] (LogMeIn Inc.)
HKLM-x32\...\Run: [smss.exe -start] => C:\ProgramData\smss.exe [387072 2016-06-08] (TODO: <公司名>)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2917456 2016-06-15] (Valve Corporation)
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53130368 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3759376 2014-11-24] (Disc Soft Ltd)
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\...\Run: [uTorrent] => C:\Users\Stephane\AppData\Roaming\uTorrent\uTorrent.exe [2133504 2016-06-19] (BitTorrent Inc.)
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\...\Run: [fastweb] => "C:\Program Files (x86)\FastWeb\fastweb.exe"
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\...\Run: [QGuan10in1] => C:\Users\Stephane\AppData\Roaming\UPUpdata\service72564.exe /autorun
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\...\MountPoints2: E - E:\setup.exe
ShellExecuteHooks: - {98C066AB-D735-4339-9E52-A34875141B56} - Pas de fichier [ ]
ShellIconOverlayIdentifiers: ###MegaShellExtPending -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Stephane\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: ###MegaShellExtSynced -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Stephane\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: ###MegaShellExtSyncing -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Stephane\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier
ShellIconOverlayIdentifiers-x32: ###MegaShellExtPending -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Stephane\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: ###MegaShellExtSynced -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Stephane\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: ###MegaShellExtSyncing -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Stephane\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-06-23]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Stephane\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
AutoConfigURL: [S-1-5-21-194274908-3574576832-3986290747-1000] => hxxp://un-stop.info/wpad.dat?f2ba1894b468e02cae5d3271df32baae11927763
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{1C2E1E94-A0BC-475A-A188-E397C023D20C}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8807857A-A11C-4867-A028-CAA84FEDC521}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{8807857A-A11C-4867-A028-CAA84FEDC521}: [DhcpNameServer] 192.168.42.129
ManualProxies: 0hxxp://un-stop.info/wpad.dat?f2ba1894b468e02cae5d3271df32baae11927763
Internet Explorer:
==================
HKU\S-1-5-21-194274908-3574576832-3986290747-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=131111028081765991&GUID=065D0299-9F15-49CB-8A27-29EC84DB6144
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKU\S-1-5-21-194274908-3574576832-3986290747-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-06-22] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-22] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Stephane\AppData\Roaming\Mozilla\Firefox\Profiles\jvmfd1fh.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-23] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-22] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-23] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-01] (Google Inc.)
FF user.js: detected! => C:\Users\Stephane\AppData\Roaming\Mozilla\Firefox\Profiles\jvmfd1fh.default\user.js [2016-06-30]
Chrome:
=======
CHR HomePage: Profile 3 -> hxxp://www.google.fr/
CHR StartupUrls: Profile 3 -> "hxxp://www.trotux.com/?z=59396f34c73a8325ad5363bg7z0qfq0zbo1m4o5c1m&from=epf1&uid=ST31500341AS_9VS3J1PWXXXX9VS3J1PW&type=hp"
CHR Profile: C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\ChromeDefaultData
CHR Extension: (Google Drive) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-15]
CHR Extension: (YouTube) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-15]
CHR Extension: (Google Sheets) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-15]
CHR Extension: (Gmail) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-15]
CHR Profile: C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Profile: C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3
CHR Extension: (Google Slides) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-01]
CHR Extension: (Google Docs) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-01]
CHR Extension: (Google Drive) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-01]
CHR Extension: (YouTube) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-01]
CHR Extension: (Google Sheets) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-01]
CHR Extension: (Gmail) - C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-01]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Derokeu; C:\Users\Stephane\AppData\Roaming\JulbHivi\Xetgi.exe [121344 2016-06-29] () [Fichier non signé]
R3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe [2216208 2014-11-24] (Disc Soft Ltd)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S2 Ijugf; C:\Users\Stephane\AppData\Roaming\Sodleicn\Sodleicn.exe [170496 2016-06-20] () [Fichier non signé]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [419248 2016-05-06] (LogMeIn, Inc.)
R2 Logcukq; C:\Users\Stephane\AppData\Roaming\Kojkac\Kojkac.exe [170496 2016-06-29] () [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S2 NorseanuhitionagentService; "C:\Program Files (x86)\Norseanuhition\NorseanuhitionagentService.html5" {79740E79-A383-47A7-B513-3DF6563D007F} {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83} [X]
S2 Tytbesao; "C:\Users\Stephane\AppData\Roaming\FukfiThgij\Loenpit.exe" -cms [X]
S2 WeatherChiknSrvr; C:\Program Files (x86)\WeatherChickn\WeatherChickn.exe [X]
S2 wUZKQVNJ; C:\Program Files (x86)\WebShield\WebShield.exe [X]
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29864 2016-06-19] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-06-21] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [39168 2014-10-08] (SteelSeries Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Apple, Inc.) [Fichier non signé]
S3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [10368 2009-09-16] () [Fichier non signé]
S3 blNetFilter; \??\C:\Windows\system32\drivers\blNetFilter.sys [X]
S1 buniuhff; \??\C:\Windows\system32\drivers\buniuhff.sys [X]
S3 esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S0 NKMWSTVHIG; System32\Drivers\askProtect64.sys [X]
S1 oribkwbd; \??\C:\Windows\system32\drivers\oribkwbd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-07-03 17:23 - 2016-07-03 17:25 - 00015695 _____ C:\Users\Stephane\Downloads\FRST.txt
2016-07-03 17:22 - 2016-07-03 17:23 - 00000000 ____D C:\FRST
2016-07-03 17:22 - 2016-07-03 17:22 - 02390016 _____ (Farbar) C:\Users\Stephane\Downloads\FRST64.exe
2016-07-03 17:22 - 2016-07-03 17:22 - 00006144 _____ C:\Users\Stephane\Documents\new 1.txt
2016-07-03 16:35 - 2016-07-03 16:35 - 00000000 ____D C:\Windows\system32\uxh
2016-07-03 16:24 - 2016-07-03 16:24 - 03712064 _____ C:\Users\Stephane\Downloads\adwcleaner_5.201.exe
2016-07-03 14:42 - 2016-07-03 14:58 - 69498556 _____ C:\Users\Stephane\Downloads\SamantCMS.zip
2016-07-03 12:20 - 2016-07-03 12:20 - 00000000 ____D C:\Windows\system32\votn
2016-07-03 10:26 - 2016-07-03 10:26 - 03757293 _____ C:\Users\Stephane\Downloads\virtue.2.7.3.zip
2016-07-03 10:19 - 2016-07-03 10:19 - 02224128 _____ C:\Users\Stephane\ZHPDiag3.exe
2016-07-03 10:16 - 2016-07-03 10:22 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\ZHP
2016-07-03 10:16 - 2016-07-03 10:16 - 02216960 _____ C:\Users\Stephane\Downloads\ZHPDiag3.exe
2016-07-03 00:02 - 2016-07-03 00:02 - 00000000 ____D C:\Windows\system32\cel
2016-07-02 21:36 - 2016-07-02 21:36 - 00000000 ____D C:\Windows\system32\jeb
2016-07-02 19:37 - 2016-07-02 19:37 - 00000000 ____D C:\Windows\system32\hhor
2016-07-02 17:26 - 2016-07-02 17:26 - 00000000 ____D C:\Program Files (x86)\Mafia 2 Multiplayer
2016-07-02 17:19 - 2016-07-02 17:19 - 00002101 _____ C:\Users\Public\Desktop\Mafia II.lnk
2016-07-02 17:19 - 2016-07-02 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2K Games
2016-07-02 16:53 - 2016-07-02 16:53 - 00000000 ____D C:\Users\Stephane\AppData\Local\2K Games
2016-07-02 16:29 - 2016-07-02 17:26 - 00001070 _____ C:\Users\Public\Desktop\Mafia 2 Multiplayer.lnk
2016-07-02 16:29 - 2016-07-02 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mafia 2 Multiplayer
2016-07-02 16:04 - 2016-07-02 16:04 - 00000000 ____D C:\Program Files (x86)\2K Games
2016-07-02 14:23 - 2016-07-02 14:23 - 00000000 ____D C:\Windows\system32\nari
2016-07-02 13:02 - 2016-07-02 13:02 - 00000000 ____D C:\Windows\system32\tek
2016-07-02 12:53 - 2016-07-02 12:53 - 04847056 _____ C:\Users\Stephane\Downloads\ACarena.rar
2016-07-02 12:23 - 2016-07-02 12:23 - 00084904 _____ C:\Users\Stephane\Downloads\minecraftserverstatus.zip
2016-07-02 12:00 - 2016-07-02 12:00 - 00028844 _____ C:\Users\Stephane\Downloads\minecraft-onlineusers-widget.zip
2016-07-02 10:58 - 2016-07-03 17:26 - 00000000 ____D C:\Users\Stephane\Documents\OrionMc
2016-07-02 10:54 - 2016-07-02 11:14 - 00000600 _____ C:\Users\Stephane\AppData\Local\PUTTY.RND
2016-07-02 10:48 - 2016-07-02 14:40 - 00000000 ____D C:\Users\Stephane\Downloads\Mafia II-SKIDROW
2016-07-02 10:48 - 2016-07-02 10:49 - 28527304 _____ C:\Users\Stephane\Downloads\M2MP 01B RC2 1 By MultiJulien56(2).exe
2016-07-02 10:47 - 2016-07-02 10:47 - 00029323 _____ C:\Users\Stephane\Downloads\Mafia II Skidrow By MultiJulien56.torrent
2016-07-02 10:17 - 2016-07-02 10:17 - 00000000 ____D C:\Users\Stephane\AppData\Local\Macromedia
2016-07-02 09:51 - 2016-07-02 09:51 - 00000000 ____D C:\Windows\system32\mou
2016-07-01 21:31 - 2016-07-01 21:31 - 00000000 ____D C:\Windows\system32\duwr
2016-07-01 21:20 - 2016-07-01 21:22 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Apple Computer
2016-07-01 21:20 - 2016-07-01 21:20 - 00000000 ____D C:\Users\Stephane\AppData\Local\Apple Computer
2016-07-01 21:18 - 2016-07-01 21:18 - 00000000 ____D C:\ProgramData\Apple Computer
2016-07-01 21:13 - 2016-07-01 21:13 - 00000000 ____D C:\Users\Stephane\AppData\Local\Apple
2016-07-01 21:09 - 2016-07-02 09:44 - 00000000 ____D C:\ProgramData\Apple
2016-07-01 21:05 - 2016-07-01 21:07 - 170473288 _____ (Apple Inc.) C:\Users\Stephane\Downloads\iTunes6464Setup.exe
2016-07-01 20:57 - 2016-07-01 20:59 - 119054664 _____ (Apple Inc.) C:\Users\Stephane\Downloads\iTunesSetup.exe
2016-07-01 20:57 - 2016-07-01 20:57 - 00003466 _____ C:\Windows\System32\Tasks\{3C14574A-D803-475C-9C6D-5BAADBC945E2}
2016-07-01 20:43 - 2016-07-01 20:44 - 01074600 _____ (iMobie Inc.) C:\Users\Stephane\Downloads\anytrans-setup.exe
2016-07-01 15:10 - 2016-07-01 15:10 - 00000000 ____D C:\Windows\system32\afo
2016-07-01 14:23 - 2016-07-01 14:23 - 00019849 _____ C:\Users\Stephane\Downloads\king_arthur_legend.zip
2016-07-01 14:22 - 2016-07-01 14:22 - 00086900 _____ C:\Users\Stephane\Downloads\augusta.zip
2016-07-01 14:22 - 2016-07-01 14:22 - 00028600 _____ C:\Users\Stephane\Downloads\black_castle.zip
2016-07-01 14:00 - 2016-07-01 14:00 - 01815166 _____ C:\Users\Stephane\Downloads\Nouveau Archive WinRAR.rar
2016-07-01 10:17 - 2016-07-01 10:17 - 00002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-01 10:17 - 2016-07-01 10:17 - 00002253 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-01 10:16 - 2016-07-03 17:21 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-01 10:16 - 2016-07-03 16:38 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-01 10:16 - 2016-07-01 10:16 - 00004100 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-01 10:16 - 2016-07-01 10:16 - 00003848 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-01 08:12 - 2016-07-01 08:12 - 00000000 ____D C:\Windows\system32\jiuc
2016-07-01 04:27 - 2016-07-01 04:27 - 00000000 ____D C:\Windows\system32\auor
2016-07-01 04:19 - 2016-07-01 04:19 - 00000000 ____D C:\Windows\system32\seb
2016-07-01 04:07 - 2016-06-30 18:50 - 00000000 ____D C:\Users\Stephane\Desktop\TEST
2016-06-30 16:50 - 2016-06-30 16:50 - 00000000 ____D C:\Windows\system32\pix
2016-06-30 16:22 - 2016-06-30 16:49 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\.minecraft
2016-06-30 16:20 - 2016-06-30 16:22 - 38853621 _____ C:\Users\Stephane\Downloads\SamantCMS.rar
2016-06-30 16:02 - 2016-06-30 16:22 - 00000000 ____D C:\Program Files (x86)\Minecraft
2016-06-30 16:02 - 2016-06-30 16:02 - 00000961 _____ C:\Users\Public\Desktop\Minecraft.lnk
2016-06-30 16:02 - 2016-06-30 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2016-06-30 16:01 - 2016-06-30 16:01 - 02314240 _____ C:\Users\Stephane\Downloads\MinecraftInstaller.msi
2016-06-30 15:40 - 2016-06-30 15:45 - 00000000 ____D C:\Users\Stephane\Documents\Firestorm
2016-06-30 14:27 - 2016-06-30 14:33 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-06-30 14:24 - 2016-06-30 14:24 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Kojkac
2016-06-30 14:24 - 2016-06-30 14:24 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\JulbHivi
2016-06-30 14:24 - 2016-06-30 14:24 - 00000000 ____D C:\Users\Public\Thunder Network
2016-06-30 14:24 - 2016-06-30 14:24 - 00000000 ____D C:\ProgramData\Thunder Network
2016-06-30 14:23 - 2016-06-30 14:23 - 00000000 ____D C:\ProgramData\download
2016-06-30 14:23 - 2016-06-08 09:51 - 00387072 _____ (TODO: <公司名>) C:\ProgramData\smss.exe
2016-06-30 12:18 - 2016-06-30 12:18 - 00001647 _____ C:\Users\Stephane\Documents\pixelads.txt
2016-06-30 11:43 - 2016-06-30 11:43 - 00001099 _____ C:\Users\Stephane\Desktop\Cheat Engine.lnk
2016-06-30 11:43 - 2016-06-30 11:43 - 00000000 ____D C:\Users\Stephane\Documents\My Cheat Tables
2016-06-30 11:43 - 2016-06-30 11:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5.1
2016-06-30 11:43 - 2016-06-30 11:43 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.5.1
2016-06-30 11:37 - 2016-06-30 11:37 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\OpenOffice
2016-06-30 11:36 - 2016-06-30 11:36 - 00001076 _____ C:\Users\Public\Desktop\OpenOffice 4.1.2.lnk
2016-06-30 11:36 - 2016-06-30 11:36 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2016-06-30 11:35 - 2016-06-30 11:35 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2016-06-30 11:27 - 2016-06-30 11:27 - 02302791 _____ C:\Users\Stephane\Downloads\brevet histoire.odt
2016-06-30 11:21 - 2016-06-30 11:27 - 132342915 _____ C:\Users\Stephane\Downloads\Apache_OpenOffice_4.1.2_Win_x86_install_fr.exe
2016-06-30 11:13 - 2016-06-30 11:13 - 00000000 ____D C:\Users\Stephane\Downloads\brevet
2016-06-30 08:04 - 2016-07-03 09:17 - 00000000 ____D C:\Users\Stephane\AppData\Local\ElevatedDiagnostics
2016-06-29 22:29 - 2016-06-29 22:18 - 00001006 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-06-29 22:24 - 2016-07-02 10:00 - 00000000 ____D C:\Users\Stephane\Downloads\Mafia II [English][PCDVD][TODOS LOS DLC][AGB Golden Team][WwW.GamesTorrents.CoM]
2016-06-29 22:23 - 2016-06-29 22:23 - 00013747 _____ C:\Users\Stephane\Downloads\mafia-ii-englishpcdvdtodos-los-dlcagb-golden-teamwwwgamestorrentsco..torrent
2016-06-29 22:22 - 2016-06-29 22:23 - 00076946 _____ C:\Users\Stephane\Downloads\Mafia.II.%2B.FULL.Crack.V2.%5BMULTI5%5D%5BPCDVD%5D%5BWwW.GamesTorrents.CoM%5D.t6593.torrent
2016-06-29 17:16 - 2016-07-02 15:21 - 00000000 ____D C:\Users\Stephane\AppData\Local\Game Dev Tycoon - Steam
2016-06-29 17:07 - 2016-06-29 17:07 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Ubisoft
2016-06-29 16:40 - 2016-06-29 16:40 - 00000000 ____D C:\ProgramData\Ubisoft
2016-06-29 16:24 - 2016-06-29 16:24 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2016-06-29 16:09 - 2016-06-29 16:14 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-06-29 15:56 - 2016-06-29 17:51 - 00001264 _____ C:\Users\Stephane\Desktop\GTA SA - Raccourci.lnk
2016-06-29 14:59 - 2016-06-30 09:20 - 00000000 ____D C:\Users\Stephane\Downloads\xpadder_gamepad_profiler
2016-06-29 14:52 - 2016-06-29 14:52 - 00002106 _____ C:\Users\Public\Desktop\RollerCoaster Tycoon® 3.lnk
2016-06-29 14:50 - 2016-06-29 14:51 - 00000000 ____D C:\Users\Stephane\Documents\GTA San Andreas User Files
2016-06-29 14:50 - 2002-02-27 18:50 - 00197120 _____ C:\Windows\patchw32.dll
2016-06-29 14:40 - 2016-06-29 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari
2016-06-29 14:40 - 2016-06-29 14:40 - 00000000 ____D C:\Program Files (x86)\Atari
2016-06-29 11:43 - 2016-06-29 13:55 - 00000000 ____D C:\Users\Stephane\Downloads\Assassins Creed
2016-06-29 11:40 - 2016-06-29 11:40 - 00000000 ____D C:\Users\Stephane\Documents\RCT3
2016-06-29 11:40 - 2016-06-29 11:40 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-06-29 11:40 - 2016-06-29 11:40 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Atari
2016-06-29 10:35 - 2016-06-29 10:35 - 00000000 ____D C:\Users\Stephane\Downloads\Roller Coaster Tycoon 3
2016-06-29 09:02 - 2016-06-29 09:11 - 00000000 ____D C:\Users\Stephane\AppData\Local\Mozilla
2016-06-29 09:02 - 2016-06-29 09:02 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-06-29 09:02 - 2016-06-29 09:02 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-06-29 09:02 - 2016-06-29 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-29 09:02 - 2016-06-29 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-28 18:35 - 2016-06-28 18:44 - 00000000 ____D C:\Users\Stephane\Documents\Reus
2016-06-28 14:17 - 2016-06-30 16:44 - 00001168 _____ C:\Users\Stephane\Desktop\nativelog.txt
2016-06-28 10:15 - 2016-06-28 10:15 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\java
2016-06-28 09:46 - 2016-07-02 11:19 - 00000000 ____D C:\Users\Stephane\Downloads\radio
2016-06-27 10:54 - 2016-06-27 10:54 - 00001540 _____ C:\Users\Public\Desktop\Reus.lnk
2016-06-27 10:54 - 2016-06-27 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-06-27 10:51 - 2016-06-27 10:51 - 00005433 _____ C:\Users\Stephane\Desktop\AbsoluteDrift - Raccourci.lnk
2016-06-27 10:51 - 2016-06-27 10:51 - 00005342 _____ C:\Users\Stephane\Desktop\H2o - Raccourci.lnk
2016-06-27 10:51 - 2016-06-27 10:51 - 00005337 _____ C:\Users\Stephane\Desktop\StellarOverload - Raccourci.lnk
2016-06-27 08:44 - 2016-06-27 08:48 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\.allfightpvp
2016-06-26 17:13 - 2016-06-26 17:13 - 00519017 _____ C:\Users\Stephane\Downloads\AllFight PvP.exe
2016-06-26 16:40 - 2016-06-26 16:40 - 00000000 __SHD C:\ProgramData\DSS
2016-06-26 15:58 - 2016-06-26 15:58 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-06-26 15:58 - 2016-06-26 15:58 - 00000000 ____D C:\ProgramData\EA Core
2016-06-26 15:36 - 2016-06-26 15:36 - 00002629 _____ C:\Users\Public\Desktop\Les Sims™ Medieval Nobles et Pirates.lnk
2016-06-26 15:10 - 2016-06-26 15:10 - 00000000 ____D C:\Program Files (x86)\Microsoft WSE
2016-06-26 15:07 - 2016-06-26 15:07 - 00002198 _____ C:\Users\Public\Desktop\Les Sims™ Medieval.lnk
2016-06-26 15:02 - 2016-06-26 15:33 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2016-06-25 08:31 - 2016-06-25 08:31 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2016-06-25 08:17 - 2016-06-25 08:17 - 00000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 - Get to Work.lnk
2016-06-24 18:51 - 2016-06-26 15:58 - 00000000 ____D C:\Users\Stephane\Documents\Electronic Arts
2016-06-24 18:51 - 2016-06-25 08:32 - 00001602 _____ C:\Users\Stephane\Desktop\TS4.lnk
2016-06-24 18:46 - 2016-06-25 08:22 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-24 18:38 - 2016-06-24 18:38 - 00001191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4.lnk
2016-06-24 18:08 - 2016-06-25 08:17 - 00000000 ____D C:\Program Files (x86)\The Sims 4
2016-06-24 17:43 - 2016-06-24 17:45 - 00000000 ____D C:\Users\Stephane\AppData\Local\Microsoft Games
2016-06-24 14:23 - 2016-07-03 11:07 - 00000132 _____ C:\Users\Stephane\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-06-24 13:47 - 2016-06-24 13:47 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow\Touz
2016-06-24 13:12 - 2016-06-24 13:12 - 00001693 _____ C:\Users\Stephane\Desktop\The Fifth Day v0.0.3.lnk
2016-06-24 11:35 - 2016-06-24 11:35 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\MMFApplications
2016-06-24 11:34 - 2016-06-24 11:34 - 00000000 ___SD C:\Users\Stephane\AppData\LocalLow\Temp
2016-06-24 11:15 - 2016-06-24 11:15 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Blender Foundation
2016-06-24 11:14 - 2016-06-24 11:14 - 00000000 ____D C:\Users\Stephane\.thumbnails
2016-06-24 11:13 - 2016-06-24 11:13 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2016-06-24 11:12 - 2016-06-24 11:12 - 00000000 ____D C:\Program Files\Blender Foundation
2016-06-24 11:09 - 2016-06-24 11:09 - 00000000 ____D C:\ProgramData\RELOADED
2016-06-24 10:57 - 2016-06-24 10:57 - 00007526 _____ C:\Users\Stephane\Desktop\GameDevTycoon - Raccourci.lnk
2016-06-24 10:57 - 2016-06-24 10:57 - 00005841 _____ C:\Users\Stephane\Desktop\Attack_on_Titan_Tribute_Game_v01042015 - Raccourci.lnk
2016-06-24 10:54 - 2016-06-24 10:54 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Blockscape
2016-06-24 09:30 - 2016-06-24 09:30 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2016-06-24 09:23 - 2016-06-24 09:23 - 00001031 _____ C:\Users\Public\Desktop\Blockscape.lnk
2016-06-24 09:23 - 2016-06-24 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blockscape
2016-06-24 09:22 - 2016-06-24 09:23 - 00000000 ____D C:\Program Files (x86)\Blockscape
2016-06-24 09:22 - 2016-06-24 09:22 - 00005372 _____ C:\Users\Stephane\Desktop\Besiege - Raccourci.lnk
2016-06-24 09:22 - 2016-06-24 09:22 - 00005367 _____ C:\Users\Stephane\Desktop\CubeLauncher - Raccourci.lnk
2016-06-24 08:51 - 2016-06-24 08:51 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow\noio
2016-06-24 08:48 - 2016-06-24 08:50 - 00000000 ____D C:\Users\Stephane\AppData\Local\nuclearthrone
2016-06-24 08:48 - 2016-06-24 08:48 - 00007573 _____ C:\Users\Stephane\Desktop\nuclearthrone - Raccourci.lnk
2016-06-24 08:36 - 2016-06-24 08:36 - 00005482 _____ C:\Users\Stephane\Desktop\Kingdom - Raccourci.lnk
2016-06-24 08:35 - 2016-06-24 08:35 - 00005514 _____ C:\Users\Stephane\Desktop\FiveNightsatFreddys3 - Raccourci.lnk
2016-06-24 07:40 - 2016-06-24 07:40 - 00000951 _____ C:\Users\Stephane\Desktop\Rake.lnk
2016-06-24 07:40 - 2016-06-24 07:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rake
2016-06-24 07:38 - 2016-06-24 07:40 - 00000000 ____D C:\Program Files (x86)\Rake
2016-06-24 07:36 - 2016-06-24 07:36 - 00000784 _____ C:\Users\Stephane\Desktop\RpgQuest v1.0 - Raccourci.lnk
2016-06-23 20:56 - 2016-06-23 20:56 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Publish Providers
2016-06-23 20:49 - 2016-06-23 20:50 - 00006098 _____ C:\Windows\system32\--traceoff
2016-06-23 20:49 - 2016-06-23 20:49 - 00001038 _____ C:\Users\Public\Desktop\Vegas Pro 13.0 (64-bit).lnk
2016-06-23 20:49 - 2016-06-23 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-06-23 20:49 - 2016-06-23 20:49 - 00000000 _____ C:\Windows\system32\--debugoff
2016-06-23 20:48 - 2016-06-23 20:55 - 00000000 ____D C:\Users\Stephane\AppData\Local\Sony
2016-06-23 20:48 - 2016-06-23 20:48 - 00000000 ____D C:\ProgramData\Sony
2016-06-23 20:48 - 2016-06-23 20:48 - 00000000 ____D C:\Program Files\Sony
2016-06-23 20:48 - 2016-06-23 20:48 - 00000000 ____D C:\Program Files (x86)\Sony
2016-06-23 19:21 - 2016-07-03 17:16 - 00000000 ____D C:\Users\Stephane\AppData\Local\LogMeIn Hamachi
2016-06-23 19:21 - 2016-06-23 19:21 - 00000000 ____D C:\Users\Stephane\AppData\Local\LogMeIn
2016-06-23 19:21 - 2016-06-23 19:21 - 00000000 ____D C:\ProgramData\LogMeIn
2016-06-23 18:55 - 2016-06-23 18:55 - 00001541 _____ C:\Users\Stephane\Desktop\WormsReloaded - Raccourci.lnk
2016-06-23 18:42 - 2016-06-23 18:42 - 00000000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Worms Reloaded
2016-06-23 18:36 - 2016-06-23 18:40 - 00000000 ____D C:\83efc7da1d0add8235f7ef19
2016-06-23 18:30 - 2016-06-23 18:55 - 00000000 ____D C:\Program Files (x86)\Worms Reloaded
2016-06-23 18:30 - 2016-06-23 18:30 - 00001055 _____ C:\Users\Public\Desktop\SpeedRunners.lnk
2016-06-23 18:30 - 2016-06-23 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default)
2016-06-23 18:29 - 2016-06-23 18:30 - 00000000 ____D C:\Program Files (x86)\SpeedRunners
2016-06-23 18:21 - 2016-06-23 18:21 - 00005077 _____ C:\Users\Stephane\Desktop\Gang Beasts - Raccourci.lnk
2016-06-23 18:06 - 2016-06-23 18:06 - 00000000 ___RD C:\Users\Stephane\Documents\MEGA
2016-06-23 15:21 - 2016-06-23 21:35 - 00000000 ____D C:\Users\Stephane\Documents\Werra
2016-06-23 14:28 - 2016-06-26 09:58 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\.RpgQuest
2016-06-23 14:27 - 2016-06-23 14:27 - 01510515 _____ C:\Users\Stephane\Downloads\RpgQuest v1.0.exe
2016-06-23 13:35 - 2016-06-23 13:35 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2016-06-23 13:35 - 2016-06-23 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-06-23 13:35 - 2016-06-23 13:35 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-06-23 13:13 - 2016-06-23 13:13 - 00000996 _____ C:\Users\Stephane\Desktop\GameSpy Arcade.lnk
2016-06-23 13:12 - 2016-06-23 13:13 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2016-06-23 13:12 - 2016-06-23 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2016-06-23 13:11 - 2016-06-23 13:13 - 00000000 ____D C:\Program Files (x86)\GameSpy Arcade
2016-06-23 12:53 - 2016-07-03 16:38 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-23 12:53 - 2016-06-23 12:53 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-06-23 12:53 - 2016-06-23 12:53 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-23 12:53 - 2016-06-23 12:53 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-06-23 12:52 - 2016-06-23 12:52 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-06-23 12:52 - 2016-06-23 12:52 - 00000000 ____D C:\Windows\system32\Macromed
2016-06-23 12:49 - 2016-06-25 16:26 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Audacity
2016-06-23 12:49 - 2016-06-23 12:49 - 00001062 _____ C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2016-06-23 12:49 - 2016-06-23 12:49 - 00001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-06-23 12:49 - 2016-06-23 12:49 - 00001007 _____ C:\Users\Public\Desktop\Audacity.lnk
2016-06-23 12:49 - 2016-06-23 12:49 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\GameRanger
2016-06-23 12:47 - 2016-06-23 13:48 - 00000000 ____D C:\Program Files (x86)\Audacity
2016-06-23 12:32 - 2016-06-23 12:32 - 00004304 _____ C:\Users\Stephane\Desktop\TheComa - Raccourci.lnk
2016-06-22 20:38 - 2016-06-22 20:44 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\TS3Client
2016-06-22 20:37 - 2016-06-22 20:37 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2016-06-22 20:37 - 2016-06-22 20:37 - 00000929 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-06-22 20:37 - 2016-06-22 20:37 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-06-22 17:41 - 2016-06-22 17:41 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-06-22 17:41 - 2016-06-22 17:41 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Sun
2016-06-22 17:41 - 2016-06-22 17:41 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow\Sun
2016-06-22 17:41 - 2016-06-22 17:41 - 00000000 ____D C:\Users\Stephane\.oracle_jre_usage
2016-06-22 17:41 - 2016-06-22 17:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-06-22 17:40 - 2016-06-22 17:40 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow\Oracle
2016-06-22 17:40 - 2016-06-22 17:40 - 00000000 ____D C:\ProgramData\Oracle
2016-06-22 17:40 - 2016-06-22 17:40 - 00000000 ____D C:\Program Files\Java
2016-06-22 17:26 - 2016-06-22 17:32 - 00000000 ____D C:\Users\Stephane\Documents\Stronghold 2
2016-06-22 15:45 - 2016-06-22 16:43 - 00000000 ____D C:\Users\Stephane\Documents\Johan
2016-06-22 14:28 - 2016-06-22 14:28 - 00001926 _____ C:\Users\Public\Desktop\Stronghold 2.lnk
2016-06-22 13:44 - 2016-06-27 11:27 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Notepad++
2016-06-22 13:44 - 2016-06-22 13:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-06-22 13:44 - 2016-06-22 13:44 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-06-22 13:04 - 2016-06-22 13:04 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-06-22 10:57 - 2016-06-22 11:19 - 00000000 ____D C:\Users\Stephane\Documents\Explor
2016-06-22 10:34 - 2016-07-03 10:18 - 00001912 _____ C:\Windows\epplauncher.mif
2016-06-21 13:38 - 2016-06-21 14:36 - 00868351 _____ C:\spyhunter.fix
2016-06-21 12:48 - 2016-06-21 14:06 - 00000000 ____D C:\Users\Stephane\Documents\LyraxYT
2016-06-21 12:29 - 2016-06-21 12:29 - 00000000 ____D C:\Program Files (x86)\Enigma Software Group
2016-06-21 12:28 - 2016-06-23 20:11 - 00000000 ____D C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2016-06-21 09:25 - 2016-06-22 17:26 - 00000000 ____D C:\ProgramData\Firefly Studios
2016-06-21 09:19 - 2016-06-21 09:19 - 00000000 ____D C:\Users\Stephane\Documents\U-Play online
2016-06-21 09:19 - 2016-06-21 09:19 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow\U-Play online
2016-06-21 09:15 - 2016-06-21 09:15 - 00000000 ____D C:\Program Files (x86)\Intel
2016-06-21 09:15 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2016-06-21 09:15 - 2012-05-15 07:13 - 00020992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-06-21 09:15 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2016-06-21 09:15 - 2012-05-15 06:20 - 00017920 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-06-21 08:47 - 2016-06-21 08:47 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-06-21 07:25 - 2016-06-21 07:25 - 00000000 ____D C:\Users\Stephane\AppData\Local\Mega Limited
2016-06-21 07:24 - 2016-06-21 07:24 - 00001023 _____ C:\Users\Stephane\Desktop\MEGAsync.lnk
2016-06-21 07:24 - 2016-06-21 07:24 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2016-06-21 07:23 - 2016-06-21 07:24 - 00000000 ____D C:\Users\Stephane\AppData\Local\MEGAsync
2016-06-20 16:03 - 2016-07-03 17:16 - 00000394 _____ C:\Windows\Tasks\update-S-1-5-21-194274908-3574576832-3986290747-1000.job
2016-06-20 16:03 - 2016-07-03 13:32 - 00000394 _____ C:\Windows\Tasks\update-sys.job
2016-06-20 16:03 - 2016-06-20 16:03 - 00003290 _____ C:\Windows\System32\Tasks\update-sys
2016-06-20 16:03 - 2016-06-20 16:03 - 00003274 _____ C:\Windows\System32\Tasks\update-S-1-5-21-194274908-3574576832-3986290747-1000
2016-06-20 16:03 - 2016-06-20 16:03 - 00000424 _____ C:\Users\Stephane\AppData\Local\UserProducts.xml
2016-06-20 16:02 - 2016-06-20 16:03 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2016-06-20 16:02 - 2016-06-20 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2016-06-20 15:37 - 2016-06-29 07:57 - 00000000 ____D C:\Users\Stephane\Documents\Site
2016-06-20 14:54 - 2016-06-20 14:55 - 00000000 ____D C:\f40acbe862bb06d04aebb1663f
2016-06-20 14:38 - 2016-07-01 10:16 - 00000000 ____D C:\Program Files (x86)\Google
2016-06-20 14:00 - 2016-06-20 14:00 - 00000658 _____ C:\Users\Stephane\Documents\Stephane - Raccourci.lnk
2016-06-20 13:42 - 2016-06-20 13:42 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Macromedia
2016-06-20 13:41 - 2016-07-03 16:34 - 00000000 ____D C:\AdwCleaner
2016-06-20 13:37 - 2016-06-20 13:37 - 00002903 _____ C:\Users\Stephane\Desktop\FLV-Media-Player.lnk
2016-06-20 13:37 - 2016-06-20 13:37 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV-Media-Player
2016-06-20 13:37 - 2016-06-20 13:37 - 00000000 ____D C:\Program Files (x86)\FLV-Media-Player
2016-06-20 13:23 - 2016-06-20 14:10 - 00000000 ____D C:\ProgramData\AVAST Software
2016-06-20 13:06 - 2016-06-20 13:11 - 00000000 ____D C:\ProgramData\Avg
2016-06-20 13:04 - 2016-06-20 13:11 - 00000000 ____D C:\Users\Stephane\AppData\Local\AvgSetupLog
2016-06-20 13:04 - 2016-06-20 13:04 - 00000000 ____D C:\Users\Stephane\AppData\Local\Avg
2016-06-20 12:51 - 2016-07-01 21:21 - 00076032 _____ C:\Users\Stephane\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-20 11:33 - 2016-06-29 09:05 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Mozilla
2016-06-20 11:31 - 2016-06-20 11:31 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow02F36BA0
2016-06-20 11:31 - 2016-06-20 11:31 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow0000000000554958
2016-06-20 11:30 - 2016-06-20 11:30 - 00000000 ____D C:\Windows\system32\qag
2016-06-20 11:29 - 2016-06-20 11:29 - 02279413 _____ C:\Users\Stephane\AppData\Roaming\DomFan.bin
2016-06-20 11:28 - 2016-06-20 11:28 - 06867968 _____ C:\Users\Stephane\AppData\Roaming\agent.dat
2016-06-20 11:28 - 2016-06-20 11:28 - 01760384 _____ C:\Users\Stephane\AppData\Roaming\Haytamair.tst
2016-06-20 11:28 - 2016-06-20 11:28 - 00126464 _____ C:\Users\Stephane\AppData\Roaming\noah.dat
2016-06-20 11:28 - 2016-06-20 11:28 - 00069072 _____ C:\Users\Stephane\AppData\Roaming\Config.xml
2016-06-20 11:28 - 2016-06-20 11:28 - 00018432 _____ C:\Users\Stephane\AppData\Roaming\Main.dat
2016-06-20 11:28 - 2016-06-20 11:22 - 01106432 _____ C:\Users\Stephane\AppData\Roaming\Haytamair.exe
2016-06-20 11:27 - 2016-06-20 11:28 - 00005568 _____ C:\Users\Stephane\AppData\Roaming\md.xml
2016-06-20 11:27 - 2016-06-20 11:27 - 00126464 _____ C:\Users\Stephane\AppData\Roaming\lobby.dat
2016-06-20 11:27 - 2016-06-20 11:27 - 00072704 _____ C:\Users\Stephane\AppData\Roaming\Trusttech.tst
2016-06-20 11:27 - 2016-06-20 11:27 - 00054272 _____ C:\Users\Stephane\AppData\Roaming\ApplicationHosting.dat
2016-06-20 11:26 - 2016-06-20 11:34 - 00000000 ____D C:\Users\Stephane\AppData\Local\UltimateSpeedTester
2016-06-20 11:26 - 2016-06-20 11:22 - 01106432 _____ C:\Users\Stephane\AppData\Roaming\Trusttech.exe
2016-06-20 11:25 - 2016-06-20 11:25 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow005C3948
2016-06-20 11:25 - 2016-06-20 11:25 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow000000000046DCE8
2016-06-20 11:24 - 2016-06-30 14:24 - 00000000 ____D C:\Users\Stephane\AppData\Local\Tempfolder
2016-06-20 11:24 - 2016-06-20 13:57 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Sodleicn
2016-06-20 11:24 - 2016-06-20 11:24 - 00000000 ____D C:\Users\Stephane\AppData\LocalLow\Company
2016-06-20 11:23 - 2016-06-20 11:24 - 00009032 _____ C:\Windows\System32\Tasks\Norseanuhition Agent
2016-06-20 11:23 - 2016-06-20 11:23 - 00848437 _____ C:\Users\Stephane\AppData\Roaming\Home-Warm.bin
2016-06-20 11:22 - 2016-06-20 11:23 - 00018288 _____ C:\Users\Stephane\AppData\Roaming\InstallationConfiguration.xml
2016-06-20 11:22 - 2016-06-20 11:22 - 00128512 _____ C:\Users\Stephane\AppData\Roaming\Installer.dat
2016-06-20 11:22 - 2016-06-20 11:22 - 00000000 _____ C:\Windows\SysWOW64\Number of results
2016-06-20 11:21 - 2016-06-20 11:21 - 00000000 ____D C:\Users\Stephane\AppData\Local\SteelSeries_ApS
2016-06-20 11:19 - 2016-06-20 11:19 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\SteelSeries
2016-06-20 11:16 - 2016-06-20 11:16 - 00000000 ____D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2016-06-20 11:16 - 2016-06-20 11:16 - 00000000 ____D C:\ProgramData\SteelSeries
2016-06-20 11:15 - 2016-06-20 11:15 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-06-20 11:15 - 2016-06-20 11:15 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-06-20 11:15 - 2016-06-20 11:15 - 00000000 ____D C:\Windows\system32\DAX2
2016-06-20 11:15 - 2016-06-20 11:15 - 00000000 ____D C:\Program Files\Realtek
2016-06-20 11:13 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-06-20 11:13 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-06-20 11:13 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-06-20 11:13 - 2015-06-17 19:47 - 02585816 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-06-20 11:13 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-06-20 11:13 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-06-20 11:13 - 2015-06-11 19:40 - 03157796 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-06-20 11:13 - 2015-06-10 13:20 - 03129672 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-06-20 11:13 - 2015-06-10 13:20 - 00728392 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-06-20 11:13 - 2015-06-09 11:17 - 05708736 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-06-20 11:13 - 2015-05-27 18:51 - 00349528 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-06-20 11:13 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-06-20 11:13 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-06-20 11:13 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-06-20 11:13 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-06-20 11:13 - 2015-05-11 18:53 - 12996528 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-06-20 11:13 - 2015-05-11 13:08 - 01374640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-06-20 11:13 - 2015-05-11 13:08 - 01192368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-06-20 11:13 - 2015-05-11 13:08 - 01145264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-06-20 11:13 - 2015-05-11 13:08 - 00980400 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-06-20 11:13 - 2015-04-27 16:09 - 00328816 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-06-20 11:13 - 2015-04-24 05:42 - 00858256 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-06-20 11:13 - 2015-04-24 05:42 - 00684176 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-06-20 11:13 - 2015-04-24 05:42 - 00435856 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-06-20 11:13 - 2015-04-24 05:41 - 00555664 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2016-06-20 11:13 - 2015-04-13 16:25 - 03262184 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-06-20 11:13 - 2015-02-05 17:48 - 12834736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-06-20 11:13 - 2015-02-05 17:48 - 02789808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-06-20 11:13 - 2015-02-04 00:38 - 01413776 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-06-20 11:13 - 2015-02-04 00:38 - 00454288 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-06-20 11:13 - 2015-02-04 00:38 - 00369296 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-06-20 11:13 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-06-20 11:13 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-06-20 11:13 - 2015-01-23 18:16 - 00213432 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2016-06-20 11:13 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-06-20 11:13 - 2014-12-11 08:10 - 01104040 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2016-06-20 11:13 - 2014-12-11 08:10 - 00943784 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-06-20 11:13 - 2014-12-11 08:10 - 00734376 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-06-20 11:13 - 2014-12-11 08:10 - 00250536 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-06-20 11:13 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-06-20 11:13 - 2014-10-24 10:12 - 05234952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-06-20 11:13 - 2014-10-24 10:12 - 00995120 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-06-20 11:13 - 2014-08-14 19:16 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-06-20 11:13 - 2014-06-17 19:17 - 00856992 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-06-20 11:13 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-06-20 11:13 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-06-20 11:13 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-06-20 11:13 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-06-20 11:13 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-06-20 11:13 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-06-20 11:13 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-06-20 11:13 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-06-20 11:13 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-06-20 11:13 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-06-20 11:13 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-06-20 11:13 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-06-20 11:13 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-06-20 11:13 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-06-20 11:13 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-06-20 11:13 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-06-20 11:13 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-06-20 11:13 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-06-20 11:13 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-06-20 11:13 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-06-20 11:13 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-06-20 11:13 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-06-20 11:13 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-06-20 11:13 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-06-20 11:13 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-06-20 11:13 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-06-20 11:13 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-06-20 11:13 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-06-20 11:13 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-06-20 11:13 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-06-20 11:13 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-06-20 11:13 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-06-20 11:13 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-06-20 11:13 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-06-20 11:13 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-06-20 11:13 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-06-20 11:13 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-06-20 11:13 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-06-20 11:13 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-06-20 11:12 - 2016-06-27 08:22 - 00000000 ____D C:\Users\Stephane\Downloads\Gfx
2016-06-20 11:12 - 2016-06-20 11:12 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-06-20 11:12 - 2015-06-02 19:25 - 01576976 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-06-20 11:12 - 2015-05-27 18:51 - 02461016 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-06-20 11:12 - 2015-05-27 18:51 - 02393432 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-06-20 11:12 - 2015-05-27 18:51 - 00944984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-06-20 11:12 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-06-20 11:12 - 2014-11-04 13:42 - 06242576 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-06-20 11:12 - 2014-11-04 13:42 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-06-20 11:12 - 2014-11-04 13:42 - 00336144 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-06-20 11:12 - 2014-11-04 13:42 - 00284944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-06-20 11:12 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-06-20 11:12 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-06-20 11:12 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-06-20 11:12 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-06-20 11:12 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-06-20 11:12 - 2014-05-22 16:24 - 00096568 _____ C:\Windows\system32\audioLibVc.dll
2016-06-20 11:12 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-06-20 11:12 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-06-20 11:12 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-06-20 11:12 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-06-20 11:12 - 2013-06-21 11:01 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-06-20 11:12 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-06-20 11:12 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-06-20 11:11 - 2016-06-20 11:19 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-06-20 11:11 - 2015-05-27 17:38 - 02825944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-06-20 11:08 - 2016-06-20 11:08 - 00000000 ____D C:\Program Files\SteelSeries
2016-06-20 11:07 - 2016-06-20 12:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Wheel Mouse
2016-06-20 11:07 - 2016-06-20 11:07 - 00003338 _____ C:\Windows\System32\Tasks\{E88E5C4D-77ED-469F-993D-DA638A9F2527}
2016-06-20 11:05 - 2009-09-16 19:44 - 00010368 _____ () C:\Windows\system32\Drivers\whfltr2k.sys
2016-06-20 11:04 - 2016-06-23 18:56 - 01613166 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-06-20 11:04 - 2016-06-21 09:15 - 00000000 ____D C:\ProgramData\Intel
2016-06-20 11:04 - 2016-06-20 11:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-06-20 11: