OTL logfile created on: 02/01/2014 16:21:45 - Run 3
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Pierre\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
6.99 Gb Total Physical Memory | 3.53 Gb Available Physical Memory | 50.57% Memory free
13.98 Gb Paging File | 9.83 Gb Available in Paging File | 70.37% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 446.13 Gb Total Space | 173.47 Gb Free Space | 38.88% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 243.57 Gb Free Space | 52.30% Space Free | Partition Type: NTFS
 
Computer Name: PIERRE-DELL | User Name: Pierre | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - C:\Users\Pierre\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe (Trusteer Ltd.)
PRC - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe (Trusteer Ltd.)
PRC - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis)
PRC - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe (Orange)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
PRC - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Motorola Solutions, Inc.)
PRC - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Motorola Solutions, Inc.)
PRC - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.)
PRC - C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe (Motorola Solutions, Inc.)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
PRC - C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe ()
PRC - C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe (SoftThinks - Dell)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe ()
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe (SoftThinks - Dell)
PRC - C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.)
PRC - C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe ()
PRC - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe ()
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe (Adobe Systems Incorporated)
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - C:\Users\Pierre\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppgooglenaclpluginchrome.dll ()
MOD - C:\Users\Pierre\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
MOD - C:\Users\Pierre\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
MOD - C:\Users\Pierre\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll ()
MOD - C:\Users\Pierre\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll ()
MOD - C:\Users\Pierre\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll ()
MOD - C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportMS.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\c94852f43f7ac59fcbe4c54b119788d2\System.ServiceModel.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\96afc74588c6581e299884469ea0dced\System.Xml.Linq.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\a42743bb1ed71d59b6594b67cf6c9384\System.IdentityModel.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\4774201dc923674852e089053f76e76e\System.ServiceModel.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\8f5b881951592b2fd05f710650bf7e04\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\bcf51dc88597d0835c819a2d5a755b74\PresentationFramework.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ef0a534be135cd8f0d99d938d8b1814a\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\51478a61dbd40488e320a0061e23c4df\PresentationCore.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\4eef5a3a4d0ed6d6fd882947a70df530\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29f3ae8d313e62b4daed1107ccd29f9f\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\c5f2c02bd940c74019ed4a183c7830c0\System.WorkflowServices.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\6ebbfafc5521934f7e1c154937a2788b\System.Web.ni.dll ()
MOD - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e043ad64456256a8ee5b934e227d9782\System.Runtime.Serialization.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\1327ad2637aab17189c5461fbf30dc19\SMDiagnostics.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a2920ed81e097f8551231a9350697bbd\PresentationFramework.Aero.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe ()
MOD - C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
MOD - C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll ()
MOD - C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll ()
MOD - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Serialization.resources\3.0.0.0_fr_b77a5c561934e089\System.Runtime.Serialization.resources.dll ()
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NisSrv) -- C:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (MsMpSvc) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (maconfservice) -- C:\Program Files\ma-config.com\x64\maconfservice.exe (CybelSoft)
SRV:[b]64bit:[/b] - (NitroReaderDriverReadSpool2) -- C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe (Nitro PDF Software)
SRV:[b]64bit:[/b] - (EvtEng) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation)
SRV:[b]64bit:[/b] - (MyWiFiDHCPDNS) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
SRV:[b]64bit:[/b] - (RegSrvc) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation)
SRV:[b]64bit:[/b] - (BTHSSecurityMgr) -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Intel(R) Corporation)
SRV:[b]64bit:[/b] - (AMPPALR3) -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel Corporation)
SRV:[b]64bit:[/b] - (TurboBoost) -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe (Intel(R) Corporation)
SRV:[b]64bit:[/b] - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NitroDriverReadSpool) -- C:\Program Files\Common Files\Nitro PDF\Professional\6.0\NitroPDFDriverServicex64.exe (Nitro PDF Software)
SRV:[b]64bit:[/b] - (AERTFilters) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Andrea Electronics Corporation)
SRV:[b]64bit:[/b] - (lxdx_device) -- C:\Windows\SysNative\lxdxcoms.exe ( )
SRV - (afcdpsrv) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (RapportMgmtService) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe (Trusteer Ltd.)
SRV - (syncagentsrv) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis)
SRV - (Garmin Core Update Service) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe (Garmin Ltd or its subsidiaries)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (TomTomHOMEService) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (Bluetooth OBEX Service) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Motorola Solutions, Inc.)
SRV - (Bluetooth Media Service) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Motorola Solutions, Inc.)
SRV - (Bluetooth Device Monitor) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.)
SRV - (SftService) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
SRV - (nlsX86cc) -- C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.)
SRV - (NAUpdate) -- C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (SamsungAllShare) -- C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe ()
SRV - (SimpleSlideShowServer) -- C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe (Samsung Electronics)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (RoxWatch12) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe (Sonic Solutions)
SRV - (RoxMediaDB12OEM) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe (Sonic Solutions)
SRV - (AdobeActiveFileMonitor9.0) -- c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe (Adobe Systems Incorporated)
SRV - (NOBU) -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe (Dell, Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation)
SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - (afcdp) -- C:\Windows\SysNative\drivers\afcdp.sys (Acronis)
DRV:[b]64bit:[/b] - (tdrpman) -- C:\Windows\SysNative\drivers\tdrpman.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (tib_mounter) -- C:\Windows\SysNative\drivers\tib_mounter.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (snapman) -- C:\Windows\SysNative\drivers\snapman.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (fltsrv) -- C:\Windows\SysNative\drivers\fltsrv.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (RapportKE64) -- C:\Windows\SysNative\drivers\RapportKE64.sys (Trusteer Ltd.)
DRV:[b]64bit:[/b] - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:[b]64bit:[/b] - (taphss6) -- C:\Windows\SysNative\drivers\taphss6.sys (Anchorfree Inc.)
DRV:[b]64bit:[/b] - (tib) -- C:\Windows\SysNative\drivers\tib.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (vididr) -- C:\Windows\SysNative\drivers\vididr.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (vidsflt) -- C:\Windows\SysNative\drivers\vidsflt.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:[b]64bit:[/b] - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:[b]64bit:[/b] - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:[b]64bit:[/b] - (NvStUSB) -- C:\Windows\SysNative\drivers\nvstusb.sys (NVIDIA Corporation)
DRV:[b]64bit:[/b] - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NETwNs64) -- C:\Windows\SysNative\drivers\Netwsw00.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ibtfltcoex) -- C:\Windows\SysNative\drivers\iBtFltCoex.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (ss_bmdm) -- C:\Windows\SysNative\drivers\ss_bmdm.sys (MCCI Corporation)
DRV:[b]64bit:[/b] - (ss_bbus) -- C:\Windows\SysNative\drivers\ss_bbus.sys (MCCI)
DRV:[b]64bit:[/b] - (ss_bmdfl) -- C:\Windows\SysNative\drivers\ss_bmdfl.sys (MCCI Corporation)
DRV:[b]64bit:[/b] - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (btmhsf) -- C:\Windows\SysNative\drivers\btmhsf.sys (Motorola Solutions, Inc.)
DRV:[b]64bit:[/b] - (btmaux) -- C:\Windows\SysNative\drivers\btmaux.sys (Motorola Solutions, Inc.)
DRV:[b]64bit:[/b] - (btmaudio) -- C:\Windows\SysNative\drivers\btmaud.sys (Motorola Solutions, Inc.)
DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (taphss) -- C:\Windows\SysNative\drivers\taphss.sys (AnchorFree Inc)
DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (AMPPALP) -- C:\Windows\SysNative\drivers\AmpPal.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (AMPPAL) -- C:\Windows\SysNative\drivers\AmpPal.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation)
DRV:[b]64bit:[/b] - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation)
DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:[b]64bit:[/b] - (JMCR) -- C:\Windows\SysNative\drivers\jmcr.sys (JMicron Technology Corporation)
DRV:[b]64bit:[/b] - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek                                            )
DRV:[b]64bit:[/b] - (driverhardwarev2x64) -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (CybelSoft)
DRV:[b]64bit:[/b] - (CtClsFlt) -- C:\Windows\SysNative\drivers\CtClsFlt.sys (Creative Technology Ltd.)
DRV:[b]64bit:[/b] - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (TurboB) -- C:\Windows\SysNative\drivers\TurboB.sys (Intel(R) Corporation)
DRV:[b]64bit:[/b] - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:[b]64bit:[/b] - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (qicflt) -- C:\Windows\SysNative\drivers\qicflt.sys (Quanta Computer)
DRV:[b]64bit:[/b] - (UnlockerDriver5) -- C:\Program Files\Unlocker\UnlockerDriver5.sys ()
DRV:[b]64bit:[/b] - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:[b]64bit:[/b] - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (RapportPG64) -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys (Trusteer Ltd.)
DRV - (RapportEI64) -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys (Trusteer Ltd.)
DRV - (RapportCerberus_59849) -- C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_59849.sys ()
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{977E91EB-D6F9-42ED-BF36-5FC2E8D26BE9}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDR&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = 
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{977E91EB-D6F9-42ED-BF36-5FC2E8D26BE9}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDR&src=IE-SearchBox
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = 
IE - HKCU\..\SearchScopes,DefaultScope = 
IE - HKCU\..\SearchScopes\{23953575-5B98-4872-852E-A3C90161FE36}: "URL" = http://www.google.com
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sear
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1;localhost;10.*;192.168.*;127.0.0.1:895;127.0.0.1:896;<local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8555;https=127.0.0.1:8555
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..network.proxy.type: 
FF - user.js - File not found
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@lastpass.com/NPLastPass: C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files\ma-config.com\x64\nphardwaredetection.dll (Cybelsoft)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@lastpass.com/NPLastPass: C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll File not found
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@palmsource.com/installer,version=1.0: C:\PROGRA~2\Palm\PACKAG~1\NPInstal.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Pierre\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Pierre\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/04/08 14:59:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK [2013/08/12 10:48:00 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/04/08 14:59:23 | 000,000,000 | ---D | M]
 
[2012/11/14 21:17:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pierre\AppData\Roaming\Mozilla\Extensions
[2012/11/14 21:17:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pierre\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com
[2014/01/02 16:04:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\rkk57gh9.default-1376294257159\extensions
[2014/01/02 16:18:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\und1beun.default-1386069036875\extensions
[2014/01/02 16:18:35 | 000,000,000 | ---D | M] (Menu Contextuel Orange) -- C:\Users\Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\und1beun.default-1386069036875\extensions\menu_contextuel_orange@orange.fr
[2013/08/12 08:05:06 | 000,824,302 | ---- | M] () (No name found) -- C:\Users\Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\rkk57gh9.default-1376294257159\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/12/03 12:38:02 | 000,915,554 | ---- | M] () (No name found) -- C:\Users\Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\und1beun.default-1386069036875\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/12/22 11:44:29 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/12/22 11:44:29 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/01/02 13:51:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/12/22 11:44:51 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012/07/14 18:13:19 | 000,000,970 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\encyclopedie.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - Extension: Documents Google = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Googleu00A0Drive = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Smart Saver = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfipfkeoidmndggnnpobeenlamiclald\213\
CHR - Extension: YouTube = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Recherche Google = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: greatsaveru = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopcmaiaibhmlghbampcnelcalopjbcn\2.7\
CHR - Extension: LastPass = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\3.0.22_0\
CHR - Extension: Portail Orange = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\jafdhbipfdlldljdanpnlipdinjcjjid\1.0_0\
CHR - Extension: No name found = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkhkpigfchkpdbklkdfjdajmjaogklm\1.1\
CHR - Extension: YoutubeAdblocker = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcejjfodmppdmbfanokeifppmgghfpia\1.0\
CHR - Extension: Menu Contextuel Orange = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfkdglgjjpicgkbfdflchobhdiblbjgf\1.0_1\
CHR - Extension: Googleu00A0Wallet = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2014/01/01 12:13:51 | 000,000,063 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1 activation.acronis.com
O2:[b]64bit:[/b] - BHO: (suRf andd keEep) - {00EA693E-D2BE-E956-88D1-007F360E9926} - C:\Program Files (x86)\suRf andd keEep\i.x64.dll File not found
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (LastPass Vault) - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
O2:[b]64bit:[/b] - BHO: (YoutubeAdblocker) - {A9F0A0A7-0987-877F-12C8-2CD0FD99F62A} - C:\Program Files (x86)\YoutubeAdblocker\PRcPvR.x64.dll File not found
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (YoutubeAdblocker) - {E60C5AA4-DA78-5D13-D3AA-7DD550A9D536} - C:\Program Files (x86)\YoutubeAdblocker\_96AxG.x64.dll File not found
O2:[b]64bit:[/b] - BHO: (graeatsavver) - {ECF1DCC0-3148-5314-7B1B-116ADA1C77EF} - C:\Program Files (x86)\graeatsavver\Qxg.x64.dll ()
O2 - BHO: (LastPass Vault) - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (LastPass Toolbar) - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (LastPass Toolbar) - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
O4:[b]64bit:[/b] - HKLM..\Run: [BLEServicesCtrl] C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Motorola Solutions, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft Device Center\ipoint.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IntelliType Pro] c:\Program Files\Microsoft Device Center\itype.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKCU..\Run: [OrangeInside] C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe (Orange)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:[b]64bit:[/b] - Extra context menu item: Ajouter à vos favoris Orange - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\AddFavorites_html\AddFavorites.html ()
O8:[b]64bit:[/b] - Extra context menu item: Envoyer à Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Envoyer le texte sélectionné par sms - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8:[b]64bit:[/b] - Extra context menu item: Envoyer par sms - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8:[b]64bit:[/b] - Extra context menu item: Envoyer un mail - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8:[b]64bit:[/b] - Extra context menu item: LastPass - file://C:\Users\Pierre\AppData\LocalLow\LastPass\context.html?cmd=lastpass File not found
O8:[b]64bit:[/b] - Extra context menu item: LastPass Fill Forms - file://C:\Users\Pierre\AppData\LocalLow\LastPass\context.html?cmd=fillforms File not found
O8:[b]64bit:[/b] - Extra context menu item: orange.fr - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html ()
O8:[b]64bit:[/b] - Extra context menu item: Rechercher le texte sélectionné - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8:[b]64bit:[/b] - Extra context menu item: Traduire le texte sélectionné - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Ajouter à vos favoris Orange - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\AddFavorites_html\AddFavorites.html ()
O8 - Extra context menu item: Envoyer à Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O8 - Extra context menu item: Envoyer le texte sélectionné par sms - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8 - Extra context menu item: Envoyer par sms - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8 - Extra context menu item: Envoyer un mail - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8 - Extra context menu item: LastPass - file://C:\Users\Pierre\AppData\LocalLow\LastPass\context.html?cmd=lastpass File not found
O8 - Extra context menu item: LastPass Fill Forms - file://C:\Users\Pierre\AppData\LocalLow\LastPass\context.html?cmd=fillforms File not found
O8 - Extra context menu item: orange.fr - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html ()
O8 - Extra context menu item: Rechercher le texte sélectionné - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8 - Extra context menu item: Traduire le texte sélectionné - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O9:[b]64bit:[/b] - Extra Button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
O9 - Extra 'Tools' menuitem : LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: dell.com ([]* in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{491C398C-E409-466C-9B28-4F627816287A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A26F9343-230D-44A5-AF3F-3110365C4AAD}: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:[b]64bit:[/b] - Protocol\Filter\text/xml - No CLSID value found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = ComFile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
 
MsConfig:64bit - StartUpFolder: C:^Users^Pierre^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^bm.lnk -  - File not found
MsConfig:64bit - StartUpFolder: C:^Users^Pierre^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk - C:\Users\Pierre\AppData\Roaming\Dropbox\bin\Dropbox.exe - (Dropbox, Inc.)
MsConfig:64bit - StartUpReg: [b]Acronis Scheduler2 Service[/b] - hkey= - key= - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
MsConfig:64bit - StartUpReg: [b]AcronisTibMounterMonitor[/b] - hkey= - key= - C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis International GmbH)
MsConfig:64bit - StartUpReg: [b]Adobe ARM[/b] - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: [b]AllShareAgent[/b] - hkey= - key= - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe (Samsung)
MsConfig:64bit - StartUpReg: [b]BCSSync[/b] - hkey= - key= - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
MsConfig:64bit - StartUpReg: [b]BitTorrent Sync[/b] - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: [b]Desktop Disc Tool[/b] - hkey= - key= - C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
MsConfig:64bit - StartUpReg: [b]GarminExpressTrayApp[/b] - hkey= - key= - C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
MsConfig:64bit - StartUpReg: [b]KiesAirMessage[/b] - hkey= - key= - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe (Samsung Electronics)
MsConfig:64bit - StartUpReg: [b]KiesPreload[/b] - hkey= - key= - C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung)
MsConfig:64bit - StartUpReg: [b]MyTomTomSA.exe[/b] - hkey= - key= - C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe (TomTom)
MsConfig:64bit - StartUpReg: [b]Orange Installer[/b] - hkey= - key= - C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe ()
MsConfig:64bit - StartUpReg: [b]OrangeInside[/b] - hkey= - key= - C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe (Orange)
MsConfig:64bit - StartUpReg: [b]Philips Intelligent Agent[/b] - hkey= - key= - C:\Program Files (x86)\Philips Intelligent Agent\Philips Intelligent Agent.exe (Philips Consumer Electronics)
MsConfig:64bit - StartUpReg: [b]Skype[/b] - hkey= - key= - C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
MsConfig:64bit - StartUpReg: [b]Start_OrangeWifi_{9d78a505-6248-4d1b-81b6-df69655beccf}[/b] - hkey= - key= - C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\OrangeWifi.exe ()
MsConfig:64bit - StartUpReg: [b]Start_Update_{9d78a505-6248-4d1b-81b6-df69655beccf}[/b] - hkey= - key= - C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\UpdteApp.exe ()
MsConfig:64bit - StartUpReg: [b]TrueImageMonitor.exe[/b] - hkey= - key= - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
MsConfig:64bit - State: "startup" - Reg Error: Key error.
MsConfig:64bit - State: "bootini" - Reg Error: Key error.
 
ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:[b]64bit:[/b] {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {7DEBE4EB-6B40-3766-BB35-5CBBC385DA37} - .NET Framework
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {7DEBE4EB-6B40-3766-BB35-5CBBC385DA37} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - 
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
 
Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2014/01/02 15:49:07 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/01/02 12:14:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate
[2014/01/02 12:14:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seagate
[2014/01/02 11:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskMark
[2014/01/02 11:07:25 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014/01/02 07:42:36 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{0B29F184-06EB-45A7-AC02-C46E252F29DF}
[2014/01/01 18:54:25 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{A92BAA2E-354D-4611-9767-B78E46BB92FD}
[2014/01/01 18:20:07 | 000,000,000 | ---D | C] -- C:\Program Files\ReviverSoft
[2014/01/01 18:19:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CrystalDiskInfo
[2014/01/01 12:58:43 | 000,367,200 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\afcdp.sys
[2014/01/01 12:58:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Acronis
[2014/01/01 12:58:34 | 000,198,432 | ---- | C] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\tib_mounter.sys
[2014/01/01 06:54:09 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{145F4EB9-F045-4432-AF62-506205A10328}
[2013/12/31 11:17:56 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Roaming\73EA6BD1-AC9F-4B5D-B27F-281E7B0D20F1
[2013/12/31 06:28:31 | 000,000,000 | ---D | C] -- C:\ProgramData\graeatsavver
[2013/12/31 06:28:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\graeatsavver
[2013/12/31 06:28:11 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\Comodo
[2013/12/31 06:20:30 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{2D408E2D-B269-4B5D-B74D-36D8C45381CC}
[2013/12/30 09:18:39 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{5E8E07DB-86C4-488F-B7A7-D087981C616C}
[2013/12/29 21:09:31 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{7EF1F516-B269-4B13-BAF1-21AE842FC7FE}
[2013/12/29 07:18:54 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{28E0535C-04AB-429A-9D59-3AEB985895ED}
[2013/12/28 18:32:08 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{00CEAA79-F8C8-4454-AF15-7731EABFB751}
[2013/12/28 06:31:32 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{6C5460DC-99CB-49B1-AF19-3EEF03089B2E}
[2013/12/27 08:10:37 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{56E493F6-AD3E-4CF4-84BB-9FA774B63B39}
[2013/12/26 20:06:28 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{1B870AB1-10B9-4857-916B-04D7DA075918}
[2013/12/26 07:57:06 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{19C17EFC-4D99-45A4-BC05-57CE3CE31921}
[2013/12/25 19:56:50 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{C2ADFF12-FEB8-41B4-B811-D1B5DA8F3D87}
[2013/12/25 07:48:38 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{05760DF5-D597-423A-8E88-B93D53E44834}
[2013/12/24 19:48:23 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{876B9905-1EB6-417C-B7A8-6248FFD03ECC}
[2013/12/24 07:00:41 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{B5488B47-E396-4498-9013-5A1C82CF866A}
[2013/12/23 10:22:27 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{775A67B4-E0B6-46D3-9BB7-52E5216BD2FE}
[2013/12/22 22:13:02 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{40A57BD4-4FA4-4DEE-BF17-85F8F1210851}
[2013/12/22 11:44:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/12/22 08:52:58 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{C7141A08-ADEB-4086-AAF5-BEDB73F4F630}
[2013/12/21 10:44:04 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{B0ECC227-D6FA-48BB-A0DF-985FDC02106A}
[2013/12/20 22:39:24 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{3CA714D4-F1D7-4971-8CEE-3A0B2CD62C3F}
[2013/12/20 13:19:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013/12/20 07:58:03 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{9D9D66FC-CD13-4E96-9B65-06CC051AC03C}
[2013/12/19 21:04:24 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{04B73DE6-13D5-4659-AD7E-5866F4CA971A}
[2013/12/19 07:31:57 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{5BF88FD1-5E3D-4360-9CA9-3CD0FEEA4738}
[2013/12/18 19:27:06 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{98DBB46C-9CAA-410F-A373-69DB3C06712E}
[2013/12/18 06:59:44 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{EDD04E39-153F-4E57-919A-6F33B4D7344C}
[2013/12/17 07:55:07 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{6EAF7740-C3E4-4210-9D03-F7DB1EFEE3DD}
[2013/12/16 19:17:26 | 000,000,000 | R--D | C] -- C:\Users\Pierre\Desktop\Culture
[2013/12/16 09:11:21 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{815D23B3-7E42-41C4-8D43-44E9F823B5C2}
[2013/12/15 20:58:28 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{0246B770-9E01-42B9-9A5E-EA04A3FD9BD7}
[2013/12/15 08:24:52 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{B4BE6588-BA8F-4790-AB4C-056726A27FF2}
[2013/12/14 08:15:23 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{9820120B-F2B6-4944-9FB4-472732B92CFA}
[2013/12/13 20:06:57 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{B170F2E4-C17C-4A27-98CE-A73091A423ED}
[2013/12/13 08:04:05 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{F1C8FF76-80C7-4F95-A7A3-8C8A7BDC07B8}
[2013/12/12 21:18:56 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2013/12/12 21:18:56 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2013/12/12 21:18:55 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2013/12/12 21:18:54 | 014,631,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2013/12/12 21:16:08 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2013/12/12 21:16:07 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/12/12 21:16:07 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/12/12 21:16:06 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/12/12 21:16:06 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/12/12 21:16:06 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/12/12 21:16:06 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/12/12 21:16:05 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2013/12/12 21:16:05 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2013/12/12 21:16:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2013/12/12 21:16:04 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/12/12 21:16:04 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2013/12/12 21:16:04 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/12/12 21:16:01 | 001,995,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/12/12 21:16:01 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/12/12 21:15:57 | 005,769,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/12/12 17:33:16 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2013/12/12 17:33:16 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2013/12/12 17:33:14 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013/12/12 17:33:14 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013/12/12 17:33:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2013/12/12 17:33:00 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys
[2013/12/12 17:33:00 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys
[2013/12/12 17:32:59 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll
[2013/12/12 17:32:59 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll
[2013/12/12 17:32:59 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscript.exe
[2013/12/12 17:32:59 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshom.ocx
[2013/12/12 17:32:59 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscript.exe
[2013/12/12 17:32:59 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshom.ocx
[2013/12/12 17:28:32 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{08DA2C09-13D0-463F-9EE8-F41C3D886E7F}
[2013/12/11 20:54:21 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{855269C9-A9F6-4704-83F3-7F9BC75EA566}
[2013/12/11 08:33:18 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{87877ABA-ECFB-4555-8B92-44B21BC7A282}
[2013/12/10 22:22:04 | 000,028,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEUDINIT.EXE
[2013/12/10 22:17:28 | 000,940,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/12/10 22:17:28 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/12/10 22:17:16 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2013/12/10 22:17:16 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/12/10 22:17:15 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/12/10 22:17:15 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/12/10 22:17:14 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/12/10 22:17:14 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/12/10 22:17:14 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/12/10 22:17:14 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/12/10 22:17:14 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/12/10 22:17:14 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/12/10 22:17:14 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2013/12/10 22:17:14 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/12/10 22:17:14 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/12/10 22:17:13 | 001,051,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/12/10 22:17:13 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/12/10 22:17:13 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/12/10 22:17:13 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/12/10 22:17:13 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/12/10 22:17:13 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/12/10 22:17:12 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/12/10 22:17:12 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/12/10 22:17:12 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/12/10 22:17:12 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/12/10 22:17:12 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/12/10 22:17:12 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2013/12/10 22:17:12 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2013/12/10 22:17:12 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/12/10 22:17:11 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/12/10 22:17:11 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/12/10 22:17:11 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/12/10 22:17:10 | 000,942,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2013/12/10 22:17:10 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/12/10 22:17:10 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/12/10 22:17:09 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/12/10 22:17:09 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/12/10 22:17:09 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/12/10 22:17:09 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/12/10 22:17:09 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/12/10 22:17:09 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/12/10 22:17:09 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/12/10 22:17:08 | 001,228,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/12/10 22:17:08 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/12/10 22:17:08 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/12/10 22:17:08 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/12/10 22:17:08 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/12/10 22:17:08 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/12/10 22:17:08 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/12/10 22:17:08 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2013/12/10 22:17:07 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/12/10 22:17:07 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/12/10 22:17:07 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/12/10 22:17:07 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/12/10 22:17:07 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/12/10 22:17:07 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/12/10 22:17:07 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/12/10 22:17:06 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/12/10 22:17:06 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/12/10 22:17:06 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/12/10 22:17:06 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2013/12/10 22:17:06 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/12/10 22:17:06 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/12/10 22:17:06 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/12/10 20:31:23 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{C83AC04F-AC71-40AC-89DF-F7B579B1E58F}
[2013/12/10 06:42:43 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{02355457-201A-425C-96F1-EA400ADDD7A2}
[2013/12/09 09:37:14 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{E71C5C89-D15C-4BBC-B52E-9714E8C994D7}
[2013/12/08 21:14:20 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{46B01DF1-7E46-4F2E-AE8E-A2D0C0D91D2F}
[2013/12/08 09:03:27 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{05F98000-85A1-462A-A577-3E68D11F68D0}
[2013/12/07 20:44:46 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{5A534CE5-7E09-4CC9-A92E-5101B2A195F8}
[2013/12/07 18:26:42 | 000,212,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RICHTX32.OCX
[2013/12/07 18:26:42 | 000,124,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSWINSCK.OCX
[2013/12/07 18:26:25 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Démarrage
[2013/12/07 18:26:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Démarrage
[2013/12/07 18:20:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrestoNotes
[2013/12/07 17:50:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ord-ixSofts
[2013/12/07 17:32:19 | 000,000,000 | ---D | C] -- C:\Users\Pierre\Documents\PS Freebie Notes
[2013/12/07 17:32:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Power Soft
[2013/12/07 17:32:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Power Soft
[2013/12/07 08:04:06 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{037509D0-DFF6-4210-BC92-29E4C1AD2ADE}
[2013/12/06 09:31:44 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{D343866B-2D61-4BB2-BAB0-44775E1C7983}
[2013/12/05 21:31:19 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{A77D2918-2C5E-4ADE-8183-3562D1850AFA}
[2013/12/05 08:01:59 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{98E6D6E8-C63A-4D15-87DD-7B65ACA9F39F}
[2013/12/04 21:18:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dream Aquarium
[2013/12/04 20:32:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2014
[2013/12/04 20:30:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[2013/12/04 08:46:58 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{8641B70F-3D92-4B17-9291-44884E27F838}
[2013/12/03 20:32:52 | 000,000,000 | ---D | C] -- C:\Users\Pierre\AppData\Local\{91601C6F-8D37-4F8D-A82C-71C1FE8B8961}
[2013/04/08 17:22:18 | 013,024,768 | ---- | C] (LastPass) -- C:\Program Files (x86)\Common Files\lpuninstall.exe
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2014/01/02 16:25:32 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/01/02 16:18:51 | 000,028,352 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/01/02 16:18:51 | 000,028,352 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/01/02 16:16:54 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/01/02 16:08:37 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/01/02 16:07:53 | 000,000,450 | -H-- | M] () -- C:\Windows\tasks\SK.Enhancer-S-161304646.job
[2014/01/02 16:06:41 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/01/02 16:04:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/01/02 15:50:00 | 000,001,082 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2299110952-3777586522-4180002589-1000UA.job
[2014/01/02 11:12:32 | 001,691,664 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/01/02 11:12:32 | 000,747,894 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2014/01/02 11:12:32 | 000,654,464 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/01/02 11:12:32 | 000,150,386 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2014/01/02 11:12:32 | 000,122,336 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/01/02 11:10:40 | 001,644,590 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014/01/02 10:52:05 | 006,555,763 | ---- | M] () -- C:\Users\Pierre\Desktop\LIBERATION DU 02.01.2014.pdf
[2014/01/02 10:44:06 | 000,002,047 | ---- | M] () -- C:\Users\Pierre\Desktop\Fortuneo LIVE TRADER.lnk
[2014/01/02 07:43:52 | 005,159,978 | ---- | M] () -- C:\Users\Pierre\Desktop\M.QP2.pdf
[2014/01/01 12:58:43 | 000,367,200 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\afcdp.sys
[2014/01/01 12:58:36 | 001,464,096 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\tdrpman.sys
[2014/01/01 12:58:34 | 000,198,432 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\tib_mounter.sys
[2014/01/01 12:58:17 | 000,001,207 | ---- | M] () -- C:\Users\Public\Desktop\Acronis True Image 2014.lnk
[2014/01/01 07:20:03 | 000,407,607 | ---- | M] () -- C:\Users\Pierre\Desktop\2013-12 B.pdf
[2013/12/31 17:50:00 | 000,001,030 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2299110952-3777586522-4180002589-1000Core.job
[2013/12/31 17:18:16 | 000,002,116 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
[2013/12/31 17:18:15 | 013,024,768 | ---- | M] (LastPass) -- C:\Program Files (x86)\Common Files\lpuninstall.exe
[2013/12/31 17:18:12 | 000,001,192 | ---- | M] () -- C:\Users\Pierre\Application Data\Microsoft\Internet Explorer\Quick Launch\My LastPass Vault.lnk
[2013/12/31 17:18:10 | 000,002,116 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
[2013/12/31 17:17:32 | 000,001,192 | ---- | M] () -- C:\Users\Public\Desktop\My LastPass Vault.lnk
[2013/12/31 11:17:46 | 000,269,600 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\snapman.sys
[2013/12/31 11:17:44 | 000,116,000 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\fltsrv.sys
[2013/12/20 17:52:23 | 000,002,378 | ---- | M] () -- C:\Users\Pierre\Desktop\Google Chrome.lnk
[2013/12/20 13:19:32 | 000,002,214 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/12/12 21:32:05 | 000,496,624 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/12/10 22:17:28 | 000,940,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/12/10 22:17:28 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/12/10 22:17:16 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2013/12/10 22:17:16 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/12/10 22:17:15 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/12/10 22:17:15 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/12/10 22:17:14 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/12/10 22:17:14 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/12/10 22:17:14 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/12/10 22:17:14 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/12/10 22:17:14 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/12/10 22:17:14 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/12/10 22:17:14 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2013/12/10 22:17:14 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/12/10 22:17:14 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/12/10 22:17:14 | 000,016,284 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/12/10 22:17:13 | 001,051,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/12/10 22:17:13 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/12/10 22:17:13 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/12/10 22:17:13 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/12/10 22:17:13 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/12/10 22:17:13 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/12/10 22:17:12 | 000,610,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/12/10 22:17:12 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/12/10 22:17:12 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/12/10 22:17:12 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/12/10 22:17:12 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/12/10 22:17:12 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2013/12/10 22:17:12 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2013/12/10 22:17:12 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/12/10 22:17:11 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/12/10 22:17:11 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/12/10 22:17:11 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/12/10 22:17:10 | 000,942,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2013/12/10 22:17:10 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/12/10 22:17:10 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/12/10 22:17:10 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/12/10 22:17:09 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/12/10 22:17:09 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/12/10 22:17:09 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/12/10 22:17:09 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/12/10 22:17:09 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/12/10 22:17:09 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/12/10 22:17:08 | 001,228,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/12/10 22:17:08 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/12/10 22:17:08 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/12/10 22:17:08 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/12/10 22:17:08 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/12/10 22:17:08 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/12/10 22:17:08 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/12/10 22:17:08 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2013/12/10 22:17:08 | 000,016,284 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/12/10 22:17:07 | 000,626,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/12/10 22:17:07 | 000,548,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/12/10 22:17:07 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/12/10 22:17:07 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/12/10 22:17:07 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/12/10 22:17:07 | 000,101,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/12/10 22:17:07 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/12/10 22:17:07 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/12/10 22:17:06 | 000,774,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/12/10 22:17:06 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/12/10 22:17:06 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2013/12/10 22:17:06 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/12/10 22:17:06 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/12/10 22:17:06 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/12/10 21:13:49 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/12/10 21:13:49 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/12/10 09:08:41 | 000,001,072 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2014/01/02 10:51:57 | 006,555,763 | ---- | C] () -- C:\Users\Pierre\Desktop\LIBERATION DU 02.01.2014.pdf
[2014/01/02 07:42:11 | 005,159,978 | ---- | C] () -- C:\Users\Pierre\Desktop\M.QP2.pdf
[2014/01/01 12:58:17 | 000,001,207 | ---- | C] () -- C:\Users\Public\Desktop\Acronis True Image 2014.lnk
[2014/01/01 07:20:01 | 000,407,607 | ---- | C] () -- C:\Users\Pierre\Desktop\2013-12 B.pdf
[2013/12/31 17:18:16 | 000,002,116 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
[2013/12/31 17:18:10 | 000,002,116 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
[2013/12/31 17:18:06 | 000,001,192 | ---- | C] () -- C:\Users\Pierre\Application Data\Microsoft\Internet Explorer\Quick Launch\My LastPass Vault.lnk
[2013/12/31 17:17:32 | 000,001,192 | ---- | C] () -- C:\Users\Public\Desktop\My LastPass Vault.lnk
[2013/12/20 17:45:36 | 000,001,082 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2299110952-3777586522-4180002589-1000UA.job
[2013/12/20 17:45:35 | 000,001,030 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2299110952-3777586522-4180002589-1000Core.job
[2013/12/20 13:19:32 | 000,002,214 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/12/10 22:17:14 | 000,016,284 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/12/10 22:17:08 | 000,016,284 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/09/22 08:55:56 | 009,199,981 | ---- | C] () -- C:\Users\Pierre\AppData\Local\SelfExtractible.zip
[2013/08/07 08:52:28 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/08/07 08:52:28 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/08/07 08:52:28 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/08/07 08:52:28 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/08/07 08:52:28 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/08/01 09:41:02 | 000,002,491 | ---- | C] () -- C:\Users\Pierre\AppData\Local\recently-used.xbel
[2013/07/27 15:27:37 | 000,362,029 | ---- | C] () -- C:\Windows\SysWow64\sqlite3.dll
[2013/07/20 18:07:00 | 000,004,608 | ---- | C] () -- C:\Users\Pierre\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/04/29 19:09:47 | 000,110,592 | ---- | C] () -- C:\Windows\SysWow64\FsUsbExDevice.Dll
[2013/01/22 17:51:17 | 000,000,263 | ---- | C] () -- C:\Users\Pierre\.swfinfo
[2012/10/08 10:57:08 | 000,000,025 | ---- | C] () -- C:\Users\Pierre\intlname.ols
[2012/09/26 20:57:16 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012/09/26 20:57:14 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012/09/26 20:57:14 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012/09/26 20:57:14 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012/09/26 20:57:14 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012/07/09 07:42:28 | 000,000,017 | ---- | C] () -- C:\Users\Pierre\AppData\Local\resmon.resmoncfg
[2012/07/07 07:51:08 | 001,720,320 | ---- | C] () -- C:\Windows\SysWow64\beconvlib.dll
[2012/07/07 07:51:08 | 000,282,624 | ---- | C] () -- C:\Windows\SysWow64\bprgcomm.dll
[2012/07/07 07:51:07 | 000,131,072 | ---- | C] () -- C:\Windows\SysWow64\CSVSpecialProcessing.dll
[2012/07/07 07:51:07 | 000,000,530 | ---- | C] () -- C:\Windows\SysWow64\tx15_ic.ini
[2012/07/07 07:51:06 | 000,221,184 | ---- | C] () -- C:\Windows\SysWow64\SII_PDF.dll
[2012/07/07 07:51:06 | 000,102,400 | ---- | C] () -- C:\Windows\SysWow64\SARzilla.dll
[2012/07/07 07:51:06 | 000,098,304 | ---- | C] () -- C:\Windows\SysWow64\DVM.dll
[2012/07/07 07:51:01 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\RegisterExe.exe
[2012/07/05 16:33:27 | 000,182,143 | ---- | C] () -- C:\Windows\hpoins44.dat.temp
[2012/07/05 14:40:05 | 000,000,586 | ---- | C] () -- C:\Windows\hpomdl44.dat.temp
[2012/07/05 14:27:03 | 000,176,372 | ---- | C] () -- C:\Windows\hpoins44.dat
[2012/06/08 13:13:15 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\cd.dat
[2012/04/30 13:32:37 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2002/07/01 14:13:30 | 000,000,224 | -HS- | C] () -- C:\Users\Pierre\AppData\Roaming\maildriver32.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2014/01/02 14:18:03 | 000,000,043 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-2299110952-3777586522-4180002589-1000\$RJPY6B9\l
[2013/04/08 15:13:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 02:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 01:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 01:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 03:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 01:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
[color=#E56717]========== Custom Scans ==========[/color]
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
 
[color=#A23BEC]< %systemroot%\system32\drivers\​*.sys /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
Invalid Environment Variable: alluserprofile
Invalid Environment Variable: alluserprofile
 
[color=#A23BEC]< %appdata%\*. >[/color]
[2013/12/31 11:17:56 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\73EA6BD1-AC9F-4B5D-B27F-281E7B0D20F1
[2012/07/11 07:54:56 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\8CF046DF-2DCD-4DC0-80F9-AD5EEB08D7D4
[2012/07/11 17:59:24 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\A890D3DA-DE6B-489B-8550-CF0BC572A00D
[2012/05/28 07:56:35 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Acronis
[2012/08/03 10:15:43 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Adobe
[2012/04/30 13:26:39 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Arcsoft
[2013/12/14 20:50:01 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Azureus
[2013/12/19 18:18:50 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\BitTorrent Sync
[2012/12/06 08:01:31 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\calibre
[2012/12/16 17:36:34 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Creative
[2013/04/08 15:01:11 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\DeepBurner
[2012/04/30 10:47:11 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Dell
[2013/09/29 07:40:21 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\DigitalVolcano
[2012/08/16 22:03:00 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\DM_Software
[2012/12/16 17:36:34 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Downloaded Installations
[2013/08/09 08:07:10 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Dropbox
[2013/09/28 08:03:38 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\dvdcss
[2012/12/30 20:43:37 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\EasyBurner
[2013/04/09 14:48:08 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\F33AC56E-02AF-4A18-837A-02A4D63121A6
[2012/09/12 15:26:00 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\FastStone
[2012/06/01 19:11:52 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\FileOpen
[2012/04/30 10:47:27 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Fingertapps
[2012/06/13 09:24:47 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Fortuneo
[2013/04/30 16:00:50 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Garmin
[2012/04/30 13:22:24 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\HotSync
[2012/07/05 16:37:02 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\HP
[2013/08/05 10:25:22 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\HpUpdate
[2013/08/12 10:05:11 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Identities
[2013/07/24 13:33:07 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\InfraRecorder
[2012/09/13 20:14:47 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\InstallShield
[2012/04/30 10:43:22 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Intel
[2013/01/07 14:20:20 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\IsolatedStorage
[2013/07/29 23:17:43 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Local
[2012/04/24 21:13:49 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Macromedia
[2012/12/20 13:40:45 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Macrovision
[2013/03/06 16:02:11 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\MagicMatch
[2012/10/13 15:01:17 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Malwarebytes
[2010/11/21 06:29:25 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Media Center Programs
[2013/08/12 10:42:13 | 000,000,000 | --SD | M] -- C:\Users\Pierre\AppData\Roaming\Microsoft
[2012/05/04 14:40:11 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Mozilla
[2012/10/24 15:53:32 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\MumboJumbo
[2013/07/01 20:20:42 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\MusicNet
[2012/06/19 06:20:31 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Nero
[2013/12/31 15:34:59 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Nitro PDF
[2012/05/22 16:26:11 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\NVIDIA
[2013/09/22 08:56:02 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Orange
[2012/05/24 18:09:14 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\PCDr
[2013/04/08 15:01:12 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\PhotoFiltre
[2012/05/24 08:43:33 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Reallusion
[2012/07/11 19:07:54 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Roxio
[2012/05/28 09:59:30 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Roxio Burn
[2013/10/28 21:05:44 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Samsung
[2013/03/06 16:02:11 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Saqqarah
[2014/01/02 14:23:45 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Skype
[2013/03/06 16:02:11 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\StoneLoops!
[2013/04/08 15:01:17 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Thunderbird
[2012/11/14 21:17:28 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\TomTom
[2013/12/04 20:32:46 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\TuneUp Software
[2012/06/26 09:19:42 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\URSoft
[2013/12/31 11:22:14 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\uTorrent
[2013/12/10 21:22:26 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\vlc
[2012/06/20 08:42:33 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\Windows Live Writer
[2012/06/14 15:54:38 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\WinRAR
[2012/05/22 16:16:24 | 000,000,000 | ---D | M] -- C:\Users\Pierre\AppData\Roaming\ZinioReader4
 
[color=#A23BEC]< %appdata%\*.exe /s >[/color]
[2013/07/27 15:18:00 | 004,177,856 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Azureus\plugins\azemp\vuzeplayer.exe
[2012/05/23 09:13:27 | 000,310,208 | ---- | M] (Georgia Institute of Technology) -- C:\Users\Pierre\AppData\Roaming\Azureus\plugins\mlab\ShaperProbeC.exe
[2013/12/14 09:48:31 | 008,876,576 | ---- | M] (Azureus Software, Inc.) -- C:\Users\Pierre\AppData\Roaming\Azureus\tmp\AZU5763179736303949205.tmp\Vuze_5.2.0.0b_win32.exe
[2013/06/05 17:28:40 | 027,370,808 | ---- | M] (Dropbox, Inc.) -- C:\Users\Pierre\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2013/06/05 17:28:50 | 000,229,288 | ---- | M] (Dropbox, Inc.) -- C:\Users\Pierre\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2013/06/05 17:28:42 | 000,919,048 | ---- | M] (Dropbox, Inc.) -- C:\Users\Pierre\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2013/03/04 10:35:25 | 000,010,134 | R--- | M] () -- C:\Users\Pierre\AppData\Roaming\Microsoft\Installer\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}\ARPPRODUCTICON.exe
[2013/08/01 07:59:44 | 000,607,600 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\OrangeInstall.exe
[2013/09/22 08:56:06 | 000,162,482 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\uninstall.exe
[2012/11/16 07:57:12 | 000,175,104 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\install\Launch.exe
[2012/11/16 07:57:12 | 000,222,208 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\install\Uninstall.exe
[2013/09/11 07:28:34 | 001,530,008 | ---- | M] (Orange) -- C:\Users\Pierre\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
[2013/12/12 17:48:17 | 015,455,280 | ---- | M] (Dell Inc) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Binaries\patch_dsc_636148to642214_64_03.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\06be0c64-c23d-4c51-9c19-6c8ad68787e8\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\1aa2d895-a677-441b-8bbd-26ff89a75cb4\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2012/07/05 12:51:46 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\1f06df1f-8b84-45ed-a752-5f5e981d9cfc\appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\203003d3-7d6c-4eb4-a422-ae2812d0ee47\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\32a3f14a-7efd-4efc-94c2-17115fc00e05\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\420ad8d7-973e-4c8a-9c3b-417789c24c66\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\4325e6ce-f8cf-4cf7-9a2b-e544c55131be\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\44b64e2a-9080-4e35-8ac7-661794834f19\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\4813c526-38f8-49f2-86a6-e59cc7e449bf\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2012/07/05 12:51:46 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\4e0005b9-d6bb-439d-b9dd-68f96d36d1dd\appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\5d1aab77-d062-4b1e-84dd-00797745874b\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\74fa183a-36bc-4f9f-937e-bb55d633af8d\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\85064f8f-507a-4bc7-a2b4-438fca677e6b\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\907dfc70-94b1-42aa-bc09-395846ec3bdd\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\95cfa13a-299f-497c-8d00-5759005b5cff\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\9f8ad2b1-6511-4134-8ee8-dabad9215cfe\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\a1621c4f-2b18-4457-a1ac-784fe4893f56\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\b160cc6f-1800-470a-9074-e93bac68a6c4\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\bf6454be-6e9c-4a32-8a5a-1b204bd6f130\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\c46bf81d-c681-47a4-8db5-a6f20dd59421\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\d573e40f-5ab5-4e18-91f9-d7e205a349a8\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2012/07/05 12:51:46 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\d8d88e1a-ea68-4634-91a5-2dcbfdb108d6\appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\d8ef86d1-794e-4c6f-b26a-ef8e7b95981e\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\dcbf3037-8361-40f7-af18-a8b0f9c5802c\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\dec88d65-0431-4f81-a340-3cf854e25d56\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\e563a355-be02-4063-aa76-de7f2a034573\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2012/07/05 12:51:46 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\ee89ef49-360e-4ae1-a707-4ddc77fcd240\appupdaterrules_dell\AddCertificate.exe
[2013/07/24 20:54:48 | 000,016,976 | ---- | M] (PC-Doctor, Inc.) -- C:\Users\Pierre\AppData\Roaming\PCDr\Update\Rules\f6ce126f-1b0d-482f-a169-7490b3589af8\PCDoctor_6219.34_windows_appupdaterrules_dell\AddCertificate.exe
[2013/05/12 09:23:38 | 000,061,328 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\FirmwareUpdateTemp\AGENT\AdminDelegator.exe
[2013/05/12 09:23:38 | 000,088,464 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\FirmwareUpdateTemp\AGENT\AgentInstaller.exe
[2013/05/12 09:23:38 | 000,077,704 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\FirmwareUpdateTemp\AGENT\AgentUpdate.exe
[2013/05/12 09:23:38 | 000,844,168 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\FirmwareUpdateTemp\AGENT\KiesPDLR.exe
[2012/12/20 09:44:26 | 001,476,104 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Kies.exe
[2012/12/20 09:44:26 | 000,531,976 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesAgent.exe
[2012/12/18 01:10:18 | 000,578,560 | ---- | M] (Samsung Electronics) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesAirMessage.exe
[2012/12/20 09:44:30 | 000,278,024 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesDriverInstaller.exe
[2012/12/20 09:44:28 | 000,310,280 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesTrayAgent.exe
[2012/12/20 09:34:34 | 000,171,008 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ConnectionManager.exe
[2012/12/20 09:37:18 | 000,332,800 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceDataService.exe
[2012/12/20 09:35:24 | 000,689,152 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceManager.exe
[2012/09/26 20:57:48 | 000,341,960 | ---- | M] (Teruten Inc) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsAdmin64.exe
[2012/09/26 20:57:46 | 000,020,480 | ---- | M] (Teruten Inc) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsExService64.exe
[2012/09/26 20:57:48 | 000,214,544 | ---- | M] (Teruten) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsUsbExAdmin.exe
[2012/09/26 20:57:46 | 000,217,088 | ---- | M] (Teruten) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\FsUsbExService.exe
[2012/12/20 09:44:30 | 000,068,104 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\Kies_Tutorial.exe
[2012/12/20 09:44:38 | 000,066,056 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\RegisterCOM.exe
[2012/12/18 01:07:40 | 000,060,888 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AdminDelegator.exe
[2012/12/18 01:07:40 | 000,088,024 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentInstaller.exe
[2012/12/18 01:07:40 | 000,077,264 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentUpdate.exe
[2012/12/20 09:44:32 | 000,844,296 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\KiesPDLR.exe
[2012/12/20 09:44:34 | 003,768,368 | ---- | M] (Freeware) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\MediaModules\MyFreeCodecPack.exe
[2012/12/20 09:44:36 | 000,602,120 | ---- | M] (ml) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Updater\Kies.Update.exe
[2012/10/24 08:36:00 | 014,754,704 | ---- | M] (SAMSUNG Electronics Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\USB Driver\SAMSUNG_USB_Driver_for_Mobile_Phones.exe
[2013/04/23 04:48:12 | 001,561,968 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Kies.exe
[2013/04/23 04:48:14 | 000,559,984 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesAgent.exe
[2013/04/18 10:10:38 | 000,578,560 | ---- | M] (Samsung Electronics) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesAirMessage.exe
[2013/04/23 04:48:16 | 000,277,872 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesDriverInstaller.exe
[2013/04/23 04:48:16 | 000,311,152 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesTrayAgent.exe
[2013/04/23 04:36:02 | 000,173,568 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\ConnectionManager.exe
[2013/04/23 04:38:58 | 000,344,576 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceDataService.exe
[2013/04/23 04:36:54 | 000,692,224 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceManager.exe
[2013/04/18 10:09:22 | 000,431,832 | ---- | M] (Teruten Inc) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\FsAdmin64.exe
[2013/04/18 10:09:20 | 000,021,504 | ---- | M] (Teruten Inc) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\FsExService64.exe
[2013/04/18 10:09:22 | 000,233,176 | ---- | M] (Teruten) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\FsUsbExAdmin.exe
[2013/04/18 10:09:20 | 000,233,472 | ---- | M] (Teruten) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\FsUsbExService.exe
[2013/04/23 04:48:18 | 000,067,952 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\Kies_Tutorial.exe
[2013/04/23 04:48:24 | 000,065,904 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\RegisterCOM.exe
[2013/04/18 10:08:48 | 000,061,328 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AdminDelegator.exe
[2013/04/18 10:08:48 | 000,088,464 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentInstaller.exe
[2013/04/18 10:08:48 | 000,077,704 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentUpdate.exe
[2013/04/23 04:48:20 | 000,844,144 | ---- | M] (Samsung) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\KiesPDLR.exe
[2013/04/23 04:48:22 | 003,768,712 | ---- | M] (Freeware) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\MediaModules\MyFreeCodecPack.exe
[2013/04/18 10:05:34 | 021,538,088 | ---- | M] () -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\StoryAlbumViewer\StoryAlbumViewer_setup.exe
[2013/04/23 04:48:22 | 000,602,992 | ---- | M] (ml) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Updater\Kies.Update.exe
[2013/04/03 08:16:34 | 015,359,912 | ---- | M] (SAMSUNG Electronics Co., Ltd.) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\USB Driver\SAMSUNG_USB_Driver_for_Mobile_Phones.exe
[2012/12/20 09:44:36 | 000,602,120 | ---- | M] (ml) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Temp\Kies.Update.exe
[2013/04/23 04:48:22 | 000,602,992 | ---- | M] (ml) -- C:\Users\Pierre\AppData\Roaming\Samsung\Kies\UpdateTemp\Updater\Kies.Update.exe
[2013/12/01 19:24:02 | 001,142,864 | ---- | M] (BitTorrent Inc.) -- C:\Users\Pierre\AppData\Roaming\uTorrent\uTorrent.exe
[2013/12/01 19:24:02 | 001,142,864 | ---- | M] (BitTorrent Inc.) -- C:\Users\Pierre\AppData\Roaming\uTorrent\updates\3.3.2_30303.exe
 
[color=#A23BEC]< %systemdrive%\*. >[/color]
[2013/08/17 21:35:42 | 000,000,000 | -HSD | M] -- C:\$RECYCLE.BIN
[2014/01/02 16:04:50 | 000,000,000 | ---D | M] -- C:\AdwCleaner
[2012/04/24 21:41:41 | 000,000,000 | ---D | M] -- C:\apps
[2014/01/02 16:06:23 | 000,000,000 | ---D | M] -- C:\Config.Msi
[2013/04/08 14:58:39 | 000,000,000 | ---D | M] -- C:\DELL
[2009/07/14 05:08:56 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2012/04/24 21:45:27 | 000,000,000 | ---D | M] -- C:\Drivers
[2012/07/15 17:07:55 | 000,000,000 | ---D | M] -- C:\DvdWin7
[2013/07/31 18:42:05 | 000,000,000 | ---D | M] -- C:\Log
[2012/12/20 15:32:47 | 000,000,000 | R--D | M] -- C:\MSOCache
[2009/07/14 03:20:08 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2014/01/02 11:49:29 | 000,000,000 | ---D | M] -- C:\Program Files
[2014/01/02 16:04:43 | 000,000,000 | R--D | M] -- C:\Program Files (x86)
[2014/01/02 16:06:23 | 000,000,000 | ---D | M] -- C:\ProgramData
[2013/08/07 09:12:34 | 000,000,000 | ---D | M] -- C:\Qoobox
[2013/08/02 13:10:56 | 000,000,000 | ---D | M] -- C:\rsit
[2013/09/08 15:39:50 | 000,000,000 | ---D | M] -- C:\Shortcut_Module
[2012/04/30 10:49:08 | 000,000,000 | -HSD | M] -- C:\System Recovery
[2014/01/02 16:26:05 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2013/08/06 20:24:00 | 000,000,000 | ---D | M] -- C:\TDSSKiller_Quarantine
[2013/08/07 07:14:58 | 000,000,000 | ---D | M] -- C:\Temp
[2014/01/02 13:51:34 | 000,000,000 | ---D | M] -- C:\Users
[2014/01/02 11:07:25 | 000,000,000 | ---D | M] -- C:\Windows
[2013/08/09 10:46:53 | 000,000,000 | ---D | M] -- C:\ZHP
[2013/08/03 16:08:14 | 000,000,000 | ---D | M] -- C:\_OTL
 
[color=#A23BEC]< %systemdrive%\*.exe >[/color]
 
[color=#A23BEC]< %programfiles%\*. >[/color]
[2012/10/26 21:05:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\2BrightSparks
[2012/08/01 14:57:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Acronis
[2013/08/05 12:20:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Ad-Remover
[2012/04/24 21:45:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Adobe
[2013/12/19 18:18:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\BitTorrent Sync
[2013/11/13 20:52:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Calibre2
[2012/04/24 20:54:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Cisco
[2013/08/12 10:47:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Common Files
[2013/10/26 06:52:10 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Convar
[2012/12/16 17:33:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Creative
[2012/12/20 13:39:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Creative Live! Cam
[2014/01/01 18:42:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CrystalDiskInfo
[2012/12/16 17:33:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Cyberlink
[2012/12/16 17:34:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Dell
[2014/01/02 16:09:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Dell DataSafe Local Backup
[2012/04/24 21:52:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Dell Stage
[2012/04/24 21:26:20 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Dell Webcam
[2013/12/07 17:51:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Dream Aquarium
[2013/09/29 07:40:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Duplicate Cleaner
[2013/09/27 19:30:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Duplicate Cleaner Pro
[2013/04/08 14:59:14 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EasyBurner
[2013/04/08 14:59:14 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\eBay
[2013/04/08 14:59:14 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\FastStone Capture
[2012/07/13 10:27:43 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\FinalWire
[2013/10/13 13:57:40 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Garmin
[2012/12/20 13:39:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Google
[2014/01/01 10:53:16 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\graeatsavver
[2013/12/20 17:44:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\GUM30BA.tmp
[2013/04/08 14:59:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\HP
[2013/04/08 14:59:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\HP Photo Creations
[2013/04/08 14:59:29 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\IcoSauve
[2013/07/24 13:32:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\InfraRecorder
[2013/12/07 18:38:28 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2013/01/18 21:43:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Intel
[2013/12/12 21:28:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Explorer
[2013/06/20 10:58:29 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Java
[2013/12/31 17:20:04 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\LastPass
[2013/05/02 10:40:32 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/12/16 17:34:25 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MarkAny
[2013/08/12 10:47:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\McAfee
[2012/12/15 21:38:39 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Analysis Services
[2013/01/13 22:45:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office
[2013/11/14 20:49:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Security Client
[2013/10/10 19:17:20 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Silverlight
[2013/01/13 21:10:01 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2013/01/13 21:10:01 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Sync Framework
[2013/01/13 22:27:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2013/01/13 22:27:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2013/01/13 22:27:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft.NET
[2013/12/22 11:44:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox
[2013/12/24 06:21:15 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2013/04/08 14:59:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSBuild
[2012/12/16 17:34:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSECache
[2013/04/29 19:25:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MyFree Codec
[2013/04/08 14:59:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MyTomTom 3
[2012/12/01 18:53:25 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Nero
[2012/07/12 18:24:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Nitro PDF
[2012/12/16 17:34:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\NVIDIA Corporation
[2012/06/13 09:21:42 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Oracle
[2013/09/22 08:57:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Orange
[2013/12/08 08:56:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Ord-ixSofts
[2012/09/12 16:31:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\OVH
[2013/08/12 10:47:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Palm
[2013/04/08 14:59:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PDFCreator
[2013/07/24 11:35:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Philips Intelligent Agent
[2013/04/08 14:59:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PhotoFiltre
[2013/12/07 17:32:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Power Soft
[2013/11/06 08:16:29 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PrivaZer
[2009/07/14 05:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reference Assemblies
[2012/04/24 21:40:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Roxio
[2013/10/28 21:04:49 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Samsung
[2013/08/12 10:47:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SEAF
[2014/01/02 12:14:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Seagate
[2013/12/03 16:33:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Sk.Enhancer
[2013/07/23 17:44:04 | 000,000,000 | R--D | M] -- C:\Program Files (x86)\Skype
[2012/04/24 21:15:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SmartSound Software
[2012/12/16 17:35:14 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SonY
[2013/07/01 20:37:16 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\splus
[2013/10/26 08:02:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Stellar Phoenix Photo Recovery
[2013/08/12 10:47:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\StuffPlug3
[2013/04/08 14:59:54 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\TomTom HOME 2
[2012/12/16 17:35:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\TomTom International B.V
[2013/08/02 13:10:49 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\trend micro
[2012/06/30 18:29:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Trusteer
[2013/12/04 20:44:04 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\TuneUp Utilities 2014
[2012/05/23 09:06:00 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VideoLAN
[2013/07/27 15:14:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Vuze
[2013/07/11 07:12:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Defender
[2012/12/20 13:39:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Live
[2013/04/08 15:06:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Mail
[2013/12/12 21:28:40 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Player
[2012/12/16 17:35:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows NT
[2013/04/08 15:05:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Viewer
[2013/04/08 15:06:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Portable Devices
[2013/04/08 15:06:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Sidebar
[2013/04/08 15:00:01 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Your Uninstaller! 7
[2013/08/09 10:46:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ZHPDiag
 
[color=#A23BEC]< MD5 for: EXPLORER.EXE  >[/color]
[2012/04/24 22:15:12 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2012/04/24 22:15:12 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\erdnt\cache86\explorer.exe
[2012/04/24 22:15:12 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2012/04/24 22:15:12 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2012/04/24 22:15:12 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/21 03:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2012/04/24 22:15:12 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2012/04/24 22:15:12 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/21 03:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2010/11/21 03:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\erdnt\cache64\netlogon.dll
[2010/11/21 03:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010/11/21 03:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010/11/21 03:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\erdnt\cache86\netlogon.dll
[2010/11/21 03:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010/11/21 03:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
 
[color=#A23BEC]< MD5 for: USERINIT.EXE  >[/color]
[2010/11/21 03:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache86\userinit.exe
[2010/11/21 03:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/21 03:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/21 03:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\erdnt\cache64\userinit.exe
[2010/11/21 03:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/21 03:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
 
[color=#A23BEC]< MD5 for: WINLOGON.EXE  >[/color]
[2010/11/21 03:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\erdnt\cache64\winlogon.exe
[2010/11/21 03:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/21 03:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2013/04/04 12:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 745 bytes -> C:\Users\Pierre\Documents\Email Tel Appt Ciutad de.eml:OECustomProperty
@Alternate Data Stream - 177 bytes -> C:\ProgramData\Temp:1CE11B51
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:58DD92AC

< End of report >