cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 13/03/2015 22:20:35 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MANO\Downloads\Programs
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,93 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 51,66% Memory free
3,86 Gb Paging File | 2,55 Gb Available in Paging File | 66,11% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69,65 Gb Total Space | 35,15 Gb Free Space | 50,46% Space Free | Partition Type: NTFS
Drive D: | 69,64 Gb Total Space | 36,21 Gb Free Space | 52,00% Space Free | Partition Type: NTFS

Computer Name: MANO-PC | User Name: MANO | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015/03/13 22:19:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MANO\Downloads\Programs\OTL.exe
PRC - [2015/02/19 16:40:12 | 005,503,768 | ---- | M] (Piriform Ltd) -- C:\Program Files\CCleaner\CCleaner.exe
PRC - [2015/02/18 13:10:24 | 003,519,936 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2014/12/19 15:24:56 | 001,005,352 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
PRC - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/11/07 00:08:29 | 000,214,512 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
PRC - [2014/09/03 09:03:46 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013/07/16 07:41:02 | 001,124,744 | ---- | M] (Autodesk, Inc.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
PRC - [2013/04/22 10:05:32 | 000,720,064 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
PRC - [2012/12/13 17:37:26 | 000,012,288 | ---- | M] (Autodesk, Inc.) -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2010/05/25 12:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2009/11/09 03:17:50 | 000,180,224 | ---- | M] (PowerISO Computing, Inc.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2009/07/14 01:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 01:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2005/06/17 17:49:16 | 000,281,600 | ---- | M] (L'Aventure Multimedia) -- C:\Program Files\Micro Application\36 Dictionnaires et Recueils de Correspondance\MediaDico36.exe
PRC - [2005/06/15 15:28:10 | 000,200,787 | ---- | M] (L'Aventure Multimedia) -- C:\Program Files\Micro Application\36 Dictionnaires et Recueils de Correspondance\RAC36.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2015/02/19 21:40:16 | 000,065,536 | ---- | M] () -- C:\Program Files\CCleaner\lang\lang-1036.dll
MOD - [2014/11/21 14:03:21 | 000,256,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsForm0b574481#\8ea4f2a14f034a52843ddf37991c9f6d\WindowsFormsIntegration.ni.dll
MOD - [2014/11/21 14:02:14 | 019,522,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\ec19fdffa5eaea430a77160272ed897e\System.ServiceModel.ni.dll
MOD - [2014/11/19 14:41:43 | 000,189,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\fedb1433422296012c8ce48902458bf1\UIAutomationTypes.ni.dll
MOD - [2014/11/19 14:41:40 | 000,018,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\dcf2b1a7011858156e5b759de2e5e598\PresentationFramework-SystemXml.ni.dll
MOD - [2014/11/07 22:49:09 | 018,524,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\97e6b67983d07a066b68b3ae8be2f53d\PresentationFramework.ni.dll
MOD - [2014/11/07 22:48:49 | 000,958,464 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\28586400bcaf94c13a9fd0dff4a1e090\System.Configuration.ni.dll
MOD - [2014/11/07 22:48:48 | 007,559,680 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\9ba07396ae369d010c5c3927a82ef426\System.Xml.ni.dll
MOD - [2014/11/07 22:48:36 | 010,914,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\b52bc540630c3aa5de542c382af35c20\PresentationCore.ni.dll
MOD - [2014/11/07 22:48:22 | 003,905,024 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\cd235caf797fb017f140016be88f33b7\WindowsBase.ni.dll
MOD - [2014/11/07 22:48:18 | 006,995,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\b9f7adbc90a2bcbe8eb9e6e8d2bb975b\System.Core.ni.dll
MOD - [2014/11/07 22:48:09 | 001,870,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\cc4d9093563dadee370788bbc3ecf4fb\System.Xaml.ni.dll
MOD - [2014/11/07 22:48:06 | 000,462,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\e7d92730b571b31e62c2cf257f04a974\PresentationFramework.Aero.ni.dll
MOD - [2014/11/07 22:48:04 | 009,925,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\e40da7a49f8c3f0108e7c835b342f382\System.ni.dll
MOD - [2014/11/07 22:47:53 | 016,501,248 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\51e2934144ba15628ba5a31be2dae7dc\mscorlib.ni.dll
MOD - [2014/09/03 09:04:09 | 003,648,624 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013/06/17 12:35:10 | 000,478,400 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\dblite.dll
MOD - [2013/02/05 00:21:38 | 000,744,992 | ---- | M] () -- C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
MOD - [2013/02/05 00:21:38 | 000,106,016 | ---- | M] () -- C:\Program Files\Autodesk\Autodesk Sync\QJson.dll
MOD - [2013/02/05 00:21:38 | 000,049,184 | ---- | M] () -- C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
MOD - [2013/02/05 00:21:38 | 000,039,456 | ---- | M] () -- C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
MOD - [2011/03/17 00:11:16 | 004,297,568 | ---- | M] () -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - [2015/02/26 07:46:20 | 001,064,752 | ---- | M] (Flexera Software LLC) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2015/02/16 15:53:11 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/11/07 00:08:29 | 000,214,512 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe -- (AVP)
SRV - [2014/09/03 09:04:02 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/12/13 17:37:26 | 000,012,288 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2010/12/27 23:50:30 | 031,124,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2009/07/14 01:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 01:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 01:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\clwvd.sys -- (clwvd)
DRV - [2015/03/06 23:50:28 | 000,028,656 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV - [2015/03/02 12:53:24 | 003,244,032 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2015/03/02 12:43:05 | 000,315,392 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2015/03/02 11:13:18 | 000,023,840 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\System32\drivers\HWiNFO32.SYS -- (HWiNFO32)
DRV - [2014/11/07 01:28:35 | 000,144,992 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kneps.sys -- (kneps)
DRV - [2014/11/07 01:28:34 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2014/11/07 01:28:34 | 000,025,184 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klkbdflt.sys -- (klkbdflt)
DRV - [2014/11/07 01:28:33 | 000,576,608 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF)
DRV - [2014/11/07 01:28:33 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6)
DRV - [2014/11/07 01:28:31 | 000,135,776 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\kl1.sys -- (kl1)
DRV - [2014/11/07 01:28:31 | 000,094,304 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\klflt.sys -- (klflt)
DRV - [2013/11/21 10:22:06 | 000,082,168 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2013/05/14 17:34:44 | 000,045,024 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kltdi.sys -- (kltdi)
DRV - [2013/04/12 15:34:48 | 000,014,432 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klpd.sys -- (klpd)
DRV - [2013/02/21 15:16:54 | 000,068,480 | ---- | M] (MediaTek Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usb2ser.sys -- (wdf_usb)
DRV - [2012/08/02 00:23:14 | 000,097,632 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)
DRV - [2010/03/25 10:08:38 | 000,105,984 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2010/03/24 13:57:44 | 000,204,288 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2010/03/20 11:56:04 | 000,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2009/11/09 03:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2009/07/14 01:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009/07/14 01:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 01:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009/07/13 23:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/13 23:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/13 23:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009/07/13 23:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/13 22:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 49 FE A1 45 BD 3B D0 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledAddons: YoutubeDownloader%40PeterOlayev.com:2.3.8
FF - prefs.js..extensions.enabledAddons: firefoxaddon%40youtubeenhancer.com:3.3.5
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\MANO\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\MANO\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\url_advisor@kaspersky.com: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com [2014/12/19 15:40:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtual_keyboard@kaspersky.com: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014/12/19 15:40:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\content_blocker@kaspersky.com: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com [2014/12/19 15:40:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\MANO\AppData\Roaming\IDM\idmmzcc5 [2015/03/02 10:12:15 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\MANO\AppData\Roaming\IDM\idmmzcc5 [2015/03/02 10:12:15 | 000,000,000 | ---D | M]

[2014/11/06 15:29:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MANO\AppData\Roaming\mozilla\Extensions
[2015/03/13 22:01:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MANO\AppData\Roaming\mozilla\Firefox\Profiles\bxcdqj8e.default\extensions
[2015/03/13 22:01:18 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\Users\MANO\AppData\Roaming\mozilla\Firefox\Profiles\bxcdqj8e.default\extensions\anttoolbar@ant.com
[2015/02/09 11:42:34 | 000,076,150 | ---- | M] () (No name found) -- C:\Users\MANO\AppData\Roaming\mozilla\firefox\profiles\bxcdqj8e.default\extensions\firefoxaddon@youtubeenhancer.com.xpi
[2014/12/06 20:29:25 | 000,020,158 | ---- | M] () (No name found) -- C:\Users\MANO\AppData\Roaming\mozilla\firefox\profiles\bxcdqj8e.default\extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi
[2015/01/30 12:11:15 | 000,079,400 | ---- | M] () (No name found) -- C:\Users\MANO\AppData\Roaming\mozilla\firefox\profiles\bxcdqj8e.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi
[2015/03/13 21:59:16 | 000,019,204 | ---- | M] () (No name found) -- C:\Users\MANO\AppData\Roaming\mozilla\firefox\profiles\bxcdqj8e.default\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi
[2015/02/25 09:07:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions
[2014/11/06 15:29:14 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfkpkealncpcbfklpgnggcgjjdkbljop\1.0.1.2_0\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa\3.1.0.122_0\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\14.0.0.4651_1\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\dolajcekhnohkpncmhgledbmndjpblei\0.5.11_0\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmknocfkgffdgekmfonabppnhdgmghem\4.1_0\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlenniinblnemaeneglhgicafiahoibg\1.2_0\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnkioblodjcgkdailhejgcocjkkoochj\2.2.6_0\
CHR - Extension: No name found = C:\Users\MANO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\

O1 HOSTS File: ([2009/06/10 21:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Safe Money Plugin) - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKCU..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [EpicScale] File not found
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKCU..\Run: [MediaDICO36] C:\Program Files\Micro Application\36 Dictionnaires et Recueils de Correspondance\LanceMediaDICO36.exe (L'Aventure Multimedia)
O4 - HKCU..\Run: [Mobile Partner] C:\Program Files\3MobileWiFi\3MobileWiFi.exe ()
O4 - HKCU..\Run: [OfficeSyncProcess] C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: rescue = "C:\ProgramData\rescue.vbe" ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: SYSTRAN: &Effacer le cache de traduction - C:\Program Files\Systran\Premium\menuClearCache.html ()
O8 - Extra context menu item: SYSTRAN: &Options - C:\Program Files\Systran\Premium\menuConfigure.html ()
O8 - Extra context menu item: SYSTRAN: &Traduire - C:\Program Files\Systran\Premium\menuTranslate.html ()
O8 - Extra context menu item: SYSTRAN: En&registrement - C:\Program Files\Systran\Premium\menuRegister.html ()
O8 - Extra context menu item: SYSTRAN: Rechercher les &mises à jour - C:\Program Files\Systran\Premium\menuUpdate.html ()
O8 - Extra context menu item: SYSTRAN: Traduire les &cadres - C:\Program Files\Systran\Premium\menuTranslateAll.html ()
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O9 - Extra Button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: @sysiecom.dll,-2100 - {703436F1-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuTranslate.html ()
O9 - Extra 'Tools' menuitem : @sysiecom.dll,-2102 - {703436F1-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuTranslate.html ()
O9 - Extra Button: @sysiecom.dll,-2103 - {703436F2-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuTranslateAll.html ()
O9 - Extra 'Tools' menuitem : @sysiecom.dll,-2105 - {703436F2-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuTranslateAll.html ()
O9 - Extra Button: @sysiecom.dll,-2115 - {703436F3-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuConfigure.html ()
O9 - Extra 'Tools' menuitem : @sysiecom.dll,-2117 - {703436F3-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuConfigure.html ()
O9 - Extra 'Tools' menuitem : @sysiecom.dll,-2108 - {703436F4-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuClearCache.html ()
O9 - Extra 'Tools' menuitem : @sysiecom.dll,-2111 - {703436F5-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuRegister.html ()
O9 - Extra 'Tools' menuitem : @sysiecom.dll,-2114 - {703436F6-3E1F-11d3-8F6B-00105A2A1D59} - C:\Program Files\Systran\Premium\MenuUpdates.html File not found
O9 - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AFB1918A-484C-4D01-B27B-18F36C519AD3}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015/03/02 08:53:13 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2009/06/10 21:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{5293c4fd-9810-11e4-8d96-001d72cc10b3}\Shell - "" = AutoRun
O33 - MountPoints2\{5293c4fd-9810-11e4-8d96-001d72cc10b3}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{dd2d1435-6696-11e4-a451-001d72cc10b3}\Shell - "" = AutoRun
O33 - MountPoints2\{dd2d1435-6696-11e4-a451-001d72cc10b3}\Shell\AutoRun\command - "" = I:\.\StartModem.exe
O33 - MountPoints2\{f7098a7e-9297-11e4-9d95-001d72cc10b3}\Shell - "" = AutoRun
O33 - MountPoints2\{f7098a7e-9297-11e4-9d95-001d72cc10b3}\Shell\AutoRun\command - "" = H:\LGAutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PDFCreator.lnk - C:\PROGRA~1\PDFCRE~1\PDFCRE~1.EXE - (pdfforge http://www.pdfforge.org/)
MsConfig - StartUpFolder: C:^Users^MANO^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 - Capture d écran et lancement.lnk - C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE - (Microsoft Corporation)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

CREATERESTOREPOINT
Restore point Set: OTL Restore Point
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/03/11 07:56:18 | 000,000,000 | ---D | C] -- C:\Users\MANO\Desktop\actp
[2015/03/06 23:50:50 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2015/03/06 23:50:29 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01009.dll
[2015/03/06 23:50:28 | 000,028,656 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys
[2015/03/04 14:46:58 | 000,000,000 | ---D | C] -- C:\Users\MANO\Documents\AutoCAD Sheet Sets
[2015/03/03 07:41:06 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2015/03/02 14:07:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
[2015/03/02 14:02:14 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO
[2015/03/02 13:09:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/03/02 13:09:26 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/03/02 12:53:24 | 003,244,032 | ---- | C] (Qualcomm Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys
[2015/03/02 12:43:05 | 000,364,544 | ---- | C] (Marvell) -- C:\Windows\System32\yk62x86.dll
[2015/03/02 11:13:29 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2015/03/02 11:13:18 | 000,023,840 | ---- | C] (REALiX(tm)) -- C:\Windows\System32\drivers\HWiNFO32.SYS
[2015/03/02 11:13:18 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2015/03/02 11:13:16 | 000,000,000 | ---D | C] -- C:\Users\MANO\AppData\Roaming\IObit
[2015/03/02 11:13:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
[2015/03/02 11:13:09 | 000,000,000 | ---D | C] -- C:\Users\MANO\AppData\Roaming\RHEng
[2015/03/02 11:13:09 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2015/03/02 10:50:30 | 000,000,000 | ---D | C] -- C:\Users\MANO\AppData\Roaming\ConsumerSoft
[2015/03/02 10:50:13 | 000,000,000 | ---D | C] -- C:\Program Files\ConsumerSoft
[2015/03/02 10:11:48 | 000,000,000 | ---D | C] -- C:\Users\MANO\AppData\Roaming\IDM
[2015/03/02 10:11:48 | 000,000,000 | ---D | C] -- C:\Users\MANO\AppData\Roaming\DMCache
[2015/03/02 10:11:40 | 000,000,000 | ---D | C] -- C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
[2015/03/02 10:11:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
[2015/03/02 10:11:38 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Download Manager
[2015/02/26 10:15:08 | 000,000,000 | ---D | C] -- C:\Users\MANO\Documents\FFOutput
[2015/02/26 07:45:37 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Autodesk
[2015/02/25 12:23:33 | 000,000,000 | ---D | C] -- C:\Users\MANO\AppData\Local\cache
[2015/02/25 12:10:09 | 000,000,000 | ---D | C] -- C:\ProgramData\FARO
[2015/02/25 11:59:55 | 000,000,000 | ---D | C] -- C:\Users\MANO\Documents\Autodesk
[2015/02/25 11:57:57 | 000,000,000 | ---D | C] -- C:\Users\MANO\Documents\Inventor Server SDK ACA 2014
[2015/02/25 10:03:00 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2015/02/25 10:03:00 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2015/02/25 10:02:59 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2015/02/25 10:02:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2015/02/25 10:02:59 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2015/02/25 10:02:59 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2015/02/25 10:02:59 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2015/02/25 10:02:59 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll
[2015/02/25 10:02:58 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2015/02/25 10:02:58 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2015/02/25 10:02:58 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2015/02/25 09:07:56 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2015/02/25 08:53:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
[2015/02/25 08:53:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EZB Systems
[2015/02/25 08:53:06 | 000,000,000 | ---D | C] -- C:\Program Files\UltraISO
[2015/02/25 08:53:06 | 000,000,000 | ---D | C] -- C:\Users\MANO\Documents\My ISO Files
[2015/02/23 20:26:02 | 000,086,016 | ---- | C] (MindVision Software) -- C:\Windows\unvise32.exe
[2015/02/23 20:23:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SYSTRAN PROfessional Premium
[2015/02/23 20:23:47 | 000,000,000 | ---D | C] -- C:\Program Files\Systran
[2015/02/15 18:12:12 | 000,000,000 | ---D | C] -- C:\Users\MANO\projet diapaga

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/03/13 22:28:00 | 000,001,074 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1260050854-3766643152-1205698548-1000UA.job
[2015/03/13 22:24:48 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/03/13 22:02:32 | 000,016,944 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/03/13 22:02:32 | 000,016,944 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/03/13 21:52:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/03/13 21:52:53 | 1554,665,472 | -HS- | M] () -- C:\hiberfil.sys
[2015/03/13 12:40:01 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/03/13 11:32:44 | 000,652,686 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/03/13 11:32:44 | 000,121,088 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/03/13 11:32:44 | 000,014,334 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2015/03/13 11:32:44 | 000,004,706 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2015/03/12 12:56:13 | 001,030,400 | ---- | M] () -- C:\Users\MANO\Desktop\Celliba.dwg
[2015/03/12 08:28:00 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1260050854-3766643152-1205698548-1000Core.job
[2015/03/11 16:53:51 | 001,032,403 | ---- | M] () -- C:\Users\MANO\Desktop\Celliba.bak
[2015/03/11 11:04:32 | 000,415,186 | ---- | M] () -- C:\Users\MANO\mag.dwg
[2015/03/06 23:50:57 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
[2015/03/06 23:50:29 | 001,461,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01009.dll
[2015/03/06 23:50:28 | 000,028,656 | ---- | M] (Synaptics Incorporated) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys
[2015/03/04 14:44:37 | 000,472,763 | ---- | M] () -- C:\Users\MANO\Documents\Dessin1.dwg
[2015/03/02 16:47:39 | 000,373,148 | ---- | M] () -- C:\Users\MANO\Desktop\Aec Sheet (Metric Ctb) 2222.dwt
[2015/03/02 14:07:55 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\PowerISO.lnk
[2015/03/02 13:09:32 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/03/02 12:53:24 | 003,244,032 | ---- | M] (Qualcomm Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys
[2015/03/02 12:43:05 | 000,364,544 | ---- | M] (Marvell) -- C:\Windows\System32\yk62x86.dll
[2015/03/02 11:16:13 | 000,002,094 | ---- | M] () -- C:\Users\Public\Desktop\Driver Booster 2.lnk
[2015/03/02 11:13:18 | 000,023,840 | ---- | M] (REALiX(tm)) -- C:\Windows\System32\drivers\HWiNFO32.SYS
[2015/03/02 09:10:10 | 000,002,356 | ---- | M] () -- C:\Users\MANO\Desktop\AutoCAD Architecture 2014 - Français (French).lnk
[2015/02/28 14:49:05 | 000,000,156 | ---- | M] () -- C:\Users\MANO\Documents\acad.err
[2015/02/26 07:52:02 | 000,002,003 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk 360.lnk
[2015/02/25 12:13:41 | 000,481,984 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015/02/25 12:09:58 | 000,002,039 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk ReCap.lnk
[2015/02/23 20:31:49 | 000,000,956 | ---- | M] () -- C:\Windows\syspropr.INI
[2015/02/23 20:26:01 | 000,000,195 | ---- | M] () -- C:\Windows\ssiregst.ini
[2015/02/23 20:23:54 | 000,000,112 | ---- | M] () -- C:\Windows\Systran.ini
[2015/02/23 14:41:41 | 000,002,325 | ---- | M] () -- C:\Users\MANO\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/02/23 14:41:41 | 000,002,323 | ---- | M] () -- C:\Users\MANO\Desktop\Google Chrome.lnk
[2015/02/16 15:53:02 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015/02/16 15:53:02 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2015/02/15 22:33:18 | 000,022,353 | ---- | M] () -- C:\Users\MANO\PATIO.pdf
[2015/02/15 22:15:36 | 000,784,001 | ---- | M] () -- C:\Users\MANO\VILLA Dayéri.dwg
[2015/02/15 22:15:19 | 000,022,353 | ---- | M] () -- C:\Users\MANO\C___Users__MANO__Desktop__VILLA Dayéri Model _(1_).pdf
[2015/02/15 15:59:38 | 000,087,184 | ---- | M] () -- C:\Users\MANO\PLAN TALADI.pdf
[2015/02/15 15:57:22 | 000,186,248 | ---- | M] () -- C:\Users\MANO\Dessin1.dwg22.bak

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/03/13 22:24:48 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015/03/11 16:53:51 | 001,032,403 | ---- | C] () -- C:\Users\MANO\Desktop\Celliba.bak
[2015/03/06 23:50:57 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
[2015/03/06 12:18:00 | 001,030,400 | ---- | C] () -- C:\Users\MANO\Desktop\Celliba.dwg
[2015/03/04 14:42:45 | 000,472,763 | ---- | C] () -- C:\Users\MANO\Documents\Dessin1.dwg
[2015/03/02 16:47:07 | 000,373,148 | ---- | C] () -- C:\Users\MANO\Desktop\Aec Sheet (Metric Ctb) 2222.dwt
[2015/03/02 14:02:15 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\PowerISO.lnk
[2015/03/02 13:09:32 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/03/02 11:13:14 | 000,002,094 | ---- | C] () -- C:\Users\Public\Desktop\Driver Booster 2.lnk
[2015/03/02 09:10:10 | 000,002,356 | ---- | C] () -- C:\Users\MANO\Desktop\AutoCAD Architecture 2014 - Français (French).lnk
[2015/02/28 14:49:05 | 000,000,156 | ---- | C] () -- C:\Users\MANO\Documents\acad.err
[2015/02/26 07:52:02 | 000,002,003 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk 360.lnk
[2015/02/25 12:09:58 | 000,002,039 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk ReCap.lnk
[2015/02/23 20:31:49 | 000,000,956 | ---- | C] () -- C:\Windows\syspropr.INI
[2015/02/23 20:23:55 | 000,000,195 | ---- | C] () -- C:\Windows\ssiregst.ini
[2015/02/23 20:23:54 | 000,000,112 | ---- | C] () -- C:\Windows\Systran.ini
[2015/02/15 22:33:17 | 000,022,353 | ---- | C] () -- C:\Users\MANO\PATIO.pdf
[2015/02/15 22:15:17 | 000,022,353 | ---- | C] () -- C:\Users\MANO\C___Users__MANO__Desktop__VILLA Dayéri Model _(1_).pdf
[2015/02/15 15:59:34 | 000,087,184 | ---- | C] () -- C:\Users\MANO\PLAN TALADI.pdf
[2015/02/15 14:17:01 | 000,186,248 | ---- | C] () -- C:\Users\MANO\Dessin1.dwg22.bak
[2015/02/04 15:24:43 | 000,001,890 | ---- | C] () -- C:\ProgramData\rescue.vbe
[2015/01/02 09:38:03 | 000,415,186 | ---- | C] () -- C:\Users\MANO\mag.dwg
[2015/01/02 09:38:03 | 000,412,665 | ---- | C] () -- C:\Users\MANO\mag.bak
[2014/12/08 16:41:36 | 000,784,001 | ---- | C] () -- C:\Users\MANO\VILLA Dayéri.dwg
[2014/11/11 11:06:08 | 000,395,899 | ---- | C] () -- C:\Users\MANO\Dessin2.dwg 3D.dwg
[2014/11/10 13:09:04 | 000,032,810 | ---- | C] () -- C:\Users\MANO\Plan de masse et boutiquSe-Model.pdf
[2014/11/07 00:01:32 | 000,001,923 | ---- | C] () -- C:\Windows\MediaR36.ini
[2013/03/30 12:00:00 | 000,422,848 | ---- | C] () -- C:\Windows\System32\PPL.dll
[2013/03/30 12:00:00 | 000,062,400 | ---- | C] () -- C:\Windows\System32\IFC.dll

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 04:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 01:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 01:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 01:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< >[/color]

[color=#A23BEC]< HKCU\Software >[/color]

[HKEY_CURRENT_USER\Software\Abvent]

[HKEY_CURRENT_USER\Software\Adobe]

[HKEY_CURRENT_USER\Software\Affinix]

[HKEY_CURRENT_USER\Software\AppDataLow]

[HKEY_CURRENT_USER\Software\Autodesk]

[HKEY_CURRENT_USER\Software\BitTorrent]

[HKEY_CURRENT_USER\Software\Clients]

[HKEY_CURRENT_USER\Software\ConsumerSoft]

[HKEY_CURRENT_USER\Software\CyberLink]

[HKEY_CURRENT_USER\Software\DownloadManager]

[HKEY_CURRENT_USER\Software\EasyBoot Systems]

[HKEY_CURRENT_USER\Software\EpicScale]

[HKEY_CURRENT_USER\Software\FormatFactory]

[HKEY_CURRENT_USER\Software\FreeTime]

[HKEY_CURRENT_USER\Software\Gabest]

[HKEY_CURRENT_USER\Software\GNU]

[HKEY_CURRENT_USER\Software\Google]

[HKEY_CURRENT_USER\Software\Haali]

[HKEY_CURRENT_USER\Software\Hewlett-Packard]

[HKEY_CURRENT_USER\Software\IM Providers]

[HKEY_CURRENT_USER\Software\KasperskyLab]

[HKEY_CURRENT_USER\Software\LAventure]

[HKEY_CURRENT_USER\Software\LinkeSOFT]

[HKEY_CURRENT_USER\Software\Logitech]

[HKEY_CURRENT_USER\Software\Macromedia]

[HKEY_CURRENT_USER\Software\Microsoft]

[HKEY_CURRENT_USER\Software\Mozilla]

[HKEY_CURRENT_USER\Software\MozillaPlugins]

[HKEY_CURRENT_USER\Software\Netscape]

[HKEY_CURRENT_USER\Software\ODBC]

[HKEY_CURRENT_USER\Software\Piriform]

[HKEY_CURRENT_USER\Software\Policies]

[HKEY_CURRENT_USER\Software\PowerISO]

[HKEY_CURRENT_USER\Software\Skype]

[HKEY_CURRENT_USER\Software\Trolltech]

[HKEY_CURRENT_USER\Software\VB and VBA Program Settings]

[HKEY_CURRENT_USER\Software\WinRAR]

[HKEY_CURRENT_USER\Software\WinRAR SFX]

[HKEY_CURRENT_USER\Software\”^(u z^Tü[ub„v,g0W”^(u z^]

[HKEY_CURRENT_USER\Software\Classes]

[color=#A23BEC]< HKLM\Software >[/color]

[HKEY_LOCAL_MACHINE\Software\Adobe]

[HKEY_LOCAL_MACHINE\Software\Agere]

[HKEY_LOCAL_MACHINE\Software\Apple Computer, Inc.]

[HKEY_LOCAL_MACHINE\Software\ATI Technologies]

[HKEY_LOCAL_MACHINE\Software\Autodesk]

[HKEY_LOCAL_MACHINE\Software\AviSynth]

[HKEY_LOCAL_MACHINE\Software\bmModem]

[HKEY_LOCAL_MACHINE\Software\Bytemobile]

[HKEY_LOCAL_MACHINE\Software\Caphyon]

[HKEY_LOCAL_MACHINE\Software\Classes]

[HKEY_LOCAL_MACHINE\Software\Clients]

[HKEY_LOCAL_MACHINE\Software\CyberLink]

[HKEY_LOCAL_MACHINE\Software\EasyBoot Systems]

[HKEY_LOCAL_MACHINE\Software\GNU]

[HKEY_LOCAL_MACHINE\Software\Google]

[HKEY_LOCAL_MACHINE\Software\HaaliMkx]

[HKEY_LOCAL_MACHINE\Software\Hewlett-Packard]

[HKEY_LOCAL_MACHINE\Software\Huawei technologies]

[HKEY_LOCAL_MACHINE\Software\Intel]

[HKEY_LOCAL_MACHINE\Software\Internet Download Manager]

[HKEY_LOCAL_MACHINE\Software\IObit]

[HKEY_LOCAL_MACHINE\Software\KasperskyLab]

[HKEY_LOCAL_MACHINE\Software\LAventure]

[HKEY_LOCAL_MACHINE\Software\LSI]

[HKEY_LOCAL_MACHINE\Software\Macromedia]

[HKEY_LOCAL_MACHINE\Software\Macrovision]

[HKEY_LOCAL_MACHINE\Software\Micro Application]

[HKEY_LOCAL_MACHINE\Software\Microsoft]

[HKEY_LOCAL_MACHINE\Software\Mozilla]

[HKEY_LOCAL_MACHINE\Software\mozilla.org]

[HKEY_LOCAL_MACHINE\Software\MozillaPlugins]

[HKEY_LOCAL_MACHINE\Software\ODBC]

[HKEY_LOCAL_MACHINE\Software\OldTimer Tools]

[HKEY_LOCAL_MACHINE\Software\PDFCreator]

[HKEY_LOCAL_MACHINE\Software\Piriform]

[HKEY_LOCAL_MACHINE\Software\Policies]

[HKEY_LOCAL_MACHINE\Software\PortNameSetting]

[HKEY_LOCAL_MACHINE\Software\PowerISO]

[HKEY_LOCAL_MACHINE\Software\RegisteredApplications]

[HKEY_LOCAL_MACHINE\Software\Skype]

[HKEY_LOCAL_MACHINE\Software\Sonic]

[HKEY_LOCAL_MACHINE\Software\Synaptics]

[HKEY_LOCAL_MACHINE\Software\SYSTRAN]

[HKEY_LOCAL_MACHINE\Software\VideoLAN]

[HKEY_LOCAL_MACHINE\Software\Volatile]

[HKEY_LOCAL_MACHINE\Software\WinRAR]

[color=#A23BEC]< %Homedrive%\* >[/color]
[2009/06/10 21:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2009/07/14 01:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2014/11/06 13:46:28 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2014/11/06 16:01:39 | 000,318,051 | RHS- | M] () -- C:\CJROB
[2009/06/10 21:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2015/03/13 21:52:53 | 1554,665,472 | -HS- | M] () -- C:\hiberfil.sys
[2015/03/13 21:52:56 | 2072,891,392 | -HS- | M] () -- C:\pagefile.sys
[2015/03/13 22:24:48 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin

[color=#A23BEC]< %Homedrive%\*. >[/color]
[2014/11/06 14:57:51 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2015/03/02 08:53:13 | 000,000,000 | ---D | M] -- C:\Autodesk
[2011/05/22 02:03:24 | 000,000,000 | ---D | M] -- C:\Book
[2014/11/06 13:46:26 | 000,000,000 | -HSD | M] -- C:\Boot
[2013/12/16 08:42:04 | 000,000,000 | ---D | M] -- C:\CAT
[2009/07/14 04:53:55 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2014/11/06 23:52:01 | 000,000,000 | ---D | M] -- C:\FFOutput
[2015/01/08 12:05:20 | 000,000,000 | ---D | M] -- C:\HP Universal Print Driver
[2014/11/06 15:08:49 | 000,000,000 | ---D | M] -- C:\IDE
[2015/02/04 17:16:55 | 000,000,000 | -HSD | M] -- C:\Kernel
[2014/11/06 15:06:55 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2009/07/14 02:37:05 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2015/03/06 23:50:50 | 000,000,000 | R--D | M] -- C:\Program Files
[2015/03/02 11:13:29 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2014/11/06 14:57:29 | 000,000,000 | -HSD | M] -- C:\Recovery
[2015/02/04 17:16:56 | 000,000,000 | -HSD | M] -- C:\security
[2015/03/13 22:24:39 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2014/10/05 12:22:27 | 000,000,000 | ---D | M] -- C:\tgi3d
[2014/11/06 14:57:38 | 000,000,000 | R--D | M] -- C:\Users
[2015/02/03 11:11:09 | 000,000,000 | -HSD | M] -- C:\win
[2015/03/10 11:38:35 | 000,000,000 | ---D | M] -- C:\Windows
[2012/12/13 06:40:51 | 000,000,000 | ---D | M] -- C:\WinSetupFromUSB

[color=#A23BEC]< %Userprofile%\* >[/color]
[2015/02/15 22:15:19 | 000,022,353 | ---- | M] () -- C:\Users\MANO\C___Users__MANO__Desktop__VILLA Dayéri Model _(1_).pdf
[2015/02/15 15:57:22 | 000,186,248 | ---- | M] () -- C:\Users\MANO\Dessin1.dwg22.bak
[2014/11/11 11:44:45 | 000,395,899 | ---- | M] () -- C:\Users\MANO\Dessin2.dwg 3D.dwg
[2014/11/20 13:23:39 | 000,015,435 | ---- | M] () -- C:\Users\MANO\DGHC 1.docx
[2014/02/14 06:00:46 | 000,015,788 | ---- | M] () -- C:\Users\MANO\Démarches administratives.docx
[2014/11/17 10:48:52 | 000,216,118 | ---- | M] () -- C:\Users\MANO\ecriteauASECNA.docx
[2014/02/10 10:54:46 | 000,020,930 | ---- | M] () -- C:\Users\MANO\logo asecna.docx
[2015/02/06 14:44:45 | 000,412,665 | ---- | M] () -- C:\Users\MANO\mag.bak
[2015/03/11 11:04:32 | 000,415,186 | ---- | M] () -- C:\Users\MANO\mag.dwg
[2015/03/13 22:35:42 | 003,407,872 | -HS- | M] () -- C:\Users\MANO\NTUSER.DAT
[2015/03/13 22:35:42 | 000,262,144 | -HS- | M] () -- C:\Users\MANO\ntuser.dat.LOG1
[2014/12/02 09:33:15 | 000,262,144 | -HS- | M] () -- C:\Users\MANO\ntuser.dat.LOG2
[2014/11/06 16:06:49 | 000,065,536 | -HS- | M] () -- C:\Users\MANO\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2014/11/06 16:06:49 | 000,524,288 | -HS- | M] () -- C:\Users\MANO\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2014/11/06 16:06:49 | 000,524,288 | -HS- | M] () -- C:\Users\MANO\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2014/11/06 14:57:40 | 000,000,020 | -HS- | M] () -- C:\Users\MANO\ntuser.ini
[2015/02/15 22:33:18 | 000,022,353 | ---- | M] () -- C:\Users\MANO\PATIO.pdf
[2014/11/10 13:09:04 | 000,032,810 | ---- | M] () -- C:\Users\MANO\Plan de masse et boutiquSe-Model.pdf
[2015/02/15 15:59:38 | 000,087,184 | ---- | M] () -- C:\Users\MANO\PLAN TALADI.pdf
[2014/08/20 16:33:18 | 000,521,487 | ---- | M] () -- C:\Users\MANO\PROJET DE FINALISATION 1.docx
[2015/02/04 13:01:08 | 000,041,834 | ---- | M] () -- C:\Users\MANO\sain alphose np.xlsx
[2015/02/15 22:15:36 | 000,784,001 | ---- | M] () -- C:\Users\MANO\VILLA Dayéri.dwg

[color=#A23BEC]< %Userprofile%\*. >[/color]
[2014/11/06 14:57:40 | 000,000,000 | -H-D | M] -- C:\Users\MANO\AppData
[2014/11/06 14:57:39 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Application Data
[2014/12/30 20:10:27 | 000,000,000 | ---D | M] -- C:\Users\MANO\CENTRE SOUKALOBO
[2014/11/06 14:58:02 | 000,000,000 | R--D | M] -- C:\Users\MANO\Contacts
[2014/11/06 14:57:39 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Cookies
[2015/03/13 11:27:07 | 000,000,000 | R--D | M] -- C:\Users\MANO\Desktop
[2015/03/10 19:57:52 | 000,000,000 | R--D | M] -- C:\Users\MANO\Documents
[2015/03/07 01:08:53 | 000,000,000 | R--D | M] -- C:\Users\MANO\Downloads
[2011/05/22 04:36:59 | 000,000,000 | ---D | M] -- C:\Users\MANO\Elements
[2014/12/09 16:22:43 | 000,000,000 | R--D | M] -- C:\Users\MANO\Favorites
[2014/10/27 09:19:45 | 000,000,000 | ---D | M] -- C:\Users\MANO\Graphisoft
[2015/02/25 12:02:29 | 000,000,000 | R--D | M] -- C:\Users\MANO\Links
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Local Settings
[2015/03/06 12:14:21 | 000,000,000 | ---D | M] -- C:\Users\MANO\mano
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Menu Démarrer
[2014/11/06 14:57:39 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Mes documents
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Modèles
[2014/11/06 14:58:02 | 000,000,000 | R--D | M] -- C:\Users\MANO\Music
[2014/11/06 14:58:02 | 000,000,000 | R--D | M] -- C:\Users\MANO\Pictures
[2015/02/15 18:32:31 | 000,000,000 | ---D | M] -- C:\Users\MANO\projet diapaga
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Recent
[2014/11/06 14:58:02 | 000,000,000 | R--D | M] -- C:\Users\MANO\Saved Games
[2015/02/09 09:38:54 | 000,000,000 | R--D | M] -- C:\Users\MANO\Searches
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\SendTo
[2014/11/06 14:58:02 | 000,000,000 | R--D | M] -- C:\Users\MANO\Videos
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Voisinage d'impression
[2014/11/06 14:57:39 | 000,000,000 | -HSD | M] -- C:\Users\MANO\Voisinage réseau

[color=#A23BEC]< %Allusersprofile%\* >[/color]
[2015/02/04 15:24:43 | 000,001,890 | ---- | M] () -- C:\ProgramData\rescue.vbe

[color=#A23BEC]< %Allusersprofile%\*. >[/color]
[2015/01/30 14:43:22 | 000,000,000 | ---D | M] -- C:\ProgramData\Abvent
[2014/11/10 07:32:46 | 000,000,000 | ---D | M] -- C:\ProgramData\Adobe
[2009/07/14 04:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2015/02/25 14:53:56 | 000,000,000 | ---D | M] -- C:\ProgramData\Autodesk
[2014/11/06 14:57:29 | 000,000,000 | -HSD | M] -- C:\ProgramData\Bureau
[2014/11/06 16:16:03 | 000,000,000 | ---D | M] -- C:\ProgramData\CyberLink
[2009/07/14 04:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Desktop
[2009/07/14 04:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2015/03/02 11:32:19 | 000,000,000 | ---D | M] -- C:\ProgramData\EpicScale
[2015/02/25 12:10:09 | 000,000,000 | ---D | M] -- C:\ProgramData\FARO
[2014/11/06 14:57:29 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favoris
[2009/07/14 04:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favorites
[2015/02/25 12:21:39 | 000,000,000 | ---D | M] -- C:\ProgramData\FLEXnet
[2014/11/06 16:04:41 | 000,000,000 | ---D | M] -- C:\ProgramData\install_clap
[2015/03/02 11:13:25 | 000,000,000 | ---D | M] -- C:\ProgramData\IObit
[2015/03/13 21:55:49 | 000,000,000 | ---D | M] -- C:\ProgramData\Kaspersky Lab
[2014/11/06 14:57:29 | 000,000,000 | -HSD | M] -- C:\ProgramData\Menu Démarrer
[2015/02/06 08:53:07 | 000,000,000 | --SD | M] -- C:\ProgramData\Microsoft
[2015/02/18 14:38:11 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft Help
[2014/11/06 14:57:29 | 000,000,000 | -HSD | M] -- C:\ProgramData\Modèles
[2014/11/06 15:29:17 | 000,000,000 | ---D | M] -- C:\ProgramData\Mozilla
[2015/03/02 11:13:29 | 000,000,000 | ---D | M] -- C:\ProgramData\ProductData
[2015/02/25 09:09:32 | 000,000,000 | ---D | M] -- C:\ProgramData\Skype
[2009/07/14 04:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Start Menu
[2014/11/06 16:04:42 | 000,000,000 | ---D | M] -- C:\ProgramData\Temp
[2009/07/14 04:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Templates

[color=#A23BEC]< %localappdata%\* >[/color]
[2015/02/25 12:21:13 | 000,141,608 | ---- | M] () -- C:\Users\MANO\AppData\Local\GDIPFONTCACHEV1.DAT
[2015/03/13 12:39:52 | 003,649,795 | -H-- | M] () -- C:\Users\MANO\AppData\Local\IconCache.db

[color=#A23BEC]< %localappdata%\*. >[/color]
[2014/11/07 15:43:36 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Adobe
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\AppData\Local\Application Data
[2015/02/25 14:53:53 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Autodesk
[2015/03/02 16:28:57 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\cache
[2014/11/06 16:08:45 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\CyberLink
[2014/12/27 11:12:30 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Diagnostics
[2015/02/05 22:16:23 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\ElevatedDiagnostics
[2014/11/12 18:15:13 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Google
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\AppData\Local\Historique
[2014/11/07 11:53:01 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Macromedia
[2014/11/12 16:10:48 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Mango_Enterprise_-_http__
[2014/11/26 10:20:24 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Microsoft
[2015/01/30 15:48:31 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Microsoft Games
[2014/11/19 14:19:02 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Microsoft Help
[2014/11/06 15:29:31 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Mozilla
[2015/01/30 15:29:51 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Programs
[2015/01/30 15:58:38 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Skype
[2015/03/13 22:29:06 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\Temp
[2014/11/06 14:57:40 | 000,000,000 | -HSD | M] -- C:\Users\MANO\AppData\Local\Temporary Internet Files
[2014/11/07 07:12:34 | 000,000,000 | ---D | M] -- C:\Users\MANO\AppData\Local\VirtualStore

[color=#A23BEC]< %Userprofile%\Local Settings\Application Data\* >[/color]

[color=#A23BEC]< %Userprofile%\Local Settings\Application Data\*. >[/color]

[color=#A23BEC]< %programFiles%\* >[/color]
[2009/07/14 04:41:57 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini

[color=#A23BEC]< %programFiles%\*. >[/color]
[2015/01/09 15:43:50 | 000,000,000 | ---D | M] -- C:\Program Files\3MobileWiFi
[2014/11/06 15:25:04 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2014/11/07 23:14:38 | 000,000,000 | ---D | M] -- C:\Program Files\Artlantis Studio 5
[2014/11/06 19:26:29 | 000,000,000 | ---D | M] -- C:\Program Files\AutoCAD 2010
[2015/03/02 08:57:08 | 000,000,000 | ---D | M] -- C:\Program Files\Autodesk
[2015/03/02 13:09:38 | 000,000,000 | ---D | M] -- C:\Program Files\CCleaner
[2015/02/25 09:09:23 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2015/03/02 10:50:13 | 000,000,000 | ---D | M] -- C:\Program Files\ConsumerSoft
[2014/11/10 11:18:59 | 000,000,000 | ---D | M] -- C:\Program Files\D-Link Connection Manager
[2009/07/14 09:01:30 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Maker
[2014/11/06 14:57:29 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs
[2014/12/08 14:54:04 | 000,000,000 | ---D | M] -- C:\Program Files\FormatFactory
[2014/11/06 23:50:32 | 000,000,000 | ---D | M] -- C:\Program Files\FreeTime
[2014/11/07 00:01:28 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2015/03/02 10:12:12 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Download Manager
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2015/03/02 11:13:09 | 000,000,000 | ---D | M] -- C:\Program Files\IObit
[2014/11/06 16:38:36 | 000,000,000 | ---D | M] -- C:\Program Files\Kaspersky Lab
[2015/01/30 15:30:00 | 000,000,000 | ---D | M] -- C:\Program Files\LinkeSOFT
[2014/11/07 00:01:28 | 000,000,000 | ---D | M] -- C:\Program Files\Micro Application
[2014/11/06 15:07:30 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Analysis Services
[2009/07/14 09:01:21 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2014/11/06 15:10:14 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2014/11/06 15:10:13 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2014/11/06 15:10:13 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Sync Framework
[2014/11/06 15:10:33 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Synchronization Services
[2014/11/06 15:08:47 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio 8
[2014/11/06 16:37:37 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2014/11/06 15:29:11 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2014/11/06 15:29:20 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Maintenance Service
[2014/11/06 15:10:56 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2014/11/15 12:56:06 | 000,000,000 | ---D | M] -- C:\Program Files\PDFCreator
[2015/03/02 14:46:17 | 000,000,000 | ---D | M] -- C:\Program Files\PowerISO
[2009/07/14 04:52:30 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2015/03/06 23:50:50 | 000,000,000 | ---D | M] -- C:\Program Files\Synaptics
[2015/02/23 20:26:02 | 000,000,000 | ---D | M] -- C:\Program Files\Systran
[2015/02/25 08:53:07 | 000,000,000 | ---D | M] -- C:\Program Files\UltraISO
[2009/07/14 04:53:23 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2014/11/06 15:23:20 | 000,000,000 | ---D | M] -- C:\Program Files\VideoLAN
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2009/07/14 09:01:29 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2014/11/06 14:57:29 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Viewer
[2009/07/14 04:52:32 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2015/02/03 15:47:40 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2015/03/02 16:04:56 | 000,000,000 | ---D | M] -- C:\Program Files\ZHPDiag
[2014/11/06 16:27:03 | 000,000,000 | ---D | M] -- C:\Program Files\Zuma's Revenge!

[color=#A23BEC]< %Systemroot%\Temp\*.exe /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\*.exe /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\*.in* >[/color]
[2009/07/14 04:42:29 | 000,000,073 | -HS- | M] () -- C:\Windows\system32\desktop.ini
[2009/07/13 22:38:23 | 000,071,951 | ---- | M] () -- C:\Windows\system32\ieuinit.inf
[2009/07/14 04:42:26 | 000,000,535 | ---- | M] () -- C:\Windows\system32\mapisvc.inf
[2015/03/13 11:32:44 | 000,779,766 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2009/06/10 21:39:59 | 000,060,124 | ---- | M] () -- C:\Windows\system32\tcpmon.ini

[color=#A23BEC]< %systemroot%\Tasks\* >[/color]
[2015/03/13 22:40:46 | 000,001,002 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2015/03/12 08:28:00 | 000,001,022 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1260050854-3766643152-1205698548-1000Core.job
[2015/03/13 22:28:00 | 000,001,074 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1260050854-3766643152-1205698548-1000UA.job
[2015/03/13 21:53:01 | 000,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2015/02/19 12:37:16 | 000,032,496 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[color=#A23BEC]< %systemroot%\Tasks\*. >[/color]

[color=#A23BEC]< %systemroot%\system32\Tasks\* >[/color]
[2015/01/31 15:23:10 | 000,003,874 | ---- | M] () -- C:\Windows\system32\Tasks\Adobe Acrobat Update Task
[2015/02/16 15:53:14 | 000,003,940 | ---- | M] () -- C:\Windows\system32\Tasks\Adobe Flash Player Updater
[2015/03/02 13:09:40 | 000,002,770 | ---- | M] () -- C:\Windows\system32\Tasks\CCleanerSkipUAC
[2015/03/02 11:13:18 | 000,003,216 | ---- | M] () -- C:\Windows\system32\Tasks\Driver Booster Scan
[2015/03/13 21:54:06 | 000,002,858 | ---- | M] () -- C:\Windows\system32\Tasks\Driver Booster SkipUAC (MANO)
[2015/03/02 11:13:18 | 000,003,160 | ---- | M] () -- C:\Windows\system32\Tasks\Driver Booster Update
[2015/02/09 08:23:41 | 000,003,650 | ---- | M] () -- C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1260050854-3766643152-1205698548-1000Core
[2015/02/09 08:23:42 | 000,004,046 | ---- | M] () -- C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1260050854-3766643152-1205698548-1000UA
[2015/01/30 14:16:17 | 000,003,132 | ---- | M] () -- C:\Windows\system32\Tasks\{8E2343F7-1832-421C-A130-DC6C3B0D1696}
[2015/03/02 11:21:56 | 000,003,102 | ---- | M] () -- C:\Windows\system32\Tasks\{DD36B4B8-BA14-4B4C-B5BF-7611E9CA2ABC}

[color=#A23BEC]< %systemroot%\system32\Tasks\*. >[/color]
[2009/07/14 04:42:30 | 000,000,000 | ---D | M] -- C:\Windows\system32\Tasks\Microsoft
[2014/11/06 15:12:28 | 000,000,000 | ---D | M] -- C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
[2014/11/07 15:30:29 | 000,000,000 | ---D | M] -- C:\Windows\system32\Tasks\WPD

[color=#A23BEC]< %systemroot%\system32\drivers\*.sy* /lockedfiles >[/color]
[2014/11/07 01:28:31 | 000,135,776 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\kl1.sys
[2014/11/07 01:28:31 | 000,094,304 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klflt.sys
[2014/11/07 01:28:33 | 000,576,608 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klif.sys
[2014/11/07 01:28:33 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klim6.sys
[2014/11/07 01:28:34 | 000,025,184 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klkbdflt.sys
[2014/11/07 01:28:34 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klmouflt.sys
[2013/04/12 15:34:48 | 000,014,432 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klpd.sys
[2013/05/14 17:34:44 | 000,045,024 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\kltdi.sys
[2014/11/07 01:28:35 | 000,144,992 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\kneps.sys

[color=#A23BEC]< %systemroot%\system32\config\*.exe /s >[/color]

[color=#A23BEC]< %Systemroot%\ServiceProfiles\*.exe /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.sys >[/color]
[2009/07/13 21:40:41 | 000,009,029 | ---- | M] () -- C:\Windows\system32\ANSI.SYS
[2009/07/14 01:26:21 | 000,249,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\clfs.sys
[2009/07/13 21:40:44 | 000,027,097 | ---- | M] () -- C:\Windows\system32\country.sys
[2009/07/13 21:40:40 | 000,004,768 | ---- | M] () -- C:\Windows\system32\HIMEM.SYS
[2009/07/13 21:40:43 | 000,042,809 | ---- | M] () -- C:\Windows\system32\KEY01.SYS
[2009/07/13 21:40:43 | 000,042,537 | ---- | M] () -- C:\Windows\system32\KEYBOARD.SYS
[2009/07/13 21:40:23 | 000,027,866 | ---- | M] () -- C:\Windows\system32\NTDOS.SYS
[2009/07/13 21:40:31 | 000,029,146 | ---- | M] () -- C:\Windows\system32\NTDOS404.SYS
[2009/07/13 21:40:35 | 000,029,370 | ---- | M] () -- C:\Windows\system32\NTDOS411.SYS
[2009/07/13 21:40:39 | 000,029,274 | ---- | M] () -- C:\Windows\system32\NTDOS412.SYS
[2009/07/13 21:40:27 | 000,029,146 | ---- | M] () -- C:\Windows\system32\NTDOS804.SYS
[2009/07/13 21:40:11 | 000,033,952 | ---- | M] () -- C:\Windows\system32\NTIO.SYS
[2009/07/13 21:40:15 | 000,034,672 | ---- | M] () -- C:\Windows\system32\NTIO404.SYS
[2009/07/13 21:40:17 | 000,035,776 | ---- | M] () -- C:\Windows\system32\NTIO411.SYS
[2009/07/13 21:40:19 | 000,035,536 | ---- | M] () -- C:\Windows\system32\NTIO412.SYS
[2009/07/13 21:40:13 | 000,034,672 | ---- | M] () -- C:\Windows\system32\NTIO804.SYS
[2014/09/15 00:42:27 | 002,377,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\win32k.sys

[color=#A23BEC]< %temp%\*.exe /s >[/color]

[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color]

[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color]

[color=#A23BEC]< %APPDATA%\*.exe /s >[/color]
[2015/02/25 12:03:37 | 000,026,622 | R--- | M] () -- C:\Users\MANO\AppData\Roaming\Microsoft\Installer\{644E9589-F73A-49A4-AC61-A953B9DE5669}\ARPPRODUCTICON.EXE
[2015/02/25 12:10:24 | 000,026,622 | R--- | M] () -- C:\Users\MANO\AppData\Roaming\Microsoft\Installer\{C070121A-C8C5-4D52-9A7D-D240631BD433}\ARPPRODUCTICON.EXE
[2015/02/25 12:10:29 | 000,026,622 | R--- | M] () -- C:\Users\MANO\AppData\Roaming\Microsoft\Installer\{F732FEDA-7713-4428-934B-EF83B8DD65D0}\ARPPRODUCTICON.EXE
[2015/03/02 11:16:30 | 000,162,288 | ---- | M] (OpenCandy) -- C:\Users\MANO\AppData\Roaming\RHEng\2A1E5E3981AE43AA8FEEBF73688A3B82\du77a.exe
[2015/03/02 11:24:50 | 000,231,531 | ---- | M] () -- C:\Users\MANO\AppData\Roaming\RHEng\2A1E5E3981AE43AA8FEEBF73688A3B82\Opera_NI_stable.exe
[2015/02/05 18:15:44 | 001,724,752 | ---- | M] (BitTorrent Inc.) -- C:\Users\MANO\AppData\Roaming\uTorrent\uTorrent.exe
[2013/10/22 15:02:16 | 001,141,328 | R--- | M] (BitTorrent Inc.) -- C:\Users\MANO\AppData\Roaming\uTorrent\updates\3.3.2_30180.exe
[2014/11/28 14:07:44 | 001,725,776 | ---- | M] (BitTorrent Inc.) -- C:\Users\MANO\AppData\Roaming\uTorrent\updates\3.4.2_36619.exe
[2015/02/05 18:15:44 | 001,724,752 | ---- | M] (BitTorrent Inc.) -- C:\Users\MANO\AppData\Roaming\uTorrent\updates\3.4.2_38397.exe

[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
[2009/06/10 21:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2009/07/14 01:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2014/11/06 13:46:28 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2014/11/06 16:01:39 | 000,318,051 | RHS- | M] () -- C:\CJROB
[2009/06/10 21:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2015/03/13 21:52:53 | 1554,665,472 | -HS- | M] () -- C:\hiberfil.sys
[2015/03/13 21:52:56 | 2072,891,392 | -HS- | M] () -- C:\pagefile.sys
[2015/03/13 22:24:48 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2009/07/14 01:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\explorer.exe
[2009/07/14 01:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe

[color=#A23BEC]< MD5 for: SERVICES.EXE >[/color]
[2009/07/14 01:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009/07/14 01:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

[color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
[2009/07/14 01:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/14 01:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2009/07/14 01:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009/07/14 01:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2009/07/14 01:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\System32\winlogon.exe
[2009/07/14 01:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

[color=#A23BEC]< MD5 for: WINSOCK.DLL >[/color]
[2009/07/13 21:41:34 | 000,002,864 | ---- | M] (Microsoft Corporation) MD5=68485C5EF0E2EFCEBF21BBB1042B823B -- C:\Windows\System32\WINSOCK.DLL
[2009/07/13 21:41:34 | 000,002,864 | ---- | M] (Microsoft Corporation) MD5=68485C5EF0E2EFCEBF21BBB1042B823B -- C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.1.7600.16385_none_fde3cf3dd3e16d0d\WINSOCK.DLL

[color=#E56717]========== Base Services ==========[/color]
SRV - [2009/07/14 01:14:53 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2009/07/14 01:14:53 | 000,046,592 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2009/07/14 01:14:11 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2009/07/14 01:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2009/07/14 01:14:59 | 000,493,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2009/07/14 01:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009/07/14 01:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2009/07/14 01:15:00 | 000,102,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2009/07/14 01:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2009/07/14 01:16:13 | 000,376,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2009/07/14 01:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/14 01:15:12 | 000,132,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2009/07/14 01:15:13 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009/07/14 01:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2009/07/14 01:15:33 | 000,300,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2009/07/14 01:15:33 | 000,350,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2009/07/14 01:16:15 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2009/07/14 01:15:41 | 000,049,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2009/07/14 01:16:03 | 000,280,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2009/07/14 01:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2009/07/14 01:16:03 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2009/07/14 01:16:11 | 000,019,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2009/07/14 01:16:17 | 000,294,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2009/07/14 01:14:41 | 000,316,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2009/07/14 01:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV - [2009/07/14 01:16:12 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2009/07/14 01:16:12 | 000,285,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2009/07/14 01:16:13 | 000,376,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2009/07/14 01:16:13 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2009/07/14 01:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009/07/14 01:16:20 | 000,073,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2009/07/14 01:16:15 | 000,168,448 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2009/07/14 01:16:14 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV - [2009/07/14 01:16:13 | 000,743,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2009/07/14 01:16:15 | 000,241,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009/07/14 01:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/14 01:16:12 | 000,162,816 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2009/07/14 01:14:43 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2009/07/14 01:14:57 | 000,473,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2009/07/14 01:14:57 | 000,473,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2009/07/14 01:16:13 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2009/07/14 01:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2009/07/14 01:16:18 | 001,086,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (eventlog)
SRV - [2009/07/14 01:15:41 | 000,565,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2009/07/14 01:16:18 | 000,462,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wiaservc.dll -- (StiSvc)
SRV - [2009/07/14 01:14:25 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009/07/14 01:16:19 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012/06/02 22:19:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2009/07/14 01:15:12 | 000,214,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009/07/14 01:16:19 | 000,829,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2009/07/14 01:16:19 | 000,084,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< HKLM\Software\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command >[/color]
"" = C:\Program Files\Internet Explorer\iexplore.exe -- [2009/07/14 01:17:29 | 000,673,048 | ---- | M] (Microsoft Corporation)

[color=#A23BEC]< HKLM\Software\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command >[/color]
"" = "C:\Program Files\Mozilla Firefox\firefox.exe" -- [2014/09/03 09:03:46 | 000,275,568 | ---- | M] (Mozilla Corporation)

[color=#A23BEC]< HKLM\Software\Clients\StartMenuInternet\Google Chrome\shell\open\command >[/color]

[color=#A23BEC]< dir "%Homedrive%\*" /S /A:L /C >[/color]
Le volume dans le lecteur C n'a pas de nom.
Le num ro de s rie du volume est DE70-F86A
R pertoire de C:\
14/07/2009 04:53 <JONCTION> Documents and Settings [C:\Users]
0 fichier(s) 0 octets
R pertoire de C:\Program Files
06/11/2014 14:57 <JONCTION> Fichiers communs [C:\Program Files\Common Files]
0 fichier(s) 0 octets
R pertoire de C:\Program Files\Windows NT
06/11/2014 14:57 <JONCTION> Accessoires [C:\Program Files\Windows NT\Accessories]
0 fichier(s) 0 octets
R pertoire de C:\ProgramData
14/07/2009 04:53 <JONCTION> Application Data [C:\ProgramData]
06/11/2014 14:57 <JONCTION> Bureau [C:\Users\Public\Desktop]
14/07/2009 04:53 <JONCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 04:53 <JONCTION> Documents [C:\Users\Public\Documents]
06/11/2014 14:57 <JONCTION> Favoris [C:\Users\Public\Favorites]
14/07/2009 04:53 <JONCTION> Favorites [C:\Users\Public\Favorites]
06/11/2014 14:57 <JONCTION> Menu D marrer [C:\ProgramData\Microsoft\Windows\Start Menu]
06/11/2014 14:57 <JONCTION> Mod`les [C:\ProgramData\Microsoft\Windows\Templates]
14/07/2009 04:53 <JONCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 04:53 <JONCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 fichier(s) 0 octets
R pertoire de C:\ProgramData\Microsoft\Windows\Start Menu
06/11/2014 14:57 <JONCTION> Programmes [C:\ProgramData\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\Users
14/07/2009 04:53 <SYMLINKD> All Users [C:\ProgramData]
14/07/2009 04:53 <JONCTION> Default User [C:\Users\Default]
0 fichier(s) 0 octets
R pertoire de C:\Users\All Users
14/07/2009 04:53 <JONCTION> Application Data [C:\ProgramData]
06/11/2014 14:57 <JONCTION> Bureau [C:\Users\Public\Desktop]
14/07/2009 04:53 <JONCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 04:53 <JONCTION> Documents [C:\Users\Public\Documents]
06/11/2014 14:57 <JONCTION> Favoris [C:\Users\Public\Favorites]
14/07/2009 04:53 <JONCTION> Favorites [C:\Users\Public\Favorites]
06/11/2014 14:57 <JONCTION> Menu D marrer [C:\ProgramData\Microsoft\Windows\Start Menu]
06/11/2014 14:57 <JONCTION> Mod`les [C:\ProgramData\Microsoft\Windows\Templates]
14/07/2009 04:53 <JONCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 04:53 <JONCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 fichier(s) 0 octets
R pertoire de C:\Users\All Users\Microsoft\Windows\Start Menu
06/11/2014 14:57 <JONCTION> Programmes [C:\ProgramData\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default
14/07/2009 04:53 <JONCTION> Application Data [C:\Users\Default\AppData\Roaming]
14/07/2009 04:53 <JONCTION> Cookies [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Cookies]
14/07/2009 04:53 <JONCTION> Local Settings [C:\Users\Default\AppData\Local]
06/11/2014 14:57 <JONCTION> Menu D marrer [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
06/11/2014 14:57 <JONCTION> Mes documents [C:\Users\Default\Documents]
06/11/2014 14:57 <JONCTION> Mod`les [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
14/07/2009 04:53 <JONCTION> My Documents [C:\Users\Default\Documents]
14/07/2009 04:53 <JONCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
14/07/2009 04:53 <JONCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
14/07/2009 04:53 <JONCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
14/07/2009 04:53 <JONCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
14/07/2009 04:53 <JONCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
14/07/2009 04:53 <JONCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
06/11/2014 14:57 <JONCTION> Voisinage d'impression [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
06/11/2014 14:57 <JONCTION> Voisinage r seau [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default\AppData\Local
14/07/2009 04:53 <JONCTION> Application Data [C:\Users\Default\AppData\Local]
06/11/2014 14:57 <JONCTION> Historique [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
14/07/2009 04:53 <JONCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
14/07/2009 04:53 <JONCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu
06/11/2014 14:57 <JONCTION> Programmes [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default\Documents
06/11/2014 14:57 <JONCTION> Ma musique [C:\Users\Default\Music]
06/11/2014 14:57 <JONCTION> Mes images [C:\Users\Default\Pictures]
06/11/2014 14:57 <JONCTION> Mes vid os [C:\Users\Default\Videos]
14/07/2009 04:53 <JONCTION> My Music [C:\Users\Default\Music]
14/07/2009 04:53 <JONCTION> My Pictures [C:\Users\Default\Pictures]
14/07/2009 04:53 <JONCTION> My Videos [C:\Users\Default\Videos]
0 fichier(s) 0 octets
R pertoire de C:\Users\MANO
06/11/2014 14:57 <JONCTION> Application Data [C:\Users\MANO\AppData\Roaming]
06/11/2014 14:57 <JONCTION> Cookies [C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Cookies]
06/11/2014 14:57 <JONCTION> Local Settings [C:\Users\MANO\AppData\Local]
06/11/2014 14:57 <JONCTION> Menu D marrer [C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Start Menu]
06/11/2014 14:57 <JONCTION> Mes documents [C:\Users\MANO\Documents]
06/11/2014 14:57 <JONCTION> Mod`les [C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Templates]
06/11/2014 14:57 <JONCTION> Recent [C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Recent]
06/11/2014 14:57 <JONCTION> SendTo [C:\Users\MANO\AppData\Roaming\Microsoft\Windows\SendTo]
06/11/2014 14:57 <JONCTION> Voisinage d'impression [C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
06/11/2014 14:57 <JONCTION> Voisinage r seau [C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
0 fichier(s) 0 octets
R pertoire de C:\Users\MANO\AppData\Local
06/11/2014 14:57 <JONCTION> Application Data [C:\Users\MANO\AppData\Local]
06/11/2014 14:57 <JONCTION> Historique [C:\Users\MANO\AppData\Local\Microsoft\Windows\History]
06/11/2014 14:57 <JONCTION> Temporary Internet Files [C:\Users\MANO\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 fichier(s) 0 octets
R pertoire de C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Start Menu
06/11/2014 14:57 <JONCTION> Programmes [C:\Users\MANO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\Users\MANO\Documents
06/11/2014 14:57 <JONCTION> Ma musique [C:\Users\MANO\Music]
06/11/2014 14:57 <JONCTION> Mes images [C:\Users\MANO\Pictures]
06/11/2014 14:57 <JONCTION> Mes vid os [C:\Users\MANO\Videos]
0 fichier(s) 0 octets
R pertoire de C:\Users\Public\Documents
06/11/2014 14:57 <JONCTION> Ma musique [C:\Users\Public\Music]
06/11/2014 14:57 <JONCTION> Mes images [C:\Users\Public\Pictures]
06/11/2014 14:57 <JONCTION> Mes vid os [C:\Users\Public\Videos]
14/07/2009 04:53 <JONCTION> My Music [C:\Users\Public\Music]
14/07/2009 04:53 <JONCTION> My Pictures [C:\Users\Public\Pictures]
14/07/2009 04:53 <JONCTION> My Videos [C:\Users\Public\Videos]
0 fichier(s) 0 octets
Total des fichiers list sÿ:
0 fichier(s) 0 octets
76 R p(s) 37ÿ813ÿ501ÿ952 octets libres

< End of report >

Publicité


Signaler le contenu de ce document

Publicité