cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 28/06/2015 12:59:47 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Fabio\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17842)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,93 Gb Total Physical Memory | 1,96 Gb Available Physical Memory | 49,90% Memory free
7,93 Gb Paging File | 5,74 Gb Available in Paging File | 72,43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 134,06 Gb Total Space | 67,44 Gb Free Space | 50,30% Space Free | Partition Type: NTFS
Drive E: | 16,71 Gb Total Space | 2,65 Gb Free Space | 15,85% Space Free | Partition Type: NTFS
Drive F: | 99,34 Mb Total Space | 95,32 Mb Free Space | 95,95% Space Free | Partition Type: FAT32
Drive H: | 147,02 Gb Total Space | 101,78 Gb Free Space | 69,23% Space Free | Partition Type: NTFS

Computer Name: FABIO-PC | User Name: Fabio | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Users\Fabio\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files (x86)\Alpha Shopper\alpha_shopper_helper_service.exe ()
PRC - C:\Program Files (x86)\SMADAV\SM”RTP.exe (Smadsoft)
PRC - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (Freemake)
PRC - C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe ()
PRC - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc.)
PRC - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (Ellora Assets Corp.)
PRC - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (Apple Inc.)
PRC - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe (Hewlett-Packard Company)
PRC - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (Nero AG)
PRC - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe ()
PRC - C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe (CHENGDU YIWO Tech Development Co., Ltd)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe ()
PRC - C:\ProgramData\DatacardService\DCSHelper.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Program Files\MOOV 3G+\bin\App.exe ()


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\PepperFlash\pepflashplayer.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libglesv2.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libegl.dll ()
MOD - C:\Program Files (x86)\Alpha Shopper\alpha_shopper_helper_service.exe ()
MOD - C:\Program Files (x86)\Smadav\SM?RTP.exe ()
MOD - C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll ()
MOD - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe ()
MOD - C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll ()
MOD - C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll ()
MOD - C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll ()
MOD - C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll ()
MOD - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF ()
MOD - C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll ()
MOD - C:\Program Files\MOOV 3G+\bin\App.exe ()
MOD - C:\Program Files\MOOV 3G+\bin\RasWrapper.dll ()
MOD - C:\Program Files\MOOV 3G+\bin\DM.dll ()
MOD - C:\Program Files\MOOV 3G+\bin\WaveLib.dll ()
MOD - C:\Program Files\MOOV 3G+\bin\Customize.dll ()
MOD - C:\Program Files\MOOV 3G+\bin\HW.dll ()
MOD - C:\Program Files\MOOV 3G+\bin\log.dll ()


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WdNisSvc) -- C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (MsKeyboardFilter) -- C:\Windows\SysNative\KeyboardFilterSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (lfsvc) -- C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (hpsrv) -- C:\Windows\SysNative\hpservice.exe (Hewlett-Packard Company)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (Freemake Improver) -- C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (Freemake)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (hpqwmiex) -- C:\Users\Fabio\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe (Hewlett-Packard Company)
SRV - (FreemakeVideoCapture) -- C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (Ellora Assets Corp.)
SRV - (PrintNotify) -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (lfsvc) -- C:\Windows\SysWOW64\GeofenceMonitorService.dll (Microsoft Corporation)
SRV - (HPSupportSolutionsFrameworkService) -- C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe (Hewlett-Packard Company)
SRV - (HTCMonitorService) -- C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (Nero AG)
SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (PassThru Service) -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe ()
SRV - (Sony PC Companion) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe (Avanquest Software)
SRV - (HWDeviceService64.exe) -- C:\ProgramData\DatacardService\HWDeviceService64.exe ()


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:[b]64bit:[/b] - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (netvsc) -- C:\Windows\SysNative\drivers\netvsc63.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ReFS) -- C:\Windows\SysNative\drivers\refs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UCX01000) -- C:\Windows\SysNative\drivers\UCX01000.SYS (Microsoft Corporation)
DRV:[b]64bit:[/b] - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:[b]64bit:[/b] - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Wof) -- C:\Windows\SysNative\drivers\wof.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:[b]64bit:[/b] - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:[b]64bit:[/b] - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:[b]64bit:[/b] - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (htcnprot) -- C:\Windows\SysNative\drivers\htcnprot.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (kbldfltr) -- C:\Windows\SysNative\drivers\kbldfltr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Vid) -- C:\Windows\SysNative\drivers\Vid.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (vmbusr) -- C:\Windows\SysNative\drivers\vmbusr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (storvsp) -- C:\Windows\SysNative\drivers\storvsp.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (vpcivsp) -- C:\Windows\SysNative\drivers\vpcivsp.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:[b]64bit:[/b] - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:[b]64bit:[/b] - (LSI_SAS3) -- C:\Windows\SysNative\drivers\lsi_sas3.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:[b]64bit:[/b] - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:[b]64bit:[/b] - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:[b]64bit:[/b] - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (tap0901) -- C:\Windows\SysNative\drivers\tap0901.sys (The OpenVPN Project)
DRV:[b]64bit:[/b] - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (FxPPM) -- C:\Windows\SysNative\drivers\fxppm.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (RTL8168) -- C:\Windows\SysNative\drivers\Rt630x64.sys (Realtek )
DRV:[b]64bit:[/b] - (NETwNs64) -- C:\Windows\SysNative\drivers\Netwsw00.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (epmntdrv) -- C:\Windows\SysNative\epmntdrv.sys ()
DRV:[b]64bit:[/b] - (EuGdiDrv) -- C:\Windows\SysNative\EuGdiDrv.sys ()
DRV:[b]64bit:[/b] - (huawei_cdcecm) -- C:\Windows\SysNative\drivers\ew_jucdcecm.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (huawei_cdcacm) -- C:\Windows\SysNative\drivers\ew_jucdcacm.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (ew_hwusbdev) -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (huawei_enumerator) -- C:\Windows\SysNative\drivers\ew_jubusenum.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (huawei_ext_ctrl) -- C:\Windows\SysNative\drivers\ew_juextctrl.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (ew_usbenumfilter) -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys (Huawei Technologies Co., Ltd.)
DRV:[b]64bit:[/b] - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:[b]64bit:[/b] - (Accelerometer) -- C:\Windows\SysNative\drivers\Accelerometer.sys (Hewlett-Packard Company)
DRV:[b]64bit:[/b] - (hpdskflt) -- C:\Windows\SysNative\drivers\hpdskflt.sys (Hewlett-Packard Company)
DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:[b]64bit:[/b] - (SmbDrv) -- C:\Windows\SysNative\drivers\Smb_driver.sys (Synaptics Incorporated)
DRV:[b]64bit:[/b] - (HtcVCom32) -- C:\Windows\SysNative\drivers\HtcVComV64.sys (QUALCOMM Incorporated)
DRV:[b]64bit:[/b] - (HTCAND64) -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys (HTC, Corporation)
DRV:[b]64bit:[/b] - (zteusbser) -- C:\Windows\SysNative\drivers\zteusbser.sys (ZTE Corporation)
DRV - (epmntdrv) -- C:\Windows\SysWOW64\epmntdrv.sys ()
DRV - (EuGdiDrv) -- C:\Windows\SysWOW64\EuGdiDrv.sys ()


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/fr-fr/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 64 6E 02 02 37 F5 CF 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.countryCode: "MG"
FF - prefs.js..browser.search.region: "MG"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:38.0.5
FF - user.js - File not found

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 38.0.5\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 38.0.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2015/06/26 08:18:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Fabio\AppData\Roaming\mozilla\Extensions
[2015/06/26 08:28:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Fabio\AppData\Roaming\mozilla\Firefox\Profiles\xtkzh848.default\extensions
[2015/06/26 08:17:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2015/06/26 08:17:47 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\Fabio\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_1\
CHR - Extension: No name found = C:\Users\Fabio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.1.0_0\

O1 HOSTS File: ([2013/08/22 16:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (EnterDigital) - {481c016e-566a-411e-b4ac-e10e86bed4ad} - C:\Program Files (x86)\EnterDigital\EnterDigitalbho.dll File not found
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [cpuminer] C:\Windows\system32\cpuminer-gw64.exe File not found
O4:[b]64bit:[/b] - HKLM..\Run: [gpuminer] C:\Users\Fabio\AppData\Roaming\cpuminer\sgminer\sgminer.cmd File not found
O4 - HKLM..\Run: [EaseUS EPM tray] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe (CHENGDU YIWO Tech Development Co., Ltd)
O4 - HKCU..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (Apple Inc.)
O4 - HKCU..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKCU..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc.)
O4 - HKCU..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKCU..\Run: [Mobile Partner] C:\Program Files (x86)\Wi-Fi Modem\Wi-Fi Modem File not found
O4 - HKCU..\Run: [Sony PC Companion] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9AC9A00-2696-4EA6-9BBD-D9994C95AC56}: NameServer = 196.192.32.5 41.188.9.130
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:[b]64bit:[/b] - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015/06/11 21:31:09 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{3450f14a-82e1-11e4-825f-c80aa91669bc}\Shell - "" = AutoRun
O33 - MountPoints2\{3450f14a-82e1-11e4-825f-c80aa91669bc}\Shell\AutoRun\command - "" = "D:\Startme.exe"
O33 - MountPoints2\{4220352c-8ad8-11e4-8266-c80aa91669bc}\Shell - "" = AutoRun
O33 - MountPoints2\{4220352c-8ad8-11e4-8266-c80aa91669bc}\Shell\AutoRun\command - "" = "D:\AutoRun.exe"
O33 - MountPoints2\{42203564-8ad8-11e4-8266-c80aa91669bc}\Shell - "" = AutoRun
O33 - MountPoints2\{42203564-8ad8-11e4-8266-c80aa91669bc}\Shell\AutoRun\command - "" = "D:\AutoRun.exe"
O33 - MountPoints2\{5dec3872-8e57-11e4-8267-c80aa91669bc}\Shell - "" = AutoRun
O33 - MountPoints2\{5dec3872-8e57-11e4-8267-c80aa91669bc}\Shell\AutoRun\command - "" = "D:\HTC_Sync_Manager_PC.exe"
O33 - MountPoints2\{c3371c9e-9cc9-11e4-826b-c80aa91669bc}\Shell - "" = AutoRun
O33 - MountPoints2\{c3371c9e-9cc9-11e4-826b-c80aa91669bc}\Shell\AutoRun\command - "" = "D:\HTC_Sync_Manager_PC.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:[b]64bit:[/b] lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] MsKeyboardFilter - C:\Windows\SysNative\KeyboardFilterSvc.dll (Microsoft Corporation)


ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {78E345F7-E976-3595-9C30-2458D6A8EC32} - .NET Framework
ActiveX:[b]64bit:[/b] {7D715857-A67C-4C2F-A929-038448584D63} - C:\Windows\System32\ie4uinit.exe -DisableSSL3
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {EC43E638-09F0-38CC-A585-72FCCDDF035C} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/06/28 12:41:12 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015/06/26 08:29:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015/06/26 08:18:01 | 000,000,000 | ---D | C] -- C:\Users\Fabio\AppData\Roaming\Mozilla
[2015/06/26 08:18:01 | 000,000,000 | ---D | C] -- C:\Users\Fabio\AppData\Local\Mozilla
[2015/06/26 08:17:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2015/06/26 08:17:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2015/06/26 08:17:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2015/06/23 21:53:39 | 167,690,664 | ---- | C] (AVG Technologies) -- C:\Users\Fabio\Desktop\avg_isct_x64_all_2011_1120a3152.exe
[2015/06/22 21:35:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/06/16 19:42:07 | 000,000,000 | ---D | C] -- C:\Users\Fabio\Desktop\GESTION SRE 2
[2015/06/13 22:21:32 | 003,633,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2015/06/13 22:21:32 | 002,551,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2015/06/13 22:21:32 | 001,920,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2015/06/13 22:21:31 | 002,749,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2015/06/13 22:21:31 | 000,468,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2015/06/13 22:21:30 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2015/06/13 22:21:30 | 000,699,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2015/06/13 22:21:30 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2015/06/13 22:21:30 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2015/06/13 22:21:30 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2015/06/12 18:23:37 | 000,000,000 | ---D | C] -- C:\Users\Fabio\Desktop\Nouveau dossier
[2015/06/11 21:30:25 | 000,000,000 | ---D | C] -- C:\Users\Fabio\Start Menu
[2015/06/10 18:18:22 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authz.dll
[2015/06/10 18:18:18 | 001,249,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAutomationCore.dll
[2015/06/10 18:18:18 | 001,018,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAutomationCore.dll
[2015/06/10 18:18:09 | 000,325,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS
[2015/06/10 18:17:54 | 001,020,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2015/06/10 18:17:53 | 001,119,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2015/06/10 18:17:53 | 000,756,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2015/06/10 18:17:53 | 000,700,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2015/06/10 18:17:53 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2015/06/10 18:17:53 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2015/06/10 18:17:53 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2015/06/10 18:17:52 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2015/06/10 18:17:13 | 001,091,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2015/06/10 18:17:13 | 000,477,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
[2015/06/10 18:17:12 | 001,430,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagtrack.dll
[2015/06/10 18:17:12 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2015/06/10 18:17:12 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\compstui.dll
[2015/06/10 18:17:12 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastapi.dll
[2015/06/10 18:17:12 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastapi.dll
[2015/06/10 18:17:12 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UtcResources.dll
[2015/06/10 18:17:11 | 003,097,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2015/06/10 18:17:11 | 002,483,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2015/06/10 18:16:37 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rgb9rast.dll
[2015/06/10 17:11:42 | 000,653,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2015/06/10 17:11:33 | 006,026,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2015/06/10 17:11:27 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2015/06/10 17:11:26 | 002,865,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2015/06/10 17:11:26 | 002,125,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2015/06/10 17:11:26 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2015/06/10 17:11:26 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2015/06/10 17:11:25 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2015/06/10 17:11:25 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2015/06/10 17:11:25 | 000,664,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2015/06/10 17:11:25 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2015/06/10 17:11:24 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2015/06/10 17:11:24 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2015/06/10 17:11:24 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2015/06/10 17:11:24 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2015/06/10 17:11:23 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2015/06/10 17:11:22 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2015/06/10 17:11:22 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2015/06/10 17:11:22 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2015/06/10 17:11:22 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2015/06/10 17:11:21 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2015/06/07 08:55:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Alpha Shopper
[2015/06/07 08:50:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\69dc8177-a574-4dff-8461-b3267b078dcf
[2015/06/07 08:12:58 | 000,000,000 | ---D | C] -- C:\Users\Fabio\AppData\Roaming\Macromedia
[2015/06/07 08:11:26 | 000,000,000 | ---D | C] -- C:\Users\Fabio\AppData\Roaming\uTorrent
[2015/06/01 20:01:48 | 000,000,000 | ---D | C] -- C:\Windows\Migration

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/06/28 13:08:30 | 000,081,479 | ---- | M] () -- C:\Users\Fabio\Desktop\adidas-superstar-41.jpg
[2015/06/28 13:08:21 | 000,112,550 | ---- | M] () -- C:\Users\Fabio\Desktop\adidas-superstar-21.jpg
[2015/06/28 13:04:41 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/06/28 12:48:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/06/28 12:48:18 | 000,001,080 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/06/28 12:47:14 | 000,000,538 | ---- | M] () -- C:\Windows\tasks\alpha_shopper_helper_service.job
[2015/06/28 12:46:55 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/06/28 12:46:50 | 3374,620,672 | -HS- | M] () -- C:\hiberfil.sys
[2015/06/28 12:28:00 | 000,001,084 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/06/28 12:05:47 | 000,746,069 | ---- | M] () -- C:\Users\Fabio\Desktop\Didim-pitondrana_CONTROLEURS_2015.pdf
[2015/06/28 11:51:19 | 000,056,497 | ---- | M] () -- C:\Users\Fabio\Desktop\164688_408830979196053_126084990_n.jpg
[2015/06/28 11:50:27 | 000,042,677 | ---- | M] () -- C:\Users\Fabio\Desktop\206608_408830065862811_1220420586_n.jpg
[2015/06/28 11:50:00 | 000,000,004 | ---- | M] () -- C:\Windows\SysWow64\029B560A371F4E00AB32838EBC01B9E7
[2015/06/28 07:33:49 | 000,051,157 | ---- | M] () -- C:\Users\Fabio\Desktop\11144071_368922593306969_4392683841171484927_n.jpg
[2015/06/27 21:38:00 | 000,099,240 | ---- | M] () -- C:\Users\Fabio\Desktop\11694019_1443068915999750_3743630780535001769_n.jpg
[2015/06/27 20:40:34 | 000,018,181 | ---- | M] () -- C:\Users\Fabio\Desktop\11657275_377232845801204_2085863555_n.jpg
[2015/06/27 20:39:37 | 000,694,699 | ---- | M] () -- C:\Users\Fabio\Desktop\CODE PENAL.pdf
[2015/06/27 20:02:54 | 000,103,803 | ---- | M] () -- C:\Users\Fabio\Desktop\11058084_517926191703504_811405044108184772_n.jpg
[2015/06/27 17:56:18 | 000,033,102 | ---- | M] () -- C:\Users\Fabio\Desktop\11667323_355747071282846_6075818675981719686_n.jpg
[2015/06/27 17:41:58 | 000,022,018 | ---- | M] () -- C:\Users\Fabio\Desktop\11668170_912481955457860_1794290135_n.jpg
[2015/06/27 17:14:22 | 000,039,604 | ---- | M] () -- C:\Users\Fabio\Desktop\11058611_1493654897591712_3607606397103456461_n.jpg
[2015/06/26 21:37:51 | 000,090,964 | ---- | M] () -- C:\Users\Fabio\Desktop\554331_10150685484668110_1540921395_n.jpg
[2015/06/26 21:29:17 | 000,043,987 | ---- | M] () -- C:\Users\Fabio\Desktop\10626479_330934500408592_2265262564405214043_n.jpg
[2015/06/26 21:28:59 | 000,032,518 | ---- | M] () -- C:\Users\Fabio\Desktop\10632662_330935117075197_2035796672429642458_n.jpg
[2015/06/26 19:33:40 | 000,011,281 | ---- | M] () -- C:\Users\Fabio\Desktop\988818_885636498160799_724939064058407478_n.jpg
[2015/06/26 19:23:04 | 000,060,406 | ---- | M] () -- C:\Users\Fabio\Desktop\10171235_10150609230204999_4403555067458821097_n.jpg
[2015/06/26 18:53:59 | 000,173,437 | ---- | M] () -- C:\Users\Fabio\Desktop\10891598_613304148773668_855836348071172287_n.jpg
[2015/06/26 13:53:28 | 000,889,575 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0129.jpg
[2015/06/26 13:53:28 | 000,485,160 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0129_1.jpg
[2015/06/26 13:53:15 | 000,919,588 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0128.jpg
[2015/06/26 09:57:48 | 000,039,142 | ---- | M] () -- C:\Users\Fabio\Desktop\11209762_1596201953989700_4700127195175553052_n.jpg
[2015/06/26 09:57:28 | 000,034,770 | ---- | M] () -- C:\Users\Fabio\Desktop\11205026_1596442960632266_9128836523031325875_n.jpg
[2015/06/26 09:57:18 | 000,064,036 | ---- | M] () -- C:\Users\Fabio\Desktop\11204427_1596499157293313_6196849038438043651_n.jpg
[2015/06/26 09:56:47 | 000,036,221 | ---- | M] () -- C:\Users\Fabio\Desktop\11150174_1596942160582346_6850164425859471737_n.jpg
[2015/06/26 09:55:53 | 000,041,244 | ---- | M] () -- C:\Users\Fabio\Desktop\11168000_1597625153847380_2507798116502387973_n.jpg
[2015/06/26 09:55:05 | 000,065,380 | ---- | M] () -- C:\Users\Fabio\Desktop\11159508_1597963747146854_5399199372307539717_n.jpg
[2015/06/26 09:53:18 | 000,090,857 | ---- | M] () -- C:\Users\Fabio\Desktop\11204992_1599170193692876_1567458827396452292_n.jpg
[2015/06/26 09:52:56 | 000,043,170 | ---- | M] () -- C:\Users\Fabio\Desktop\11169792_1599347043675191_82290811217943569_n.jpg
[2015/06/26 09:52:20 | 000,041,420 | ---- | M] () -- C:\Users\Fabio\Desktop\11214038_1599922293617666_7170777724921358552_n.jpg
[2015/06/26 09:51:14 | 000,044,224 | ---- | M] () -- C:\Users\Fabio\Desktop\11238972_1601120153497880_7338427393056010668_n.jpg
[2015/06/26 09:50:13 | 000,033,382 | ---- | M] () -- C:\Users\Fabio\Desktop\11224225_1601605396782689_8868079139212207600_n.jpg
[2015/06/26 09:36:16 | 000,002,301 | ---- | M] () -- C:\Users\Fabio\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/06/26 08:29:19 | 000,002,277 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/06/26 08:17:55 | 000,001,163 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015/06/26 08:05:47 | 000,243,592 | ---- | M] () -- C:\Users\Fabio\Desktop\Firefox Setup Stub 38.0.5.exe
[2015/06/25 12:58:50 | 000,977,308 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0116.jpg
[2015/06/25 12:57:54 | 000,918,639 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0114.jpg
[2015/06/25 09:44:45 | 001,168,485 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0111.jpg
[2015/06/25 09:44:38 | 001,056,223 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0110.jpg
[2015/06/25 09:44:34 | 001,230,990 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0109.jpg
[2015/06/25 09:44:32 | 000,943,149 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0108.jpg
[2015/06/25 09:44:26 | 000,962,922 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0107.jpg
[2015/06/25 09:44:24 | 000,947,841 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0106.jpg
[2015/06/25 09:44:20 | 000,964,361 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0105.jpg
[2015/06/24 15:07:04 | 000,894,468 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0103.jpg
[2015/06/24 13:13:55 | 000,951,742 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0102.jpg
[2015/06/24 13:13:38 | 000,975,886 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0101.jpg
[2015/06/23 21:53:54 | 167,690,664 | ---- | M] (AVG Technologies) -- C:\Users\Fabio\Desktop\avg_isct_x64_all_2011_1120a3152.exe
[2015/06/23 21:19:41 | 168,608,703 | R--- | M] () -- C:\Users\Fabio\Desktop\Avg Internet Security 2011 + Keygen.rar
[2015/06/22 10:05:24 | 000,161,804 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0096_1.jpg
[2015/06/20 06:02:45 | 000,792,568 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2015/06/20 06:02:45 | 000,178,168 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2015/06/17 20:52:34 | 001,381,250 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2015/06/17 20:52:34 | 000,886,004 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015/06/17 20:52:34 | 000,336,778 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2015/06/17 20:52:34 | 000,292,016 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015/06/17 20:52:34 | 000,005,430 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015/06/16 05:30:12 | 437,726,536 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2015/06/14 13:39:10 | 000,597,180 | ---- | M] () -- C:\Users\Fabio\Desktop\IMAG0050.jpg
[2015/06/12 09:04:31 | 000,487,168 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015/06/11 21:31:09 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
[2015/06/07 08:12:44 | 000,000,859 | ---- | M] () -- C:\Users\Fabio\Desktop\µTorrent.lnk
[2015/06/07 08:12:44 | 000,000,839 | ---- | M] () -- C:\Users\Fabio\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/06/28 13:04:41 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015/06/28 12:05:45 | 000,746,069 | ---- | C] () -- C:\Users\Fabio\Desktop\Didim-pitondrana_CONTROLEURS_2015.pdf
[2015/06/28 11:51:17 | 000,056,497 | ---- | C] () -- C:\Users\Fabio\Desktop\164688_408830979196053_126084990_n.jpg
[2015/06/28 11:50:25 | 000,042,677 | ---- | C] () -- C:\Users\Fabio\Desktop\206608_408830065862811_1220420586_n.jpg
[2015/06/28 07:33:46 | 000,051,157 | ---- | C] () -- C:\Users\Fabio\Desktop\11144071_368922593306969_4392683841171484927_n.jpg
[2015/06/27 21:37:58 | 000,099,240 | ---- | C] () -- C:\Users\Fabio\Desktop\11694019_1443068915999750_3743630780535001769_n.jpg
[2015/06/27 20:40:30 | 000,018,181 | ---- | C] () -- C:\Users\Fabio\Desktop\11657275_377232845801204_2085863555_n.jpg
[2015/06/27 20:39:35 | 000,694,699 | ---- | C] () -- C:\Users\Fabio\Desktop\CODE PENAL.pdf
[2015/06/27 20:02:52 | 000,103,803 | ---- | C] () -- C:\Users\Fabio\Desktop\11058084_517926191703504_811405044108184772_n.jpg
[2015/06/27 19:35:26 | 000,485,160 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0129_1.jpg
[2015/06/27 19:35:25 | 000,919,588 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0128.jpg
[2015/06/27 19:35:25 | 000,889,575 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0129.jpg
[2015/06/27 18:56:01 | 003,456,754 | ---- | C] () -- C:\Users\Fabio\Desktop\20140920_131113.jpg
[2015/06/27 18:55:16 | 004,742,967 | ---- | C] () -- C:\Users\Fabio\Desktop\20140921_021500_LLS.jpg
[2015/06/27 17:56:17 | 000,033,102 | ---- | C] () -- C:\Users\Fabio\Desktop\11667323_355747071282846_6075818675981719686_n.jpg
[2015/06/27 17:41:55 | 000,022,018 | ---- | C] () -- C:\Users\Fabio\Desktop\11668170_912481955457860_1794290135_n.jpg
[2015/06/27 17:14:18 | 000,039,604 | ---- | C] () -- C:\Users\Fabio\Desktop\11058611_1493654897591712_3607606397103456461_n.jpg
[2015/06/26 21:37:49 | 000,090,964 | ---- | C] () -- C:\Users\Fabio\Desktop\554331_10150685484668110_1540921395_n.jpg
[2015/06/26 21:29:15 | 000,043,987 | ---- | C] () -- C:\Users\Fabio\Desktop\10626479_330934500408592_2265262564405214043_n.jpg
[2015/06/26 21:28:57 | 000,032,518 | ---- | C] () -- C:\Users\Fabio\Desktop\10632662_330935117075197_2035796672429642458_n.jpg
[2015/06/26 19:33:39 | 000,011,281 | ---- | C] () -- C:\Users\Fabio\Desktop\988818_885636498160799_724939064058407478_n.jpg
[2015/06/26 19:23:03 | 000,060,406 | ---- | C] () -- C:\Users\Fabio\Desktop\10171235_10150609230204999_4403555067458821097_n.jpg
[2015/06/26 18:53:57 | 000,173,437 | ---- | C] () -- C:\Users\Fabio\Desktop\10891598_613304148773668_855836348071172287_n.jpg
[2015/06/26 09:57:47 | 000,039,142 | ---- | C] () -- C:\Users\Fabio\Desktop\11209762_1596201953989700_4700127195175553052_n.jpg
[2015/06/26 09:57:27 | 000,034,770 | ---- | C] () -- C:\Users\Fabio\Desktop\11205026_1596442960632266_9128836523031325875_n.jpg
[2015/06/26 09:57:16 | 000,064,036 | ---- | C] () -- C:\Users\Fabio\Desktop\11204427_1596499157293313_6196849038438043651_n.jpg
[2015/06/26 09:56:46 | 000,036,221 | ---- | C] () -- C:\Users\Fabio\Desktop\11150174_1596942160582346_6850164425859471737_n.jpg
[2015/06/26 09:55:51 | 000,041,244 | ---- | C] () -- C:\Users\Fabio\Desktop\11168000_1597625153847380_2507798116502387973_n.jpg
[2015/06/26 09:55:04 | 000,065,380 | ---- | C] () -- C:\Users\Fabio\Desktop\11159508_1597963747146854_5399199372307539717_n.jpg
[2015/06/26 09:53:17 | 000,090,857 | ---- | C] () -- C:\Users\Fabio\Desktop\11204992_1599170193692876_1567458827396452292_n.jpg
[2015/06/26 09:52:55 | 000,043,170 | ---- | C] () -- C:\Users\Fabio\Desktop\11169792_1599347043675191_82290811217943569_n.jpg
[2015/06/26 09:52:19 | 000,041,420 | ---- | C] () -- C:\Users\Fabio\Desktop\11214038_1599922293617666_7170777724921358552_n.jpg
[2015/06/26 09:51:13 | 000,044,224 | ---- | C] () -- C:\Users\Fabio\Desktop\11238972_1601120153497880_7338427393056010668_n.jpg
[2015/06/26 09:50:11 | 000,033,382 | ---- | C] () -- C:\Users\Fabio\Desktop\11224225_1601605396782689_8868079139212207600_n.jpg
[2015/06/26 09:40:47 | 001,230,990 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0109.jpg
[2015/06/26 09:40:47 | 001,056,223 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0110.jpg
[2015/06/26 09:40:46 | 000,962,922 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0107.jpg
[2015/06/26 09:40:46 | 000,947,841 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0106.jpg
[2015/06/26 09:40:46 | 000,943,149 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0108.jpg
[2015/06/26 09:40:45 | 001,168,485 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0111.jpg
[2015/06/26 09:40:45 | 000,964,361 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0105.jpg
[2015/06/26 08:29:19 | 000,002,301 | ---- | C] () -- C:\Users\Fabio\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/06/26 08:29:19 | 000,002,277 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/06/26 08:23:58 | 000,001,084 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/06/26 08:23:57 | 000,001,080 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/06/26 08:17:55 | 000,001,175 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2015/06/26 08:17:55 | 000,001,163 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015/06/26 08:07:57 | 000,243,592 | ---- | C] () -- C:\Users\Fabio\Desktop\Firefox Setup Stub 38.0.5.exe
[2015/06/25 20:14:02 | 000,977,308 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0116.jpg
[2015/06/25 19:01:26 | 000,918,639 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0114.jpg
[2015/06/24 20:25:51 | 000,951,742 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0102.jpg
[2015/06/24 20:25:51 | 000,894,468 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0103.jpg
[2015/06/24 20:25:50 | 000,975,886 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0101.jpg
[2015/06/24 20:03:46 | 000,161,804 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0096_1.jpg
[2015/06/23 20:56:06 | 168,608,703 | R--- | C] () -- C:\Users\Fabio\Desktop\Avg Internet Security 2011 + Keygen.rar
[2015/06/14 19:58:13 | 000,597,180 | ---- | C] () -- C:\Users\Fabio\Desktop\IMAG0050.jpg
[2015/06/11 21:31:09 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
[2015/06/10 18:18:29 | 000,410,336 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2015/06/07 09:50:00 | 000,000,004 | ---- | C] () -- C:\Windows\SysWow64\029B560A371F4E00AB32838EBC01B9E7
[2015/06/07 08:55:59 | 000,000,538 | ---- | C] () -- C:\Windows\tasks\alpha_shopper_helper_service.job
[2015/06/07 08:12:44 | 000,000,859 | ---- | C] () -- C:\Users\Fabio\Desktop\µTorrent.lnk
[2015/06/07 08:12:44 | 000,000,839 | ---- | C] () -- C:\Users\Fabio\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2015/04/19 17:08:42 | 000,000,000 | ---- | C] () -- C:\Users\Fabio\powershell
[2015/04/18 18:17:28 | 000,160,628 | ---- | C] () -- C:\Windows\QuickTime DirectShow Filter for WMP Uninstaller.exe
[2015/03/07 04:50:06 | 000,107,008 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2015/03/07 04:47:46 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2014/11/02 14:52:49 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2014/10/30 01:00:22 | 002,499,752 | ---- | C] () -- C:\Windows\SysWow64\BootMan.exe
[2014/10/30 01:00:22 | 000,087,112 | ---- | C] () -- C:\Windows\SysWow64\setupempdrv03.exe
[2014/10/30 01:00:22 | 000,019,840 | ---- | C] () -- C:\Windows\SysWow64\EuEpmGdi.dll
[2014/10/30 01:00:22 | 000,013,896 | ---- | C] () -- C:\Windows\SysWow64\epmntdrv.sys
[2014/10/30 01:00:22 | 000,009,160 | ---- | C] () -- C:\Windows\SysWow64\EuGdiDrv.sys
[2013/08/22 18:36:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2013/08/22 18:36:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2013/08/22 17:46:23 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013/08/22 10:01:23 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013/08/22 02:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013/08/22 02:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2014/12/13 18:24:38 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015/02/12 20:40:58 | 022,291,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/02/12 20:34:06 | 019,731,824 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2014/10/29 04:19:43 | 001,013,760 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2014/10/29 03:59:23 | 000,786,944 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2014/10/29 04:16:01 | 000,512,512 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2015/05/23 05:28:25 | 012,829,696 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\ieframe.dll

[color=#A23BEC]< %systemroot%\system32\drivers\ *.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
Invalid Environment Variable: alluserprofile
Invalid Environment Variable: alluserprofile

[color=#A23BEC]< %appdata%\*. >[/color]
[2014/10/30 00:02:13 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Adobe
[2015/04/09 07:21:03 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Apple Computer
[2015/02/16 20:21:01 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\DVDVideoSoft
[2014/11/17 21:46:40 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Hewlett-Packard
[2014/11/17 21:46:37 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\hpqLog
[2015/02/28 23:08:04 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\HTC
[2015/03/08 15:36:04 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Identities
[2015/06/07 08:12:58 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Macromedia
[2015/03/18 18:18:29 | 000,000,000 | --SD | M] -- C:\Users\Fabio\AppData\Roaming\Microsoft
[2015/06/26 08:18:11 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Mozilla
[2015/04/19 22:25:23 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\NVIDIA
[2014/11/01 21:28:42 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Opera Software
[2015/06/28 10:33:26 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Skype
[2014/12/03 18:58:30 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\Smadav
[2015/06/25 21:33:16 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\uTorrent
[2015/06/12 10:26:39 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\vlc
[2014/12/05 19:58:36 | 000,000,000 | ---D | M] -- C:\Users\Fabio\AppData\Roaming\ZTEEVDO

[color=#A23BEC]< %appdata%\*.exe /s >[/color]
[2014/11/17 21:46:40 | 000,794,112 | ---- | M] (Hewlett-Packard Company) -- C:\Users\Fabio\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe
[2015/06/07 08:12:44 | 001,994,592 | ---- | M] (BitTorrent Inc.) -- C:\Users\Fabio\AppData\Roaming\uTorrent\uTorrent.exe
[2015/06/07 08:10:33 | 001,994,592 | ---- | M] (BitTorrent Inc.) -- C:\Users\Fabio\AppData\Roaming\uTorrent\updates\3.4.3_40298.exe

[color=#A23BEC]< %systemdrive%\*. >[/color]
[2014/12/27 19:01:26 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2015/06/28 12:45:18 | 000,000,000 | ---D | M] -- C:\AdwCleaner
[2013/08/22 17:45:52 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2014/10/30 01:18:37 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2014/10/31 22:26:01 | 000,000,000 | ---D | M] -- C:\NVIDIA
[2013/08/22 18:22:35 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2015/06/23 20:37:12 | 000,000,000 | R--D | M] -- C:\Program Files
[2015/06/28 12:44:55 | 000,000,000 | R--D | M] -- C:\Program Files (x86)
[2015/06/26 08:17:55 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2014/10/29 23:59:17 | 000,000,000 | -HSD | M] -- C:\Recovery
[2014/11/17 21:46:06 | 000,000,000 | ---D | M] -- C:\SWSetup
[2015/06/28 13:05:23 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2015/02/27 19:38:25 | 000,000,000 | ---D | M] -- C:\Temp
[2015/01/15 05:41:57 | 000,000,000 | R--D | M] -- C:\Users
[2015/06/16 05:30:12 | 000,000,000 | ---D | M] -- C:\Windows
[2015/06/07 08:52:46 | 000,000,000 | -HSD | M] -- C:\[Smad-Cage]

[color=#A23BEC]< %systemdrive%\*.exe >[/color]

[color=#A23BEC]< %programfiles%\*. >[/color]
[2015/06/07 08:51:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\69dc8177-a574-4dff-8461-b3267b078dcf
[2015/06/07 08:55:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Alpha Shopper
[2015/03/18 20:45:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Apple Software Update
[2015/06/07 08:51:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Bonjour
[2015/04/18 19:08:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Common Files
[2015/02/16 20:20:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DVDVideoSoft
[2014/11/17 20:35:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EaseUS
[2015/02/16 20:20:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Free Codec Pack
[2015/04/18 18:54:30 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Freemake
[2015/06/26 08:28:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Google
[2014/11/17 21:46:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Hewlett-Packard
[2014/11/17 21:36:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Hp
[2015/02/27 19:52:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\HTC
[2014/12/17 21:48:53 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2015/06/12 08:57:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Explorer
[2015/04/04 19:26:00 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\iTunes
[2014/12/13 18:30:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Java
[2014/10/30 01:18:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Analysis Services
[2014/10/30 01:22:35 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office
[2014/10/30 01:22:33 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Sync Framework
[2014/10/30 01:19:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2014/10/30 01:22:33 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft.NET
[2015/06/26 08:17:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox
[2015/06/26 08:17:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2014/10/30 07:15:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSBuild
[2014/12/14 06:04:32 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MyPublicWiFi
[2014/10/31 22:59:32 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\NVIDIA Corporation
[2014/11/01 21:28:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Opera
[2014/10/30 07:15:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reference Assemblies
[2015/04/18 18:17:28 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\River Past
[2015/04/18 19:08:57 | 000,000,000 | R--D | M] -- C:\Program Files (x86)\Skype
[2015/06/28 12:50:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SMADAV
[2014/12/13 20:27:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Sony
[2015/04/12 15:14:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Sony Mobile
[2015/02/27 19:52:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Spirent Communications
[2015/04/18 17:59:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VideoLAN
[2014/12/27 18:19:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Wi-Fi Modem
[2015/03/14 19:24:16 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Defender
[2015/03/08 14:30:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Mail
[2015/03/08 14:30:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Player
[2015/03/08 14:30:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Multimedia Platform
[2013/08/22 18:36:30 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows NT
[2015/03/08 14:30:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Viewer
[2015/03/08 14:30:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Portable Devices
[2013/08/22 18:36:30 | 000,000,000 | -HSD | M] -- C:\Program Files (x86)\Windows Sidebar
[2013/08/22 18:36:30 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\WindowsPowerShell
[2014/11/18 05:33:49 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Winhotspot

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2014/11/07 06:14:51 | 000,296,625 | ---- | M] () MD5=032FCFBE4C110C3C185D5A2C7127495F -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_42cd898b4d6ef82e\explorer.exe
[2014/11/07 06:14:59 | 000,270,770 | ---- | M] () MD5=0A8F3AFA8E72812FB15A57CA4B9D9DB4 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_42a5f9614d8dbfa5\explorer.exe
[2015/03/19 17:46:31 | 000,087,190 | ---- | M] () MD5=1BF154F7BFAE2B9E0545FB09946C1817 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17415_none_42bfa1f94d79e1bb\explorer.exe
[2014/11/10 05:37:59 | 000,270,774 | ---- | M] () MD5=2195687491E604BA42961470EDA7660E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_42acff334d876b54\explorer.exe
[2014/11/07 23:22:23 | 000,244,055 | ---- | M] () MD5=262FE2A362088EF9ED5DF3F8A9F5C853 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_4d2233dd81cfba29\explorer.exe
[2014/11/10 19:34:06 | 000,220,250 | ---- | M] () MD5=286928E00AD34E9F88EB5BFA52660A70 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_4d01a98581e82d4f\explorer.exe
[2015/03/19 17:46:23 | 000,396,313 | ---- | M] () MD5=426AEABD8DD389A65A8EE92AB5936153 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_4272ee6f4db391ad\explorer.exe
[2015/03/19 19:19:41 | 000,107,122 | ---- | M] () MD5=52063502D4A2E28FEBEA781D0EE5C453 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17415_none_4d144c4b81daa3b6\explorer.exe
[2014/11/07 06:15:03 | 000,271,249 | ---- | M] () MD5=667BC926C7CB889BF276A5FEA316CAEE -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_42adfbb14d868a5d\explorer.exe
[2014/11/07 23:22:16 | 000,275,086 | ---- | M] () MD5=803449390B7262A0A62E02FDA6DF2AA8 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16384_none_4cc7b16f8214372e\explorer.exe
[2014/11/07 23:22:30 | 000,242,815 | ---- | M] () MD5=82BD6A3F59457EA42D715DBB07721F50 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_4ceff22781f6788c\explorer.exe
[2015/01/28 02:41:17 | 002,207,488 | ---- | M] (Microsoft Corporation) MD5=91E24273FCA076EA9E65DAFA98901225 -- C:\Windows\SysWOW64\explorer.exe
[2015/01/28 02:41:17 | 002,207,488 | ---- | M] (Microsoft Corporation) MD5=91E24273FCA076EA9E65DAFA98901225 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17667_none_4ce0410f82015c67\explorer.exe
[2014/11/07 06:14:55 | 000,298,039 | ---- | M] () MD5=ADB95EFCBC505B5E64F25142628CAAE0 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_429b47d54d95b691\explorer.exe
[2014/11/07 23:22:36 | 000,208,578 | ---- | M] () MD5=BDF28F96CE885D001769AAA04D5C7A0B -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_4cfaa3b381ee81a0\explorer.exe
[2015/01/28 02:47:12 | 002,501,368 | ---- | M] (Microsoft Corporation) MD5=C10A66189DC8C090E7C84873EDCEBC88 -- C:\Windows\explorer.exe
[2015/01/28 02:47:12 | 002,501,368 | ---- | M] (Microsoft Corporation) MD5=C10A66189DC8C090E7C84873EDCEBC88 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17667_none_428b96bd4da09a6c\explorer.exe
[2014/11/07 23:22:43 | 000,208,662 | ---- | M] () MD5=C131BC6F12417306A9C8469CA49110B1 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_4d02a60381e74c58\explorer.exe
[2015/03/19 19:19:27 | 000,338,943 | ---- | M] () MD5=E4FD740C3316F1D1C8322471553466C7 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_4cc798c1821453a8\explorer.exe
[2014/11/07 06:14:47 | 000,344,258 | ---- | M] () MD5=ED98CDFE7BBC5BD3ACEE947013F8EBAF -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16384_none_4273071d4db37533\explorer.exe

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2014/10/29 04:26:21 | 000,838,656 | ---- | M] (Microsoft Corporation) MD5=02D117FC638B768BD1A15F8000B83EAE -- C:\Windows\SysNative\netlogon.dll
[2014/10/29 04:26:21 | 000,838,656 | ---- | M] (Microsoft Corporation) MD5=02D117FC638B768BD1A15F8000B83EAE -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17415_none_eec2b22a0bb75b53\netlogon.dll
[2014/11/08 07:11:52 | 000,058,552 | ---- | M] () MD5=35048C9600694C3BF01D644D1AAE62BE -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_f8cac1a04051b0c6\netlogon.dll
[2015/03/19 18:33:03 | 000,125,384 | ---- | M] () MD5=45C2C2EA335BD7FF360C7F006B915766 -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_ee9e39a60bd3552e\netlogon.dll
[2015/03/20 20:12:06 | 000,105,907 | ---- | M] () MD5=B25E2DE4078511EB1747FA0BDB6E4FC5 -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_f8f2e3f840341729\netlogon.dll
[2014/10/29 04:02:34 | 000,695,296 | ---- | M] (Microsoft Corporation) MD5=CCEC6CB98A00ECE7F5AFB9C0FC9427B3 -- C:\Windows\SysWOW64\netlogon.dll
[2014/10/29 04:02:34 | 000,695,296 | ---- | M] (Microsoft Corporation) MD5=CCEC6CB98A00ECE7F5AFB9C0FC9427B3 -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17415_none_f9175c7c40181d4e\netlogon.dll
[2014/11/07 21:44:01 | 000,108,975 | ---- | M] () MD5=D817ED82C2A0E1CED9B396826F52F7CB -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_ee76174e0bf0eecb\netlogon.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2015/03/19 18:52:46 | 000,002,671 | ---- | M] () MD5=061AC3BD7ADC5DCBA6AC0F23895266F8 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2015/03/20 20:52:33 | 000,004,269 | ---- | M] () MD5=1AE98168631581DE1343C3A87A6CBCA9 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
[2014/10/29 04:28:08 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=5C131534A3EA4A461A793FB507A8004F -- C:\Windows\SysNative\userinit.exe
[2014/10/29 04:28:08 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=5C131534A3EA4A461A793FB507A8004F -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.17415_none_cd33b4fca56d6b07\userinit.exe
[2014/10/29 04:05:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=D10643FC0095434C819316CA6CD748C0 -- C:\Windows\SysWOW64\userinit.exe
[2014/10/29 04:05:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=D10643FC0095434C819316CA6CD748C0 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.17415_none_71151978ed0ff9d1\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2015/03/19 18:58:05 | 000,100,951 | ---- | M] () MD5=A176623494AF009927242266EF51DCFB -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_60b45365a8c2ccdb\winlogon.exe
[2014/11/07 22:31:09 | 000,089,459 | ---- | M] () MD5=E40DC8DF924E02F04F3620DBAC1ACE31 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_60816121a8e88269\winlogon.exe
[2014/10/29 04:22:52 | 000,572,416 | ---- | M] (Microsoft Corporation) MD5=EC498BAE1F0D3E0E401C963F8D76C437 -- C:\Windows\SysNative\winlogon.exe
[2014/10/29 04:22:52 | 000,572,416 | ---- | M] (Microsoft Corporation) MD5=EC498BAE1F0D3E0E401C963F8D76C437 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17415_none_60cdfbfda8aeeef1\winlogon.exe

[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2015/05/14 07:00:54 | 000,001,088 | ---- | M] ()(C:\Users\Public\Desktop\SMAD?V.lnk) -- C:\Users\Public\Desktop\SMAD”V.lnk
[2014/10/31 21:30:53 | 000,001,088 | ---- | C] ()(C:\Users\Public\Desktop\SMAD?V.lnk) -- C:\Users\Public\Desktop\SMAD”V.lnk

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 36 bytes -> C:\Users\Fabio\OneDrive:ms-properties
@Alternate Data Stream - 220 bytes -> C:\Users\Fabio\SkyDrive:ms-properties
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:56E2E879

< End of report >

Publicité


Signaler le contenu de ce document

Publicité