cjoint

Publicité


Publicité

Commentaire : Rapport FRST

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-07-2015
Ran by 6582 (administrator) on PORT-DSI04 on 09-07-2015 13:43:20
Running from D:\Utilisateurs\6582\Desktop
Loaded Profiles: 6582 (Available Profiles: root & suprima_backup & 6004 & 4087 & 6582 & 6642 & 6342 & 6495a)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(SMSC) C:\Program Files\SGFX\sgfxmgr.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apache Software Foundation) D:\xampp\apache\bin\httpd.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros) C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Apache Software Foundation) D:\xampp\apache\bin\httpd.exe
(Green Packet Berhad.) C:\Windows\RNDIS_MGR\WmGenieFwSrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFDataExport.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFIndexingManager.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFServerAux.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFSetup.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Analysis Services\Bin\msmdsrv.exe
() C:\Program Files\MyPublicWiFi\PublicWiFiService.exe
() D:\xampp\mysql\bin\mysqld.exe
(pdfforge GbR) C:\Program Files\PDF Architect\HelperService.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFIndexer.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFIndexer.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFIndexer.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFIndexer.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFIndexer.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFIndexer.exe
(pdfforge GbR) C:\Program Files\PDF Architect\ConversionService.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Realtek) C:\Program Files\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
(Realtek) C:\Program Files\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe
(Cerus Informatique) C:\LandparkIP\LpServiceIPClient.exe
(SFR & Celliance) C:\Program Files\SFR\Gestionnaire de Connexion SFR\SFRABCdService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
() C:\Program Files\ZTEMT UI\bin\MonServiceUDisk.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
(VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
(VMware, Inc.) C:\Windows\System32\vmnat.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
(M-Files Corporation) D:\M-Files\9.0.3372.6\Bin\x86\MFServer.exe
(VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(Atheros Communications) C:\Program Files\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AthBtTray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
(Renesas Electronics Corporation) C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files\SGFX\SgfxConfig.exe
(VMware, Inc.) C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Bluetooth Suite\BtvStack.exe [490656 2011-01-06] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files\Bluetooth Suite\AthBtTray.exe [302240 2011-01-06] (Atheros Commnucations)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\winampa.exe [74752 2012-06-28] (Nullsoft, Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
HKLM\...\Run: [NUSB3MON] => C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-18] (Renesas Electronics Corporation)
HKLM\...\Run: [SgfxConfig] => C:\Program Files\SGFX\sgfxconfig.exe [1536576 2012-04-30] ()
HKLM\...\Run: [vmware-tray] => C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [103536 2011-08-22] (VMware, Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [718688 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [DriveUtilitiesHelper] => C:\Program Files\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1852264 2014-05-23] (Western Digital Technologies, Inc.)
HKLM\...\Run: [WD Drive Unlocker] => C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694048 2014-05-23] (Western Digital Technologies, Inc.)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-02-12] (Western Digital Technologies, Inc.)
HKLM\...\Run: [TkBellExe] => C:\Program Files\real\realone player\update\realsched.exe [295512 2013-03-26] (RealNetworks, Inc.)
HKU\S-1-5-21-492716543-1482649579-1235820382-53878\...\Run: [Google Update] => D:\Utilisateurs\6582\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-03-17] (Google Inc.)
BootExecute: autocheck autochk * sdnclean.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSSE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID=226786&Mkt=fr-FR&Src=MSE&Tid=000314D3&OHP=http%3A%2F%2Fwww.google.com%2F&OSP=
HKU\S-1-5-21-492716543-1482649579-1235820382-53878\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/fr-fr/?ocid=iehp
HKU\S-1-5-21-492716543-1482649579-1235820382-53878\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par 01net.com
HKU\S-1-5-21-492716543-1482649579-1235820382-53878\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/
HKU\S-1-5-21-492716543-1482649579-1235820382-53878\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.01net.com/telecharger/
http://www.01men.com/
HKU\S-1-5-21-492716543-1482649579-1235820382-53878\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.01net.com/telecharger/
http://www.01men.com/
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-492716543-1482649579-1235820382-53878 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL =
SearchScopes: HKU\S-1-5-21-492716543-1482649579-1235820382-53878 -> {CDA75E74-AC2C-4B73-B7D6-AFC3325097E0} URL = http://www.01net.com/recherche/recherche?chaine=telecharger&searchstring={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-03-06] (RealDownloader)
BHO: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files\PDF Architect\PDFIEHelper.dll [2012-11-22] (pdfforge GbR)
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2015-06-30] (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-05] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files\Bluetooth Suite\IEPlugIn.dll [2011-01-06] (Atheros Commnucations)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-05] (Oracle Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12] (Adblock Plus)
Toolbar: HKU\.DEFAULT -> No Name - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 131.107.2.11 131.107.2.12
Tcpip\..\Interfaces\{040C1D2A-37BA-4083-B3C6-E40B66F51D05}: [DhcpNameServer] 192.168.111.254
Tcpip\..\Interfaces\{2F4AA1EC-F5D4-4E70-95F7-C8DF990EB92C}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{4CFBDF57-B1D3-4608-B454-A8CD7EBFDD4C}: [DhcpNameServer] 217.77.71.33 217.77.71.1
Tcpip\..\Interfaces\{57E9CAE0-CDAE-483F-9ED8-B4CF8590C92A}: [DhcpNameServer] 131.107.2.11 131.107.2.12
Tcpip\..\Interfaces\{8566D478-1A90-4C83-9E6B-D921C3D11452}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{9A066518-69A9-4772-A76A-2556EFA24CAD}: [DhcpNameServer] 192.168.111.254
Tcpip\..\Interfaces\{A1006E1B-2157-461B-B9BC-F7D7A7AB5402}: [DhcpNameServer] 192.168.111.254
Tcpip\..\Interfaces\{AFA4B694-B2E8-45AE-84AE-6DDFEC7F8287}: [DhcpNameServer] 192.168.111.254
Tcpip\..\Interfaces\{C7676644-39A9-47C3-B501-B1ED03AB9EFB}: [DhcpNameServer] 131.107.2.11 131.107.2.12

FireFox:
========
FF ProfilePath: D:\Utilisateurs\6582\AppData\Roaming\Mozilla\Firefox\Profiles\eijn21qd.default-1426258939907
FF NetworkProxy: "backup.ftp", "di-isa"
FF NetworkProxy: "backup.ftp_port", 8080
FF NetworkProxy: "backup.socks", "di-isa"
FF NetworkProxy: "backup.socks_port", 8080
FF NetworkProxy: "backup.ssl", "di-isa"
FF NetworkProxy: "backup.ssl_port", 8080
FF NetworkProxy: "ftp", "di-isa"
FF NetworkProxy: "ftp_port", 8080
FF NetworkProxy: "http", "di-isa"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1,131.107.*,http://ss-singa01"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "di-isa"
FF NetworkProxy: "socks_port", 8080
FF NetworkProxy: "ssl", "di-isa"
FF NetworkProxy: "ssl_port", 8080
FF NetworkProxy: "type", 1
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-19] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Windows\system32\npdeployJava1.dll [2015-05-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-05] (Oracle Corporation)
FF Plugin: @kaspersky.com/content_blocker -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2015-06-30] ()
FF Plugin: @kaspersky.com/online_banking -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2015-06-30] ()
FF Plugin: @kaspersky.com/virtual_keyboard -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2015-06-30] ()
FF Plugin: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll [2012-09-23] (Cybelsoft)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.1.18 -> c:\program files\real\realone player\Netscape6\nppl3260.dll [2013-03-26] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-03-06] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-03-06] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-03-06] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.1.18 -> c:\program files\real\realone player\Netscape6\nprpplugin.dll [2013-03-26] (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-03-06] (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-30] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @talk.google.com/GoogleTalkPlugin -> C:\Users\root\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-01-27] (Google)
FF Plugin HKU\.DEFAULT: @talk.google.com/O1DPlugin -> C:\Users\root\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-01-27] (Google)
FF Plugin HKU\S-1-5-21-492716543-1482649579-1235820382-53878: @talk.google.com/GoogleTalkPlugin -> D:\Utilisateurs\6582\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-492716543-1482649579-1235820382-53878: @talk.google.com/O1DPlugin -> D:\Utilisateurs\6582\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-492716543-1482649579-1235820382-53878: @tools.google.com/Google Update;version=3 -> D:\Utilisateurs\6582\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-30] (Google Inc.)
FF Plugin HKU\S-1-5-21-492716543-1482649579-1235820382-53878: @tools.google.com/Google Update;version=9 -> D:\Utilisateurs\6582\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-30] (Google Inc.)
FF Plugin HKU\S-1-5-21-492716543-1482649579-1235820382-53878: @unity3d.com/UnityPlayer,version=1.0 -> D:\Utilisateurs\6582\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-24] (Unity Technologies ApS)
FF user.js: detected! => D:\Utilisateurs\6582\AppData\Roaming\Mozilla\Firefox\Profiles\eijn21qd.default-1426258939907\user.js [2015-06-30]
FF Plugin ProgramFiles/Appdata: D:\Utilisateurs\6582\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: D:\Utilisateurs\6582\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Extension: Valence - D:\Utilisateurs\6582\AppData\Roaming\Mozilla\Firefox\Profiles\eijn21qd.default-1426258939907\Extensions\fxdevtools-adapters@mozilla.org [2015-06-06]
FF Extension: Flash Player - D:\Utilisateurs\6582\AppData\Roaming\Mozilla\Firefox\Profiles\eijn21qd.default-1426258939907\Extensions\d2dsds2@wdwef232d.com.xpi [2015-06-23]
FF Extension: WhatsApp Panel - D:\Utilisateurs\6582\AppData\Roaming\Mozilla\Firefox\Profiles\eijn21qd.default-1426258939907\Extensions\whatsapppanel@alejandrobrizuela.com.ar.xpi [2015-03-30]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-07-03]
FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt [2012-11-28]
FF HKLM\...\Firefox\Extensions: [{DAC3F861-B30D-40dd-9166-F4E75327FAC7}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-03-26]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2015-06-30]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2015-06-30]
FF HKLM\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com [2015-06-30]
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com [2015-06-30]
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2015-06-30]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: D:\Utilisateurs\6582\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-03-06]
CHR HKLM\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files\Sony\Media Go\MediaGoDetector.crx" [Not Found]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apache2.2; D:\xampp\apache\bin\httpd.exe [24636 2008-12-10] (Apache Software Foundation) [File not signed]
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-01-06] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files\Bluetooth Suite\adminservice.exe [56480 2011-01-06] (Atheros Commnucations) [File not signed]
R2 AVP15.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)
S3 Boonty Games; C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe [69120 2015-04-14] (BOONTY) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S2 Ds3Service; C:\Program Files\Scarlet.Crush Production\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
S3 FileZilla Server; D:\xampp\FileZillaFTP\FileZillaServer.exe [691200 2009-03-03] (FileZilla Project) [File not signed]
S3 FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1064312 2013-10-26] (Flexera Software LLC)
R2 GenieService; C:\Windows\RNDIS_MGR\WmGenieFwSrv.exe [75264 2012-08-03] (Green Packet Berhad.) [File not signed]
S3 hpqwmiex; C:\Users\root\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe [793088 2013-03-14] (Hewlett-Packard Company) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [462088 2012-06-19] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
S3 maconfservice; C:\Program Files\ma-config.com\maconfservice.exe [312264 2012-09-23] (CybelSoft)
S2 MBAMService; D:\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 MFDataExport 9.0.3372.6; D:\M-Files\9.0.3372.6\Bin\x86\mfdataexport.exe [2536360 2012-10-02] (M-Files Corporation)
R2 MFIndexingManager 9.0.3372.6; D:\M-Files\9.0.3372.6\Bin\x86\mfindexingmanager.exe [2077608 2012-10-02] (M-Files Corporation)
R2 MFServer 9.0.3372.6; D:\M-Files\9.0.3372.6\Bin\x86\mfserver.exe [17701800 2012-10-02] (M-Files Corporation)
R2 MFServerAux 9.0.3372.6; D:\M-Files\9.0.3372.6\Bin\x86\mfserveraux.exe [2526632 2012-10-02] (M-Files Corporation)
R2 MFSetup 9.0.3372.6; D:\M-Files\9.0.3372.6\Bin\x86\mfsetup.exe [2169256 2012-10-02] (M-Files Corporation)
R2 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe [9150464 2005-05-04] (Microsoft Corporation) [File not signed]
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [73728 2005-05-03] (Microsoft Corporation) [File not signed]
R2 MSSQLServerOLAPService; C:\Program Files\Microsoft Analysis Services\Bin\msmdsrv.exe [1966080 2005-05-04] (Microsoft Corporation) [File not signed]
R2 MyPublicWiFiService; C:\Program Files\MyPublicWiFi\PublicWiFiService.exe [756224 2013-04-03] () [File not signed]
R2 mysql; D:\xampp\mysql\bin\mysqld.exe [6562432 2009-03-16] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [45568 2013-05-16] (Hewlett-Packard) [File not signed]
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1522312 2012-11-22] (pdfforge GbR)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [905864 2012-11-22] (pdfforge GbR)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [55808 2013-05-16] (Hewlett-Packard) [File not signed]
S3 PointdevRestartSvc; C:\Windows\Pointdev\RestartSvc\PointdevRestartSvc.exe [53248 2010-08-25] (Pointdev) [File not signed]
S3 Progress DataDirect Salesforce SQL Engine; C:\Program Files\Progress\DataDirect\Connect_for_ODBC_71\tools\salesforceserver.exe [78848 2012-10-29] (Progress Software Corporation) [File not signed]
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()
R2 RtlISMServ; C:\Program Files\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [40960 2011-05-30] (Realtek) [File not signed]
R2 Service2; C:\LandparkIP\LpServiceIPClient.exe [580608 2011-12-16] (Cerus Informatique) [File not signed]
R2 ServiceSFRABCD; C:\Program Files\SFR\Gestionnaire de Connexion SFR\SFRABCDService.exe [657536 2009-11-06] (SFR & Celliance)
R2 SGFXMgr; C:\Program Files\SGFX\sgfxmgr.exe [4247552 2012-04-27] (SMSC) [File not signed]
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
S3 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL\binn\sqlagent.exe [323584 2005-05-03] (Microsoft Corporation) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1781048 2014-07-16] (TuneUp Software)
S3 tvncserver_Pointdev; C:\Windows\Pointdev\VNC\tvnserver.exe [858160 2013-06-19] (GlavSoft LLC.)
R2 UDisk Monitor; C:\Program Files\ZTEMT UI\bin\MonServiceUDisk.exe [512000 2009-12-21] () [File not signed]
R2 VMAuthdService; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [79872 2011-08-22] (VMware, Inc.) [File not signed]
R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [354416 2011-08-22] (VMware, Inc.)
R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [665200 2011-08-21] (VMware, Inc.)
R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [432752 2011-08-22] (VMware, Inc.)
S3 VMwareHostd; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [11837440 2011-08-22] () [File not signed]
R2 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-02-12] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [302968 2015-02-12] (Western Digital Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [25856 2011-09-06] (Google Inc)
R3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [34976 2011-01-06] (Atheros)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-03] (AVG Technologies)
R3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [258720 2011-01-06] (Atheros)
R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [24736 2011-01-06] (Atheros)
R3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [175776 2011-01-06] (Atheros)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [49312 2011-01-06] (Atheros)
R3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [141088 2011-01-06] (Atheros)
S3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [241824 2011-01-06] (Atheros)
S3 driverhardwarev2; C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [16640 2011-07-21] (CybelSoft)
S3 DSDrv4; D:\K!TV\Plugins\S_Bt8x8\DSDrv4.sys [7168 2005-02-14] () [File not signed]
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-04-21] (DT Soft Ltd)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [32496 2011-08-21] (VMware, Inc.)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [532536 2012-09-01] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [25656 2012-09-01] (Intel Corporation)
R3 intelkmd; C:\Windows\System32\DRIVERS\igdpmd32.sys [10855424 2011-08-31] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135264 2014-02-20] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112136 2015-06-30] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [34400 2014-04-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [644808 2015-06-30] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [24672 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [14432 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [45024 2014-03-25] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145888 2014-03-26] (Kaspersky Lab ZAO)
S3 LAN9500; C:\Windows\System32\DRIVERS\lan9500-x86-n51f.sys [61440 2013-01-28] (SMSC)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [55104 2012-07-02] (Intel Corporation)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [95304 2011-11-10] (MotioninJoy)
R1 ndiskhaz; C:\Windows\System32\DRIVERS\ndiskhaz.sys [25416 2012-12-07] (Khalil Azzouzi)
R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [62336 2010-12-11] (Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [141440 2010-12-11] (Renesas Electronics Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [15688 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] ()
R3 RTL8192Ce; C:\Windows\System32\DRIVERS\rtl8192Ce.sys [1037416 2011-06-15] (Realtek Semiconductor Corporation )
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [33024 2013-05-05] (Scarlet.Crush Productions)
R4 sgfxk; C:\Windows\System32\drivers\sgfxk32.sys [112704 2012-05-01] (SMSC)
R0 sgfxl; C:\Windows\System32\drivers\sgfxl32.sys [13888 2012-05-01] (SMSC)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1784192 2011-04-07] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2013-03-20] (Duplex Secure Ltd.)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2014-06-23] (TuneUp Software)
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13056 2011-04-27] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [20864 2011-04-27] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [25216 2011-04-27] (LG Electronics Inc.)
R3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [16624 2011-08-22] (VMware, Inc.)
R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [36464 2011-08-22] (VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [25712 2011-08-22] (VMware, Inc.)
S3 vmusb; C:\Windows\System32\Drivers\vmusb.sys [31280 2011-08-21] (VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [55280 2011-08-22] (VMware, Inc.)
R2 vstor2-mntapi10-shared; C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys [22768 2011-07-08] (VMware, Inc.)
S3 ztemtusbser; C:\Windows\System32\DRIVERS\CT_ZTEMT_U_USBSER.sys [105472 2009-11-25] (ZTEMT Incorporated)
S3 ZTEusbnet; C:\Windows\System32\DRIVERS\ZTEusbnet.sys [114688 2009-08-21] (ZTE Corporation)
S3 ZTEusbvoice; C:\Windows\System32\DRIVERS\ZTEusbvoice.sys [105088 2009-09-19] (ZTE Incorporated)
U3 a1ifs4wo; C:\Windows\system32\Drivers\a1ifs4wo.sys [0 ] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)
S2 BstHdDrv; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [X]
S3 esgiguard; No ImagePath
S1 ghupqgir; \??\C:\Windows\system32\drivers\ghupqgir.sys [X]
S3 lgbusenum; No ImagePath
S2 vstor2-p2v30; No ImagePath

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Accelerometer.sys CC1F1D3D70DC13C2C281488D347D4415
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys D0B388DA1D111A34366E04EB4A5DD156
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\djsvs.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\atikmdag.sys E652316A5C46E19766B4D6066A1D9F74
C:\Windows\System32\DRIVERS\atikmpag.sys 1BE5B3052FFDE789B72C37FA3EC48CD5
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\Windows\System32\Drivers\lgandnetadb.sys 8532E70CE60BC3C790CA6FBBFEA5F388
C:\Windows\system32\drivers\appid.sys 81F97D8F8B3FB94A451CC6F7CF8B2965
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\btath_flt.sys 882EDBAFCC227852C9DCA23EA48D2E78
C:\Windows\System32\DRIVERS\athr.sys 03AADC899B3A56FF42B3169818F5D50C
C:\Windows\system32\drivers\avgtpx86.sys 15ACA2AD17ACECA4814F249783E63AD3
C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\System32\drivers\btath_a2dp.sys D57BC943ED4EF85A51165F408E4C15A7
C:\Windows\System32\DRIVERS\btath_bus.sys F60E0C722442EA91F0C253B7814D8192
C:\Windows\System32\DRIVERS\btath_hcrp.sys F31E369DB8258B28E3DCF66705AEA9E9
C:\Windows\System32\DRIVERS\btath_lwflt.sys 6651798266FDE23159D961463A63A77D
C:\Windows\System32\DRIVERS\btath_rcp.sys 08EF5298DF80BC136523BCD2ED8B9C37
C:\Windows\System32\DRIVERS\btfilter.sys 6C692B2920D0E1B2FDB19329B7D69C6A
C:\Windows\system32\drivers\BthEnum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bthpan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BTHport.sys 1153DE2E4F5941E10C399CB5592F78A1
C:\Windows\System32\Drivers\BTHUSB.sys C81E9413A25A439F436B1D4B6A0CF9E9
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys 3051724F223EA48968B19567DE2A81F4
C:\Windows\System32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys 0C1B2CC3733A4A5B8D6258E7B26EAD1A
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit
C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 0F1189883690949BA7A9F68339587E51
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 is legit
D:\K!TV\Plugins\S_Bt8x8\DSDrv4.sys 692EF4D0DC4B2B722E967B1A355564F0
C:\Windows\System32\DRIVERS\dtsoftbus01.sys 687AF6BB383885FF6A64071B189A7F3E
C:\Windows\System32\drivers\dxgkrnl.sys 3583A5A8CC2E682BFFBD4630D0FEC08B
C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\system32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\system32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legitB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\Windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 185ADA973B5020655CEE342059A86CBB
C:\Windows\system32\drivers\hcmon.sys D2A04F50B18B85FE236143399123EC0D
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\system32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hpdskflt.sys 4EF10B866C62ABBEAF7511CDD05A19BE
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\iaStorA.sys 70BADD827F0C6863AD7F4850DCC5E79B
C:\Windows\System32\DRIVERS\iaStorF.sys 48BD3DD357DB6BB61FB2E6EF3D137764
C:\Windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\igdpmd32.sys 24CCEC128BEBB148E50C6093523AD686
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kl1.sys 6022F174CEB149650DCB5BE445A0E72A
C:\Windows\System32\DRIVERS\klflt.sys 3EAA179537FF9A3C9071E868C07275FA
C:\Windows\System32\DRIVERS\klhk.sys C02EC9EEE4E3CFEF82478B9C345F94FE
C:\Windows\System32\DRIVERS\klif.sys 894A09BF826E79C1971ADE0121F2B607
C:\Windows\System32\DRIVERS\klim6.sys D1FC14342F8CAD20A0764305AD62483D
C:\Windows\System32\DRIVERS\klkbdflt.sys 9C7132A2E609E0BACF2A54AC13C9BDCB
C:\Windows\System32\DRIVERS\klmouflt.sys 035724BA6D5676B76FD3AFB66AB4F1E3
C:\Windows\System32\DRIVERS\klpd.sys EB0D72D2844C57F5F146D7A15B04FBF9
C:\Windows\System32\DRIVERS\kltdi.sys 3EA7D183499C7C5824AA13DA1A7CDA26
C:\Windows\System32\DRIVERS\kneps.sys E111A2947A4D26CC4A30D2BF2E7A8D69
C:\Windows\System32\Drivers\ksecdd.sys 4DAC97CF81FAE4B2988AEF0DF40D04AE
C:\Windows\System32\Drivers\ksecpkg.sys 9EED5E0B7BF784C491C2289A09920BDA
C:\Windows\System32\DRIVERS\lan9500-x86-n51f.sys 477C346B012B9257F1FFB9B2072599DF
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\System32\drivers\massfilter.sys 59A2783ABA6019BED0C843C706E10A6A
C:\Windows\system32\drivers\mbam.sys B4CD87E78A01562E3DA67FE1C2779204
C:\Windows\system32\drivers\mwac.sys 490F0F3ED8A970E2BAA38F719242B8F7
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HECI.sys 9E0A56C77E9244D2CAAC3811F4B47FCB
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\MijXfilt.sys 9960B18D55E7BD0F265C3C1953D19592
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys 644905A19D0F37F2233DFCE53BC4BC19
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 03F899F521D2AAED1C55008F734DF252
C:\Windows\System32\DRIVERS\mrxsmb.sys FFD09089BBBD94546821FD7F093F7427
C:\Windows\System32\DRIVERS\mrxsmb10.sys 348C882F66AE4E4C53025FDF1FFB1618
C:\Windows\System32\DRIVERS\mrxsmb20.sys 68E0C10F0917DB2DBA059D253116E7FA
C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys E7EB93F16956C1BE56CB9B865802F696
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 8C9C922D71F1CD4DEF73F186416B7896
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiskhaz.sys 79DD76BFF3E869D1EA3290C107E6CCEA
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\drivers\npf.sys B48DC6ABCD3AEFF8618350CCBDC6B09A
C:\Windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Ntfs.sys C8DFF8D07755A66C7A4A738930F0FEAC
C:\Windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nusb3hub.sys F0CBF252811BC5FC49E7ECCA3EE9519F
C:\Windows\System32\DRIVERS\nusb3xhc.sys BDC5FF9B669B5475E3A6E47E5608205C
C:\Windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\Windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\Windows\system32\DRIVERS\parvdm.sys ==> MD5 is legit
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys AEBC369F7DC72AB3F5B9BDF34FA0D43F
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\System32\pwdrvio.sys 3A6489DCB6F28970B6BBD9687777FA00
C:\Windows\system32\pwdspio.sys 9D00D015159B6ADF0980BAEEB5DCC5E4
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys B15D1178AD7AA2D4F32E88B68C7E2DA2
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rfcomm.sys CB928D9E6DAF51879DD6BA8D02F01321
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Rt86win7.sys B9D0028390A7BEEBD16CF956955D5C29
C:\Windows\System32\DRIVERS\rtl8192Ce.sys 07E5E53B50552EC3CFEBF0C26FD41510
C:\Windows\System32\DRIVERS\Rtenicxp.sys EB6CAF7C5FCCB50C3E62F878640E082E
C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ScpVBus.sys E3C36C487893DC33BCE4D4B856C7FF01
C:\Windows\system32\drivers\sdbus.sys 0328BE1C7F1CBA23848179F8762E391C
C:\Windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\System32\drivers\sgfxk32.sys 3E32B24091B8061867F66A985B521260
C:\Windows\System32\drivers\sgfxl32.sys 1603B89582D5751B770E67C40B41519B
C:\Windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\snp2uvc.sys 727FD13CFA6C477183841A7D788AE79E
C:\Windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\sptd.sys 68103A2B441BBF3908EBB587F0704D6C
C:\Windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\Windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\Windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legit
C:\Windows\system32\drivers\storvsc.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\Windows\System32\DRIVERS\tdx.sys 7FE680A3DFA421C4A8E4879AE4C5AAB0
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\Windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys E5049C43601473B5A909058596111229
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\system32\drivers\umbus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\system32\drivers\usbaudio.sys A1977C315BF5691DA99235AA4A6907AF
C:\Windows\System32\DRIVERS\lgusbbus.sys AF9388E736AF0C325067F05EDC350010
C:\Windows\System32\DRIVERS\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\Windows\system32\drivers\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\Windows\System32\DRIVERS\lgusbdiag.sys AE30EA96E60E823C7B525DA356283AE8
C:\Windows\system32\drivers\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\Windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\Windows\System32\DRIVERS\lgusbmodem.sys 46AC66DF3D6EFE81F69BEA823A53AAB5
C:\Windows\system32\drivers\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\Windows\system32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\system32\drivers\usbscan.sys FC6B21DB4B5B398AB93DBE59CBF11036
C:\Windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\Windows\system32\drivers\usbuhci.sys 800AABFD625EEFF899F7E5496BDE37AB
C:\Windows\System32\Drivers\usbvideo.sys DE014425522610BEDCA3821BB8C0F1D5
C:\Windows\System32\DRIVERS\usb8023x.sys AF77716205C97E902E6C5B78DECE2CCA
C:\Windows\System32\DRIVERS\VBoxDrv.sys CDA35F61D92C8AC48002194139656CED
C:\Windows\System32\DRIVERS\VBoxNetAdp.sys B3EADC8DE8311414C613A05C2C0E2862
C:\Windows\System32\DRIVERS\VBoxNetFlt.sys 912E06BF3445AAEF3A5256212784579C
C:\Windows\System32\DRIVERS\VBoxUSBMon.sys B3E145D10D95965D1BC0606C51F77377
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\viac7.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vmci.sys 15759158F7531853616B2B43AF962FCB
C:\Windows\System32\DRIVERS\vmnetadapter.sys 1AFA4AF55CBEA579A4BBE4F90967F720
C:\Windows\System32\DRIVERS\vmnetbridge.sys 392964A7BF46986FBD44B24A3BEC2088
C:\Windows\system32\drivers\vmnetuserif.sys EBF3595C309BB22189C38667841A30B8
C:\Windows\System32\Drivers\vmusb.sys AFB10AD9AA91D2F70C9F0E6BDA0D119B
C:\Windows\system32\Drivers\vmx86.sys 60AE466E6DB8C9F66D7040B299F7CAB2
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys F849EB84B1E5208AB4EB01E1712E4A90
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys 7090D3436EEB4E7DA3373090A23448F7
C:\Windows\System32\DRIVERS\vwifimp.sys A3F04CBEA6C2A10E6CB01F8B47611882
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wdcsam.sys D6EFAF429FD30C5DF613D220E344CCE7
C:\Windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUSB.sys A67E5F9A400F3BD1BE3D80613B45F708
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\Windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF
C:\Windows\System32\DRIVERS\xusb21.sys 276842A27953BE204A2507096F09B1F3
C:\Windows\System32\DRIVERS\CT_ZTEMT_U_USBSER.sys 89353EB72FA884AA98833C5D7EDE60E7
C:\Windows\System32\DRIVERS\ZTEusbmdm6k.sys F9D62935E48DED9A2421BE9FAA93D6E8
C:\Windows\System32\DRIVERS\ZTEusbnet.sys E9C90EDE4EE66E64222D2C23F45473F7
C:\Windows\System32\DRIVERS\ZTEusbnmea.sys F9D62935E48DED9A2421BE9FAA93D6E8
C:\Windows\System32\DRIVERS\ZTEusbser6k.sys F9D62935E48DED9A2421BE9FAA93D6E8
C:\Windows\System32\DRIVERS\ZTEusbvoice.sys F9D62935E48DED9A2421BE9FAA93D6E8
C:\Windows\system32\Drivers\a1ifs4wo.sys

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-09 13:43 - 2015-07-09 13:46 - 00058249 _____ D:\Utilisateurs\6582\Desktop\FRST.txt
2015-07-09 13:41 - 2015-07-09 13:43 - 00000000 ____D C:\FRST
2015-07-09 13:40 - 2015-07-09 13:20 - 01636352 _____ (Farbar) D:\Utilisateurs\6582\Desktop\FRST.exe
2015-07-09 13:20 - 2015-07-09 13:20 - 01636352 _____ (Farbar) D:\Utilisateurs\6582\Downloads\FRST.exe
2015-07-09 09:13 - 2015-07-09 09:13 - 00000056 _____ C:\Windows\setupact.log
2015-07-09 09:13 - 2015-07-09 09:13 - 00000000 _____ C:\Windows\setuperr.log
2015-07-09 09:12 - 2015-07-09 09:12 - 00000562 _____ C:\Windows\PFRO.log
2015-07-09 09:10 - 2015-07-09 09:14 - 00000167 _____ C:\Windows\genfwsrv.log
2015-07-09 08:58 - 2015-07-09 08:58 - 00003501 _____ D:\Utilisateurs\6582\Desktop\ZHPFixReport.txt
2015-07-09 08:36 - 2015-07-09 08:36 - 00000818 _____ D:\Utilisateurs\Public\Desktop\ZHPFix.lnk
2015-07-09 08:30 - 2015-07-09 08:30 - 03522334 _____ (Nicolas Coolman ) D:\Utilisateurs\6582\Downloads\ZHPFix.exe
2015-07-09 08:24 - 2015-07-09 08:24 - 00009734 _____ D:\Utilisateurs\6582\Documents\cc_20150709_082428.reg
2015-07-08 12:14 - 2015-07-08 12:14 - 00163959 _____ D:\Utilisateurs\6582\Desktop\ZHPDiag2.txt
2015-07-08 11:11 - 2015-07-08 11:11 - 00001439 _____ D:\Utilisateurs\6582\Desktop\Resultats_analyse_avec_MBAM.txt
2015-07-07 14:36 - 2015-07-07 14:36 - 00350095 _____ D:\Utilisateurs\6582\Downloads\recuperer-restaurer-compte-facebook-pirate.pdf
2015-07-05 22:31 - 2015-07-05 22:31 - 13454129 _____ D:\Utilisateurs\6582\Downloads\trackid-4-2-b-0-1-multi-android.apk
2015-07-05 22:20 - 2015-07-05 22:21 - 20313105 _____ D:\Utilisateurs\6582\Downloads\shazam-5-5-0-15052113-multi-android.apk
2015-07-05 18:12 - 2015-07-05 18:12 - 23927082 _____ D:\Utilisateurs\6582\Downloads\fast-and-furious-6-the-game-4-1-2-multi-android.apk
2015-07-04 13:05 - 2015-07-07 11:15 - 00000000 ____D D:\Utilisateurs\6582\Documents\R1 drl_dmo_doi
2015-07-04 12:53 - 2015-07-04 12:54 - 00000000 ____D D:\Utilisateurs\6582\Documents\ck
2015-07-03 12:22 - 2015-07-03 12:32 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-07-03 10:39 - 2015-07-03 10:39 - 00000000 ____D C:\Windows\system32\%Report%
2015-07-02 18:57 - 2015-07-02 18:57 - 02742304 _____ (Facebook Inc.) D:\Utilisateurs\6582\Downloads\ESET_T1155188251173621T_.exe
2015-07-02 15:07 - 2015-07-02 15:07 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming\Mobile Action
2015-07-02 15:04 - 2015-07-02 15:04 - 00000890 _____ D:\Utilisateurs\Public\Desktop\Alcatel onetouch Manager.lnk
2015-07-02 15:01 - 2015-07-02 15:01 - 80143440 _____ D:\Utilisateurs\6582\Downloads\alcatel-onetouchmanager-2-2-1303-466.exe
2015-07-02 14:19 - 2015-07-02 14:19 - 00000000 ____D C:\Program Files\ClockworkMod
2015-07-02 14:16 - 2015-07-02 14:16 - 00000847 _____ D:\Utilisateurs\Public\Desktop\One Click Root.lnk
2015-07-02 14:12 - 2015-07-02 14:12 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming\One Click Root
2015-07-02 14:06 - 2015-07-02 14:10 - 18869112 _____ (One Click Root) D:\Utilisateurs\6582\Downloads\OneClickRoot.exe
2015-07-02 13:14 - 2015-07-02 13:14 - 00033969 _____ D:\Utilisateurs\6582\Downloads\Fiche_d'expression_des_besoins_en_developpement_des_compétences.xlsx
2015-07-02 12:52 - 2015-07-02 12:52 - 00767029 _____ D:\Utilisateurs\6582\Downloads\Plan de Formation 2015 validé par DG_DSC.pdf
2015-07-02 12:23 - 2015-01-14 11:27 - 02894848 _____ C:\Windows\system32\pwNative.exe
2015-07-02 12:23 - 2013-09-30 16:26 - 00015688 ____N C:\Windows\system32\pwdrvio.sys
2015-07-02 12:20 - 2013-09-30 16:26 - 00010320 ____N C:\Windows\system32\pwdspio.sys
2015-07-02 12:12 - 2015-07-02 12:12 - 00000000 ____D D:\Utilisateurs\6582\Downloads\Universal android tools 2014 deblokgsm.com
2015-07-02 12:03 - 2015-07-02 12:12 - 59565144 _____ D:\Utilisateurs\6582\Downloads\Universal android tools 2014 deblokgsm.com.zip
2015-07-02 10:43 - 2015-07-02 10:43 - 02113065 _____ D:\Utilisateurs\6582\Downloads\Link2SD.apk
2015-07-02 10:41 - 2015-07-02 10:41 - 31973976 _____ (MiniTool Solution Ltd. ) D:\Utilisateurs\6582\Downloads\pwfree9.exe
2015-07-02 09:44 - 2015-07-02 09:44 - 00688325 _____ D:\Utilisateurs\6582\Downloads\applications-rambooster93-en-ad-funded-free-VSEQVy.apk
2015-07-01 15:04 - 2015-07-01 15:04 - 00262144 _____ C:\Windows\system32\config\elam
2015-07-01 12:44 - 2015-07-01 12:44 - 00211424 _____ D:\Utilisateurs\6582\Downloads\fr.zip
2015-07-01 12:31 - 2015-07-01 12:54 - 00000000 ____D D:\Utilisateurs\6582\Downloads\winscp574
2015-07-01 12:23 - 2015-07-01 12:23 - 04923568 _____ D:\Utilisateurs\6582\Downloads\winscp574.zip
2015-07-01 09:07 - 2015-07-01 09:10 - 00012872 _____ D:\Utilisateurs\6582\Downloads\Liste des attestations d'acréditation(1).xlsx
2015-06-30 19:56 - 2015-06-30 19:56 - 00002083 _____ D:\Utilisateurs\6582\Desktop\Protection bancaire.lnk
2015-06-30 19:51 - 2015-06-30 19:51 - 00001131 _____ D:\Utilisateurs\Public\Desktop\Kaspersky Internet Security.lnk
2015-06-30 19:50 - 2015-06-30 19:50 - 00000000 ____D C:\Windows\ELAMBKUP
2015-06-30 19:50 - 2015-06-30 19:50 - 00000000 ____D C:\Program Files\Kaspersky Lab
2015-06-30 19:49 - 2015-06-30 20:32 - 00644808 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-06-30 19:49 - 2015-06-30 20:32 - 00112136 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-06-30 19:49 - 2014-04-10 17:25 - 00034400 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys
2015-06-30 19:19 - 2015-06-30 19:19 - 00031384 _____ D:\Utilisateurs\6582\Desktop\Capture2.JPG
2015-06-30 19:15 - 2015-06-30 19:18 - 00040846 _____ D:\Utilisateurs\6582\Desktop\Capture1.JPG
2015-06-30 16:24 - 2015-06-30 16:24 - 00000000 ____D D:\Utilisateurs\6582\Downloads\anomalies drl_dmo_doi
2015-06-30 16:23 - 2015-06-30 16:23 - 00477592 _____ D:\Utilisateurs\6582\Downloads\anomalies drl_dmo_doi.zip
2015-06-30 15:26 - 2015-06-30 15:26 - 01283277 _____ D:\Utilisateurs\6582\Desktop\mbam.txt
2015-06-30 15:21 - 2015-06-30 15:21 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_lgandnetadb_01005.Wdf
2015-06-30 13:22 - 2015-07-07 15:31 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-30 13:21 - 2015-06-30 13:21 - 00000705 _____ D:\Utilisateurs\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-30 13:21 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-30 13:21 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-30 13:21 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-30 13:16 - 2015-06-30 13:16 - 00001747 _____ D:\Utilisateurs\6582\Desktop\AdwCleaner[S4].txt
2015-06-30 12:57 - 2015-06-30 12:57 - 02244096 _____ D:\Utilisateurs\6582\Downloads\adwcleaner_4.207.exe
2015-06-30 12:29 - 2015-06-30 19:36 - 00000326 _____ D:\Utilisateurs\6582\Desktop\mes liens.txt
2015-06-30 11:50 - 2015-07-08 12:10 - 00163959 _____ D:\Utilisateurs\6582\Desktop\ZHPDiag.txt
2015-06-30 11:39 - 2014-02-24 09:36 - 00000066 _____ D:\Utilisateurs\6582\Desktop\KEY MS PROJECT 2010.txt
2015-06-30 10:07 - 2015-07-09 08:58 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming\ZHP
2015-06-30 10:07 - 2015-07-08 11:41 - 00000792 _____ D:\Utilisateurs\6582\Desktop\ZHPDiag.lnk
2015-06-30 10:06 - 2015-06-30 10:06 - 01817088 _____ D:\Utilisateurs\6582\Downloads\ZHPDiag3.exe
2015-06-30 10:03 - 2015-06-30 10:03 - 01843712 _____ D:\Utilisateurs\6582\Downloads\ZHPCleaner.exe
2015-06-30 09:11 - 2015-06-30 09:13 - 24345872 _____ (Malwarebytes Corporation ) D:\Utilisateurs\6582\Downloads\mbam-setup-2.1.8.1057.exe
2015-06-30 09:03 - 2015-06-30 09:03 - 02742304 _____ (Facebook Inc.) D:\Utilisateurs\6582\Downloads\Fsecure_T1153561114669668T_.exe
2015-06-30 08:57 - 2015-06-30 08:57 - 00009828 _____ D:\Utilisateurs\6582\Documents\cc_20150630_085713.reg
2015-06-29 14:53 - 2015-06-29 14:53 - 02742304 _____ (Facebook Inc.) D:\Utilisateurs\6582\Downloads\Trendmicro_T1152938311398615T_(1).exe
2015-06-29 14:36 - 2015-06-29 14:36 - 02742304 _____ (Facebook Inc.) D:\Utilisateurs\6582\Downloads\Trendmicro_T1152938311398615T_.exe
2015-06-27 12:27 - 2015-06-27 16:27 - 734558208 _____ D:\Utilisateurs\6582\Downloads\Marmaduke.avi
2015-06-27 12:18 - 2015-06-27 12:18 - 00071604 _____ D:\Utilisateurs\6582\Downloads\NDCR.pdf
2015-06-27 12:16 - 2015-06-27 12:16 - 00401876 _____ D:\Utilisateurs\6582\Downloads\ALE(1).pdf
2015-06-27 12:09 - 2015-06-27 12:09 - 00112766 _____ D:\Utilisateurs\6582\Downloads\NDP.pdf
2015-06-27 12:07 - 2015-06-27 12:07 - 00401876 _____ D:\Utilisateurs\6582\Downloads\ALE.pdf
2015-06-25 18:42 - 2015-06-30 13:06 - 00415616 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-25 18:13 - 2015-06-25 18:13 - 02001540 _____ D:\Utilisateurs\6582\Downloads\pc-decrapifier-3.0.0.exe
2015-06-23 14:04 - 2015-06-23 14:04 - 00000000 ____D D:\Utilisateurs\6582\Documents\%LOCALAPPDATA%
2015-06-23 09:47 - 2015-06-23 09:47 - 07777480 _____ D:\Utilisateurs\6582\Downloads\catalogue_awf_2015.pdf
2015-06-23 09:42 - 2015-06-23 09:42 - 00099803 _____ D:\Utilisateurs\6582\Downloads\Dernier classement des agents.xlsx
2015-06-16 23:37 - 2015-07-09 11:37 - 00000320 _____ C:\Windows\Tasks\PHPWiz.job
2015-06-16 23:37 - 2015-06-16 23:37 - 00006656 _____ (UG North) C:\Windows\system32\Hibiki.dll
2015-06-11 08:18 - 2015-07-08 18:06 - 00009216 ___SH D:\Utilisateurs\suprima_backup\ntuser.dat.LOG1
2015-06-11 08:18 - 2015-06-11 08:19 - 00524288 ___SH D:\Utilisateurs\suprima_backup\ntuser.dat{3df6d9cd-d8af-11e2-8a42-20107af882c5}.TMContainer00000000000000000002.regtrans-ms
2015-06-11 08:18 - 2015-06-11 08:19 - 00524288 ___SH D:\Utilisateurs\suprima_backup\ntuser.dat{3df6d9cd-d8af-11e2-8a42-20107af882c5}.TMContainer00000000000000000001.regtrans-ms
2015-06-11 08:18 - 2015-06-11 08:19 - 00262144 ____H D:\Utilisateurs\suprima_backup\ntuser.dat
2015-06-11 08:18 - 2015-06-11 08:19 - 00065536 ___SH D:\Utilisateurs\suprima_backup\ntuser.dat{3df6d9cd-d8af-11e2-8a42-20107af882c5}.TM.blf
2015-06-11 08:18 - 2015-06-11 08:18 - 00000020 ___SH D:\Utilisateurs\suprima_backup\ntuser.ini
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 _SHDL D:\Utilisateurs\suprima_backup\Local Settings
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 _SHDL D:\Utilisateurs\suprima_backup\Cookies
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 _SHDL D:\Utilisateurs\suprima_backup\Application Data
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 ___SH D:\Utilisateurs\suprima_backup\ntuser.dat.LOG2
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 ____D D:\Utilisateurs\suprima_backup\AppData\Roaming\Microsoft
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 ____D D:\Utilisateurs\suprima_backup\AppData\LocalLow
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 ____D D:\Utilisateurs\suprima_backup\AppData\Local
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 ____D D:\Utilisateurs\suprima_backup\AppData
2015-06-11 08:18 - 2015-06-11 08:18 - 00000000 ____D D:\Utilisateurs\suprima_backup
2015-06-11 08:18 - 2014-10-06 09:30 - 00000000 ____D D:\Utilisateurs\suprima_backup\AppData\Roaming\Macromedia
2015-06-11 08:18 - 2014-10-06 09:30 - 00000000 ____D D:\Utilisateurs\suprima_backup\AppData\Roaming

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-09 13:43 - 2014-03-06 11:39 - 00000000 ___RD D:\Utilisateurs\6582\Desktop
2015-07-09 13:43 - 2013-07-10 10:54 - 05767168 ____H D:\Utilisateurs\6582\ntuser.dat
2015-07-09 13:43 - 2013-07-10 10:54 - 00262144 ___SH D:\Utilisateurs\6582\ntuser.dat.LOG1
2015-07-09 13:42 - 2012-11-21 19:10 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2135148231-2501205013-2786026759-1000UA.job
2015-07-09 13:35 - 2015-03-17 09:28 - 00001088 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-492716543-1482649579-1235820382-53878UA.job
2015-07-09 13:35 - 2014-11-02 14:27 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-09 13:33 - 2012-10-29 11:45 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-09 13:23 - 2014-06-16 16:16 - 00002000 ____H D:\Utilisateurs\6582\Documents\Default.rdp
2015-07-09 13:20 - 2014-04-18 16:33 - 00000000 ___RD D:\Utilisateurs\6582\Downloads
2015-07-09 12:47 - 2012-10-17 15:56 - 00000136 _____ C:\Windows\system32\config\netlogon.ftl
2015-07-09 10:43 - 2012-10-04 14:02 - 01360595 _____ C:\Windows\WindowsUpdate.log
2015-07-09 10:11 - 2012-10-23 06:39 - 00000035 _____ D:\Utilisateurs\Public\Documents\AtherosServiceConfig.ini
2015-07-09 09:29 - 2009-07-14 05:34 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-09 09:29 - 2009-07-14 05:34 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-09 09:21 - 2014-12-01 10:49 - 00008192 _____ C:\Windows\system32\WDPABKP.dat
2015-07-09 09:21 - 2014-04-18 16:31 - 00006284 __RSH D:\Utilisateurs\6582\ntuser.pol
2015-07-09 09:21 - 2013-07-10 10:54 - 00000000 ____D D:\Utilisateurs\6582
2015-07-09 09:14 - 2014-11-02 14:27 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-09 09:13 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-09 08:57 - 2013-07-30 10:26 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming
2015-07-09 08:56 - 2014-03-06 16:05 - 00000000 ____D C:\Program Files\Ultimate ZIP Cracker II Evaluation
2015-07-09 08:54 - 2014-04-18 16:32 - 00000000 ___RD D:\Utilisateurs\6582\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-07-09 08:54 - 2012-10-19 21:43 - 00000000 ____D D:\Utilisateurs\Public\Desktop
2015-07-09 08:29 - 2013-07-10 10:54 - 00000000 ____D D:\Utilisateurs\6582\AppData\Local
2015-07-09 08:24 - 2014-04-18 16:33 - 00000000 ___RD D:\Utilisateurs\6582\Documents
2015-07-09 04:37 - 2013-06-17 13:34 - 00005120 ___SH D:\Utilisateurs\Default\ntuser.dat.LOG1
2015-07-09 02:42 - 2012-11-21 19:10 - 00001022 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2135148231-2501205013-2786026759-1000Core.job
2015-07-08 18:35 - 2015-03-17 09:28 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-492716543-1482649579-1235820382-53878Core.job
2015-07-08 18:07 - 2015-04-24 12:06 - 00000000 ____D D:\Utilisateurs\6342
2015-07-08 18:06 - 2015-06-08 16:21 - 00017408 ___SH D:\Utilisateurs\6642\ntuser.dat.LOG1
2015-07-08 18:06 - 2015-06-08 15:50 - 00017408 ___SH D:\Utilisateurs\4087\ntuser.dat.LOG1
2015-07-08 18:06 - 2015-06-08 15:48 - 00017408 ___SH D:\Utilisateurs\6004\ntuser.dat.LOG1
2015-07-08 18:06 - 2015-04-27 07:52 - 00262144 ___SH D:\Utilisateurs\6342\ntuser.dat.LOG1
2015-07-08 18:06 - 2014-06-02 12:12 - 00082944 ___SH D:\Utilisateurs\6495a\ntuser.dat.LOG1
2015-07-08 18:05 - 2015-04-27 07:52 - 00262144 ___SH D:\Utilisateurs\6342\ntuser.dat.LOG2
2015-07-08 18:05 - 2015-04-24 12:14 - 00786432 ___SH D:\Utilisateurs\6342\NTUSER.DAT
2015-07-08 11:37 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
2015-07-08 11:19 - 2013-01-21 12:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-08 11:11 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Web
2015-07-07 18:39 - 2014-11-02 14:28 - 00002032 _____ D:\Utilisateurs\Public\Desktop\Google Chrome.lnk
2015-07-07 11:12 - 2014-04-18 16:33 - 00000000 ____D D:\Utilisateurs\6582\Documents\Bluetooth Folder
2015-07-06 18:32 - 2014-12-08 14:32 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming\Skype
2015-07-04 15:56 - 2012-10-04 14:10 - 01967180 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-02 15:07 - 2014-04-18 16:33 - 00000000 ___RD D:\Utilisateurs\6582\Videos
2015-07-02 15:07 - 2014-04-18 16:33 - 00000000 ___RD D:\Utilisateurs\6582\Pictures
2015-07-01 12:19 - 2014-09-08 14:45 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming\FileZilla
2015-07-01 08:51 - 2015-06-08 16:21 - 00262144 ____H D:\Utilisateurs\6642\ntuser.dat
2015-07-01 08:51 - 2015-06-08 15:50 - 00262144 ____H D:\Utilisateurs\4087\ntuser.dat
2015-07-01 08:51 - 2015-06-08 15:47 - 00262144 ____H D:\Utilisateurs\6004\ntuser.dat
2015-07-01 08:51 - 2014-06-02 12:12 - 00262144 ____H D:\Utilisateurs\6495a\ntuser.dat
2015-07-01 00:14 - 2015-04-02 12:20 - 00000000 ____D C:\FyK
2015-06-30 19:40 - 2013-06-24 18:03 - 00000000 ____D C:\Windows\Sun
2015-06-30 18:37 - 2014-11-17 12:58 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming\Mozilla
2015-06-30 16:19 - 2012-10-06 10:03 - 00001912 _____ C:\Windows\epplauncher.mif
2015-06-30 16:16 - 2013-07-30 10:26 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming\Microsoft
2015-06-30 12:07 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-06-30 11:42 - 2014-04-18 16:34 - 00111640 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2015-06-30 11:37 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-06-30 11:36 - 2012-10-20 08:05 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2015-06-30 11:36 - 2012-10-04 15:03 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-30 11:36 - 2009-07-14 08:50 - 00000000 ____D C:\Windows\ShellNew
2015-06-29 13:39 - 2015-05-04 15:38 - 00000000 ____D C:\Program Files\meta4
2015-06-28 04:06 - 2014-04-18 16:33 - 00000000 ___RD D:\Utilisateurs\6582\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp
2015-06-27 20:04 - 2015-01-05 08:04 - 00000000 ____D D:\Utilisateurs\6582\AppData\Roaming\vlc
2015-06-25 18:40 - 2013-01-21 12:14 - 00000876 _____ D:\Utilisateurs\Public\Desktop\Mozilla Firefox.lnk
2015-06-25 18:40 - 2012-10-22 21:25 - 00000000 ___RD D:\Utilisateurs\Public\Documents
2015-06-22 09:12 - 2012-11-23 19:52 - 00000000 ____D C:\Program Files\Freemake
2015-06-11 10:14 - 2015-06-08 15:50 - 00006250 __RSH D:\Utilisateurs\4087\ntuser.pol
2015-06-11 10:14 - 2015-06-08 15:50 - 00000000 ____D D:\Utilisateurs\4087

==================== Files in the root of some directories =======

2013-09-07 09:44 - 2013-11-03 10:53 - 0003736 _____ () C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2015-04-15 09:26 - 2015-04-15 09:26 - 0004608 _____ () D:\Utilisateurs\6582\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-01 12:54 - 2015-07-09 13:22 - 0000600 _____ () D:\Utilisateurs\6582\AppData\Local\winscp.rnd
2013-05-07 15:07 - 2013-05-07 15:07 - 0004168 _____ () C:\ProgramData\default.png
2013-10-26 15:01 - 2013-10-26 15:01 - 0000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-07-03 12:45 - 2015-07-03 12:43 - 5405024 _____ (PC Cleaners) C:\ProgramData\pclunst.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=C:
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {fdfc3268-0e76-11e2-acc3-d56e39209015}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale fr-FR
inherit {bootloadersettings}
recoverysequence {fdfc326a-0e76-11e2-acc3-d56e39209015}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {fdfc3268-0e76-11e2-acc3-d56e39209015}
nx AlwaysOff

Chargeur de d‚marrage Windows
-----------------------------
identificateur {fdfc326a-0e76-11e2-acc3-d56e39209015}
device ramdisk=[C:]\Recovery\fdfc326a-0e76-11e2-acc3-d56e39209015\Winre.wim,{fdfc326b-0e76-11e2-acc3-d56e39209015}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\fdfc326a-0e76-11e2-acc3-d56e39209015\Winre.wim,{fdfc326b-0e76-11e2-acc3-d56e39209015}
systemroot \windows
nx OptIn
winpe Yes

Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {fdfc3268-0e76-11e2-acc3-d56e39209015}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
pae No
debugoptionenabled No

Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes

ParamŠtres EMS
--------------
identificateur {emssettings}
bootems Yes

ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}

ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}

Options de p‚riph‚rique
-----------------------
identificateur {fdfc326b-0e76-11e2-acc3-d56e39209015}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\fdfc326a-0e76-11e2-acc3-d56e39209015\boot.sdi



LastRegBack: 2015-07-03 11:44

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité