cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 2015-10-05 06:28:46 - Run
OTLPE by OldTimer - Version 3.1.29.0 Folder = Y:\Programs\OTLPE
Windows 7 Home Basic (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 76,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 60,00 Gb Total Space | 50,89 Gb Free Space | 84,81% Space Free | Partition Type: NTFS
Drive D: | 3,77 Gb Total Space | 0,25 Gb Free Space | 6,65% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 256,63 Mb Total Space | 254,20 Mb Free Space | 99,05% Space Free | Partition Type: NTFS
Drive Y: | 548,00 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: MININT-PEPP10
Current User Name: Système
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
Using ControlSet: ControlSet001

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2015-08-19 10:51:58 | 006,324,208 | ---- | M] (Reimage®) [Auto] -- C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe -- (ReimageRealTimeProtector)
SRV - [2015-08-11 19:54:28 | 000,064,192 | ---- | M] (VMware, Inc.) [Auto] -- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe -- (VMTools)
SRV - [2015-08-11 19:50:46 | 000,414,912 | ---- | M] (VMware, Inc.) [Auto] -- C:\Program Files\VMware\VMware Tools\vmacthlp.exe -- (VMware Physical Disk Helper Service)
SRV - [2015-08-11 19:17:20 | 001,875,128 | ---- | M] (Cortado AG) [On_Demand] -- C:\Program Files\VMware\VMware Tools\TPVCGateway.exe -- (TPVCGateway)
SRV - [2015-08-11 19:17:18 | 002,179,800 | ---- | M] (Cortado AG) [On_Demand] -- C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe -- (TPAutoConnSvc)
SRV - [2015-08-11 19:16:56 | 000,135,168 | ---- | M] (VMware, Inc.) [Auto] -- C:\Program Files\VMware\VMware Tools\VMware VGAuth\VGAuthService.exe -- (VGAuthService)
SRV - [2015-04-30 01:04:12 | 000,284,504 | ---- | M] (Microsoft Corporation) [On_Demand] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2015-04-30 01:04:12 | 000,022,216 | ---- | M] (Microsoft Corporation) [Auto] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2010-11-20 14:21:36 | 000,351,232 | ---- | M] (Microsoft Corporation) [On_Demand] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2009-07-14 03:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009-07-14 03:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009-07-14 03:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009-07-14 03:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009-07-14 03:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009-07-14 03:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009-07-14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009-07-14 03:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009-07-14 03:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2009-07-14 03:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009-07-14 03:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009-07-14 03:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009-07-14 03:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009-07-14 03:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009-07-14 03:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV)
SRV - [2009-07-14 03:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009-07-14 03:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2015-08-11 20:00:36 | 000,011,800 | ---- | M] (VMware, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\vmmouse.sys -- (vmmouse)
DRV - [2015-08-11 19:57:38 | 000,177,872 | ---- | M] (VMware, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\vm3dmp.sys -- (vm3dmp)
DRV - [2015-08-11 19:52:36 | 000,023,248 | ---- | M] (VMware, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\vmusbmouse.sys -- (vmusbmouse)
DRV - [2015-08-11 19:52:06 | 000,020,160 | ---- | M] (VMware, Inc.) [Kernel | Auto] -- C:\Program Files\Common Files\VMware\Drivers\memctl\vmmemctl.sys -- (VMMEMCTL)
DRV - [2015-08-11 19:51:48 | 000,124,608 | ---- | M] (VMware, Inc.) [File_System | System] -- C:\Windows\System32\drivers\vmhgfs.sys -- (vmhgfs)
DRV - [2015-08-11 19:50:48 | 000,041,152 | ---- | M] (VMware, Inc.) [Kernel | System] -- C:\Program Files\VMware\VMware Tools\vmrawdsk.sys -- (vmrawdsk)
DRV - [2015-08-11 17:14:38 | 000,072,440 | ---- | M] (VMware, Inc.) [Kernel | Boot] -- C:\Windows\System32\drivers\vmci.sys -- (vmci)
DRV - [2015-08-11 17:14:38 | 000,064,704 | ---- | M] (VMware, Inc.) [Kernel | Boot] -- C:\Windows\System32\drivers\vsock.sys -- (vsock)
DRV - [2015-03-04 19:34:52 | 000,245,096 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2015-03-04 19:34:52 | 000,095,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2009-07-14 03:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009-07-14 03:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009-07-14 03:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009-07-14 03:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009-07-14 03:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009-07-14 03:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009-07-14 03:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009-07-14 03:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009-07-14 03:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot] -- C:\Windows\System32\drivers\amdxata.sys -- (amdxata)
DRV - [2009-07-14 03:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009-07-14 03:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009-07-14 03:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009-07-14 03:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009-07-14 03:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2009-07-14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009-07-14 03:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009-07-14 03:20:36 | 000,133,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009-07-14 03:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009-07-14 03:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009-07-14 03:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009-07-14 03:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009-07-14 03:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009-07-14 03:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009-07-14 03:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009-07-14 03:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009-07-14 03:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009-07-14 03:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009-07-14 03:20:28 | 000,019,536 | ---- | M] (Microsoft Corporation) [Recognizer | Boot] -- C:\Windows\System32\drivers\fs_rec.sys -- (Fs_Rec)
DRV - [2009-07-14 03:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009-07-14 03:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009-07-14 03:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-07-14 03:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009-07-14 03:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009-07-14 03:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009-07-14 03:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009-07-14 03:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009-07-14 03:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009-07-14 03:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009-07-14 03:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009-07-14 03:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\cng.sys -- (CNG)
DRV - [2009-07-14 02:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009-07-14 02:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\rdpbus.sys -- (rdpbus)
DRV - [2009-07-14 02:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009-07-14 01:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009-07-14 01:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009-07-14 01:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009-07-14 01:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009-07-14 01:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009-07-14 01:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009-07-14 01:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009-07-14 01:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009-07-14 01:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009-07-14 01:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009-07-14 01:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009-07-14 01:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009-07-14 01:19:24 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\pnpmem.sys -- (PNPMEM)
DRV - [2009-07-14 01:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009-07-14 01:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009-07-14 01:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009-07-14 00:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009-07-14 00:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009-07-14 00:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009-07-14 00:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009-07-14 00:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009-07-14 00:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009-07-14 00:02:50 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Pilote de la carte Intel(R)
DRV - [2009-07-14 00:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009-07-14 00:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009-07-14 00:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009-07-13 23:41:34 | 000,002,864 | ---- | M] (Microsoft Corporation) [Adapter | On_Demand] -- C:\Windows\System32\WINSOCK.DLL -- (Winsock)
DRV - [2009-07-13 22:50:20 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]


IE - HKU\christophe_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://y.lo.st
IE - HKU\christophe_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/fr-fr/?ocid=iehp
IE - HKU\christophe_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKU\christophe_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 80 0E 65 23 DB FE D0 01 [binary data]
IE - HKU\christophe_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


O1 HOSTS File: ([2009-06-10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (PCTBHO Class) - {293A63F7-C3B6-423a-9845-901AC0A7EE6E} - C:\Program Files\PCTuto\pctutoBHO.dll (PCTUTO)
O2 - BHO: (EOBHO Class) - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} - C:\Program Files\EoRezo\EoRezoBHO.dll (EoRezo)
O4 - HKLM..\Run: [EoCalendar] File not found
O4 - HKLM..\Run: [EoEngine] C:\Program Files\EoRezo\EoEngine.exe ()
O4 - HKLM..\Run: [EoRezo] C:\Program Files\EoRezo\eorezo.exe (EoRezo)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PCTuto] C:\Program Files\PCTuto\pctuto.exe (PCTUTO)
O4 - HKLM..\Run: [VMware User Process] C:\Program Files\VMware\VMware Tools\vmtoolsd.exe (VMware, Inc.)
O4 - HKU\christophe_ON_C..\Run: [6zvcaxR5ls4KB9Y] C:\Users\christophe\AppData\Roaming\hrt54is56ijfgte.exe (shithead mujaheddin)
O4 - HKU\christophe_ON_C..\Run: [d6i5t56i6ti] C:\Users\christophe\AppData\Roaming\ide56\dt6iu6i.exe (shithead mujaheddin)
O4 - HKU\christophe_ON_C..\Run: [eanosfbb.exe] C:\Users\christophe\AppData\Roaming\Identities\eanosfbb.exe (Music)
O4 - HKU\christophe_ON_C..\Run: [Realtek Audio Manager] C:\ProgramData\Realtek0\bzsbkotiu.exe (Adobe Systems Incorporated)
O4 - HKLM..\RunOnce: [autoupdater] C:\Users\christophe\AppData\Roaming\PCTuto\PCTuto\autoupdater.exe (PCTuto)
O4 - HKLM..\RunOnce: [SoftwareHelper] C:\Users\christophe\AppData\Roaming\EoRezo\EoRezo\SoftwareUpdateHP.exe (EoRezo)
O4 - HKU\LocalService_ON_C..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_C..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSimpleStartMenu = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecycleFiles = 0
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\vsocklib.dll (VMware, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\vsocklib.dll (VMware, Inc.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.52.2
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKU\christophe_ON_C Winlogon: Shell - (C:\Users\christophe\AppData\Roaming\hrt54is56ijfgte.exe) - C:\Users\christophe\AppData\Roaming\hrt54is56ijfgte.exe (shithead mujaheddin)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2014-05-08 19:42:06 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias [2009-07-14 04:37:08 | 000,000,000 | ---D | M]
NetSvcs: Irmon - C:\Windows\System32\irmon.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: Themes - C:\Windows\System32\themeservice.dll (Microsoft Corporation)
NetSvcs: BDESVC - C:\Windows\System32\bdesvc.dll (Microsoft Corporation)


SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: MsMpSvc - c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Power - C:\Windows\System32\umpo.dll (Microsoft Corporation)
SafeBootMin: Primary disk - Driver Group
SafeBootMin: RpcEptMapper - C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootMin: WudfRd - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: Dhcp - C:\Windows\System32\dhcpcore.dll (Microsoft Corporation)
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: MsMpSvc - c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: ndiscap - C:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation)
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Power - C:\Windows\System32\umpo.dll (Microsoft Corporation)
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: RpcEptMapper - C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootNet: WudfRd - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\System32\Microsoft
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\Windows\System32\Microsoft
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.msvc - msvidc32.dll (Microsoft Corporation)
Drivers32: wavemapper - msacm32.drv (Microsoft Corporation)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015-10-05 18:21:49 | 000,095,744 | ---- | C] (Kassl GmbH) -- C:\Users\christophe\AppData\Roaming\dwlGina3.dll
[2015-10-05 18:20:02 | 000,000,000 | --SD | C] -- C:\Windows\System32\CompatTel
[2015-10-05 18:20:02 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2015-10-05 18:20:02 | 000,000,000 | ---D | C] -- C:\Windows\System32\appraiser
[2015-10-05 18:19:23 | 000,409,600 | ---- | C] (shithead mujaheddin) -- C:\Users\christophe\AppData\Roaming\hrt54is56ijfgte.exe
[2015-10-05 18:19:15 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Roaming\ide56
[2015-10-05 18:17:09 | 000,000,000 | -H-D | C] -- C:\Users\christophe\Desktop\ufr_reports
[2015-10-05 18:13:26 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Roaming\Macromedia
[2015-10-05 18:13:26 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Roaming\Adobe
[2015-10-05 18:12:53 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Roaming\PCTuto
[2015-10-05 18:12:53 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Local\PCTuto
[2015-10-05 18:12:53 | 000,000,000 | ---D | C] -- C:\Program Files\PCTuto
[2015-10-05 18:08:52 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Local\EoRezo
[2015-10-05 18:08:50 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Roaming\EoRezo
[2015-10-05 18:08:49 | 000,000,000 | ---D | C] -- C:\Program Files\EoRezo
[2015-10-05 18:07:47 | 000,000,000 | ---D | C] -- C:\Program Files\Reimage
[2015-10-05 18:07:38 | 000,000,000 | ---D | C] -- C:\rei
[2015-10-05 17:56:47 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2015-10-05 12:11:27 | 002,377,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2015-10-05 12:11:26 | 001,167,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2015-10-05 12:11:26 | 000,952,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2015-10-05 12:11:26 | 000,934,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2015-10-05 12:11:26 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2015-10-05 12:11:26 | 000,598,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2015-10-05 12:11:26 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2015-10-05 12:11:26 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2015-10-05 12:11:26 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\acmigration.dll
[2015-10-05 12:11:26 | 000,015,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CompatTelRunner.exe
[2015-10-05 12:11:25 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2015-10-05 12:11:10 | 003,963,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2015-10-05 12:11:10 | 003,908,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2015-10-05 12:11:10 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2015-10-05 12:08:39 | 000,246,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2015-10-04 22:19:39 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2015-10-04 22:19:27 | 000,000,000 | -HSD | C] -- C:\Boot
[2015-10-04 21:32:46 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2015-10-04 21:32:45 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2015-10-04 21:32:39 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2015-10-04 21:32:39 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2015-10-04 21:32:39 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2015-10-04 21:32:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2015-10-04 21:32:37 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2015-10-04 21:32:37 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2015-10-04 21:32:25 | 000,240,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2015-10-04 21:28:01 | 000,124,608 | ---- | C] (VMware, Inc.) -- C:\Windows\System32\drivers\vmhgfs.sys
[2015-10-04 21:28:01 | 000,063,680 | ---- | C] (VMware, Inc.) -- C:\Windows\System32\vmhgfs.dll
[2015-10-04 21:27:54 | 000,064,704 | ---- | C] (VMware, Inc.) -- C:\Windows\System32\drivers\vsock.sys
[2015-10-04 21:27:54 | 000,064,192 | ---- | C] (VMware, Inc.) -- C:\Windows\System32\vsocklib.dll
[2015-10-04 21:27:42 | 000,017,408 | ---- | C] (VMware, Inc.) -- C:\Windows\System32\VMWSU_V1_0.DLL
[2015-10-04 21:27:41 | 000,000,000 | ---D | C] -- C:\Program Files\VMware
[2015-10-04 21:27:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\VMware
[2015-10-04 21:26:46 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Roaming\Identities
[2015-10-04 21:26:45 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2015-10-04 21:26:12 | 000,000,000 | --SD | C] -- C:\Users\christophe\AppData\Roaming\Microsoft
[2015-10-04 21:26:12 | 000,000,000 | -HSD | C] -- C:\Users\christophe\AppData\Local\Temporary Internet Files
[2015-10-04 21:26:12 | 000,000,000 | -HSD | C] -- C:\Users\christophe\Documents\Mes vidéos
[2015-10-04 21:26:12 | 000,000,000 | -HSD | C] -- C:\Users\christophe\Documents\Mes images
[2015-10-04 21:26:12 | 000,000,000 | -HSD | C] -- C:\Users\christophe\Documents\Ma musique
[2015-10-04 21:26:12 | 000,000,000 | -HSD | C] -- C:\Users\christophe\AppData\Local\Historique
[2015-10-04 21:26:12 | 000,000,000 | -HSD | C] -- C:\Users\christophe\AppData\Local\Application Data
[2015-10-04 21:26:12 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Local\VirtualStore
[2015-10-04 21:26:12 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Local\Temp
[2015-10-04 21:26:12 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Roaming
[2015-10-04 21:26:12 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Local\Microsoft
[2015-10-04 21:26:12 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\LocalLow
[2015-10-04 21:26:12 | 000,000,000 | ---D | C] -- C:\Users\christophe\AppData\Local
[2015-10-04 21:25:57 | 000,000,000 | -HSD | C] -- C:\Recovery
[2015-10-04 21:25:57 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs
[2015-10-04 21:23:18 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2015-10-04 21:20:19 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2015-10-04 21:20:13 | 000,000,000 | -HSD | C] -- C:\System Volume Information

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015-10-05 18:22:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015-10-05 18:21:49 | 000,095,744 | ---- | M] (Kassl GmbH) -- C:\Users\christophe\AppData\Roaming\dwlGina3.dll
[2015-10-05 18:21:22 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2015-10-05 18:21:12 | 000,266,464 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015-10-05 18:20:10 | 000,009,776 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015-10-05 18:20:10 | 000,009,776 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015-10-05 18:19:59 | 001,154,535 | -H-- | M] () -- C:\Users\christophe\AppData\Local\IconCache.db
[2015-10-05 18:19:15 | 000,409,600 | ---- | M] (shithead mujaheddin) -- C:\Users\christophe\AppData\Roaming\hrt54is56ijfgte.exe
[2015-10-05 18:08:10 | 000,000,120 | ---- | M] () -- C:\Windows\Reimage.ini
[2015-10-05 18:01:40 | 001,524,562 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2015-10-05 18:01:40 | 000,694,766 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2015-10-05 18:01:40 | 000,606,992 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015-10-05 18:01:40 | 000,127,478 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2015-10-05 18:01:40 | 000,103,370 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015-10-05 06:26:00 | 000,001,663 | ---- | M] () -- X:\Users\Default\Desktop\PENetwork.lnk
[2015-10-05 06:26:00 | 000,001,560 | ---- | M] () -- X:\Users\Default\Desktop\Command Prompt.lnk
[2015-10-05 06:26:00 | 000,001,444 | ---- | M] () -- X:\Users\Default\Desktop\Explorer.lnk
[2015-10-05 06:26:00 | 000,000,637 | ---- | M] () -- X:\Users\Default\Desktop\HD Tune v2.55.lnk
[2015-10-05 06:25:59 | 000,000,891 | ---- | M] () -- X:\Users\Default\Desktop\OTLPE.lnk
[2015-10-05 06:25:59 | 000,000,697 | ---- | M] () -- X:\Users\Default\Desktop\RogueKiller.lnk
[2015-10-05 06:25:59 | 000,000,625 | ---- | M] () -- X:\Users\Default\Desktop\Opera12.lnk
[2015-10-05 06:25:59 | 000,000,591 | ---- | M] () -- X:\Users\Default\Desktop\FRST.lnk
[2015-10-04 22:19:28 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2015-10-04 21:33:03 | 000,057,560 | ---- | M] () -- C:\Users\christophe\AppData\Local\GDIPFONTCACHEV1.DAT
[2015-10-04 21:33:03 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif
[2015-10-04 21:24:22 | 000,062,236 | ---- | M] () -- C:\Windows\System32\license.rtf

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015-10-05 18:07:05 | 000,000,120 | ---- | C] () -- C:\Windows\Reimage.ini
[2015-10-05 06:26:00 | 000,001,663 | ---- | C] () -- X:\Users\Default\Desktop\PENetwork.lnk
[2015-10-05 06:26:00 | 000,001,560 | ---- | C] () -- X:\Users\Default\Desktop\Command Prompt.lnk
[2015-10-05 06:26:00 | 000,001,444 | ---- | C] () -- X:\Users\Default\Desktop\Explorer.lnk
[2015-10-05 06:26:00 | 000,000,637 | ---- | C] () -- X:\Users\Default\Desktop\HD Tune v2.55.lnk
[2015-10-05 06:25:59 | 000,000,891 | ---- | C] () -- X:\Users\Default\Desktop\OTLPE.lnk
[2015-10-05 06:25:59 | 000,000,697 | ---- | C] () -- X:\Users\Default\Desktop\RogueKiller.lnk
[2015-10-05 06:25:59 | 000,000,625 | ---- | C] () -- X:\Users\Default\Desktop\Opera12.lnk
[2015-10-05 06:25:59 | 000,000,591 | ---- | C] () -- X:\Users\Default\Desktop\FRST.lnk
[2015-10-04 22:19:28 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2015-10-04 22:19:27 | 000,383,562 | RHS- | C] () -- C:\bootmgr
[2015-10-04 21:33:03 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif
[2009-07-14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll

[color=#E56717]========== LOP Check ==========[/color]

[2015-10-05 18:11:52 | 000,000,000 | ---D | M] -- C:\Users\christophe\AppData\Roaming\EoRezo
[2015-10-05 18:19:23 | 000,000,000 | ---D | M] -- C:\Users\christophe\AppData\Roaming\ide56
[2015-10-05 18:12:53 | 000,000,000 | ---D | M] -- C:\Users\christophe\AppData\Roaming\PCTuto
[2009-07-14 06:53:46 | 000,002,144 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.

Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe

Invalid Environment Variable: %APPDATA%\*.

Invalid Environment Variable: %APPDATA%\*.exe

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[2008-01-16 12:48:06 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\System32config\*.sav >[/color]


[color=#A23BEC]< MD5 for: ACPI.SYS >[/color]
[2009-07-14 03:26:15 | 000,274,496 | ---- | M] (Microsoft Corporation) MD5=F0E07D144C8685B8774BC32FC8DA4DF0 -- C:\Windows\System32\drivers\acpi.sys
[2009-07-14 03:26:15 | 000,274,496 | ---- | M] (Microsoft Corporation) MD5=F0E07D144C8685B8774BC32FC8DA4DF0 -- C:\Windows\System32\DriverStore\FileRepository\acpi.inf_x86_neutral_ddd3c514822f1b21\acpi.sys
[2009-07-14 03:26:15 | 000,274,496 | ---- | M] (Microsoft Corporation) MD5=F0E07D144C8685B8774BC32FC8DA4DF0 -- C:\Windows\winsxs\x86_acpi.inf_31bf3856ad364e35_6.1.7600.16385_none_225f1a272f5b64b9\acpi.sys

[color=#A23BEC]< MD5 for: AFD.SYS >[/color]
[2009-07-14 01:12:38 | 000,338,944 | ---- | M] (Microsoft Corporation) MD5=DDC040FDB01EF1712A6B13E52AFB104C -- C:\Windows\System32\drivers\afd.sys
[2009-07-14 01:12:38 | 000,338,944 | ---- | M] (Microsoft Corporation) MD5=DDC040FDB01EF1712A6B13E52AFB104C -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16385_none_d7be98b5bfc0b4c1\afd.sys

[color=#A23BEC]< MD5 for: AMDPPM.SYS >[/color]
[2009-07-14 01:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) MD5=3CBF30F5370FDA40DD3E87DF38EA53B6 -- C:\Windows\System32\drivers\amdppm.sys
[2009-07-14 01:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) MD5=3CBF30F5370FDA40DD3E87DF38EA53B6 -- C:\Windows\System32\DriverStore\FileRepository\cpu.inf_x86_neutral_729b871528391032\amdppm.sys
[2009-07-14 01:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) MD5=3CBF30F5370FDA40DD3E87DF38EA53B6 -- C:\Windows\winsxs\x86_cpu.inf_31bf3856ad364e35_6.1.7600.16385_none_5d20b0c250b4b524\amdppm.sys

[color=#A23BEC]< MD5 for: ASYNCMAC.SYS >[/color]
[2009-07-14 01:54:46 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=ADD2ADE1C2B285AB8378D2DAAF991481 -- C:\Windows\System32\drivers\asyncmac.sys
[2009-07-14 01:54:46 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=ADD2ADE1C2B285AB8378D2DAAF991481 -- C:\Windows\winsxs\x86_microsoft-windows-rasbase-asyncmac_31bf3856ad364e35_6.1.7600.16385_none_242e2506962cd3e0\asyncmac.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009-07-14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009-07-14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009-07-14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2009-07-14 01:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\System32\drivers\beep.sys
[2009-07-14 01:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys

[color=#A23BEC]< MD5 for: BRIDGE.SYS >[/color]
[2009-07-14 02:41:26 | 000,078,336 | ---- | M] (Microsoft Corporation) MD5=77361D72A04F18809D0EFB6CCEB74D4B -- C:\Windows\System32\drivers\bridge.sys
[2009-07-14 02:41:26 | 000,078,336 | ---- | M] (Microsoft Corporation) MD5=77361D72A04F18809D0EFB6CCEB74D4B -- C:\Windows\winsxs\x86_microsoft-windows-networkbridge_31bf3856ad364e35_6.1.7600.16385_none_07c046fe67692e98\bridge.sys

[color=#A23BEC]< MD5 for: BTHPORT.SYS >[/color]
[2009-07-14 01:51:31 | 000,392,704 | ---- | M] (Microsoft Corporation) MD5=4A34888E13224678DD062466AFEC4240 -- C:\Windows\System32\DriverStore\FileRepository\bth.inf_x86_neutral_e9873718d5894498\bthport.sys
[2009-07-14 01:51:31 | 000,392,704 | ---- | M] (Microsoft Corporation) MD5=4A34888E13224678DD062466AFEC4240 -- C:\Windows\winsxs\x86_bth.inf_31bf3856ad364e35_6.1.7600.16385_none_721b1a5f1ce4cd06\bthport.sys

[color=#A23BEC]< MD5 for: CDFS.SYS >[/color]
[2009-07-14 01:11:15 | 000,070,656 | ---- | M] (Microsoft Corporation) MD5=77EA11B065E0A8AB902D78145CA51E10 -- C:\Windows\System32\drivers\cdfs.sys
[2009-07-14 01:11:15 | 000,070,656 | ---- | M] (Microsoft Corporation) MD5=77EA11B065E0A8AB902D78145CA51E10 -- C:\Windows\winsxs\x86_microsoft-windows-cdfs_31bf3856ad364e35_6.1.7600.16385_none_a63de9327e477e37\cdfs.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2009-07-14 01:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\drivers\cdrom.sys
[2009-07-14 01:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009-07-14 01:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys

[color=#A23BEC]< MD5 for: CLASSPNP.SYS >[/color]
[2009-07-14 03:26:15 | 000,140,864 | ---- | M] (Microsoft Corporation) MD5=A6388A5ABF92C7927C085DB0A958125F -- C:\Windows\System32\drivers\Classpnp.sys
[2009-07-14 03:26:15 | 000,140,864 | ---- | M] (Microsoft Corporation) MD5=A6388A5ABF92C7927C085DB0A958125F -- C:\Windows\winsxs\x86_microsoft-windows-classpnp_31bf3856ad364e35_6.1.7600.16385_none_155984bf0d656ab3\Classpnp.sys

[color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
[2009-07-14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009-07-14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll

[color=#A23BEC]< MD5 for: DFSC.SYS >[/color]
[2009-07-14 01:14:17 | 000,078,336 | ---- | M] (Microsoft Corporation) MD5=8E09E52EE2E3CEB199EF3DD99CF9E3FB -- C:\Windows\System32\drivers\dfsc.sys
[2009-07-14 01:14:17 | 000,078,336 | ---- | M] (Microsoft Corporation) MD5=8E09E52EE2E3CEB199EF3DD99CF9E3FB -- C:\Windows\winsxs\x86_microsoft-windows-dfsclient_31bf3856ad364e35_6.1.7600.16385_none_87708401476f7a4f\dfsc.sys

[color=#A23BEC]< MD5 for: DISK.SYS >[/color]
[2009-07-14 03:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A68E9FF -- C:\Windows\System32\drivers\disk.sys
[2009-07-14 03:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A68E9FF -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_x86_neutral_b431b61a11f8df6c\disk.sys
[2009-07-14 03:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A68E9FF -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.1.7600.16385_none_f99cd807d58018cb\disk.sys

[color=#A23BEC]< MD5 for: DISKDUMP.SYS >[/color]
[2009-07-14 03:20:28 | 000,026,688 | ---- | M] (Microsoft Corporation) MD5=9E9C3566083E3A152D4D5C5311A852AB -- C:\Windows\System32\drivers\Diskdump.sys
[2009-07-14 03:20:28 | 000,026,688 | ---- | M] (Microsoft Corporation) MD5=9E9C3566083E3A152D4D5C5311A852AB -- C:\Windows\winsxs\x86_microsoft-windows-diskdump_31bf3856ad364e35_6.1.7600.16385_none_66948c2ff899c64e\Diskdump.sys

[color=#A23BEC]< MD5 for: DRMK.SYS >[/color]
[2009-07-14 02:41:37 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=27F9288AF019E6DACA281EDE51FF5928 -- C:\Windows\System32\drivers\drmk.sys
[2009-07-14 02:41:37 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=27F9288AF019E6DACA281EDE51FF5928 -- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_aed2a4456700dfde\drmk.sys
[2009-07-14 02:41:37 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=27F9288AF019E6DACA281EDE51FF5928 -- C:\Windows\winsxs\x86_wdmaudio.inf_31bf3856ad364e35_6.1.7600.16385_none_603daf367b793e32\drmk.sys

[color=#A23BEC]< MD5 for: DRMKAUD.SYS >[/color]
[2009-07-14 01:50:57 | 000,005,120 | ---- | M] (Microsoft Corporation) MD5=B918E7C5F9BF77202F89E1A9539F2EB4 -- C:\Windows\System32\drivers\drmkaud.sys
[2009-07-14 01:50:57 | 000,005,120 | ---- | M] (Microsoft Corporation) MD5=B918E7C5F9BF77202F89E1A9539F2EB4 -- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_aed2a4456700dfde\drmkaud.sys
[2009-07-14 01:50:57 | 000,005,120 | ---- | M] (Microsoft Corporation) MD5=B918E7C5F9BF77202F89E1A9539F2EB4 -- C:\Windows\winsxs\x86_wdmaudio.inf_31bf3856ad364e35_6.1.7600.16385_none_603daf367b793e32\drmkaud.sys

[color=#A23BEC]< MD5 for: DXAPI.SYS >[/color]
[2009-07-14 01:25:26 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=5FCD3320AAE71506B43F9E12E4E72172 -- C:\Windows\System32\drivers\dxapi.sys
[2009-07-14 01:25:26 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=5FCD3320AAE71506B43F9E12E4E72172 -- C:\Windows\winsxs\x86_microsoft-windows-useros_31bf3856ad364e35_6.1.7600.16385_none_cd450af4ce8086e8\dxapi.sys

[color=#A23BEC]< MD5 for: DXG.SYS >[/color]
[2009-07-14 01:25:25 | 000,076,288 | ---- | M] (Microsoft Corporation) MD5=1B6242B20CB56F85A158E67F09EE84FE -- C:\Windows\System32\drivers\dxg.sys
[2009-07-14 01:25:25 | 000,076,288 | ---- | M] (Microsoft Corporation) MD5=1B6242B20CB56F85A158E67F09EE84FE -- C:\Windows\winsxs\x86_microsoft-windows-dxg_31bf3856ad364e35_6.1.7600.16385_none_a8c197c1bc709e3e\dxg.sys

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2009-07-14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\explorer.exe
[2009-07-14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe

[color=#A23BEC]< MD5 for: FASTFAT.SYS >[/color]
[2009-07-14 01:14:02 | 000,148,480 | ---- | M] (Microsoft Corporation) MD5=7E0AB74553476622FB6AE36F73D97D35 -- C:\Windows\System32\drivers\fastfat.sys
[2009-07-14 01:14:02 | 000,148,480 | ---- | M] (Microsoft Corporation) MD5=7E0AB74553476622FB6AE36F73D97D35 -- C:\Windows\winsxs\x86_microsoft-windows-fat_31bf3856ad364e35_6.1.7600.16385_none_ae8981a3b8b7be50\fastfat.sys

[color=#A23BEC]< MD5 for: FDC.SYS >[/color]
[2009-07-14 01:45:45 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=E817A017F82DF2A1F8CFDBDA29388B29 -- C:\Windows\System32\drivers\fdc.sys
[2009-07-14 01:45:45 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=E817A017F82DF2A1F8CFDBDA29388B29 -- C:\Windows\System32\DriverStore\FileRepository\fdc.inf_x86_neutral_67322cb863995ea8\fdc.sys
[2009-07-14 01:45:45 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=E817A017F82DF2A1F8CFDBDA29388B29 -- C:\Windows\winsxs\x86_fdc.inf_31bf3856ad364e35_6.1.7600.16385_none_0168099141bb7be7\fdc.sys

[color=#A23BEC]< MD5 for: FLPYDISK.SYS >[/color]
[2009-07-14 01:45:45 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=87907AA70CB3C56600F1C2FB8841579B -- C:\Windows\System32\drivers\flpydisk.sys
[2009-07-14 01:45:45 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=87907AA70CB3C56600F1C2FB8841579B -- C:\Windows\System32\DriverStore\FileRepository\flpydisk.inf_x86_neutral_2102f5344367a352\flpydisk.sys
[2009-07-14 01:45:45 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=87907AA70CB3C56600F1C2FB8841579B -- C:\Windows\winsxs\x86_flpydisk.inf_31bf3856ad364e35_6.1.7600.16385_none_e6e06650dbcf54b4\flpydisk.sys

[color=#A23BEC]< MD5 for: FLTMGR.SYS >[/color]
[2009-07-14 03:20:28 | 000,198,208 | ---- | M] (Microsoft Corporation) MD5=7520EC808E0C35E0EE6F841294316653 -- C:\Windows\System32\drivers\fltMgr.sys
[2009-07-14 03:20:28 | 000,198,208 | ---- | M] (Microsoft Corporation) MD5=7520EC808E0C35E0EE6F841294316653 -- C:\Windows\winsxs\x86_microsoft-windows-filtermanager-core_31bf3856ad364e35_6.1.7600.16385_none_10dfc9158c1fa6f6\fltMgr.sys

[color=#A23BEC]< MD5 for: FS_REC.SYS >[/color]
[2009-07-14 03:20:28 | 000,019,536 | ---- | M] (Microsoft Corporation) MD5=A574B4360E438977038AAE4BF60D79A2 -- C:\Windows\System32\drivers\fs_rec.sys
[2009-07-14 03:20:28 | 000,019,536 | ---- | M] (Microsoft Corporation) MD5=A574B4360E438977038AAE4BF60D79A2 -- C:\Windows\winsxs\x86_microsoft-windows-coreos_31bf3856ad364e35_6.1.7600.16385_none_25289c6a9fa4dca8\fs_rec.sys

[color=#A23BEC]< MD5 for: GM.DLS >[/color]
[2009-06-10 23:14:29 | 003,440,660 | ---- | M] () MD5=7F29903CB8F5590D52DB0C9F97049A25 -- C:\Windows\System32\drivers\gm.dls
[2009-06-10 23:14:29 | 003,440,660 | ---- | M] () MD5=7F29903CB8F5590D52DB0C9F97049A25 -- C:\Windows\winsxs\x86_microsoft-windows-audio-mmecore-other_31bf3856ad364e35_6.1.7600.16385_none_8cd41e2771e37717\gm.dls

[color=#A23BEC]< MD5 for: GMREADME.TXT >[/color]
[2009-06-10 23:14:29 | 000,000,646 | ---- | M] () MD5=7111BFA692A22E4B3C07F1E6C6FF6F72 -- C:\Windows\System32\drivers\gmreadme.txt
[2009-06-10 23:14:29 | 000,000,646 | ---- | M] () MD5=7111BFA692A22E4B3C07F1E6C6FF6F72 -- C:\Windows\winsxs\x86_microsoft-windows-audio-mmecore-other_31bf3856ad364e35_6.1.7600.16385_none_8cd41e2771e37717\gmreadme.txt

[color=#A23BEC]< MD5 for: HDAUDBUS.SYS >[/color]
[2009-07-14 01:50:56 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=717A2207FD6F13AD3E664C7D5A43C7BF -- C:\Windows\System32\drivers\hdaudbus.sys
[2009-07-14 01:50:56 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=717A2207FD6F13AD3E664C7D5A43C7BF -- C:\Windows\System32\DriverStore\FileRepository\hdaudbus.inf_x86_neutral_349139f09f579763\hdaudbus.sys
[2009-07-14 01:50:56 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=717A2207FD6F13AD3E664C7D5A43C7BF -- C:\Windows\winsxs\x86_hdaudbus.inf_31bf3856ad364e35_6.1.7600.16385_none_76f7e904e7dab65a\hdaudbus.sys

[color=#A23BEC]< MD5 for: HIDCLASS.SYS >[/color]
[2009-07-14 01:51:01 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=B682E1CC0FDC7AC04B71D1FA9A07EF21 -- C:\Windows\System32\drivers\hidclass.sys
[2009-07-14 01:51:01 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=B682E1CC0FDC7AC04B71D1FA9A07EF21 -- C:\Windows\System32\DriverStore\FileRepository\input.inf_x86_neutral_5a80b94d3045438a\hidclass.sys
[2009-07-14 01:51:01 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=B682E1CC0FDC7AC04B71D1FA9A07EF21 -- C:\Windows\winsxs\x86_input.inf_31bf3856ad364e35_6.1.7600.16385_none_2045efea8171454c\hidclass.sys

[color=#A23BEC]< MD5 for: HIDPARSE.SYS >[/color]
[2009-07-14 01:51:00 | 000,025,728 | ---- | M] (Microsoft Corporation) MD5=6C26122F1931D4D7810240F32DDCE890 -- C:\Windows\System32\drivers\hidparse.sys
[2009-07-14 01:51:00 | 000,025,728 | ---- | M] (Microsoft Corporation) MD5=6C26122F1931D4D7810240F32DDCE890 -- C:\Windows\System32\DriverStore\FileRepository\input.inf_x86_neutral_5a80b94d3045438a\hidparse.sys
[2009-07-14 01:51:00 | 000,025,728 | ---- | M] (Microsoft Corporation) MD5=6C26122F1931D4D7810240F32DDCE890 -- C:\Windows\winsxs\x86_input.inf_31bf3856ad364e35_6.1.7600.16385_none_2045efea8171454c\hidparse.sys

[color=#A23BEC]< MD5 for: HIDUSB.SYS >[/color]
[2009-07-14 01:51:04 | 000,024,064 | ---- | M] (Microsoft Corporation) MD5=25072FB35AC90B25F9E4E3BACF774102 -- C:\Windows\System32\drivers\hidusb.sys
[2009-07-14 01:51:04 | 000,024,064 | ---- | M] (Microsoft Corporation) MD5=25072FB35AC90B25F9E4E3BACF774102 -- C:\Windows\System32\DriverStore\FileRepository\input.inf_x86_neutral_5a80b94d3045438a\hidusb.sys
[2009-07-14 01:51:04 | 000,024,064 | ---- | M] (Microsoft Corporation) MD5=25072FB35AC90B25F9E4E3BACF774102 -- C:\Windows\winsxs\x86_input.inf_31bf3856ad364e35_6.1.7600.16385_none_2045efea8171454c\hidusb.sys

[color=#A23BEC]< MD5 for: HTTP.SYS >[/color]
[2009-07-14 01:12:59 | 000,513,024 | ---- | M] (Microsoft Corporation) MD5=C531C7FD9E8B62021112787C4E2C5A5A -- C:\Windows\System32\drivers\http.sys
[2009-07-14 01:12:59 | 000,513,024 | ---- | M] (Microsoft Corporation) MD5=C531C7FD9E8B62021112787C4E2C5A5A -- C:\Windows\winsxs\x86_microsoft-windows-http_31bf3856ad364e35_6.1.7600.16385_none_ac97526c7a2e8289\http.sys

[color=#A23BEC]< MD5 for: I8042PRT.SYS >[/color]
[2009-07-14 01:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\System32\drivers\i8042prt.sys
[2009-07-14 01:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_x86_neutral_0c4a1880f2aa5a72\i8042prt.sys
[2009-07-14 01:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_x86_neutral_7a9084e0177406eb\i8042prt.sys
[2009-07-14 01:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.1.7600.16385_none_9724c3fc3a4c81ef\i8042prt.sys
[2009-07-14 01:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.1.7600.16385_none_4e0a61a033aec8c3\i8042prt.sys

[color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
[2009-07-14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\drivers\iaStorV.sys
[2009-07-14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009-07-14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys

[color=#A23BEC]< MD5 for: INTELPPM.SYS >[/color]
[2009-07-14 01:11:04 | 000,053,760 | ---- | M] (Microsoft Corporation) MD5=3B514D27BFC4ACCB4037BC6685F766E0 -- C:\Windows\System32\drivers\intelppm.sys
[2009-07-14 01:11:04 | 000,053,760 | ---- | M] (Microsoft Corporation) MD5=3B514D27BFC4ACCB4037BC6685F766E0 -- C:\Windows\System32\DriverStore\FileRepository\cpu.inf_x86_neutral_729b871528391032\intelppm.sys
[2009-07-14 01:11:04 | 000,053,760 | ---- | M] (Microsoft Corporation) MD5=3B514D27BFC4ACCB4037BC6685F766E0 -- C:\Windows\winsxs\x86_cpu.inf_31bf3856ad364e35_6.1.7600.16385_none_5d20b0c250b4b524\intelppm.sys

[color=#A23BEC]< MD5 for: IPFLTDRV.SYS >[/color]
[2009-07-14 01:54:29 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=709D1761D3B19A932FF0238EA6D50200 -- C:\Windows\System32\drivers\ipfltdrv.sys
[2009-07-14 01:54:29 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=709D1761D3B19A932FF0238EA6D50200 -- C:\Windows\winsxs\x86_microsoft-windows-rasipfilter_31bf3856ad364e35_6.1.7600.16385_none_e73fda0c2083052a\ipfltdrv.sys

[color=#A23BEC]< MD5 for: IPNAT.SYS >[/color]
[2009-07-14 01:54:29 | 000,101,888 | ---- | M] (Microsoft Corporation) MD5=A5FA468D67ABCDAA36264E463A7BB0CD -- C:\Windows\System32\drivers\ipnat.sys
[2009-07-14 01:54:29 | 000,101,888 | ---- | M] (Microsoft Corporation) MD5=A5FA468D67ABCDAA36264E463A7BB0CD -- C:\Windows\winsxs\x86_microsoft-windows-ipnat_31bf3856ad364e35_6.1.7600.16385_none_5aee6dbbdcaf7199\ipnat.sys

[color=#A23BEC]< MD5 for: IRENUM.SYS >[/color]
[2009-07-14 01:53:27 | 000,013,824 | ---- | M] (Microsoft Corporation) MD5=42996CFF20A3084A56017B7902307E9F -- C:\Windows\System32\drivers\irenum.sys
[2009-07-14 01:53:27 | 000,013,824 | ---- | M] (Microsoft Corporation) MD5=42996CFF20A3084A56017B7902307E9F -- C:\Windows\winsxs\x86_microsoft-windows-irdaircomm_31bf3856ad364e35_6.1.7600.16385_none_2867d22e85fcfdfa\irenum.sys

[color=#A23BEC]< MD5 for: ISAPNP.SYS >[/color]
[2009-07-14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009-07-14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\isapnp.sys
[2009-07-14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\isapnp.sys

[color=#A23BEC]< MD5 for: KBDCLASS.SYS >[/color]
[2009-07-14 03:20:36 | 000,042,576 | ---- | M] (Microsoft Corporation) MD5=ADEF52CA1AEAE82B50DF86B56413107E -- C:\Windows\System32\drivers\kbdclass.sys
[2009-07-14 03:20:36 | 000,042,576 | ---- | M] (Microsoft Corporation) MD5=ADEF52CA1AEAE82B50DF86B56413107E -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_x86_neutral_0c4a1880f2aa5a72\kbdclass.sys
[2009-07-14 03:20:36 | 000,042,576 | ---- | M] (Microsoft Corporation) MD5=ADEF52CA1AEAE82B50DF86B56413107E -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.1.7600.16385_none_9724c3fc3a4c81ef\kbdclass.sys

[color=#A23BEC]< MD5 for: KBDHID.SYS >[/color]
[2009-07-14 01:45:09 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=3D9F0EBF350EDCFD6498057301455964 -- C:\Windows\System32\drivers\kbdhid.sys
[2009-07-14 01:45:09 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=3D9F0EBF350EDCFD6498057301455964 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_x86_neutral_0c4a1880f2aa5a72\kbdhid.sys
[2009-07-14 01:45:09 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=3D9F0EBF350EDCFD6498057301455964 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.1.7600.16385_none_9724c3fc3a4c81ef\kbdhid.sys

[color=#A23BEC]< MD5 for: KS.SYS >[/color]
[2009-07-14 01:45:15 | 000,190,976 | ---- | M] (Microsoft Corporation) MD5=F762EDD3ACCA095F5AF4D719F3B8AE3D -- C:\Windows\System32\drivers\ks.sys
[2009-07-14 01:45:15 | 000,190,976 | ---- | M] (Microsoft Corporation) MD5=F762EDD3ACCA095F5AF4D719F3B8AE3D -- C:\Windows\winsxs\x86_microsoft-windows-kernelstreaming_31bf3856ad364e35_6.1.7600.16385_none_5757187af737b0be\ks.sys

[color=#A23BEC]< MD5 for: KSECDD.SYS >[/color]
[2009-07-14 03:20:36 | 000,067,664 | ---- | M] (Microsoft Corporation) MD5=E36A061EC11B373826905B21BE10948F -- C:\Windows\System32\drivers\ksecdd.sys
[2009-07-14 03:20:36 | 000,067,664 | ---- | M] (Microsoft Corporation) MD5=E36A061EC11B373826905B21BE10948F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_a620e0e5be1ecda7\ksecdd.sys

[color=#A23BEC]< MD5 for: MCD.SYS >[/color]
[2009-07-14 01:45:57 | 000,018,432 | ---- | M] (Microsoft Corporation) MD5=EF08D2EBE3EABBA43CC57EEE001027B6 -- C:\Windows\System32\drivers\mcd.sys
[2009-07-14 01:45:57 | 000,018,432 | ---- | M] (Microsoft Corporation) MD5=EF08D2EBE3EABBA43CC57EEE001027B6 -- C:\Windows\winsxs\x86_microsoft.windows.h..changer-driverclass_31bf3856ad364e35_6.1.7600.16385_none_c87bc13e280dd10a\mcd.sys

[color=#A23BEC]< MD5 for: MF.SYS >[/color]
[2009-07-14 01:19:25 | 000,114,176 | ---- | M] (Microsoft Corporation) MD5=26F4CA8A0B33658382424BF0B4326C0A -- C:\Windows\System32\DriverStore\FileRepository\mf.inf_x86_neutral_feb8c30ef59487a2\mf.sys
[2009-07-14 01:19:25 | 000,114,176 | ---- | M] (Microsoft Corporation) MD5=26F4CA8A0B33658382424BF0B4326C0A -- C:\Windows\winsxs\x86_mf.inf_31bf3856ad364e35_6.1.7600.16385_none_bf0ecf93ee849127\mf.sys

[color=#A23BEC]< MD5 for: MODEM.SYS >[/color]
[2009-07-14 01:55:24 | 000,031,744 | ---- | M] (Microsoft Corporation) MD5=F001861E5700EE84E2D4E52C712F4964 -- C:\Windows\System32\drivers\modem.sys
[2009-07-14 01:55:24 | 000,031,744 | ---- | M] (Microsoft Corporation) MD5=F001861E5700EE84E2D4E52C712F4964 -- C:\Windows\winsxs\x86_microsoft-windows-u..em-core-classdriver_31bf3856ad364e35_6.1.7600.16385_none_2fdad9144fff701e\modem.sys

[color=#A23BEC]< MD5 for: MOUCLASS.SYS >[/color]
[2009-07-14 03:20:44 | 000,041,552 | ---- | M] (Microsoft Corporation) MD5=FB18CC1D4C2E716B6B903B0AC0CC0609 -- C:\Windows\System32\drivers\mouclass.sys
[2009-07-14 03:20:44 | 000,041,552 | ---- | M] (Microsoft Corporation) MD5=FB18CC1D4C2E716B6B903B0AC0CC0609 -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_x86_neutral_7a9084e0177406eb\mouclass.sys
[2009-07-14 03:20:44 | 000,041,552 | ---- | M] (Microsoft Corporation) MD5=FB18CC1D4C2E716B6B903B0AC0CC0609 -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.1.7600.16385_none_4e0a61a033aec8c3\mouclass.sys

[color=#A23BEC]< MD5 for: MOUHID.SYS >[/color]
[2009-07-14 01:45:08 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=2C388D2CD01C9042596CF3C8F3C7B24D -- C:\Windows\System32\drivers\mouhid.sys
[2009-07-14 01:45:08 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=2C388D2CD01C9042596CF3C8F3C7B24D -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_x86_neutral_7a9084e0177406eb\mouhid.sys
[2009-07-14 01:45:08 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=2C388D2CD01C9042596CF3C8F3C7B24D -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.1.7600.16385_none_4e0a61a033aec8c3\mouhid.sys

[color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color]
[2009-07-14 03:20:44 | 000,078,416 | ---- | M] (Microsoft Corporation) MD5=921C18727C5920D6C0300736646931C2 -- C:\Windows\System32\drivers\mountmgr.sys
[2009-07-14 03:20:44 | 000,078,416 | ---- | M] (Microsoft Corporation) MD5=921C18727C5920D6C0300736646931C2 -- C:\Windows\winsxs\x86_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.1.7600.16385_none_f26e7ae968595905\mountmgr.sys

[color=#A23BEC]< MD5 for: MQAC.SYS >[/color]
[2009-07-14 02:11:04 | 000,141,824 | ---- | M] (Microsoft Corporation) MD5=2CDFBBD7FDDC262C690DD7D02BC0BD32 -- C:\Windows\winsxs\x86_microsoft-windows-m..cess-control-driver_31bf3856ad364e35_6.1.7600.16385_none_c6d5ecee8c64b587\mqac.sys

[color=#A23BEC]< MD5 for: MRXDAV.SYS >[/color]
[2009-07-14 01:14:26 | 000,115,712 | ---- | M] (Microsoft Corporation) MD5=B1BE47008D20E43DA3ADC37C24CDB89D -- C:\Windows\System32\drivers\mrxdav.sys
[2009-07-14 01:14:26 | 000,115,712 | ---- | M] (Microsoft Corporation) MD5=B1BE47008D20E43DA3ADC37C24CDB89D -- C:\Windows\winsxs\x86_microsoft-windows-webdavredir-mrxdav_31bf3856ad364e35_6.1.7600.16385_none_14813b5b270f3a0b\mrxdav.sys

[color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color]
[2009-07-14 01:14:26 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=F4A054BE78AF7F410129C4B64B07DC9B -- C:\Windows\System32\drivers\mrxsmb.sys
[2009-07-14 01:14:26 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=F4A054BE78AF7F410129C4B64B07DC9B -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7600.16385_none_7f67c358b2710494\mrxsmb.sys

[color=#A23BEC]< MD5 for: MSFS.SYS >[/color]
[2009-07-14 01:11:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DAEFB28E3AF5A76ABCC2C3078C07327F -- C:\Windows\System32\drivers\msfs.sys
[2009-07-14 01:11:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DAEFB28E3AF5A76ABCC2C3078C07327F -- C:\Windows\winsxs\x86_microsoft-windows-msfs_31bf3856ad364e35_6.1.7600.16385_none_a646965e7e3ffc0c\msfs.sys

[color=#A23BEC]< MD5 for: MSKSSRV.SYS >[/color]
[2009-07-14 01:45:08 | 000,008,320 | ---- | M] (Microsoft Corporation) MD5=8C0860D6366AAFFB6C5BB9DF9448E631 -- C:\Windows\System32\drivers\mskssrv.sys
[2009-07-14 01:45:08 | 000,008,320 | ---- | M] (Microsoft Corporation) MD5=8C0860D6366AAFFB6C5BB9DF9448E631 -- C:\Windows\winsxs\x86_microsoft-windows-kernelstreamingsupport_31bf3856ad364e35_6.1.7600.16385_none_61cb11453c0f45a5\mskssrv.sys

[color=#A23BEC]< MD5 for: MSPCLOCK.SYS >[/color]
[2009-07-14 01:45:08 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=3EA8B949F963562CEDBB549EAC0C11CE -- C:\Windows\System32\drivers\mspclock.sys
[2009-07-14 01:45:08 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=3EA8B949F963562CEDBB549EAC0C11CE -- C:\Windows\winsxs\x86_microsoft-windows-kernelstreamingsupport_31bf3856ad364e35_6.1.7600.16385_none_61cb11453c0f45a5\mspclock.sys

[color=#A23BEC]< MD5 for: MSPQM.SYS >[/color]
[2009-07-14 01:45:07 | 000,005,504 | ---- | M] (Microsoft Corporation) MD5=F456E973590D663B1073E9C463B40932 -- C:\Windows\System32\drivers\mspqm.sys
[2009-07-14 01:45:07 | 000,005,504 | ---- | M] (Microsoft Corporation) MD5=F456E973590D663B1073E9C463B40932 -- C:\Windows\winsxs\x86_microsoft-windows-kernelstreamingsupport_31bf3856ad364e35_6.1.7600.16385_none_61cb11453c0f45a5\mspqm.sys

[color=#A23BEC]< MD5 for: MSSMBIOS.SYS >[/color]
[2009-07-14 03:20:44 | 000,028,240 | ---- | M] (Microsoft Corporation) MD5=FC6B9FF600CC585EA38B12589BD4E246 -- C:\Windows\System32\drivers\mssmbios.sys
[2009-07-14 03:20:44 | 000,028,240 | ---- | M] (Microsoft Corporation) MD5=FC6B9FF600CC585EA38B12589BD4E246 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\mssmbios.sys
[2009-07-14 03:20:44 | 000,028,240 | ---- | M] (Microsoft Corporation) MD5=FC6B9FF600CC585EA38B12589BD4E246 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\mssmbios.sys

[color=#A23BEC]< MD5 for: MUP.SYS >[/color]
[2009-07-14 03:20:44 | 000,049,728 | ---- | M] (Microsoft Corporation) MD5=159FAD02F64E6381758C990F753BCC80 -- C:\Windows\System32\drivers\mup.sys
[2009-07-14 03:20:44 | 000,049,728 | ---- | M] (Microsoft Corporation) MD5=159FAD02F64E6381758C990F753BCC80 -- C:\Windows\winsxs\x86_microsoft-windows-mup_31bf3856ad364e35_6.1.7600.16385_none_acc89f51b9d75e29\mup.sys

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2009-07-14 03:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\System32\drivers\ndis.sys
[2009-07-14 03:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys

[color=#A23BEC]< MD5 for: NDISTAPI.SYS >[/color]
[2009-07-14 01:54:24 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=E4A8AEC125A2E43A9E32AFEEA7C9C888 -- C:\Windows\System32\drivers\ndistapi.sys
[2009-07-14 01:54:24 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=E4A8AEC125A2E43A9E32AFEEA7C9C888 -- C:\Windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.1.7600.16385_none_0db6be04dbc2da8a\ndistapi.sys

[color=#A23BEC]< MD5 for: NDISUIO.SYS >[/color]
[2009-07-14 01:53:51 | 000,045,568 | ---- | M] (Microsoft Corporation) MD5=B30AE7F2B6D7E343B0DF32E6C08FCE75 -- C:\Windows\System32\drivers\ndisuio.sys
[2009-07-14 01:53:51 | 000,045,568 | ---- | M] (Microsoft Corporation) MD5=B30AE7F2B6D7E343B0DF32E6C08FCE75 -- C:\Windows\winsxs\x86_microsoft-windows-ndisuio_31bf3856ad364e35_6.1.7600.16385_none_6bc75de74831b352\ndisuio.sys

[color=#A23BEC]< MD5 for: NDISWAN.SYS >[/color]
[2009-07-14 01:54:35 | 000,118,784 | ---- | M] (Microsoft Corporation) MD5=267C415EADCBE53C9CA873DEE39CF3A4 -- C:\Windows\System32\drivers\ndiswan.sys
[2009-07-14 01:54:35 | 000,118,784 | ---- | M] (Microsoft Corporation) MD5=267C415EADCBE53C9CA873DEE39CF3A4 -- C:\Windows\winsxs\x86_microsoft-windows-rasbase-ndiswan_31bf3856ad364e35_6.1.7600.16385_none_f30ee6e4b89e5dbf\ndiswan.sys

[color=#A23BEC]< MD5 for: NDPROXY.SYS >[/color]
[2009-07-14 01:54:27 | 000,048,128 | ---- | M] (Microsoft Corporation) MD5=AF7E7C63DCEF3F8772726F86039D6EB4 -- C:\Windows\System32\drivers\ndproxy.sys
[2009-07-14 01:54:27 | 000,048,128 | ---- | M] (Microsoft Corporation) MD5=AF7E7C63DCEF3F8772726F86039D6EB4 -- C:\Windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.1.7600.16385_none_0db6be04dbc2da8a\ndproxy.sys

[color=#A23BEC]< MD5 for: NETBIOS.SYS >[/color]
[2009-07-14 01:53:54 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=80B275B1CE3B0E79909DB7B39AF74D51 -- C:\Windows\System32\drivers\netbios.sys
[2009-07-14 01:53:54 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=80B275B1CE3B0E79909DB7B39AF74D51 -- C:\Windows\winsxs\x86_microsoft-windows-netbios_31bf3856ad364e35_6.1.7600.16385_none_59b80e4dcc72e431\netbios.sys

[color=#A23BEC]< MD5 for: NETBT.SYS >[/color]
[2009-07-14 01:12:21 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=DD52A733BF4CA5AF84562A5E2F963B91 -- C:\Windows\System32\drivers\netbt.sys
[2009-07-14 01:12:21 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=DD52A733BF4CA5AF84562A5E2F963B91 -- C:\Windows\winsxs\x86_microsoft-windows-netbt_31bf3856ad364e35_6.1.7600.16385_none_603b1e855897bcd6\netbt.sys

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2009-07-14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\System32\netlogon.dll
[2009-07-14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll

[color=#A23BEC]< MD5 for: NPFS.SYS >[/color]
[2009-07-14 01:11:32 | 000,035,328 | ---- | M] (Microsoft Corporation) MD5=1DB262A9F8C087E8153D89BEF3D2235F -- C:\Windows\System32\drivers\npfs.sys
[2009-07-14 01:11:32 | 000,035,328 | ---- | M] (Microsoft Corporation) MD5=1DB262A9F8C087E8153D89BEF3D2235F -- C:\Windows\winsxs\x86_microsoft-windows-npfs_31bf3856ad364e35_6.1.7600.16385_none_a647db007e3ec880\npfs.sys

[color=#A23BEC]< MD5 for: NTFS.SYS >[/color]
[2009-07-14 03:20:44 | 001,210,432 | ---- | M] (Microsoft Corporation) MD5=3795DCD21F740EE799FB7223234215AF -- C:\Windows\System32\drivers\ntfs.sys
[2009-07-14 03:20:44 | 001,210,432 | ---- | M] (Microsoft Corporation) MD5=3795DCD21F740EE799FB7223234215AF -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16385_none_a6477fe07e3f2f04\ntfs.sys

[color=#A23BEC]< MD5 for: NULL.SYS >[/color]
[2009-07-14 01:11:12 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=F9756A98D69098DCA8945D62858A812C -- C:\Windows\System32\drivers\null.sys
[2009-07-14 01:11:12 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=F9756A98D69098DCA8945D62858A812C -- C:\Windows\winsxs\x86_microsoft-windows-null_31bf3856ad364e35_6.1.7600.16385_none_a93c43a07c50a038\null.sys

[color=#A23BEC]< MD5 for: PARPORT.SYS >[/color]
[2009-07-14 01:45:35 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=2EA877ED5DD9713C5AC74E8EA7348D14 -- C:\Windows\System32\drivers\parport.sys
[2009-07-14 01:45:35 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=2EA877ED5DD9713C5AC74E8EA7348D14 -- C:\Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\parport.sys
[2009-07-14 01:45:35 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=2EA877ED5DD9713C5AC74E8EA7348D14 -- C:\Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\parport.sys

[color=#A23BEC]< MD5 for: PARTMGR.SYS >[/color]
[2009-07-14 03:20:44 | 000,056,912 | ---- | M] (Microsoft Corporation) MD5=FF4218952B51DE44FE910953A3E686B9 -- C:\Windows\System32\drivers\partmgr.sys
[2009-07-14 03:20:44 | 000,056,912 | ---- | M] (Microsoft Corporation) MD5=FF4218952B51DE44FE910953A3E686B9 -- C:\Windows\winsxs\x86_microsoft-windows-partitionmanager_31bf3856ad364e35_6.1.7600.16385_none_e17269af1bc32604\partmgr.sys

[color=#A23BEC]< MD5 for: PARVDM.SYS >[/color]
[2009-07-14 01:45:29 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=EB0A59F29C19B86479D36B35983DAADC -- C:\Windows\System32\drivers\parvdm.sys
[2009-07-14 01:45:29 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=EB0A59F29C19B86479D36B35983DAADC -- C:\Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\parvdm.sys
[2009-07-14 01:45:29 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=EB0A59F29C19B86479D36B35983DAADC -- C:\Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\parvdm.sys

[color=#A23BEC]< MD5 for: PCI.SYS >[/color]
[2009-07-14 03:20:45 | 000,153,680 | ---- | M] (Microsoft Corporation) MD5=C858CB77C577780ECC456A892E7E7D0F -- C:\Windows\System32\drivers\pci.sys
[2009-07-14 03:20:45 | 000,153,680 | ---- | M] (Microsoft Corporation) MD5=C858CB77C577780ECC456A892E7E7D0F -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\pci.sys
[2009-07-14 03:20:45 | 000,153,680 | ---- | M] (Microsoft Corporation) MD5=C858CB77C577780ECC456A892E7E7D0F -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\pci.sys

[color=#A23BEC]< MD5 for: PCIIDE.SYS >[/color]
[2009-07-14 03:20:45 | 000,012,368 | ---- | M] (Microsoft Corporation) MD5=AFE86F419014DB4E5593F69FFE26CE0A -- C:\Windows\System32\drivers\pciide.sys
[2009-07-14 03:20:45 | 000,012,368 | ---- | M] (Microsoft Corporation) MD5=AFE86F419014DB4E5593F69FFE26CE0A -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\pciide.sys
[2009-07-14 03:20:45 | 000,012,368 | ---- | M] (Microsoft Corporation) MD5=AFE86F419014DB4E5593F69FFE26CE0A -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\pciide.sys

[color=#A23BEC]< MD5 for: PCIIDEX.SYS >[/color]
[2009-07-14 03:19:03 | 000,042,560 | ---- | M] (Microsoft Corporation) MD5=EDE040D666FF81BF1978D0F19F799E7A -- C:\Windows\System32\drivers\pciidex.sys
[2009-07-14 03:19:03 | 000,042,560 | ---- | M] (Microsoft Corporation) MD5=EDE040D666FF81BF1978D0F19F799E7A -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\pciidex.sys
[2009-07-14 03:19:03 | 000,042,560 | ---- | M] (Microsoft Corporation) MD5=EDE040D666FF81BF1978D0F19F799E7A -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\pciidex.sys

[color=#A23BEC]< MD5 for: PCMCIA.SYS >[/color]
[2009-07-14 03:19:03 | 000,180,288 | ---- | M] (Microsoft Corporation) MD5=F396431B31693E71E8A80687EF523506 -- C:\Windows\System32\drivers\pcmcia.sys
[2009-07-14 03:19:03 | 000,180,288 | ---- | M] (Microsoft Corporation) MD5=F396431B31693E71E8A80687EF523506 -- C:\Windows\System32\DriverStore\FileRepository\pcmcia.inf_x86_neutral_42dda5eb5768a3df\pcmcia.sys
[2009-07-14 03:19:03 | 000,180,288 | ---- | M] (Microsoft Corporation) MD5=F396431B31693E71E8A80687EF523506 -- C:\Windows\winsxs\x86_pcmcia.inf_31bf3856ad364e35_6.1.7600.16385_none_85a22802fc99e371\pcmcia.sys

[color=#A23BEC]< MD5 for: PORTCLS.SYS >[/color]
[2009-07-14 01:51:02 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=D72708C9F49500C13D7D067E169B7715 -- C:\Windows\System32\drivers\portcls.sys
[2009-07-14 01:51:02 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=D72708C9F49500C13D7D067E169B7715 -- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_aed2a4456700dfde\portcls.sys
[2009-07-14 01:51:02 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=D72708C9F49500C13D7D067E169B7715 -- C:\Windows\winsxs\x86_wdmaudio.inf_31bf3856ad364e35_6.1.7600.16385_none_603daf367b793e32\portcls.sys

[color=#A23BEC]< MD5 for: PROCESSR.SYS >[/color]
[2009-07-14 01:11:04 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=85B1E3A0C7585BC4AAE6899EC6FCF011 -- C:\Windows\System32\drivers\processr.sys
[2009-07-14 01:11:04 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=85B1E3A0C7585BC4AAE6899EC6FCF011 -- C:\Windows\System32\DriverStore\FileRepository\cpu.inf_x86_neutral_729b871528391032\processr.sys
[2009-07-14 01:11:04 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=85B1E3A0C7585BC4AAE6899EC6FCF011 -- C:\Windows\winsxs\x86_cpu.inf_31bf3856ad364e35_6.1.7600.16385_none_5d20b0c250b4b524\processr.sys

[color=#A23BEC]< MD5 for: RASACD.SYS >[/color]
[2009-07-14 01:54:40 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=30A81B53C766D0133BB86D234E5556AB -- C:\Windows\System32\drivers\rasacd.sys
[2009-07-14 01:54:40 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=30A81B53C766D0133BB86D234E5556AB -- C:\Windows\winsxs\x86_microsoft-windows-rasautodial_31bf3856ad364e35_6.1.7600.16385_none_0fb054d9c6a6b4d4\rasacd.sys

[color=#A23BEC]< MD5 for: RASL2TP.SYS >[/color]
[2009-07-14 01:54:34 | 000,078,848 | ---- | M] (Microsoft Corporation) MD5=D9F91EAFEC2815365CBE6D167E4E332A -- C:\Windows\System32\drivers\rasl2tp.sys
[2009-07-14 01:54:34 | 000,078,848 | ---- | M] (Microsoft Corporation) MD5=D9F91EAFEC2815365CBE6D167E4E332A -- C:\Windows\winsxs\x86_microsoft-windows-rasbase-rasl2tp_31bf3856ad364e35_6.1.7600.16385_none_99b2a2c04941dfb7\rasl2tp.sys

[color=#A23BEC]< MD5 for: RASPPPOE.SYS >[/color]
[2009-07-14 01:54:53 | 000,077,824 | ---- | M] (Microsoft Corporation) MD5=0FE8B15916307A6AC12BFB6A63E45507 -- C:\Windows\System32\drivers\raspppoe.sys
[2009-07-14 01:54:53 | 000,077,824 | ---- | M] (Microsoft Corporation) MD5=0FE8B15916307A6AC12BFB6A63E45507 -- C:\Windows\winsxs\x86_microsoft-windows-rasbase-raspppoe_31bf3856ad364e35_6.1.7600.16385_none_5609da43fbeb6e85\raspppoe.sys

[color=#A23BEC]< MD5 for: RASPPTP.SYS >[/color]
[2009-07-14 01:54:48 | 000,073,728 | ---- | M] (Microsoft Corporation) MD5=631E3E205AD6D86F2AED6A4A8E69F2DB -- C:\Windows\System32\drivers\raspptp.sys
[2009-07-14 01:54:48 | 000,073,728 | ---- | M] (Microsoft Corporation) MD5=631E3E205AD6D86F2AED6A4A8E69F2DB -- C:\Windows\winsxs\x86_microsoft-windows-rasbase-raspptp_31bf3856ad364e35_6.1.7600.16385_none_99c574fc492a728d\raspptp.sys

[color=#A23BEC]< MD5 for: RDBSS.SYS >[/color]
[2009-07-14 01:14:29 | 000,241,664 | ---- | M] (Microsoft Corporation) MD5=835D7E81BF517A3B72384BDCC85E1CE6 -- C:\Windows\System32\drivers\rdbss.sys
[2009-07-14 01:14:29 | 000,241,664 | ---- | M] (Microsoft Corporation) MD5=835D7E81BF517A3B72384BDCC85E1CE6 -- C:\Windows\winsxs\x86_microsoft-windows-rdbss_31bf3856ad364e35_6.1.7600.16385_none_59ab2defc2bd0505\rdbss.sys

[color=#A23BEC]< MD5 for: RDPCDD.SYS >[/color]
[2009-07-14 02:01:40 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=1E016846895B15A99F9A176A05029075 -- C:\Windows\System32\drivers\RDPCDD.sys
[2009-07-14 02:01:40 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=1E016846895B15A99F9A176A05029075 -- C:\Windows\winsxs\x86_microsoft-windows-t..niportdisplaydriver_31bf3856ad364e35_6.1.7600.16385_none_d4b17a3e9f928d55\RDPCDD.sys

[color=#A23BEC]< MD5 for: RDPDR.SYS >[/color]
[2009-07-14 02:02:58 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=C5FF95883FFEF704D50C40D21CFB3AB5 -- C:\Windows\winsxs\x86_microsoft-windows-terminalservices-rdpdr_31bf3856ad364e35_6.1.7600.16385_none_011065d1aa5ad954\rdpdr.sys

[color=#A23BEC]< MD5 for: RDPWD.SYS >[/color]
[2009-07-14 02:01:55 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=801371BA9782282892D00AADB08EE367 -- C:\Windows\System32\drivers\rdpwd.sys
[2009-07-14 02:01:55 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=801371BA9782282892D00AADB08EE367 -- C:\Windows\winsxs\x86_microsoft-windows-t..dp-winstationdriver_31bf3856ad364e35_6.1.7600.16385_none_4b4bde6b36561dcb\rdpwd.sys

[color=#A23BEC]< MD5 for: REGEDIT.EXE >[/color]
[2009-07-14 03:14:30 | 000,398,336 | ---- | M] (Microsoft Corporation) MD5=8A4883F5E7AC37444F23279239553878 -- C:\Windows\regedit.exe
[2009-07-14 03:14:30 | 000,398,336 | ---- | M] (Microsoft Corporation) MD5=8A4883F5E7AC37444F23279239553878 -- C:\Windows\winsxs\x86_microsoft-windows-registry-editor_31bf3856ad364e35_6.1.7600.16385_none_f4050b883d2c3c08\regedit.exe

[color=#A23BEC]< MD5 for: RMCAST.SYS >[/color]
[2009-07-14 01:53:40 | 000,117,248 | ---- | M] (Microsoft Corporation) MD5=B4090006A82EEB608C358AB5D37DE85A -- C:\Windows\System32\drivers\rmcast.sys
[2009-07-14 01:53:40 | 000,117,248 | ---- | M] (Microsoft Corporation) MD5=B4090006A82EEB608C358AB5D37DE85A -- C:\Windows\winsxs\x86_microsoft-windows-rmcast_31bf3856ad364e35_6.1.7600.16385_none_54542254e93e94e1\rmcast.sys

[color=#A23BEC]< MD5 for: RNDISMP.SYS >[/color]
[2009-07-14 01:54:09 | 000,033,280 | ---- | M] (Microsoft Corporation) MD5=7400CFAB5CF36F2294E80B3F3BDA3EBC -- C:\Windows\System32\drivers\RNDISMP.sys
[2009-07-14 01:54:09 | 000,033,280 | ---- | M] (Microsoft Corporation) MD5=7400CFAB5CF36F2294E80B3F3BDA3EBC -- C:\Windows\winsxs\x86_microsoft-windows-rndis-miniport_31bf3856ad364e35_6.1.7600.16385_none_e10505d0ed38f22a\RNDISMP.sys

[color=#A23BEC]< MD5 for: ROOTMDM.SYS >[/color]
[2009-07-14 01:55:21 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=564297827D213F52C7A3A2FF749568CA -- C:\Windows\System32\drivers\rootmdm.sys
[2009-07-14 01:55:21 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=564297827D213F52C7A3A2FF749568CA -- C:\Windows\winsxs\x86_microsoft-windows-unimodem-core_31bf3856ad364e35_6.1.7600.16385_none_946e88ef35e184db\rootmdm.sys

[color=#A23BEC]< MD5 for: RSTRUI.EXE >[/color]
[2009-07-14 03:14:31 | 000,262,656 | ---- | M] (Microsoft Corporation) MD5=123DC9323F81B06B811847A6D341830C -- C:\Windows\System32\rstrui.exe
[2009-07-14 03:14:31 | 000,262,656 | ---- | M] (Microsoft Corporation) MD5=123DC9323F81B06B811847A6D341830C -- C:\Windows\winsxs\x86_microsoft-windows-systemrestore-main_31bf3856ad364e35_6.1.7600.16385_none_46b6260b1492939a\rstrui.exe

[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2009-07-14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009-07-14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll

[color=#A23BEC]< MD5 for: SCSIPORT.SYS >[/color]
[2009-07-14 03:19:04 | 000,140,368 | ---- | M] (Microsoft Corporation) MD5=F9882099E58ECF8B0E1C7AFA5D2CC56D -- C:\Windows\System32\drivers\scsiport.sys
[2009-07-14 03:19:04 | 000,140,368 | ---- | M] (Microsoft Corporation) MD5=F9882099E58ECF8B0E1C7AFA5D2CC56D -- C:\Windows\winsxs\x86_microsoft.windows.s..se.scsi_port_driver_31bf3856ad364e35_6.1.7600.16385_none_e55684068b7262bb\scsiport.sys

[color=#A23BEC]< MD5 for: SDBUS.SYS >[/color]
[2009-07-14 01:19:26 | 000,084,992 | ---- | M] (Microsoft Corporation) MD5=7B48CFF3A475FE849DEA65EC4D35C425 -- C:\Windows\System32\DriverStore\FileRepository\sdbus.inf_x86_neutral_0331289ec822e739\sdbus.sys
[2009-07-14 01:19:26 | 000,084,992 | ---- | M] (Microsoft Corporation) MD5=7B48CFF3A475FE849DEA65EC4D35C425 -- C:\Windows\winsxs\x86_sdbus.inf_31bf3856ad364e35_6.1.7600.16385_none_71b912e72baaa74b\sdbus.sys

[color=#A23BEC]< MD5 for: SECDRV.SYS >[/color]
[2009-07-13 22:50:20 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) MD5=90A3935D05B494A5A39D37E71F09A677 -- C:\Windows\System32\drivers\secdrv.sys
[2009-07-13 22:50:20 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) MD5=90A3935D05B494A5A39D37E71F09A677 -- C:\Windows\winsxs\x86_macrovision-protection-safedisc_31bf3856ad364e35_6.1.7600.16385_none_5d832d711e99213d\secdrv.sys

[color=#A23BEC]< MD5 for: SERENUM.SYS >[/color]
[2009-07-14 01:45:28 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=9AD8B8B515E3DF6ACD4212EF465DE2D1 -- C:\Windows\System32\drivers\serenum.sys
[2009-07-14 01:45:28 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=9AD8B8B515E3DF6ACD4212EF465DE2D1 -- C:\Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serenum.sys
[2009-07-14 01:45:28 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=9AD8B8B515E3DF6ACD4212EF465DE2D1 -- C:\Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serenum.sys

[color=#A23BEC]< MD5 for: SERIAL.SYS >[/color]
[2009-07-14 01:45:33 | 000,083,456 | ---- | M] (Microsoft Corporation) MD5=5FB7FCEA0490D821F26F39CC5EA3D1E2 -- C:\Windows\System32\drivers\serial.sys
[2009-07-14 01:45:33 | 000,083,456 | ---- | M] (Microsoft Corporation) MD5=5FB7FCEA0490D821F26F39CC5EA3D1E2 -- C:\Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009-07-14 01:45:33 | 000,083,456 | ---- | M] (Microsoft Corporation) MD5=5FB7FCEA0490D821F26F39CC5EA3D1E2 -- C:\Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys

[color=#A23BEC]< MD5 for: SERVICES.EXE >[/color]
[2009-07-14 03:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009-07-14 03:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

[color=#A23BEC]< MD5 for: SFFDISK.SYS >[/color]
[2009-07-14 01:45:52 | 000,011,264 | ---- | M] (Microsoft Corporation) MD5=9F976E1EB233DF46FCE808D9DEA3EB9C -- C:\Windows\System32\drivers\sffdisk.sys
[2009-07-14 01:45:52 | 000,011,264 | ---- | M] (Microsoft Corporation) MD5=9F976E1EB233DF46FCE808D9DEA3EB9C -- C:\Windows\System32\DriverStore\FileRepository\sffdisk.inf_x86_neutral_fadfac8e3bdbd79b\sffdisk.sys
[2009-07-14 01:45:52 | 000,011,264 | ---- | M] (Microsoft Corporation) MD5=9F976E1EB233DF46FCE808D9DEA3EB9C -- C:\Windows\winsxs\x86_sffdisk.inf_31bf3856ad364e35_6.1.7600.16385_none_a411df264b3d893a\sffdisk.sys

[color=#A23BEC]< MD5 for: SFFP_MMC.SYS >[/color]
[2009-07-14 01:45:52 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=932A68EE27833CFD57C1639D375F2731 -- C:\Windows\System32\drivers\sffp_mmc.sys
[2009-07-14 01:45:52 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=932A68EE27833CFD57C1639D375F2731 -- C:\Windows\System32\DriverStore\FileRepository\sffdisk.inf_x86_neutral_fadfac8e3bdbd79b\sffp_mmc.sys
[2009-07-14 01:45:52 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=932A68EE27833CFD57C1639D375F2731 -- C:\Windows\winsxs\x86_sffdisk.inf_31bf3856ad364e35_6.1.7600.16385_none_a411df264b3d893a\sffp_mmc.sys

[color=#A23BEC]< MD5 for: SFFP_SD.SYS >[/color]
[2009-07-14 01:45:52 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=4F1E5B0FE7C8050668DBFADE8999AEFB -- C:\Windows\System32\drivers\sffp_sd.sys
[2009-07-14 01:45:52 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=4F1E5B0FE7C8050668DBFADE8999AEFB -- C:\Windows\System32\DriverStore\FileRepository\sffdisk.inf_x86_neutral_fadfac8e3bdbd79b\sffp_sd.sys
[2009-07-14 01:45:52 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=4F1E5B0FE7C8050668DBFADE8999AEFB -- C:\Windows\winsxs\x86_sffdisk.inf_31bf3856ad364e35_6.1.7600.16385_none_a411df264b3d893a\sffp_sd.sys

[color=#A23BEC]< MD5 for: SFLOPPY.SYS >[/color]
[2009-07-14 01:45:52 | 000,013,824 | ---- | M] (Microsoft Corporation) MD5=DB96666CC8312EBC45032F30B007A547 -- C:\Windows\System32\drivers\sfloppy.sys
[2009-07-14 01:45:52 | 000,013,824 | ---- | M] (Microsoft Corporation) MD5=DB96666CC8312EBC45032F30B007A547 -- C:\Windows\System32\DriverStore\FileRepository\flpydisk.inf_x86_neutral_2102f5344367a352\sfloppy.sys
[2009-07-14 01:45:52 | 000,013,824 | ---- | M] (Microsoft Corporation) MD5=DB96666CC8312EBC45032F30B007A547 -- C:\Windows\winsxs\x86_flpydisk.inf_31bf3856ad364e35_6.1.7600.16385_none_e6e06650dbcf54b4\sfloppy.sys

[color=#A23BEC]< MD5 for: SHELL32.DLL >[/color]
[2009-07-14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation) MD5=518C6116079414E7074E726925D07A41 -- C:\Windows\System32\shell32.dll
[2009-07-14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation) MD5=518C6116079414E7074E726925D07A41 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.1.7600.16385_none_6bff8101734f8330\shell32.dll

[color=#A23BEC]< MD5 for: SMB.SYS >[/color]
[2009-07-14 01:53:41 | 000,071,168 | ---- | M] (Microsoft Corporation) MD5=3E21C083B8A01CB70BA1F09303010FCE -- C:\Windows\System32\drivers\smb.sys
[2009-07-14 01:53:41 | 000,071,168 | ---- | M] (Microsoft Corporation) MD5=3E21C083B8A01CB70BA1F09303010FCE -- C:\Windows\winsxs\x86_microsoft-windows-nbsmb_31bf3856ad364e35_6.1.7600.16385_none_5f40e7575949d6a9\smb.sys

[color=#A23BEC]< MD5 for: SMCLIB.SYS >[/color]
[2009-07-14 01:45:28 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=2E467E6CA8E0A140C08011844C0D3936 -- C:\Windows\System32\drivers\smclib.sys
[2009-07-14 01:45:28 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=2E467E6CA8E0A140C08011844C0D3936 -- C:\Windows\winsxs\x86_microsoft.windows.s...smart_card_library_31bf3856ad364e35_6.1.7600.16385_none_f9da031b490b1c8a\smclib.sys

[color=#A23BEC]< MD5 for: SONYDCAM.SYS >[/color]
[2009-07-14 01:51:24 | 000,026,752 | ---- | M] (Microsoft Corporation) MD5=904671442DB38840D4424FF7C060BB49 -- C:\Windows\System32\DriverStore\FileRepository\image.inf_x86_neutral_7a389207019f8699\sonydcam.sys
[2009-07-14 01:51:24 | 000,026,752 | ---- | M] (Microsoft Corporation) MD5=904671442DB38840D4424FF7C060BB49 -- C:\Windows\winsxs\x86_image.inf_31bf3856ad364e35_6.1.7600.16385_none_645aa6b658b11ec3\sonydcam.sys

[color=#A23BEC]< MD5 for: SRV.SYS >[/color]
[2009-07-14 01:15:13 | 000,309,760 | ---- | M] (Microsoft Corporation) MD5=2BA4EBC7DFBA845A1EDBE1F75913BE33 -- C:\Windows\System32\drivers\srv.sys
[2009-07-14 01:15:13 | 000,309,760 | ---- | M] (Microsoft Corporation) MD5=2BA4EBC7DFBA845A1EDBE1F75913BE33 -- C:\Windows\winsxs\x86_microsoft-windows-smbserver-v1_31bf3856ad364e35_6.1.7600.16385_none_d9cdbf7e57c72d46\srv.sys

[color=#A23BEC]< MD5 for: STREAM.SYS >[/color]
[2009-07-14 01:50:57 | 000,053,632 | ---- | M] (Microsoft Corporation) MD5=45B44FC9E5AC0DB02B19D515EE809DE5 -- C:\Windows\System32\drivers\stream.sys
[2009-07-14 01:50:57 | 000,053,632 | ---- | M] (Microsoft Corporation) MD5=45B44FC9E5AC0DB02B19D515EE809DE5 -- C:\Windows\winsxs\x86_microsoft-windows-streamclass_31bf3856ad364e35_6.1.7600.16385_none_5e3aebd498f644ed\stream.sys

[color=#A23BEC]< MD5 for: SWENUM.SYS >[/color]
[2009-07-14 03:19:10 | 000,012,240 | ---- | M] (Microsoft Corporation) MD5=E58C78A848ADD9610A4DB6D214AF5224 -- C:\Windows\System32\drivers\swenum.sys
[2009-07-14 03:19:10 | 000,012,240 | ---- | M] (Microsoft Corporation) MD5=E58C78A848ADD9610A4DB6D214AF5224 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\swenum.sys
[2009-07-14 03:19:10 | 000,012,240 | ---- | M] (Microsoft Corporation) MD5=E58C78A848ADD9610A4DB6D214AF5224 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\swenum.sys

[color=#A23BEC]< MD5 for: TAPE.SYS >[/color]
[2009-07-14 01:45:53 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=949C35BF4AE6C110A924AB5E2175DDA7 -- C:\Windows\System32\drivers\tape.sys
[2009-07-14 01:45:53 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=949C35BF4AE6C110A924AB5E2175DDA7 -- C:\Windows\winsxs\x86_microsoft.windows.h..pedrive-driverclass_31bf3856ad364e35_6.1.7600.16385_none_9200269b1ea20fd1\tape.sys

[color=#A23BEC]< MD5 for: TCPIP.SYS >[/color]
[2009-07-14 03:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010-04-09 09:16:33 | 001,289,096 | ---- | M] (Microsoft Corporation) MD5=5D6A83E928F22AF5AC9868B162FFAD0D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_b38009a0e0d5a32d\tcpip.sys
[2010-04-09 09:24:54 | 001,285,000 | ---- | M] (Microsoft Corporation) MD5=63170B9EE1D0EF0032F0408605671D1A -- C:\Windows\System32\drivers\tcpip.sys
[2010-04-09 09:24:54 | 001,285,000 | ---- | M] (Microsoft Corporation) MD5=63170B9EE1D0EF0032F0408605671D1A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_b30e0d41c7a5fe2f\tcpip.sys

[color=#A23BEC]< MD5 for: TDI.SYS >[/color]
[2009-07-14 01:12:12 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=52639C994FE3CD975BFE7428B939B320 -- C:\Windows\System32\drivers\tdi.sys
[2009-07-14 01:12:12 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=52639C994FE3CD975BFE7428B939B320 -- C:\Windows\winsxs\x86_microsoft-windows-tdi-driver_31bf3856ad364e35_6.1.7600.16385_none_66c49eaf974a0e9b\tdi.sys

[color=#A23BEC]< MD5 for: TDPIPE.SYS >[/color]
[2009-07-14 02:01:37 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=1875C1490D99E70E449E3AFAE9FCBADF -- C:\Windows\System32\drivers\tdpipe.sys
[2009-07-14 02:01:37 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=1875C1490D99E70E449E3AFAE9FCBADF -- C:\Windows\winsxs\x86_microsoft-windows-t..es-transportdrivers_31bf3856ad364e35_6.1.7600.16385_none_db828d8fa60ad848\tdpipe.sys

[color=#A23BEC]< MD5 for: TDTCP.SYS >[/color]
[2009-07-14 02:01:37 | 000,024,064 | ---- | M] (Microsoft Corporation) MD5=7551E91EA999EE9A8E9C331D5A9C31F3 -- C:\Windows\System32\drivers\tdtcp.sys
[2009-07-14 02:01:37 | 000,024,064 | ---- | M] (Microsoft Corporation) MD5=7551E91EA999EE9A8E9C331D5A9C31F3 -- C:\Windows\winsxs\x86_microsoft-windows-t..es-transportdrivers_31bf3856ad364e35_6.1.7600.16385_none_db828d8fa60ad848\tdtcp.sys

[color=#A23BEC]< MD5 for: TDX.SYS >[/color]
[2009-07-14 01:12:11 | 000,074,240 | ---- | M] (Microsoft Corporation) MD5=CB39E896A2A83702D1737BFD402B3542 -- C:\Windows\System32\drivers\tdx.sys
[2009-07-14 01:12:11 | 000,074,240 | ---- | M] (Microsoft Corporation) MD5=CB39E896A2A83702D1737BFD402B3542 -- C:\Windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.1.7600.16385_none_ea141e6f3d693e28\tdx.sys

[color=#A23BEC]< MD5 for: TERMDD.SYS >[/color]
[2009-07-14 03:19:10 | 000,051,776 | ---- | M] (Microsoft Corporation) MD5=C36F41EE20E6999DBF4B0425963268A5 -- C:\Windows\System32\drivers\termdd.sys
[2009-07-14 03:19:10 | 000,051,776 | ---- | M] (Microsoft Corporation) MD5=C36F41EE20E6999DBF4B0425963268A5 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\termdd.sys
[2009-07-14 03:19:10 | 000,051,776 | ---- | M] (Microsoft Corporation) MD5=C36F41EE20E6999DBF4B0425963268A5 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\termdd.sys

[color=#A23BEC]< MD5 for: UDFS.SYS >[/color]
[2009-07-14 01:14:09 | 000,246,784 | ---- | M] (Microsoft Corporation) MD5=09CC3E16F8E5EE7168E01CF8FCBE061A -- C:\Windows\System32\drivers\udfs.sys
[2009-07-14 01:14:09 | 000,246,784 | ---- | M] (Microsoft Corporation) MD5=09CC3E16F8E5EE7168E01CF8FCBE061A -- C:\Windows\winsxs\x86_microsoft-windows-udfs_31bf3856ad364e35_6.1.7600.16385_none_a64fee667e374655\udfs.sys

[color=#A23BEC]< MD5 for: USB8023.SYS >[/color]
[2009-07-14 01:54:16 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=B71DA871254D96D0349639D03E4C1CC1 -- C:\Windows\System32\drivers\usb8023.sys
[2009-07-14 01:54:16 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=B71DA871254D96D0349639D03E4C1CC1 -- C:\Windows\winsxs\x86_microsoft-windows-rndis-usb-microport_31bf3856ad364e35_6.1.7600.16385_none_c4c31b1bb3fed11a\usb8023.sys

[color=#A23BEC]< MD5 for: USBCAMD.SYS >[/color]
[2009-07-14 01:51:15 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=47D88F155EB4E4BE60EBD76AC8D17DB7 -- C:\Windows\System32\drivers\USBCAMD.sys
[2009-07-14 01:51:15 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=47D88F155EB4E4BE60EBD76AC8D17DB7 -- C:\Windows\winsxs\x86_microsoft-windows-usbcamd_31bf3856ad364e35_6.1.7600.16385_none_9f5eb7b3d98ea3ce\USBCAMD.sys

[color=#A23BEC]< MD5 for: USBCAMD2.SYS >[/color]
[2009-07-14 01:51:16 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=2190F65EC7E9AE7A301E01E4261ACEF8 -- C:\Windows\System32\drivers\USBCAMD2.sys
[2009-07-14 01:51:16 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=2190F65EC7E9AE7A301E01E4261ACEF8 -- C:\Windows\winsxs\x86_microsoft-windows-usbcamd_31bf3856ad364e35_6.1.7600.16385_none_9f5eb7b3d98ea3ce\USBCAMD2.sys

[color=#A23BEC]< MD5 for: USBCCGP.SYS >[/color]
[2009-07-14 01:51:31 | 000,075,264 | ---- | M] (Microsoft Corporation) MD5=8455C4ED038EFD09E99327F9D2D48FFA -- C:\Windows\System32\drivers\usbccgp.sys
[2009-07-14 01:51:31 | 000,075,264 | ---- | M] (Microsoft Corporation) MD5=8455C4ED038EFD09E99327F9D2D48FFA -- C:\Windows\System32\DriverStore\FileRepository\usb.inf_x86_neutral_e24d8d3fec6e4567\usbccgp.sys
[2009-07-14 01:51:31 | 000,075,264 | ---- | M] (Microsoft Corporation) MD5=8455C4ED038EFD09E99327F9D2D48FFA -- C:\Windows\winsxs\x86_usb.inf_31bf3856ad364e35_6.1.7600.16385_none_cacebd196fc5e8e0\usbccgp.sys

[color=#A23BEC]< MD5 for: USBD.SYS >[/color]
[2009-07-14 01:51:05 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=18E71EA0E063037A5C3C8272A5262B7C -- C:\Windows\System32\drivers\usbd.sys
[2009-07-14 01:51:05 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=18E71EA0E063037A5C3C8272A5262B7C -- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_ba59fa32fc6a596d\usbd.sys
[2009-07-14 01:51:05 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=18E71EA0E063037A5C3C8272A5262B7C -- C:\Windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.1.7600.16385_none_bd98b59664e136c7\usbd.sys

[color=#A23BEC]< MD5 for: USBEHCI.SYS >[/color]
[2009-07-14 01:51:14 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=1C333BFD60F2FED2C7AD5DAF533CB742 -- C:\Windows\System32\drivers\usbehci.sys
[2009-07-14 01:51:14 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=1C333BFD60F2FED2C7AD5DAF533CB742 -- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_ba59fa32fc6a596d\usbehci.sys
[2009-07-14 01:51:14 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=1C333BFD60F2FED2C7AD5DAF533CB742 -- C:\Windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.1.7600.16385_none_bd98b59664e136c7\usbehci.sys

[color=#A23BEC]< MD5 for: USBHUB.SYS >[/color]
[2009-07-14 01:52:09 | 000,258,560 | ---- | M] (Microsoft Corporation) MD5=EE6EF93CCFA94FAE8C6AB298273D8AE2 -- C:\Windows\System32\drivers\usbhub.sys
[2009-07-14 01:52:09 | 000,258,560 | ---- | M] (Microsoft Corporation) MD5=EE6EF93CCFA94FAE8C6AB298273D8AE2 -- C:\Windows\System32\DriverStore\FileRepository\usb.inf_x86_neutral_e24d8d3fec6e4567\usbhub.sys
[2009-07-14 01:52:09 | 000,258,560 | ---- | M] (Microsoft Corporation) MD5=EE6EF93CCFA94FAE8C6AB298273D8AE2 -- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_ba59fa32fc6a596d\usbhub.sys
[2009-07-14 01:52:09 | 000,258,560 | ---- | M] (Microsoft Corporation) MD5=EE6EF93CCFA94FAE8C6AB298273D8AE2 -- C:\Windows\winsxs\x86_usb.inf_31bf3856ad364e35_6.1.7600.16385_none_cacebd196fc5e8e0\usbhub.sys
[2009-07-14 01:52:09 | 000,258,560 | ---- | M] (Microsoft Corporation) MD5=EE6EF93CCFA94FAE8C6AB298273D8AE2 -- C:\Windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.1.7600.16385_none_bd98b59664e136c7\usbhub.sys

[color=#A23BEC]< MD5 for: USBOHCI.SYS >[/color]
[2009-07-14 01:51:14 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=A6FB7957EA7AFB1165991E54CE934B74 -- C:\Windows\System32\drivers\usbohci.sys
[2009-07-14 01:51:14 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=A6FB7957EA7AFB1165991E54CE934B74 -- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_ba59fa32fc6a596d\usbohci.sys
[2009-07-14 01:51:14 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=A6FB7957EA7AFB1165991E54CE934B74 -- C:\Windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.1.7600.16385_none_bd98b59664e136c7\usbohci.sys

[color=#A23BEC]< MD5 for: USBPORT.SYS >[/color]
[2009-07-14 01:51:15 | 000,284,160 | ---- | M] (Microsoft Corporation) MD5=F6D1C957C5BF4F274AAD1DA7059916E4 -- C:\Windows\System32\drivers\usbport.sys
[2009-07-14 01:51:15 | 000,284,160 | ---- | M] (Microsoft Corporation) MD5=F6D1C957C5BF4F274AAD1DA7059916E4 -- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_ba59fa32fc6a596d\usbport.sys
[2009-07-14 01:51:15 | 000,284,160 | ---- | M] (Microsoft Corporation) MD5=F6D1C957C5BF4F274AAD1DA7059916E4 -- C:\Windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.1.7600.16385_none_bd98b59664e136c7\usbport.sys

[color=#A23BEC]< MD5 for: USBPRINT.SYS >[/color]
[2009-07-14 02:17:06 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=797D862FE0875E75C7CC4C1AD7B30252 -- C:\Windows\System32\drivers\usbprint.sys
[2009-07-14 02:17:06 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=797D862FE0875E75C7CC4C1AD7B30252 -- C:\Windows\System32\DriverStore\FileRepository\usbprint.inf_x86_neutral_203e16627752a160\usbprint.sys
[2009-07-14 02:17:06 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=797D862FE0875E75C7CC4C1AD7B30252 -- C:\Windows\winsxs\x86_usbprint.inf_31bf3856ad364e35_6.1.7600.16385_none_32d0188e22bd908f\usbprint.sys

[color=#A23BEC]< MD5 for: USBSCAN.SYS >[/color]
[2009-07-14 02:14:44 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=576096CCBC07E7C4EA4F5E6686D6888F -- C:\Windows\System32\DriverStore\FileRepository\sti.inf_x86_neutral_6a74c91c1f723826\usbscan.sys
[2009-07-14 02:14:44 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=576096CCBC07E7C4EA4F5E6686D6888F -- C:\Windows\winsxs\x86_sti.inf_31bf3856ad364e35_6.1.7600.16385_none_59b5278c421a3644\usbscan.sys

[color=#A23BEC]< MD5 for: USBSTOR.SYS >[/color]
[2009-07-14 01:51:19 | 000,074,752 | ---- | M] (Microsoft Corporation) MD5=D8889D56E0D27E57ED4591837FE71D27 -- C:\Windows\System32\drivers\USBSTOR.SYS
[2009-07-14 01:51:19 | 000,074,752 | ---- | M] (Microsoft Corporation) MD5=D8889D56E0D27E57ED4591837FE71D27 -- C:\Windows\System32\DriverStore\FileRepository\usbstor.inf_x86_neutral_83027f5d5b2468d3\USBSTOR.SYS
[2009-07-14 01:51:19 | 000,074,752 | ---- | M] (Microsoft Corporation) MD5=D8889D56E0D27E57ED4591837FE71D27 -- C:\Windows\winsxs\x86_usbstor.inf_31bf3856ad364e35_6.1.7600.16385_none_485ca4d9f926b0b4\USBSTOR.SYS

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2009-07-14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009-07-14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

[color=#A23BEC]< MD5 for: VGA.SYS >[/color]
[2009-07-14 01:25:51 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=8E38096AD5C8570A6F1570A61E251561 -- C:\Windows\System32\drivers\vga.sys
[2009-07-14 01:25:51 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=8E38096AD5C8570A6F1570A61E251561 -- C:\Windows\winsxs\x86_microsoft-windows-standardvga_31bf3856ad364e35_6.1.7600.16385_none_9c6287a93b5351ec\vga.sys

[color=#A23BEC]< MD5 for: VIDEOPRT.SYS >[/color]
[2009-07-14 01:25:51 | 000,111,616 | ---- | M] (Microsoft Corporation) MD5=15C126D1B55814B9E5CAB10A9C1F4C67 -- C:\Windows\System32\drivers\videoprt.sys
[2009-07-14 01:25:51 | 000,111,616 | ---- | M] (Microsoft Corporation) MD5=15C126D1B55814B9E5CAB10A9C1F4C67 -- C:\Windows\winsxs\x86_microsoft-windows-videoport_31bf3856ad364e35_6.1.7600.16385_none_bbf0a23665b80f3d\videoprt.sys

[color=#A23BEC]< MD5 for: VOLSNAP.SYS >[/color]
[2009-07-14 03:19:10 | 000,245,328 | ---- | M] (Microsoft Corporation) MD5=58DF9D2481A56EDDE167E51B334D44FD -- C:\Windows\System32\drivers\volsnap.sys
[2009-07-14 03:19:10 | 000,245,328 | ---- | M] (Microsoft Corporation) MD5=58DF9D2481A56EDDE167E51B334D44FD -- C:\Windows\System32\DriverStore\FileRepository\volume.inf_x86_neutral_29364d30156a24ca\volsnap.sys
[2009-07-14 03:19:10 | 000,245,328 | ---- | M] (Microsoft Corporation) MD5=58DF9D2481A56EDDE167E51B334D44FD -- C:\Windows\winsxs\x86_volume.inf_31bf3856ad364e35_6.1.7600.16385_none_158d0da45d68903e\volsnap.sys

[color=#A23BEC]< MD5 for: WANARP.SYS >[/color]
[2009-07-14 01:55:02 | 000,063,488 | ---- | M] (Microsoft Corporation) MD5=692A712062146E96D28BA0B7D75DE31B -- C:\Windows\System32\drivers\wanarp.sys
[2009-07-14 01:55:02 | 000,063,488 | ---- | M] (Microsoft Corporation) MD5=692A712062146E96D28BA0B7D75DE31B -- C:\Windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.1.7600.16385_none_0db6be04dbc2da8a\wanarp.sys

[color=#A23BEC]< MD5 for: WININIT.EXE >[/color]
[2009-07-14 03:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\System32\wininit.exe
[2009-07-14 03:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2009-07-14 03:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\System32\winlogon.exe
[2009-07-14 03:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

[color=#A23BEC]< MD5 for: WMIACPI.SYS >[/color]
[2009-07-14 01:19:17 | 000,011,264 | ---- | M] (Microsoft Corporation) MD5=0217679B8FCA58714C3BF2726D2CA84E -- C:\Windows\System32\drivers\wmiacpi.sys
[2009-07-14 01:19:17 | 000,011,264 | ---- | M] (Microsoft Corporation) MD5=0217679B8FCA58714C3BF2726D2CA84E -- C:\Windows\System32\DriverStore\FileRepository\acpi.inf_x86_neutral_ddd3c514822f1b21\wmiacpi.sys
[2009-07-14 01:19:17 | 000,011,264 | ---- | M] (Microsoft Corporation) MD5=0217679B8FCA58714C3BF2726D2CA84E -- C:\Windows\winsxs\x86_acpi.inf_31bf3856ad364e35_6.1.7600.16385_none_225f1a272f5b64b9\wmiacpi.sys

[color=#A23BEC]< MD5 for: WMILIB.SYS >[/color]
[2009-07-14 03:19:10 | 000,014,912 | ---- | M] (Microsoft Corporation) MD5=9A5B1059FE015DB5269FBB25ACBF841D -- C:\Windows\System32\drivers\wmilib.sys
[2009-07-14 03:19:10 | 000,014,912 | ---- | M] (Microsoft Corporation) MD5=9A5B1059FE015DB5269FBB25ACBF841D -- C:\Windows\winsxs\x86_microsoft-windows-wmilib_31bf3856ad364e35_6.1.7600.16385_none_592b507a658046bb\wmilib.sys

[color=#A23BEC]< MD5 for: WS2IFSL.SYS >[/color]
[2009-07-14 01:55:02 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=6DB3276587B853BF886B69528FDB048C -- C:\Windows\System32\drivers\ws2ifsl.sys
[2009-07-14 01:55:02 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=6DB3276587B853BF886B69528FDB048C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.1.7600.16385_none_4f5cf6f829213bb2\ws2ifsl.sys

[color=#A23BEC]< CREATERESTOREPOINT >[/color]

< End of report >

Publicité


Signaler le contenu de ce document

Publicité