cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 10/12/2015 20:29:43 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Technologie\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10240.16384)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,68 Gb Total Physical Memory | 1,96 Gb Available Physical Memory | 53,39% Memory free
7,43 Gb Paging File | 5,31 Gb Available in Paging File | 71,56% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,39 Gb Total Space | 77,58 Gb Free Space | 52,99% Space Free | Partition Type: NTFS
Drive D: | 319,27 Gb Total Space | 310,47 Gb Free Space | 97,24% Space Free | Partition Type: NTFS

Computer Name: TECHNOLOGIE-PC | User Name: Technologie | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found
PRC - C:\Users\Technologie\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Users\Technologie\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files (x86)\IObit\Classic Start\ClassicStart.exe (IObit)
PRC - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd.)
PRC - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies Ltd.)
PRC - C:\Program Files (x86)\IObit\Classic Start\StartMenu_Hook.exe (IObit)
PRC - C:\Program Files (x86)\IObit\Classic Start\SMService.exe (IObit)
PRC - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe (IObit)
PRC - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (IObit)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe (IObit)
PRC - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe (Check Point Software Technologies, Ltd.)
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes)
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes)
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes)
PRC - C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe ()
PRC - C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe (IObit)
PRC - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe (IObit)
PRC - C:\Program Files (x86)\USB Disk Security\USBGuard.exe (Zbshareware Lab)
PRC - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (DEVGURU Co., LTD.)
PRC - C:\Windows\SysWOW64\SecUPDUtilSvc.exe ()
PRC - C:\Program Files (x86)\SensorsViewPro43\svservice.exe ()


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Program Files\AVAST Software\Avast\libcef.dll ()
MOD - C:\Program Files\AVAST Software\Avast\log.dll ()
MOD - C:\Program Files\AVAST Software\Avast\ffl2.dll ()
MOD - C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll ()
MOD - C:\Program Files (x86)\IObit\Classic Start\sqlite3.dll ()
MOD - C:\Program Files (x86)\IObit\Classic Start\ProductStatistics.dll ()
MOD - C:\Program Files (x86)\IObit\Classic Start\parseAuto.dll ()
MOD - C:\Program Files (x86)\IObit\Classic Start\madexcept_.bpl ()
MOD - C:\Program Files (x86)\IObit\Classic Start\madbasic_.bpl ()
MOD - C:\Program Files (x86)\IObit\Classic Start\maddisAsm_.bpl ()
MOD - C:\Program Files (x86)\IObit\Smart Defrag 4\ProductStatistics.dll ()
MOD - C:\Program Files (x86)\USB Disk Security\locales\french.dll ()
MOD - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF ()
MOD - C:\Program Files (x86)\IObit\Smart Defrag 4\webres.dll ()


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - (RemoteSolverDispatcher) -- C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe SOFTWARE\SRAC\COSMOS_FloWorks 2015 File not found
SRV:[b]64bit:[/b] - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV:[b]64bit:[/b] - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (RetailDemo) -- C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserManager) -- C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (StateRepository) -- C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DsSvc) -- C:\Windows\SysNative\dssvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc) -- C:\Windows\SysNative\UserDataService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc) -- C:\Windows\SysNative\PimIndexMaintenance.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc) -- C:\Windows\SysNative\Unistore.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (CoreMessagingRegistrar) -- C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (icssvc) -- C:\Windows\SysNative\tetheringservice.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DmEnrollmentSvc) -- C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (tiledatamodelsvc) -- C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NgcSvc) -- C:\Windows\SysNative\ngcsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NetSetupSvc) -- C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SynTPEnhService) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated)
SRV:[b]64bit:[/b] - (w3logsvc) -- C:\Windows\SysNative\inetsrv\w3logsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (MSMQ) -- C:\Windows\SysNative\mqsvc.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SensorService) -- C:\Windows\SysNative\SensorService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UsoSvc) -- C:\Windows\SysNative\usocore.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (ClipSVC) -- C:\Windows\SysNative\ClipSVC.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SensorDataService) -- C:\Windows\SysNative\SensorDataService.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WalletService) -- C:\Windows\SysNative\WalletService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (IEEtwCollectorService) -- C:\WINDOWS\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WpnService) -- C:\Windows\SysNative\wpnservice.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DevQueryBroker) -- C:\Windows\SysNative\DevQueryBroker.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (lfsvc) -- C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (XblGameSave) -- C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (XboxNetApiSvc) -- C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NgcCtnrSvc) -- C:\Windows\SysNative\NgcCtnrSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (MapsBroker) -- C:\Windows\SysNative\moshost.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AJRouter) -- C:\Windows\SysNative\AJRouter.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (LicenseManager) -- C:\Windows\SysNative\LicenseManagerSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (CDPSvc) -- C:\Windows\SysNative\cdpsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (embeddedmode) -- C:\Windows\SysNative\embeddedmodesvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (XblAuthManager) -- C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc) -- C:\Windows\SysNative\APHostService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DcpSvc) -- C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (diagnosticshub.standardcollector.service) -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc_Session5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc_Session2) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc_Session16) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc_Session13) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc_Session11) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc_Session5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc_Session2) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc_Session16) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc_Session13) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc_Session11) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc_Session5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc_Session2) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc_Session16) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc_Session13) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc_Session11) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc_Session5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc_Session2) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc_Session16) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc_Session13) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc_Session11) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (EntAppSvc) -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (dmwappushservice) -- C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SmsRouter) -- C:\Windows\SysNative\SmsRouterSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WdNisSvc) -- C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicvmsession) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DoSvc) -- C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (FlexNet Licensing Service 64) -- C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (Flexera Software LLC)
SRV:[b]64bit:[/b] - (ss_conn_service) -- C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (DEVGURU Co., LTD.)
SRV:[b]64bit:[/b] - (CoordinatorServiceHost) -- C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe (Dassault Systèmes SolidWorks Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (vsmon) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd.)
SRV - (SMService) -- C:\Program Files (x86)\IObit\Classic Start\SMService.exe (IObit)
SRV - (LiveUpdateSvc) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe (IObit)
SRV - (StateRepository) -- C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SRV - (IMFservice) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (IObit)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (ZAPrivacyService) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe (Check Point Software Technologies, Ltd.)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes)
SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes)
SRV - (UnistoreSvc) -- C:\Windows\SysWOW64\Unistore.dll (Microsoft Corporation)
SRV - (DmEnrollmentSvc) -- C:\Windows\SysWOW64\Windows.Internal.Management.dll (Microsoft Corporation)
SRV - (CoreMessagingRegistrar) -- C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SRV - (MF NTFS Monitor) -- C:\Program Files (x86)\MediaFire Desktop\bin\MFUsnMonitorService.exe ()
SRV - (WAS) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (W3SVC) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (w3logsvc) -- C:\Windows\SysWOW64\inetsrv\w3logsvc.dll (Microsoft Corporation)
SRV - (AppHostSvc) -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll (Microsoft Corporation)
SRV - (AdvancedSystemCareService8) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe (IObit)
SRV - (lfsvc) -- C:\Windows\SysWOW64\lfsvc.dll (Microsoft Corporation)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (PrintNotify) -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (SolidWorks Licensing Service) -- C:\Program Files (x86)\Common Files\SOLIDWORKS Shared\Service\SolidWorksLicensing.exe (SolidWorks)
SRV - (FlexNet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (Flexera Software LLC)
SRV - (SamsungUPDUtilSvc) -- C:\Windows\SysWOW64\SecUPDUtilSvc.exe ()
SRV - (SensorsVService) -- C:\Program Files (x86)\SensorsViewPro43\svservice.exe ()
SRV - (SCPDFReadSpool) -- C:\Program Files (x86)\SolidDocuments\Solid Converter PDF\SCPDF\SolidConverterPDFServicex64.exe (Solid Documents, LLC)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes)
DRV:[b]64bit:[/b] - (RTSUER) -- C:\Windows\SysNative\drivers\RtsUer.sys (Realsil Semiconductor Corporation)
DRV:[b]64bit:[/b] - (SmbDrvI) -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys (Synaptics Incorporated)
DRV:[b]64bit:[/b] - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswVmm) -- C:\WINDOWS\SysNative\drivers\aswVmm.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswStm) -- C:\Windows\SysNative\drivers\aswStm.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswRvrt) -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswHwid) -- C:\Windows\SysNative\drivers\aswHwid.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software)
DRV:[b]64bit:[/b] - (Vsdatant) -- C:\Windows\SysNative\drivers\vsdatant.sys (Check Point Software Technologies Ltd.)
DRV:[b]64bit:[/b] - (athr) -- C:\Windows\SysNative\drivers\athw10x.sys (Qualcomm Atheros Communications, Inc.)
DRV:[b]64bit:[/b] - (MBAMWebAccessControl) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes Corporation)
DRV:[b]64bit:[/b] - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes)
DRV:[b]64bit:[/b] - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:[b]64bit:[/b] - (buttonconverter) -- C:\Windows\SysNative\drivers\buttonconverter.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (mfmonitor) -- C:\Windows\SysNative\drivers\mfmonitor_x64.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:[b]64bit:[/b] - (GUBootStartup) -- C:\Windows\SysNative\drivers\GUBootStartup.sys (Glarysoft Ltd)
DRV:[b]64bit:[/b] - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:[b]64bit:[/b] - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (MQAC) -- C:\Windows\SysNative\drivers\mqac.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Wof) -- C:\WINDOWS\SysNative\drivers\wof.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (wdiwifi) -- C:\Windows\SysNative\drivers\WdiWiFi.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ReFSv1) -- C:\WINDOWS\SysNative\drivers\refsv1.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UcmUcsi) -- C:\Windows\SysNative\drivers\UcmUcsi.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WindowsTrustedRT) -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UcmCx0101) -- C:\Windows\SysNative\drivers\UcmCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (storqosflt) -- C:\Windows\SysNative\drivers\storqosflt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (IoQos) -- C:\Windows\SysNative\drivers\ioqos.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (MMCSS) -- C:\Windows\SysNative\drivers\mmcss.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Ufx01000) -- C:\Windows\SysNative\drivers\ufx01000.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UrsCx01000) -- C:\Windows\SysNative\drivers\urscx01000.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (cnghwassist) -- C:\Windows\SysNative\drivers\cnghwassist.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (GpuEnergyDrv) -- C:\Windows\SysNative\drivers\gpuenergydrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Ucx01000) -- C:\Windows\SysNative\drivers\Ucx01000.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (FileCrypt) -- C:\Windows\SysNative\drivers\filecrypt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UdeCx) -- C:\Windows\SysNative\drivers\Udecx.sys ()
DRV:[b]64bit:[/b] - (vhf) -- C:\Windows\SysNative\drivers\vhf.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UrsChipidea) -- C:\Windows\SysNative\drivers\urschipidea.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UrsSynopsys) -- C:\Windows\SysNative\drivers\urssynopsys.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WindowsTrustedRTProxy) -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (mlx4_bus) -- C:\Windows\SysNative\drivers\mlx4_bus.sys (Mellanox)
DRV:[b]64bit:[/b] - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ibbus) -- C:\Windows\SysNative\drivers\ibbus.sys (Mellanox)
DRV:[b]64bit:[/b] - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:[b]64bit:[/b] - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ufxsynopsys) -- C:\Windows\SysNative\drivers\ufxsynopsys.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UfxChipidea) -- C:\Windows\SysNative\drivers\UfxChipidea.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ndfltr) -- C:\Windows\SysNative\drivers\ndfltr.sys (Mellanox)
DRV:[b]64bit:[/b] - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:[b]64bit:[/b] - (WinVerbs) -- C:\Windows\SysNative\drivers\winverbs.sys (Mellanox)
DRV:[b]64bit:[/b] - (percsas3i) -- C:\Windows\SysNative\drivers\percsas3i.sys (Avago Technologies)
DRV:[b]64bit:[/b] - (percsas2i) -- C:\Windows\SysNative\drivers\percsas2i.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (storufs) -- C:\Windows\SysNative\drivers\storufs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:[b]64bit:[/b] - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WinMad) -- C:\Windows\SysNative\drivers\winmad.sys (Mellanox)
DRV:[b]64bit:[/b] - (swenum) -- C:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (QLogic Corporation)
DRV:[b]64bit:[/b] - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:[b]64bit:[/b] - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:[b]64bit:[/b] - (xboxgip) -- C:\Windows\SysNative\drivers\xboxgip.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (CapImg) -- C:\Windows\SysNative\drivers\capimg.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:[b]64bit:[/b] - (LSI_SAS2i) -- C:\Windows\SysNative\drivers\lsi_sas2i.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (LSI_SAS3i) -- C:\Windows\SysNative\drivers\lsi_sas3i.sys (Avago Technologies)
DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:[b]64bit:[/b] - (hidinterrupt) -- C:\Windows\SysNative\drivers\hidinterrupt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (xinputhid) -- C:\Windows\SysNative\drivers\xinputhid.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (genericusbfn) -- C:\Windows\SysNative\drivers\genericusbfn.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (netvsc) -- C:\Windows\SysNative\drivers\netvsc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (CompositeBus) -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (fcvsc) -- C:\Windows\SysNative\drivers\fcvsc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (k57nd60a) -- C:\Windows\SysNative\drivers\k57nd60a.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (adgnetworktdidrv) -- C:\Windows\SysNative\drivers\adgnetworktdidrv.sys ()
DRV:[b]64bit:[/b] - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:[b]64bit:[/b] - (HECIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (Impcd) -- C:\Windows\SysNative\drivers\Impcd.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (SmartDefragDriver) -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys (IObit)
DRV:[b]64bit:[/b] - (b57wdiagdrv) -- C:\Windows\SysNative\drivers\bxskinnya.sys (Broadcom Company)
DRV:[b]64bit:[/b] - (tsusbhub) -- C:\Windows\SysNative\drivers\tsusbhub.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Revoflt) -- C:\Windows\SysNative\drivers\revoflt.sys (VS Revo Group)
DRV - (swenum) -- C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys (Microsoft Corporation)
DRV - (HWiNFO32) -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS (REALiX(tm))
DRV - (RegFilter) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys (IObit.com)
DRV - (FileMonitor) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys (IObit)
DRV - (UrlFilter) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys (IObit.com)
DRV - (sensorsview) -- C:\Program Files (x86)\SensorsViewPro43\drv\sensorsview32_64.sys (OpenLibSys.org)
DRV - (Sentinel) -- C:\Windows\SysWOW64\drivers\SENTINEL.SYS (Rainbow Technologies, Inc.)
DRV - (Sntnlusb) -- C:\Windows\SysWOW64\drivers\SNTNLUSB.SYS (Rainbow Technologies Inc.)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}: "URL" = https://www.google.com/search?trackid=sp-006&q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ar-eg/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 4D DA 2C A9 60 78 D0 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\..\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}: "URL" = https://www.google.com/search?trackid=sp-006&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.cohort: "web.xml"
FF - prefs.js..browser.search.countryCode: "DZ"
FF - prefs.js..browser.search.defaultengine: "Google (avast)"
FF - prefs.js..browser.search.defaultenginename: "Google (avast)"
FF - prefs.js..browser.search.defaultthis.engineName: "Google (avast)"
FF - prefs.js..browser.search.defaulturl: "https://www.google.com/search/?trackid=sp-006"
FF - prefs.js..browser.search.order.1: "Google (avast)"
FF - prefs.js..browser.search.region: "DZ"
FF - prefs.js..browser.search.selectedEngine: "Google (avast)"
FF - prefs.js..browser.startup.homepage: "https://www.google.com/?trackid=sp-006"
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:3.6
FF - prefs.js..extensions.enabledAddons: %7BDDC359D1-844A-42a7-9AA1-88A850A938A8%7D:2.0.18.1-signed
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:42.0
FF - prefs.js..keyword.URL: "https://www.google.com/search/?trackid=sp-006"
FF - user.js - File not found

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@cuminas.jp/DjVuPlugin: C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll (Cuminas Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1221171.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@cuminas.jp/DjVuPlugin: C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll (Cuminas Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Users\Technologie\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015/11/26 13:19:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015/11/26 12:59:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 42.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 42.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2015/04/19 11:36:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Technologie\AppData\Roaming\mozilla\Extensions
[2015/12/02 12:44:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Technologie\AppData\Roaming\mozilla\Firefox\Profiles\y7j7xdx5.default\extensions
[2015/11/18 16:38:23 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- C:\Users\Technologie\AppData\Roaming\mozilla\Firefox\Profiles\y7j7xdx5.default\extensions\iobitascsurfingprotection@iobit.com
[2015/11/27 12:30:57 | 000,977,746 | ---- | M] () (No name found) -- C:\Users\Technologie\AppData\Roaming\mozilla\firefox\profiles\y7j7xdx5.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2015/12/02 12:44:57 | 000,665,944 | ---- | M] () (No name found) -- C:\Users\Technologie\AppData\Roaming\mozilla\firefox\profiles\y7j7xdx5.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
[2015/12/02 12:23:17 | 000,356,897 | ---- | M] () (No name found) -- C:\Users\Technologie\AppData\Roaming\mozilla\firefox\profiles\y7j7xdx5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2015/09/12 15:08:48 | 000,002,428 | ---- | M] () -- C:\Users\Technologie\AppData\Roaming\mozilla\firefox\profiles\y7j7xdx5.default\searchplugins\google-avast.xml
[2015/10/23 21:36:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2015/11/26 18:50:18 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afkpkaagbcebgebfcangeibbcjangpgd\1.1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahbpokpfohopgmmdcgmgbhffofmepgoi\1.0.0.3_0\app
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahbpokpfohopgmmdcgmgbhffofmepgoi\1.0.0.3_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahigpjeolkfgjdaeodlmaceggigbpeoh\3.3_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbnbnfhgdkipddjnlakmajklbgjjcjgp\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\beoldljceodklpdmkgelhbdllhhciinh\13.6456.8346_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgafdfbeilmpdipkccdjddlbmnblkldf\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgngjfgpahnnncnimlhjgjhdajmaeeoa\8.0.7_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjeodpkbkjgpflifejmbndkogjeckoij\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkggpmiilmbfpkkpgadbpfepannagnah\1.1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmgjaohkdkcimbbmlmikjklllkbjjgaf\1.4_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpckajjkmjncafjlkielcgheibdlnfgc\2.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpgpffljkgjmijjdmjbdppndoojdgboe\4.0.2_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccafgjegnkjmnpiknapfdchhjpopjkgo\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdhddkkmlmmbglgcihnpaiaknlkccpll\1.5_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdhddkkmlmmbglgcihnpaiaknlkccpll\1.5_0\~
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clkfdgnfefjmciocbhnffnbpkjpdleca\2.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnpfahhfcknbfalnpepckmhgbfiniaod\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdieigeclacgkdlmnojihknoblpafo\6.1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcjklelhlppicenfdgmgbnaeidogdoh\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddleddcoaciponfdfiepbbblacmdhpno\1.4_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djaoeafihpfaakkpdobmhedohgnmhpbp\2.4.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dknkaepijclibocpmckgabmkoglbgmlk\1.3_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejafdpedefplpgoacblaboikebhhjlib\1.1.0.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eladgefgfablffmdbgbllikigaaehjbd\1.2.2_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.7.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fomnekblkgngcfncelckebgakokhoaaj\1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gceeodfjmkoilhaoehbnhofdpobaohnm\1.4_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gecgipfabdickgidpmbicneamekgbaej\1.2.4_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.45_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\11.1.0.210_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\helcoidggejhedkbbgbofkfcheikaoec\2.1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgiidlnejdlfoacoeleopkljhbckmlko\4.0.4_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlajljlkdiagggfdmmllmecjemgfcno\0.16_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifmhoabcaeehkljcfclfiieohkohdgbb\12.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihjbpjahiibmjdlcgodcnmpelpmilamk\3.4_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijhcehgkaccjiljllpejjekibagmonki\1.2_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iknmngdkhigbncplppibfpeekkafhnak\2.1.8_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipgpdacoallahbdedblioplcgpkkgnig\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfbadlndcminbkfojhlimnkgaackjmdo\19_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjbggabcnolbjngfelaodkfoabjmjicc\2.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjcdeclblmjjmlmlhohjhffninphijdm\1.0.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjkhefodfbgjpcmahghmfggbcpjabnag\1.0.3_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlehaidnnmjjkhgbbiombcdifogolhap\1.0.8_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnamdlacgipmoldlhfgjficjiclhgibm\1.0.16_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpcenahnngjklfilghhiochkndllljbj\2.10.2_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbgdenhobifcbckaiohandoodkepleif\2.1.7.8_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfodbocncpdocjdknjadipkgbbagld\2.0.1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkfobnmhjmjkgojmfldhnkmfcdjjakhb\1.2.1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmfmnamhddafiplkkobdinpjcnidlplk\1.0.1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpbhbohcdnlcediiopngchhnnofnhaec\2.0.1.28_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\liakbghpeojfdlflonkjflmfcmchjfnk\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljfjkehpnfnehklmfppkdlkpgngnfdcn\2.0.1.28_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkledilgabpellhganjgplgemmoadagh\0.9.75_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lohdbhoaihdbfdnpbpoafgfknkjdnnaa\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcebbpjfmhfhghljpkjianfedoabllce\2_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhagnkphcmpkmabhocgimoncfaihkpof\3_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhfpbpkabpeoemcgaajkjannaeaemcko\2.5_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjfoehokglnmbbnncflhhgapdfkhahle\1.0.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlejmcepeibggbcldpjglgkocmgjgegh\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlonhgnjdlnjgalpdigmbpfpielpadmc\1.0.8.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mojepdcdhagkphhjdpeomllefjahglbl\1.2.0.11_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\molncoemjfmpgdkbdlbjmhlcgniigdnf\0.9.3_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngbcgifdaopbfflfhbcfeomijfbbcadi\2.63_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\njdhbailkldjhkpijhjmnbjiphjcinkc\1.4_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\njkhagialigbhdleagnpehgfnmaebfdh\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmeckaoceedkaglidhmlnnaapllikjhp\1.5.2_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\noondiphcddnnabmjcihcjfbhfklnnep\1.15_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojldfpglenpceffckkjhajofdbpkfgmn\11_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\okehlnjpihomkdokiiafpejniofjaoom\1.0.6_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pabppflkalbniedjechdomdnofnogcfh\1.3.4_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdghplmhgbgbiakkfldhaoadbpmidmkp\1.0.3.1_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfaogkfljpdfmodbmbogiiblppijleen\2.0.6.28_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pihfccclbpikjeecdehncecpmkggndjn\1.0_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnklkpdjoffdddkecpicebkaacbpapio\1.0.2_0\
CHR - Extension: No name found = C:\Users\Technologie\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk\1.0_0\

O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [IObit Malware Fighter] C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe (IObit)
O4 - HKLM..\Run: [USB Security] C:\Program Files (x86)\USB Disk Security\USBGuard.exe (Zbshareware Lab)
O4 - HKLM..\Run: [ZoneAlarm] C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies Ltd.)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKCU..\Run: [GUDelayStartup] C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe (Glarysoft Ltd)
O4 - HKCU..\Run: [OneDrive] C:\Users\Technologie\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Xvid] C:\WINDOWS\SysWow64\WindowsPowerShell\v1.0\\powershell.exe ()
O4 - HKCU..\RunOnce: [Uninstall C:\Users\Technologie\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] "C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Technologie\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64" File not found
O4 - HKCU..\RunOnce: [Uninstall C:\Users\Technologie\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Technologie\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64" File not found
O4 - Startup: C:\Users\Technologie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupFaster [2015/05/11 16:08:13 | 000,000,000 | -H-D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8bc16bbe-8734-4474-8e77-a213defd4d4a}: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:[b]64bit:[/b] - AppInit_DLLs: (C:\ProgramData\Gravelex\Condex.dll) - File not found
O20 - AppInit_DLLs: (C:\ProgramData\Gravelex\VentoHome.dll) - File not found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:[b]64bit:[/b] - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015/11/09 15:07:38 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2015/11/02 19:58:28 | 000,154,498 | ---- | M] () - D:\Auto3.pdf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:[b]64bit:[/b] dosvc - C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DcpSvc - C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] NetSetupSvc - C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] dmwappushservice - C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XblGameSave - C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XboxNetApiSvc - C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] UsoSvc - C:\Windows\SysNative\usocore.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] UserManager - C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] lfsvc - C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DmEnrollmentSvc - C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XblAuthManager - C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] RetailDemo - C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)


ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {60929EE4-A77D-64EC-FA98-8427E75BFD26} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89745254-C445-4CC3-9E83-1287B00601B7} - Themes Setup
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C49181C5-51A7-39B8-A058-B35C7BAD6E1F} - .NET Framework
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\inf\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.80\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\WINDOWS\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {D3D70DDE-B3B4-33DE-A8CD-808A85D68682} - .NET Framework
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:[b]64bit:[/b] vidc.XVID - xvidvfw.dll ()
Drivers32: msacm.l3acm - C:\WINDOWS\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: SENTINEL - C:\WINDOWS\SysWow64\SNTI386.DLL (Rainbow Technologies, Inc.)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.XVID - C:\WINDOWS\SysWow64\xvidvfw.dll ()
Unable to save MBR. Invalid drive designation: 0

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/12/10 20:28:28 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Technologie\Desktop\OTL.exe
[2015/12/09 17:42:35 | 000,000,000 | --SD | C] -- C:\WINDOWS\SysWow64\Microsoft
[2015/12/05 13:06:40 | 000,000,000 | ---D | C] -- C:\Kaspersky Rescue Disk 10.0
[2015/12/05 11:50:04 | 000,000,000 | ---D | C] -- C:\Users\Technologie\AppData\Roaming\ImgBurn
[2015/12/05 11:49:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2015/12/05 11:49:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ImgBurn
[2015/12/05 09:21:39 | 000,407,768 | ---- | C] (Realsil Semiconductor Corporation) -- C:\WINDOWS\SysNative\drivers\RtsUer.sys
[2015/12/05 09:20:22 | 000,033,960 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\drivers\Smb_driver_Intel.sys
[2015/12/02 16:11:07 | 000,000,000 | -H-D | C] -- C:\$WINDOWS.~BT
[2015/12/02 15:57:44 | 000,462,304 | ---- | C] (Check Point Software Technologies Ltd.) -- C:\WINDOWS\SysNative\drivers\vsdatant.sys
[2015/12/02 15:57:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
[2015/11/30 09:12:47 | 000,000,000 | ---D | C] -- C:\Users\Technologie\Desktop\inkscape
[2015/11/30 09:09:04 | 000,000,000 | ---D | C] -- C:\Users\Technologie\AppData\Local\fontconfig
[2015/11/30 09:07:50 | 000,000,000 | ---D | C] -- C:\Users\Technologie\AppData\Roaming\inkscape
[2015/11/28 19:35:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
[2015/11/28 19:06:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
[2015/11/26 12:59:37 | 000,449,992 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswSP.sys
[2015/11/26 12:59:37 | 000,273,784 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswVmm.sys
[2015/11/26 12:59:37 | 000,154,256 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswStm.sys
[2015/11/26 12:59:37 | 000,097,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswMonFlt.sys
[2015/11/26 12:59:37 | 000,093,528 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswRdr2.sys
[2015/11/26 12:59:37 | 000,065,224 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys
[2015/11/26 12:59:37 | 000,028,656 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswHwid.sys
[2015/11/26 12:59:36 | 001,059,656 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswSnx.sys
[2015/11/26 12:59:28 | 000,386,096 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\aswBoot.exe
[2015/11/26 12:58:58 | 000,043,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2015/11/25 19:45:44 | 000,000,000 | ---D | C] -- C:\Users\Technologie\AppData\Roaming\URSE Games
[2015/11/25 19:45:00 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnet.dll
[2015/11/25 19:44:59 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnathlp.dll
[2015/11/25 19:44:59 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnsvr.exe
[2015/11/25 19:44:59 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnhupnp.dll
[2015/11/25 19:44:59 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnhpast.dll
[2015/11/25 19:44:59 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnlobby.dll
[2015/11/25 19:44:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnaddr.dll
[2015/11/25 19:44:58 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnet.dll
[2015/11/25 19:44:58 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnathlp.dll
[2015/11/25 19:44:58 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnhupnp.dll
[2015/11/25 19:44:58 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnhpast.dll
[2015/11/25 19:44:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnlobby.dll
[2015/11/25 19:44:57 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnsvr.exe
[2015/11/25 19:44:57 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnaddr.dll
[2015/11/25 19:44:54 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpmodemx.dll
[2015/11/25 19:44:54 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dplaysvr.exe
[2015/11/25 19:44:53 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dplayx.dll
[2015/11/25 19:44:53 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpwsockx.dll
[2015/11/25 19:43:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyRealGames.com
[2015/11/25 19:43:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MyRealGames.com
[2015/11/25 16:25:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8
[2015/11/13 15:13:58 | 000,000,000 | ---D | C] -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
[2015/11/13 15:13:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
[2015/11/12 22:15:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CheckPoint
[2015/11/12 22:15:16 | 000,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
[2014/08/19 08:29:26 | 029,136,368 | ---- | C] (http://www.PDFEraser.net ) -- C:\Users\Technologie\AppData\Local\pdferaser.exe
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/12/10 20:39:02 | 000,016,148 | ---- | M] () -- C:\WINDOWS\SysNative\TECHNOLOGIE-PC_Technologie_HistoryPrediction.bin
[2015/12/10 20:29:04 | 000,001,002 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2015/12/10 20:25:54 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Technologie\Desktop\OTL.exe
[2015/12/10 20:18:52 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2015/12/10 19:46:45 | 000,001,106 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2015/12/10 19:46:43 | 000,002,258 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/12/10 19:39:26 | 000,001,102 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2015/12/10 19:36:35 | 2960,408,576 | -HS- | M] () -- C:\hiberfil.sys
[2015/12/10 19:36:34 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2015/12/10 17:45:16 | 000,000,892 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job
[2015/12/10 17:44:42 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/12/10 12:20:42 | 000,002,254 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
[2015/12/09 17:42:44 | 000,430,875 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\vsconfig.xml
[2015/12/09 15:27:35 | 000,002,247 | ---- | M] () -- C:\Users\Public\Desktop\Driver Booster 3.lnk
[2015/12/09 11:16:57 | 000,080,050 | ---- | M] () -- C:\Users\Technologie\Desktop\Pièce1.SLDPRT
[2015/12/08 20:51:02 | 002,158,020 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2015/12/08 20:51:02 | 000,941,568 | ---- | M] () -- C:\WINDOWS\SysNative\perfh00C.dat
[2015/12/08 20:51:02 | 000,836,364 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2015/12/08 20:51:02 | 000,202,730 | ---- | M] () -- C:\WINDOWS\SysNative\perfc00C.dat
[2015/12/08 20:51:02 | 000,176,384 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2015/12/08 14:59:52 | 000,459,150 | ---- | M] () -- C:\Users\Technologie\Desktop\2015-12-08_12-59-45.bmp
[2015/12/08 12:23:12 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\ASC8_SkipUac_Technologie.job
[2015/12/05 11:49:09 | 000,001,958 | ---- | M] () -- C:\Users\Technologie\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2015/12/05 11:49:09 | 000,001,934 | ---- | M] () -- C:\Users\Public\Desktop\ImgBurn.lnk
[2015/12/05 09:21:39 | 000,407,768 | ---- | M] (Realsil Semiconductor Corporation) -- C:\WINDOWS\SysNative\drivers\RtsUer.sys
[2015/12/05 09:20:22 | 000,033,960 | ---- | M] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\drivers\Smb_driver_Intel.sys
[2015/12/02 15:57:36 | 000,000,778 | ---- | M] () -- C:\Users\Public\Desktop\ZoneAlarm Security.lnk
[2015/12/02 15:47:43 | 001,281,414 | ---- | M] () -- C:\Users\Technologie\Desktop\2015-12-02_15-47-23.bmp
[2015/11/30 14:18:02 | 000,000,320 | ---- | M] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_Technologie.job
[2015/11/30 09:21:24 | 004,634,239 | ---- | M] () -- C:\Users\Technologie\Desktop\dessinexer11.pdf
[2015/11/30 09:17:19 | 000,000,735 | ---- | M] () -- C:\Users\Technologie\AppData\Local\recently-used.xbel
[2015/11/30 09:12:22 | 007,629,321 | ---- | M] () -- C:\Users\Technologie\Documents\Faire un Diplome avec Photoshop - YouTube (360p).mp4
[2015/11/29 17:21:49 | 000,653,839 | ---- | M] () -- C:\Users\Technologie\Desktop\dessin_isometrique1.ppsm
[2015/11/28 19:06:30 | 000,001,258 | ---- | M] () -- C:\Users\Public\Desktop\IObit Malware Fighter.lnk
[2015/11/26 12:59:17 | 000,449,992 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswSP.sys
[2015/11/26 12:59:17 | 000,273,784 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswVmm.sys
[2015/11/26 12:59:17 | 000,154,256 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswStm.sys
[2015/11/26 12:59:16 | 000,386,096 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\aswBoot.exe
[2015/11/26 12:59:16 | 000,097,648 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswMonFlt.sys
[2015/11/26 12:59:16 | 000,065,224 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys
[2015/11/26 12:59:16 | 000,028,656 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswHwid.sys
[2015/11/26 12:59:15 | 000,093,528 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswRdr2.sys
[2015/11/26 12:58:58 | 000,043,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2015/11/26 12:58:09 | 001,059,656 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswSnx.sys
[2015/11/25 19:45:00 | 000,395,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnet.dll
[2015/11/25 19:44:59 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnathlp.dll
[2015/11/25 19:44:59 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnsvr.exe
[2015/11/25 19:44:59 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnhupnp.dll
[2015/11/25 19:44:59 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnhpast.dll
[2015/11/25 19:44:59 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnlobby.dll
[2015/11/25 19:44:59 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnaddr.dll
[2015/11/25 19:44:58 | 000,480,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnet.dll
[2015/11/25 19:44:58 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnathlp.dll
[2015/11/25 19:44:58 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnhupnp.dll
[2015/11/25 19:44:58 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnhpast.dll
[2015/11/25 19:44:58 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnlobby.dll
[2015/11/25 19:44:57 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnsvr.exe
[2015/11/25 19:44:57 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnaddr.dll
[2015/11/25 19:44:54 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpmodemx.dll
[2015/11/25 19:44:54 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dplaysvr.exe
[2015/11/25 19:44:53 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dplayx.dll
[2015/11/25 19:44:53 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpwsockx.dll
[2015/11/25 19:43:23 | 000,001,290 | ---- | M] () -- C:\Users\Technologie\Desktop\Season Match 2.lnk
[2015/11/25 16:25:47 | 000,001,271 | ---- | M] () -- C:\Users\Public\Desktop\Start Menu 8.lnk
[2015/11/16 18:25:48 | 085,740,770 | ---- | M] () -- C:\Users\Technologie\Documents\Computer Mouse (Video Tutorial) SolidWorks - YouTube (360p).mp4
[2015/11/16 17:49:39 | 027,636,156 | ---- | M] () -- C:\Users\Technologie\Documents\SolidWorks Tutorial - How To Model Knurling Screw - YouTube (360p).mp4
[2015/11/14 19:34:54 | 000,392,856 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2015/11/14 11:50:10 | 000,000,028 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/12/10 20:36:39 | 000,016,148 | ---- | C] () -- C:\WINDOWS\SysNative\TECHNOLOGIE-PC_Technologie_HistoryPrediction.bin
[2015/12/09 15:26:55 | 000,002,247 | ---- | C] () -- C:\Users\Public\Desktop\Driver Booster 3.lnk
[2015/12/09 13:10:00 | 000,001,120 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2015/12/09 13:06:17 | 000,002,425 | ---- | C] () -- C:\Users\Technologie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
[2015/12/09 11:16:57 | 000,080,050 | ---- | C] () -- C:\Users\Technologie\Desktop\Pièce1.SLDPRT
[2015/12/08 12:59:45 | 000,459,150 | ---- | C] () -- C:\Users\Technologie\Desktop\2015-12-08_12-59-45.bmp
[2015/12/08 10:50:26 | 000,567,341 | ---- | C] () -- C:\Users\Technologie\Desktop\CISAILLE.pdf
[2015/12/05 11:49:09 | 000,001,958 | ---- | C] () -- C:\Users\Technologie\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2015/12/05 11:49:09 | 000,001,946 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
[2015/12/05 11:49:09 | 000,001,934 | ---- | C] () -- C:\Users\Public\Desktop\ImgBurn.lnk
[2015/12/02 16:40:30 | 000,001,106 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2015/12/02 16:40:30 | 000,001,102 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2015/12/02 15:57:36 | 000,000,778 | ---- | C] () -- C:\Users\Public\Desktop\ZoneAlarm Security.lnk
[2015/12/02 15:47:23 | 001,281,414 | ---- | C] () -- C:\Users\Technologie\Desktop\2015-12-02_15-47-23.bmp
[2015/11/30 14:17:39 | 000,000,320 | ---- | C] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_Technologie.job
[2015/11/30 09:21:24 | 004,634,239 | ---- | C] () -- C:\Users\Technologie\Desktop\dessinexer11.pdf
[2015/11/30 09:17:19 | 000,000,735 | ---- | C] () -- C:\Users\Technologie\AppData\Local\recently-used.xbel
[2015/11/30 09:11:50 | 007,629,321 | ---- | C] () -- C:\Users\Technologie\Documents\Faire un Diplome avec Photoshop - YouTube (360p).mp4
[2015/11/29 17:03:36 | 000,653,839 | ---- | C] () -- C:\Users\Technologie\Desktop\dessin_isometrique1.ppsm
[2015/11/28 19:06:30 | 000,001,258 | ---- | C] () -- C:\Users\Public\Desktop\IObit Malware Fighter.lnk
[2015/11/27 17:38:50 | 000,002,457 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
[2015/11/26 12:59:58 | 000,001,979 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
[2015/11/25 19:43:23 | 000,001,290 | ---- | C] () -- C:\Users\Technologie\Desktop\Season Match 2.lnk
[2015/11/25 16:25:47 | 000,001,271 | ---- | C] () -- C:\Users\Public\Desktop\Start Menu 8.lnk
[2015/11/21 17:06:46 | 029,126,375 | ---- | C] () -- C:\Users\Technologie\Desktop\Mecanique Resistance Des Materiaux.pdf
[2015/11/16 17:56:44 | 085,740,770 | ---- | C] () -- C:\Users\Technologie\Documents\Computer Mouse (Video Tutorial) SolidWorks - YouTube (360p).mp4
[2015/11/16 17:47:22 | 027,636,156 | ---- | C] () -- C:\Users\Technologie\Documents\SolidWorks Tutorial - How To Model Knurling Screw - YouTube (360p).mp4
[2015/11/14 19:34:39 | 000,392,856 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2015/11/13 15:13:47 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\ASC8_SkipUac_Technologie.job
[2015/11/13 15:13:37 | 000,002,254 | ---- | C] () -- C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
[2015/11/12 22:24:52 | 000,430,875 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\vsconfig.xml
[2015/11/09 15:12:21 | 000,218,200 | ---- | C] () -- C:\WINDOWS\SysWow64\unrar.dll
[2015/11/09 14:53:25 | 000,638,976 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidcore.dll
[2015/11/09 14:53:25 | 000,235,520 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidvfw.dll
[2015/11/08 16:53:39 | 000,000,028 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2015/10/30 12:22:27 | 000,001,018 | ---- | C] () -- C:\Users\Technologie\AppData\Roaming\Cotation.lnk
[2015/10/29 17:24:42 | 000,118,576 | ---- | C] () -- C:\WINDOWS\SysWow64\SecUPDUtilSvc.exe
[2015/10/29 17:24:07 | 002,738,496 | ---- | C] () -- C:\WINDOWS\TotalUninstaller.exe
[2015/10/16 09:43:31 | 000,000,008 | ---- | C] () -- C:\Users\Technologie\AppData\Roaming\pecodec.dll
[2015/10/03 10:03:33 | 001,766,952 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2015/09/21 17:41:03 | 000,000,262 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\vwifikerneldrv.sys
[2015/09/21 17:41:03 | 000,000,262 | ---- | C] () -- C:\ProgramData\fontcacheev1.dat
[2015/09/12 15:46:37 | 000,004,608 | ---- | C] () -- C:\Users\Technologie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2015/08/19 16:41:31 | 001,823,232 | ---- | C] () -- C:\WINDOWS\SysWow64\InputService.dll
[2015/08/19 16:41:27 | 000,200,704 | ---- | C] () -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2015/08/06 20:35:29 | 000,867,020 | ---- | C] () -- C:\WINDOWS\SysWow64\igkrng575.bin
[2015/08/06 20:35:29 | 000,128,204 | ---- | C] () -- C:\WINDOWS\SysWow64\igcompkrng575.bin
[2015/08/06 20:35:29 | 000,105,608 | ---- | C] () -- C:\WINDOWS\SysWow64\igfcg575m.bin
[2015/08/06 20:35:28 | 013,913,600 | ---- | C] () -- C:\WINDOWS\SysWow64\ig4icd32.dll
[2015/08/06 20:34:10 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2015/08/06 14:40:17 | 002,160,702 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2015/08/05 16:21:06 | 000,077,824 | ---- | C] () -- C:\WINDOWS\KMSEmulator.exe
[2015/07/10 13:20:52 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2015/07/10 12:04:39 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2015/07/10 12:04:38 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2015/07/10 12:00:35 | 000,161,632 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll
[2015/07/10 12:00:33 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2015/07/10 12:00:32 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2015/07/10 12:00:31 | 000,156,672 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll
[2015/07/10 12:00:30 | 000,028,672 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe
[2015/07/10 12:00:29 | 000,081,408 | ---- | C] () -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2015/07/10 12:00:29 | 000,057,344 | ---- | C] () -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2015/07/10 12:00:29 | 000,053,760 | ---- | C] () -- C:\WINDOWS\SysWow64\WpKbdLayout.dll
[2015/07/10 12:00:29 | 000,022,016 | ---- | C] () -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2015/07/10 12:00:28 | 000,270,848 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2015/07/10 12:00:27 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2015/07/10 12:00:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll
[2015/07/10 12:00:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2015/07/10 12:00:24 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2015/07/10 11:59:51 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2015/06/06 11:57:59 | 002,932,736 | ---- | C] () -- C:\WINDOWS\SysWow64\wxmsw28u_core_vc_custom.dll
[2015/06/06 11:57:59 | 002,908,160 | ---- | C] () -- C:\WINDOWS\SysWow64\wxmsw28_core_vc_custom.dll
[2015/06/06 11:57:59 | 001,245,184 | ---- | C] () -- C:\WINDOWS\SysWow64\wxbase28u_vc_custom.dll
[2015/06/06 11:57:59 | 001,179,648 | ---- | C] () -- C:\WINDOWS\SysWow64\wxbase28_vc_custom.dll
[2015/06/06 11:57:59 | 000,720,896 | ---- | C] () -- C:\WINDOWS\SysWow64\wxmsw28u_adv_vc_custom.dll
[2015/06/06 11:57:59 | 000,716,800 | ---- | C] () -- C:\WINDOWS\SysWow64\wxmsw28_adv_vc_custom.dll
[2015/06/06 11:57:59 | 000,540,672 | ---- | C] () -- C:\WINDOWS\SysWow64\wxmsw28u_stc_vc_custom.dll
[2015/06/06 11:57:59 | 000,532,480 | ---- | C] () -- C:\WINDOWS\SysWow64\wxmsw28_stc_vc_custom.dll
[2015/06/06 11:57:59 | 000,294,912 | ---- | C] () -- C:\WINDOWS\SysWow64\wxmsw28u_fl_vc_custom.dll
[2015/06/06 11:57:59 | 000,290,816 | ---- | C] () -- C:\WINDOWS\SysWow64\wxmsw28_fl_vc_custom.dll
[2015/06/06 11:57:59 | 000,135,168 | ---- | C] () -- C:\WINDOWS\SysWow64\wxbase28u_net_vc_custom.dll
[2015/06/06 11:57:59 | 000,131,072 | ---- | C] () -- C:\WINDOWS\SysWow64\wxbase28_net_vc_custom.dll
[2015/06/05 19:53:07 | 000,000,074 | ---- | C] () -- C:\Users\Technologie\Dimension.ini
[2015/05/07 09:58:07 | 001,749,376 | ---- | C] () -- C:\WINDOWS\SysWow64\snp2uvc.sys
[2015/05/07 09:58:07 | 001,749,376 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\snp2uvc.sys
[2015/05/07 09:58:07 | 000,172,032 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\rsnp2uvc.dll
[2015/05/07 09:58:07 | 000,028,032 | ---- | C] () -- C:\WINDOWS\SysWow64\sncduvc.sys
[2015/05/07 09:58:07 | 000,028,032 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\sncduvc.sys
[2015/05/07 09:58:07 | 000,000,131 | ---- | C] () -- C:\WINDOWS\SysWow64\PidList.ini
[2015/05/01 13:46:42 | 000,000,000 | ---- | C] () -- C:\Users\Technologie\AppData\Local\Temptable.xml
[2015/05/01 11:28:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\eDrawingOfficeAutomator.INI
[2015/04/17 12:25:23 | 000,000,135 | ---- | C] () -- C:\WINDOWS\AutoKMS.ini
[2015/04/17 10:43:59 | 000,066,856 | ---- | C] () -- C:\WINDOWS\SysWow64\SynTPEnhPS.dll
[2014/09/29 19:38:32 | 000,059,160 | ---- | C] () -- C:\WINDOWS\SysWow64\zlib.dll

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2015/08/31 13:42:01 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2015/09/17 07:49:11 | 006,487,248 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2015/09/17 07:28:40 | 005,120,056 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015/07/10 11:59:53 | 000,995,328 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2015/07/10 12:00:23 | 000,754,688 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015/07/10 11:59:55 | 000,516,096 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2015/11/05 04:28:24 | 011,262,976 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\ieframe.dll

[color=#A23BEC]< %systemroot%\system32\drivers\ *.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
Invalid Environment Variable: alluserprofile
Invalid Environment Variable: alluserprofile

[color=#A23BEC]< %appdata%\*. >[/color]
[2015/04/17 18:52:32 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Adobe
[2015/08/15 11:19:44 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Andy
[2015/08/15 11:20:16 | 000,000,000 | R--D | M] -- C:\Users\Technologie\AppData\Roaming\Andy_44_Online
[2015/11/09 14:58:13 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Anvsoft
[2015/04/17 10:08:14 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Apple Computer
[2015/04/16 16:00:52 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\AVAST Software
[2015/05/07 10:15:59 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\CyberLink
[2015/05/01 11:25:42 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\DassaultSystemes
[2015/08/13 16:52:53 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\DiskDefrag
[2015/09/24 23:11:12 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\DVDVideoSoft
[2015/05/20 16:57:14 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\EDrawings
[2015/09/04 13:00:59 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Eipix
[2015/10/27 21:49:26 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\GlarySoft
[2015/05/01 11:27:51 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\help_images_otherUI
[2015/04/16 15:33:32 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Identities
[2015/12/05 12:00:33 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\ImgBurn
[2015/11/30 09:07:52 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\inkscape
[2015/05/07 09:57:34 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\InstallShield
[2015/11/18 16:37:50 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\IObit
[2015/10/17 12:15:27 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Karaoke Builder
[2015/08/02 16:44:59 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Macromedia
[2009/07/14 16:35:02 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Media Center Programs
[2015/08/31 14:22:44 | 000,000,000 | --SD | M] -- C:\Users\Technologie\AppData\Roaming\Microsoft
[2015/04/19 11:36:23 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Mozilla
[2015/04/19 18:15:33 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Nero
[2015/05/24 13:44:53 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Opera Software
[2015/08/06 13:49:27 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\PCToolsFirewallPlus
[2015/09/21 17:40:44 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Performix LLC
[2015/10/26 11:42:30 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\ProductData
[2015/10/20 18:10:02 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Rovio Entertainment Ltd
[2015/10/29 18:06:48 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Samsung
[2015/04/21 14:49:00 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\SolidDocuments
[2015/05/01 12:04:20 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\SOLIDWORKS
[2015/11/07 22:11:16 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\STV Software
[2015/11/25 19:45:44 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\URSE Games
[2015/05/11 16:08:01 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\URSoft
[2015/12/07 21:22:52 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\uTorrent
[2015/05/26 15:58:38 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\VideoBooth
[2015/05/26 21:13:31 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\WCMShare
[2015/04/16 16:20:02 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\WinRAR
[2015/11/30 08:54:01 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\YCanPDF
[2015/05/29 13:27:15 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Youtube Downloader HD
[2015/04/22 18:04:48 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\Zbshareware Lab
[2015/05/29 21:12:33 | 000,000,000 | ---D | M] -- C:\Users\Technologie\AppData\Roaming\{5E47904D-B721-4142-89E1-4743021A71A6}

[color=#A23BEC]< %appdata%\*.exe /s >[/color]
[2015/07/06 11:26:53 | 000,964,320 | ---- | M] (Andy OS, Inc) -- C:\Users\Technologie\AppData\Roaming\Andy\Setup.exe
[2015/07/06 11:26:53 | 000,964,320 | ---- | M] (Andy OS, Inc) -- C:\Users\Technologie\AppData\Roaming\Andy_44_Online\Setup.exe
[2015/06/24 18:36:58 | 000,198,472 | ---- | M] (Microsoft Corporation) -- C:\Users\Technologie\AppData\Roaming\Andy_44_Online\SetupFiles\x64\havtool.exe
[2015/06/24 18:36:58 | 000,183,624 | ---- | M] (Microsoft Corporation) -- C:\Users\Technologie\AppData\Roaming\Andy_44_Online\SetupFiles\x86\havtool.exe
[2015/06/24 18:36:58 | 000,591,376 | ---- | M] (Igor Pavlov) -- C:\Users\Technologie\AppData\Roaming\Andy_44_Online\tools\7za.exe
[2015/09/18 15:15:04 | 005,638,697 | ---- | M] () -- C:\Users\Technologie\AppData\Roaming\Anvsoft\Common\youtube-dl.exe
[2014/01/03 15:45:16 | 001,830,000 | ---- | M] (Rovio Entertainment Ltd.) -- C:\Users\Technologie\AppData\Roaming\Rovio Entertainment Ltd\Angry Birds 4.0.0\install\0BBDA25\AngryBirds.exe
[2014/01/03 15:45:15 | 001,790,576 | ---- | M] (Rovio Entertainment Ltd.) -- C:\Users\Technologie\AppData\Roaming\Rovio Entertainment Ltd\Angry Birds 4.0.0\install\0BBDA25\updater.exe
[2015/04/19 18:36:11 | 001,897,808 | ---- | M] (BitTorrent Inc.) -- C:\Users\Technologie\AppData\Roaming\uTorrent\uTorrent.exe
[2015/04/19 09:03:32 | 001,897,808 | ---- | M] (BitTorrent Inc.) -- C:\Users\Technologie\AppData\Roaming\uTorrent\updates\3.4.3_40138.exe
[2015/04/22 18:05:19 | 000,128,512 | ---- | M] () -- C:\Users\Technologie\AppData\Roaming\uTorrent\VirusGuard\BitTorrentAntivirus.exe
[2015/05/21 14:40:13 | 004,024,616 | ---- | M] (Zbshareware Lab ) -- C:\Users\Technologie\AppData\Roaming\Zbshareware Lab\USBGuard\PatchUSBGuardZB.exe

[color=#A23BEC]< %systemdrive%\*. >[/color]
[2015/11/24 09:08:24 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2015/10/07 09:19:05 | 000,000,000 | -H-D | M] -- C:\$SysReset
[2015/12/02 16:12:49 | 000,000,000 | -H-D | M] -- C:\$WINDOWS.~BT
[2015/12/10 20:15:34 | 000,000,000 | ---D | M] -- C:\AdwCleaner
[2015/07/10 13:21:38 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2015/08/06 14:25:15 | 000,000,000 | ---D | M] -- C:\inetpub
[2015/04/16 17:10:25 | 000,000,000 | ---D | M] -- C:\Intel
[2015/12/05 15:04:10 | 000,000,000 | ---D | M] -- C:\Kaspersky Rescue Disk 10.0
[2015/08/05 17:37:48 | 000,000,000 | ---D | M] -- C:\language
[2015/08/09 15:03:42 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2015/10/16 08:47:16 | 000,000,000 | ---D | M] -- C:\pdferaser
[2015/07/10 12:04:22 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2015/11/12 21:59:55 | 000,000,000 | R--D | M] -- C:\Program Files
[2015/12/05 11:49:08 | 000,000,000 | R--D | M] -- C:\Program Files (x86)
[2015/12/08 12:02:47 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2015/10/07 09:12:00 | 000,000,000 | -HSD | M] -- C:\Recovery
[2015/09/01 14:29:08 | 000,000,000 | ---D | M] -- C:\Share
[2015/08/05 17:37:48 | 000,000,000 | ---D | M] -- C:\skin
[2015/05/20 17:15:20 | 000,000,000 | ---D | M] -- C:\SOLIDWORKS Data
[2015/09/01 12:51:24 | 000,000,000 | ---D | M] -- C:\Spacekace
[2015/12/10 20:33:39 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2015/10/31 10:27:42 | 000,000,000 | ---D | M] -- C:\temp
[2015/11/28 18:37:20 | 000,000,000 | R--D | M] -- C:\Users
[2015/12/09 19:35:12 | 000,000,000 | ---D | M] -- C:\Windows
[2015/09/10 13:27:57 | 000,000,000 | ---D | M] -- C:\Windows.old

[color=#A23BEC]< %systemdrive%\*.exe >[/color]
[2012/12/04 01:13:26 | 010,223,029 | ---- | M] (HYBRIDWEB.de ) -- C:\FLV-Media-Player.exe

[color=#A23BEC]< %programfiles%\*. >[/color]
[2015/04/20 19:03:28 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\2BrightSparks
[2015/09/12 21:25:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\7330549a-ec27-4971-8c54-2f8fe45c7686
[2015/05/15 12:30:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Acer
[2015/11/02 09:29:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Adobe
[2015/11/09 14:57:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Anvsoft
[2015/04/17 09:58:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Atheros
[2015/05/07 11:29:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Automation Studio 3.0.5
[2015/05/01 10:53:10 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Bonjour
[2015/11/12 22:24:39 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CheckPoint
[2015/04/17 09:58:49 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Cisco
[2015/11/09 16:19:54 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Common Files
[2015/10/30 12:22:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Cotation
[2015/05/16 15:49:43 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Cuminas
[2015/04/17 10:34:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DAMN NFO Viewer
[2015/05/16 15:52:30 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DjVuLibre
[2015/09/24 23:10:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DVDVideoSoft
[2015/11/09 17:28:28 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Enigma Software Group
[2015/12/08 22:06:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Glary Utilities 5
[2015/06/04 17:33:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Google
[2015/12/05 11:49:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ImgBurn
[2015/11/14 11:53:26 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2015/04/16 17:10:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Intel
[2015/11/08 16:50:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Explorer
[2015/11/28 19:35:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\IObit
[2015/09/16 22:43:40 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\iWisoft Flash SWF to Video Converter
[2015/04/17 12:33:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Jeux de cartes
[2015/11/09 15:12:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\K-Lite Codec Pack
[2015/10/14 18:14:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2015/09/07 15:53:53 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MediaFire Desktop
[2015/08/09 15:04:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Analysis Services
[2015/09/08 09:06:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
[2015/08/31 14:22:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Games
[2015/08/09 15:05:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office
[2015/05/01 10:51:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2015/08/06 14:45:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft.NET
[2015/11/26 18:50:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox
[2015/10/24 08:40:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2015/08/09 15:07:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSBuild
[2015/05/01 10:49:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSECache
[2015/05/01 18:13:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSXML 4.0
[2015/11/25 19:43:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MyRealGames.com
[2015/05/01 10:56:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\NVIDIA Corporation
[2015/12/09 13:10:01 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Opera
[2015/08/31 15:03:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Passcape
[2015/10/16 09:43:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PDF Eraser
[2015/10/16 08:48:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PDFDecrypterPro
[2015/10/20 15:49:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PGWARE
[2015/04/17 10:42:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Realtek
[2015/08/06 14:25:15 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reference Assemblies
[2015/10/29 18:07:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Samsung
[2015/11/07 22:11:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SensorsViewPro43
[2015/04/24 13:59:07 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SolidDocuments
[2015/05/01 11:31:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SOLIDWORKS Corp
[2015/04/17 10:37:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\TechSmith
[2015/07/29 07:40:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\UnH Solutions
[2009/07/14 05:57:06 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Uninstall Information
[2015/05/21 14:41:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\USB Disk Security
[2015/10/20 15:46:10 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Vertus Fluid Mask 3
[2015/09/12 13:02:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Video Codecs
[2015/07/10 17:23:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Defender
[2015/08/06 14:45:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Mail
[2015/07/10 17:23:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Player
[2015/07/10 12:04:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Multimedia Platform
[2015/07/10 12:04:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows NT
[2015/07/10 17:23:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Viewer
[2015/07/10 12:04:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Portable Devices
[2015/08/06 14:45:23 | 000,000,000 | -HSD | M] -- C:\Program Files (x86)\Windows Sidebar
[2015/07/10 12:04:22 | 000,000,000 | --SD | M] -- C:\Program Files (x86)\WindowsPowerShell
[2015/11/09 14:53:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Xvid
[2015/05/29 13:27:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Youtube Downloader HD

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2015/07/26 05:28:58 | 004,047,288 | ---- | M] (Microsoft Corporation) MD5=36E7C77518D3FA1231C6CDA62152308F -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16405_none_640b7b8348c8c4d4\explorer.exe
[2015/07/25 05:54:41 | 004,047,288 | ---- | M] (Microsoft Corporation) MD5=49A9479F4044CC5734DF2FA0831B5F61 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16404_none_640b799d48c8c7ad\explorer.exe
[2015/11/25 06:12:23 | 004,047,288 | ---- | M] (Microsoft Corporation) MD5=4EEB94F7E1ABAB5503EEFEA7F2394370 -- C:\Windows\SoftwareDistribution\Download\78d8a3cb2e72d217f7f4a6ab2a8c40da\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16603_none_640d784b48c6fd34\explorer.exe
[2015/07/26 06:15:40 | 004,532,304 | ---- | M] (Microsoft Corporation) MD5=6E756C33B5ECBD96756086A34D9A90DC -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16405_none_59b6d131146802d9\explorer.exe
[2015/07/10 12:00:32 | 004,043,152 | ---- | M] (Microsoft Corporation) MD5=77DA3B74F4D2ED7A58F081E423688A30 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16384_none_6409c31348ca7b5e\explorer.exe
[2015/07/10 12:00:15 | 004,528,168 | ---- | M] (Microsoft Corporation) MD5=A7FFEC1BD46B20FE7E293F2D9DD1C8F5 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16384_none_59b518c11469b963\explorer.exe
[2015/08/11 10:40:22 | 004,048,808 | ---- | M] (Microsoft Corporation) MD5=B3F90790F991A5A21113B58EE50FA696 -- C:\Windows\SysWOW64\explorer.exe
[2015/08/11 10:40:22 | 004,048,808 | ---- | M] (Microsoft Corporation) MD5=B3F90790F991A5A21113B58EE50FA696 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16431_none_640b2f9348c91d1b\explorer.exe
[2015/07/25 07:29:47 | 004,532,304 | ---- | M] (Microsoft Corporation) MD5=C6F56519F6F8A5C1B4144CF863CDE0CA -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16404_none_59b6cf4b146805b2\explorer.exe
[2015/11/25 06:42:36 | 004,532,304 | ---- | M] (Microsoft Corporation) MD5=D2EAEC106F183572317AF7D68E381063 -- C:\Windows\SoftwareDistribution\Download\78d8a3cb2e72d217f7f4a6ab2a8c40da\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16603_none_59b8cdf914663b39\explorer.exe
[2015/08/11 11:04:23 | 004,532,304 | ---- | M] (Microsoft Corporation) MD5=F1CBCB7FA6F3B309639AA2D4EF74469C -- C:\Windows\explorer.exe
[2015/08/11 11:04:23 | 004,532,304 | ---- | M] (Microsoft Corporation) MD5=F1CBCB7FA6F3B309639AA2D4EF74469C -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16431_none_59b6854114685b20\explorer.exe

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2015/07/10 12:00:26 | 000,708,608 | ---- | M] (Microsoft Corporation) MD5=415414A10B77B9F56EB561C23806431D -- C:\Windows\SysWOW64\netlogon.dll
[2015/07/10 12:00:26 | 000,708,608 | ---- | M] (Microsoft Corporation) MD5=415414A10B77B9F56EB561C23806431D -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_10.0.10240.16384_none_100cd3440707f4f6\netlogon.dll
[2015/07/10 12:00:02 | 000,836,096 | ---- | M] (Microsoft Corporation) MD5=5E9439E5FA71649335D8FB0090843062 -- C:\WINDOWS\SysNative\netlogon.dll
[2015/07/10 12:00:02 | 000,836,096 | ---- | M] (Microsoft Corporation) MD5=5E9439E5FA71649335D8FB0090843062 -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_10.0.10240.16384_none_05b828f1d2a732fb\netlogon.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2015/07/10 12:00:01 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=5F6D4F12EA33BFC0F0F8CEEAC332AB2B -- C:\WINDOWS\SysNative\userinit.exe
[2015/07/10 12:00:01 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=5F6D4F12EA33BFC0F0F8CEEAC332AB2B -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_10.0.10240.16384_none_e4292bc46c5d42af\userinit.exe
[2015/07/10 12:00:27 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A89C18F5E6D8981D5E937B325290915A -- C:\Windows\SysWOW64\userinit.exe
[2015/07/10 12:00:27 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A89C18F5E6D8981D5E937B325290915A -- C:\Windows\WinSxS\wow64_microsoft-windows-userinit_31bf3856ad364e35_10.0.10240.16384_none_ee7dd616a0be04aa\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2015/09/25 00:23:48 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=1CD8BB41436524A2748A77005E5DEB8A -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16520_none_77c5f4716f9c6ae5\winlogon.exe
[2015/07/26 04:39:18 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=26EFEFD877A84EE9FBDE6DEE630892C9 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16405_none_77c52b356f9d100f\winlogon.exe
[2015/07/10 12:00:01 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=536B686D86402D254C59B5DE3A575F45 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16384_none_77c372c56f9ec699\winlogon.exe
[2015/09/25 04:02:42 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=6688FE37E767BA15F022B7E59E5E7EA6 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16542_none_77c5caad6f9c9875\winlogon.exe
[2015/08/27 06:42:25 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=84B1FE2E4615A89293F1FD4DE52EE26E -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16485_none_77c474f56f9ddd17\winlogon.exe
[2015/11/05 05:01:41 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=A7C48B051A9C5D5054916DE5BEBBCA2D -- C:\WINDOWS\SysNative\winlogon.exe
[2015/11/05 05:01:41 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=A7C48B051A9C5D5054916DE5BEBBCA2D -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16590_none_77c554f96f9d1e4c\winlogon.exe
[2015/10/21 12:44:17 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=C527C9231D39BF69611F5F8C80C36140 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16566_none_77c5a4b56f9cc053\winlogon.exe
[2015/10/05 09:48:32 | 000,893,752 | ---- | M] (MalwareBytes) MD5=E9A75E4B409A01E52055CE7CCA7FF925 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe

[color=#A23BEC]< >[/color]

[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2015/12/09 11:20:13 | 000,000,000 | ---D | M](C:\Users\Technologie\Desktop\???????? ???????) -- C:\Users\Technologie\Desktop\'DB7'9'* 'D(3J7)
[2015/12/08 11:36:02 | 000,000,000 | ---D | M](C:\Users\Technologie\Desktop\???????) -- C:\Users\Technologie\Desktop\'DEB'79
[2015/12/08 11:31:55 | 000,000,000 | ---D | C](C:\Users\Technologie\Desktop\???????) -- C:\Users\Technologie\Desktop\'DEB'79
[2015/12/08 11:31:46 | 000,000,000 | ---D | C](C:\Users\Technologie\Desktop\???????? ???????) -- C:\Users\Technologie\Desktop\'DB7'9'* 'D(3J7)
[2015/11/28 11:15:28 | 003,361,792 | ---- | M] ()(C:\Users\Technologie\Desktop\??? ??????? ? ???????? ????? ??????? ????? ????? ?????????.doc) -- C:\Users\Technologie\Desktop\/13 'DEB'79 H 'DB7'9'* DD3F) 'D+'FJ) +'FHJ GF/3) EJC'FJCJ).doc
[2015/11/28 11:10:07 | 003,361,792 | ---- | C] ()(C:\Users\Technologie\Desktop\??? ??????? ? ???????? ????? ??????? ????? ????? ?????????.doc) -- C:\Users\Technologie\Desktop\/13 'DEB'79 H 'DB7'9'* DD3F) 'D+'FJ) +'FHJ GF/3) EJC'FJCJ).doc
[2015/11/28 11:06:17 | 002,256,384 | ---- | M] ()(C:\Users\Technologie\Desktop\??? ??????? ????? ??????? ????? ????? ?????????.doc) -- C:\Users\Technologie\Desktop\/13 'DHD('* DD3F) 'D+'FJ) +'FHJ GF/3) EJC'FJCJ).doc
[2015/11/28 09:40:25 | 000,000,000 | ---D | M](C:\Users\Technologie\Desktop\????????? ???????) -- C:\Users\Technologie\Desktop\'D*H2J9'* 'D3FHJ)
[2015/11/28 09:38:25 | 002,256,384 | ---- | C] ()(C:\Users\Technologie\Desktop\??? ??????? ????? ??????? ????? ????? ?????????.doc) -- C:\Users\Technologie\Desktop\/13 'DHD('* DD3F) 'D+'FJ) +'FHJ GF/3) EJC'FJCJ).doc
[2015/09/08 14:22:34 | 000,000,000 | ---D | C](C:\Users\Technologie\Desktop\????????? ???????) -- C:\Users\Technologie\Desktop\'D*H2J9'* 'D3FHJ)

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 95 bytes -> C:\ProgramData\TEMP:5F7539FF
@Alternate Data Stream - 154 bytes -> C:\ProgramData\TEMP:CB0AACC9
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:C31F31E6
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:3E57539F
@Alternate Data Stream - 12 bytes -> C:\Users\Technologie\MediaFire:mf_x

< End of report >

Publicité


Signaler le contenu de ce document

Publicité