cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 19/01/2016 21:43:14 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\arman\Downloads
An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10240.16384)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,89 Gb Total Physical Memory | 0,73 Gb Available Physical Memory | 38,83% Memory free
3,39 Gb Paging File | 1,72 Gb Available in Paging File | 50,90% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 27,78 Gb Total Space | 3,04 Gb Free Space | 10,94% Space Free | Partition Type: NTFS

Computer Name: DESKTOP-O7S0P7Q | User Name: arman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Users\arman\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Users\arman\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
PRC - C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe ()
PRC - C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15731.0_x86__8wekyb3d8bbwe\Video.UI.exe (Microsoft Corporation)
PRC - C:\Program Files\Steam\Steam.exe (Valve Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe (Microsoft Corporation)
PRC - C:\Windows\System32\fontdrvhost.exe (Microsoft Corporation)
PRC - C:\Program Files\Popcorn Time\Updater.exe (Popcorn Time)
PRC - C:\Windows\System32\igfxHK.exe (Intel Corporation)
PRC - C:\Windows\System32\igfxEM.exe (Intel Corporation)
PRC - C:\Windows\System32\igfxCUIService.exe (Intel Corporation)
PRC - C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation)
PRC - C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\GamePanel.exe (Microsoft Corporation)
PRC - C:\Windows\System32\bcastdvr.exe (Microsoft Corporation)
PRC - C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe (AsusTek)
PRC - C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe (AsusTek)
PRC - C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe (AsusTek)
PRC - C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Corporation)
PRC - C:\Windows\System32\ApplicationFrameHost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\sihost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation)
PRC - C:\Windows\System32\dasHost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhostw.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation)
PRC - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (Disc Soft Ltd)
PRC - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Adobe Systems Incorporated)
PRC - C:\Windows\System32\DptfPolicyLpmServiceHelper.exe (Intel Corporation)
PRC - C:\Windows\System32\DptfPolicyCriticalService.exe (Intel Corporation)
PRC - C:\Windows\System32\DptfPolicyLpmService.exe (Intel Corporation)
PRC - C:\Windows\System32\DptfParticipantProcessorService.exe (Intel Corporation)


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Program Files\Google\Chrome\Application\47.0.2526.111\libglesv2.dll ()
MOD - C:\Program Files\Google\Chrome\Application\47.0.2526.111\libegl.dll ()
MOD - C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe ()
MOD - C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x86__8wekyb3d8bbwe\Microsoft.Photos.dll ()
MOD - C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x86__8wekyb3d8bbwe\StoreRatingPromotion.dll ()
MOD - C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll ()
MOD - C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll ()
MOD - C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll ()
MOD - C:\Windows\System32\CoreUIComponents.dll ()
MOD - C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll ()
MOD - C:\Windows\System32\LicenseManagerApi.dll ()
MOD - C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll ()
MOD - C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll ()


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - (UserManager) -- C:\Windows\System32\usermgr.dll (Microsoft Corporation)
SRV - (OverwolfUpdater) -- C:\Program Files\Overwolf\OverwolfUpdater.exe (Overwolf LTD)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AppXSvc) -- C:\Windows\System32\AppXDeploymentServer.dll (Microsoft Corporation)
SRV - (RetailDemo) -- C:\Windows\System32\RDXService.dll (Microsoft Corporation)
SRV - (StateRepository) -- C:\Windows\System32\Windows.StateRepository.dll (Microsoft Corporation)
SRV - (DsSvc) -- C:\Windows\System32\dssvc.dll (Microsoft Corporation)
SRV - (Update service) -- C:\Program Files\Popcorn Time\Updater.exe (Popcorn Time)
SRV - (cphs) -- C:\Windows\System32\IntelCpHeciSvc.exe (Intel Corporation)
SRV - (igfxCUIService1.0.0.0) -- C:\Windows\System32\igfxCUIService.exe (Intel Corporation)
SRV - (UserDataSvc) -- C:\Windows\System32\UserDataService.dll (Microsoft Corporation)
SRV - (PimIndexMaintenanceSvc) -- C:\Windows\System32\PimIndexMaintenance.dll (Microsoft Corporation)
SRV - (UnistoreSvc) -- C:\Windows\System32\Unistore.dll (Microsoft Corporation)
SRV - (CoreMessagingRegistrar) -- C:\Windows\System32\CoreMessaging.dll (Microsoft Corporation)
SRV - (icssvc) -- C:\Windows\System32\tetheringservice.dll (Microsoft Corporation)
SRV - (DmEnrollmentSvc) -- C:\Windows\System32\Windows.Internal.Management.dll (Microsoft Corporation)
SRV - (tiledatamodelsvc) -- C:\Windows\System32\tileobjserver.dll (Microsoft Corporation)
SRV - (Wcmsvc) -- C:\Windows\System32\wcmsvc.dll (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Windows\System32\wlidsvc.dll (Microsoft Corporation)
SRV - (NgcSvc) -- C:\Windows\System32\ngcsvc.dll (Microsoft Corporation)
SRV - (BrokerInfrastructure) -- C:\Windows\System32\bisrv.dll (Microsoft Corporation)
SRV - (workfolderssvc) -- C:\Windows\System32\workfolderssvc.dll (Microsoft Corporation)
SRV - (SystemEventsBroker) -- C:\Windows\System32\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (AudioEndpointBuilder) -- C:\Windows\System32\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV - (NetSetupSvc) -- C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
SRV - (SensorDataService) -- C:\Windows\System32\SensorDataService.exe (Microsoft Corporation)
SRV - (DiagTrack) -- C:\Windows\System32\diagtrack.dll (Microsoft Corporation)
SRV - (DoSvc) -- C:\Windows\System32\dosvc.dll (Microsoft Corporation)
SRV - (ClipSVC) -- C:\Windows\System32\ClipSVC.dll (Microsoft Corporation)
SRV - (VaultSvc) -- C:\Windows\System32\vaultsvc.dll (Microsoft Corporation)
SRV - (UsoSvc) -- C:\Windows\System32\usocore.dll (Microsoft Corporation)
SRV - (SensorService) -- C:\Windows\System32\SensorService.dll (Microsoft Corporation)
SRV - (AppReadiness) -- C:\Windows\System32\AppReadiness.dll (Microsoft Corporation)
SRV - (WalletService) -- C:\Windows\System32\WalletService.dll (Microsoft Corporation)
SRV - (WiaRpc) -- C:\Windows\System32\wiarpc.dll (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
SRV - (NcaSvc) -- C:\Windows\System32\NcaSvc.dll (Microsoft Corporation)
SRV - (IEEtwCollectorService) -- C:\WINDOWS\System32\IEEtwCollector.exe (Microsoft Corporation)
SRV - (LSM) -- C:\Windows\System32\lsm.dll (Microsoft Corporation)
SRV - (NcdAutoSetup) -- C:\Windows\System32\NcdAutoSetup.dll (Microsoft Corporation)
SRV - (NcbService) -- C:\Windows\System32\ncbservice.dll (Microsoft Corporation)
SRV - (WpnService) -- C:\Windows\System32\wpnservice.dll (Microsoft Corporation)
SRV - (DevQueryBroker) -- C:\Windows\System32\DevQueryBroker.dll (Microsoft Corporation)
SRV - (lfsvc) -- C:\Windows\System32\lfsvc.dll (Microsoft Corporation)
SRV - (LicenseManager) -- C:\Windows\System32\LicenseManagerSvc.dll (Microsoft Corporation)
SRV - (XboxNetApiSvc) -- C:\Windows\System32\XboxNetApiSvc.dll (Microsoft Corporation)
SRV - (XblGameSave) -- C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
SRV - (NgcCtnrSvc) -- C:\Windows\System32\NgcCtnrSvc.dll (Microsoft Corporation)
SRV - (MapsBroker) -- C:\Windows\System32\moshost.dll (Microsoft Corporation)
SRV - (AJRouter) -- C:\Windows\System32\AJRouter.dll (Microsoft Corporation)
SRV - (CDPSvc) -- C:\Windows\System32\cdpsvc.dll (Microsoft Corporation)
SRV - (embeddedmode) -- C:\Windows\System32\embeddedmodesvc.dll (Microsoft Corporation)
SRV - (WSService) -- C:\Windows\System32\WSService.dll (Microsoft Corporation)
SRV - (KeyIso) -- C:\Windows\System32\keyiso.dll (Microsoft Corporation)
SRV - (XblAuthManager) -- C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
SRV - (ScDeviceEnum) -- C:\Windows\System32\ScDeviceEnum.dll (Microsoft Corporation)
SRV - (WEPHOSTSVC) -- C:\Windows\System32\wephostsvc.dll (Microsoft Corporation)
SRV - (EFS) -- C:\Windows\System32\efssvc.dll (Microsoft Corporation)
SRV - (DsmSvc) -- C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation)
SRV - (diagnosticshub.standardcollector.service) -- C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (Microsoft Corporation)
SRV - (DeviceAssociationService) -- C:\Windows\System32\das.dll (Microsoft Corporation)
SRV - (smphost) -- C:\Windows\System32\smphost.dll (Microsoft Corporation)
SRV - (OneSyncSvc) -- C:\Windows\System32\APHostService.dll (Microsoft Corporation)
SRV - (DcpSvc) -- C:\Windows\System32\dcpsvc.dll (Microsoft Corporation)
SRV - (fhsvc) -- C:\Windows\System32\fhsvc.dll (Microsoft Corporation)
SRV - (svsvc) -- C:\Windows\System32\svsvc.dll (Microsoft Corporation)
SRV - (EntAppSvc) -- C:\Windows\System32\EnterpriseAppMgmtSvc.dll (Microsoft Corporation)
SRV - (dmwappushservice) -- C:\Windows\System32\dmwappushsvc.dll (Microsoft Corporation)
SRV - (SmsRouter) -- C:\Windows\System32\SmsRouterSvc.dll (Microsoft Corporation)
SRV - (netprofm) -- C:\Windows\System32\netprofmsvc.dll (Microsoft Corporation)
SRV - (WdNisSvc) -- C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation)
SRV - (TimeBroker) -- C:\Windows\System32\TimeBrokerServer.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV - (vmicvss) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmicvmsession) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmictimesync) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmicshutdown) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmicrdv) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmickvpexchange) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmicheartbeat) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmicguestinterface) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (PrintNotify) -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll (Microsoft Corporation)
SRV - (BthHFSrv) -- C:\Windows\System32\BthHFSrv.dll (Microsoft Corporation)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Disc Soft Lite Bus Service) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (Disc Soft Ltd)
SRV - (BcmBtRSupport) -- C:\Windows\System32\BtwRSupportService.exe (Broadcom Corporation.)
SRV - (DptfPolicyCriticalService) -- C:\Windows\System32\DptfPolicyCriticalService.exe (Intel Corporation)
SRV - (DptfPolicyLpmService) -- C:\Windows\System32\DptfPolicyLpmService.exe (Intel Corporation)
SRV - (DptfParticipantProcessorService) -- C:\Windows\System32\DptfParticipantProcessorService.exe (Intel Corporation)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (wfpcapture) -- C:\WINDOWS\System32\drivers\wfpcapture.sys File not found
DRV - (VBoxNetFlt) -- C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys File not found
DRV - (MpKsla6b7fadf) -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E8982276-BF6F-485F-B0FA-BB672BB10B2D}\MpKsla6b7fadf.sys (Microsoft Corporation)
DRV - (GpuEnergyDrv) -- C:\Windows\System32\drivers\gpuenergydrv.sys (Microsoft Corporation)
DRV - (USBHUB3) -- C:\Windows\System32\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV - (dtlitescsibus) -- C:\Windows\System32\drivers\dtlitescsibus.sys (Disc Soft Ltd)
DRV - (pdc) -- C:\Windows\System32\drivers\pdc.sys (Microsoft Corporation)
DRV - (buttonconverter) -- C:\Windows\System32\drivers\buttonconverter.sys (Microsoft Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (terminpt) -- C:\Windows\System32\drivers\terminpt.sys (Microsoft Corporation)
DRV - (wpcfltr) -- C:\Windows\System32\drivers\wpcfltr.sys (Microsoft Corporation)
DRV - (wdiwifi) -- C:\Windows\System32\drivers\WdiWiFi.sys (Microsoft Corporation)
DRV - (USBXHCI) -- C:\Windows\System32\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV - (Wof) -- C:\WINDOWS\System32\drivers\wof.sys (Microsoft Corporation)
DRV - (stornvme) -- C:\Windows\System32\drivers\stornvme.sys (Microsoft Corporation)
DRV - (dam) -- C:\Windows\System32\drivers\dam.sys (Microsoft Corporation)
DRV - (BthHFEnum) -- C:\Windows\System32\drivers\bthhfenum.sys (Microsoft Corporation)
DRV - (msgpiowin32) -- C:\Windows\System32\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV - (UcmUcsi) -- C:\Windows\System32\drivers\UcmUcsi.sys (Microsoft Corporation)
DRV - (AsusSGDrv) -- C:\Windows\System32\drivers\AsusSGDrv.sys (ASUS Corporation)
DRV - (intaud_WaveExtensible) -- C:\Windows\System32\drivers\intelaud.sys (Intel Corporation)
DRV - (iwdbus) -- C:\Windows\System32\drivers\iwdbus.sys (Intel Corporation)
DRV - (VBoxNetAdp) -- C:\Windows\System32\drivers\VBoxNetAdp.sys (Oracle Corporation)
DRV - (WpdUpFltr) -- C:\Windows\System32\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV - (CLFS) -- C:\Windows\System32\drivers\clfs.sys (Microsoft Corporation)
DRV - (ahcache) -- C:\Windows\System32\drivers\ahcache.sys (Microsoft Corporation)
DRV - (WindowsTrustedRT) -- C:\Windows\System32\drivers\WindowsTrustedRT.sys (Microsoft Corporation)
DRV - (UcmCx0101) -- C:\Windows\System32\drivers\UcmCx.sys (Microsoft Corporation)
DRV - (VerifierExt) -- C:\Windows\System32\drivers\VerifierExt.sys (Microsoft Corporation)
DRV - (storqosflt) -- C:\Windows\System32\drivers\storqosflt.sys (Microsoft Corporation)
DRV - (condrv) -- C:\Windows\System32\drivers\condrv.sys (Microsoft Corporation)
DRV - (IoQos) -- C:\Windows\System32\drivers\ioqos.sys (Microsoft Corporation)
DRV - (WFPLWFS) -- C:\Windows\System32\drivers\wfplwfs.sys (Microsoft Corporation)
DRV - (MMCSS) -- C:\Windows\System32\drivers\mmcss.sys (Microsoft Corporation)
DRV - (cnghwassist) -- C:\Windows\System32\drivers\cnghwassist.sys (Microsoft Corporation)
DRV - (Ufx01000) -- C:\Windows\System32\drivers\ufx01000.sys (Microsoft Corporation)
DRV - (GPIOClx0101) -- C:\Windows\System32\drivers\msgpioclx.sys (Microsoft Corporation)
DRV - (SerCx2) -- C:\Windows\System32\drivers\SerCx2.sys (Microsoft Corporation)
DRV - (EhStorClass) -- C:\Windows\System32\drivers\EhStorClass.sys (Microsoft Corporation)
DRV - (SpbCx) -- C:\Windows\System32\drivers\SpbCx.sys (Microsoft Corporation)
DRV - (SerCx) -- C:\Windows\System32\drivers\SerCx.sys (Microsoft Corporation)
DRV - (UrsCx01000) -- C:\Windows\System32\drivers\urscx01000.sys (Microsoft Corporation)
DRV - (mshidumdf) -- C:\Windows\System32\drivers\mshidumdf.sys (Microsoft Corporation)
DRV - (NdisVirtualBus) -- C:\Windows\System32\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)
DRV - (Ndu) -- C:\Windows\System32\drivers\Ndu.sys (Microsoft Corporation)
DRV - (MsLldp) -- C:\Windows\System32\drivers\mslldp.sys (Microsoft Corporation)
DRV - (NdisImPlatform) -- C:\Windows\System32\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV - (WdFilter) -- C:\Windows\System32\drivers\WdFilter.sys (Microsoft Corporation)
DRV - (WdNisDrv) -- C:\Windows\System32\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV - (WdBoot) -- C:\Windows\System32\drivers\WdBoot.sys (Microsoft Corporation)
DRV - (Ucx01000) -- C:\Windows\System32\drivers\Ucx01000.sys (Microsoft Corporation)
DRV - (acpiex) -- C:\Windows\System32\drivers\acpiex.sys (Microsoft Corporation)
DRV - (FileCrypt) -- C:\Windows\System32\drivers\filecrypt.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (UdeCx) -- C:\Windows\System32\drivers\Udecx.sys ()
DRV - (vhf) -- C:\Windows\System32\drivers\vhf.sys (Microsoft Corporation)
DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV - (UrsSynopsys) -- C:\Windows\System32\drivers\urssynopsys.sys (Microsoft Corporation)
DRV - (UrsChipidea) -- C:\Windows\System32\drivers\urschipidea.sys (Microsoft Corporation)
DRV - (npsvctrig) -- C:\Windows\System32\drivers\npsvctrig.sys (Microsoft Corporation)
DRV - (WindowsTrustedRTProxy) -- C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys (Microsoft Corporation)
DRV - (spaceport) -- C:\Windows\System32\drivers\spaceport.sys (Microsoft Corporation)
DRV - (VSTXRAID) -- C:\Windows\System32\drivers\VSTXRAID.SYS (VIA Corporation)
DRV - (storahci) -- C:\Windows\System32\drivers\storahci.sys (Microsoft Corporation)
DRV - (ufxsynopsys) -- C:\Windows\System32\drivers\ufxsynopsys.sys (Microsoft Corporation)
DRV - (UfxChipidea) -- C:\Windows\System32\drivers\UfxChipidea.sys (Microsoft Corporation)
DRV - (UASPStor) -- C:\Windows\System32\drivers\uaspstor.sys (Microsoft Corporation)
DRV - (mvumis) -- C:\Windows\System32\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV - (percsas3i) -- C:\Windows\System32\drivers\percsas3i.sys (Avago Technologies)
DRV - (percsas2i) -- C:\Windows\System32\drivers\percsas2i.sys (LSI Corporation)
DRV - (BasicDisplay) -- C:\Windows\System32\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV - (storufs) -- C:\Windows\System32\drivers\storufs.sys (Microsoft Corporation)
DRV - (BasicRender) -- C:\Windows\System32\drivers\BasicRender.sys (Microsoft Corporation)
DRV - (UEFI) -- C:\Windows\System32\drivers\uefi.sys (Microsoft Corporation)
DRV - (swenum) -- C:\Windows\System32\DriverStore\FileRepository\swenum.inf_x86_b6707c73599dd1b6\swenum.sys (Microsoft Corporation)
DRV - (ADP80XX) -- C:\Windows\System32\drivers\adp80xx.sys (PMC-Sierra)
DRV - (iaStorAV) -- C:\Windows\System32\drivers\iaStorAV.sys (Intel Corporation)
DRV - (xboxgip) -- C:\Windows\System32\drivers\xboxgip.sys (Microsoft Corporation)
DRV - (TPM) -- C:\Windows\System32\drivers\tpm.sys (Microsoft Corporation)
DRV - (CapImg) -- C:\Windows\System32\drivers\capimg.sys (Microsoft Corporation)
DRV - (LSI_SAS2i) -- C:\Windows\System32\drivers\lsi_sas2i.sys (LSI Corporation)
DRV - (3ware) -- C:\Windows\System32\drivers\3ware.sys (LSI)
DRV - (LSI_SAS3i) -- C:\Windows\System32\drivers\lsi_sas3i.sys (Avago Technologies)
DRV - (LSI_SSS) -- C:\Windows\System32\drivers\lsi_sss.sys (LSI Corporation)
DRV - (hidinterrupt) -- C:\Windows\System32\drivers\hidinterrupt.sys (Microsoft Corporation)
DRV - (xinputhid) -- C:\Windows\System32\drivers\xinputhid.sys (Microsoft Corporation)
DRV - (kdnic) -- C:\Windows\System32\drivers\kdnic.sys (Microsoft Corporation)
DRV - (genericusbfn) -- C:\Windows\System32\drivers\genericusbfn.sys (Microsoft Corporation)
DRV - (acpitime) -- C:\Windows\System32\drivers\acpitime.sys (Microsoft Corporation)
DRV - (acpipagr) -- C:\Windows\System32\drivers\acpipagr.sys (Microsoft Corporation)
DRV - (BthLEEnum) -- C:\Windows\System32\drivers\BthLEEnum.sys (Microsoft Corporation)
DRV - (EhStorTcgDrv) -- C:\Windows\System32\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (sdstor) -- C:\Windows\System32\drivers\sdstor.sys (Microsoft Corporation)
DRV - (WINUSB) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (Synth3dVsc) -- C:\Windows\System32\drivers\Synth3dVsc.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (intelpep) -- C:\Windows\System32\drivers\intelpep.sys (Microsoft Corporation)
DRV - (hidi2c) -- C:\Windows\System32\drivers\hidi2c.sys (Microsoft Corporation)
DRV - (BthAvrcpTg) -- C:\Windows\System32\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_x86_a4832450a7024d49\CompositeBus.sys (Microsoft Corporation)
DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (fcvsc) -- C:\Windows\System32\drivers\fcvsc.sys (Microsoft Corporation)
DRV - (BthMini) -- C:\Windows\System32\drivers\BthMini.SYS (Microsoft Corporation)
DRV - (bthhfhid) -- C:\Windows\System32\drivers\BthhfHid.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (hyperkbd) -- C:\Windows\System32\drivers\hyperkbd.sys (Microsoft Corporation)
DRV - (gencounter) -- C:\Windows\System32\drivers\vmgencounter.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (CPLMACPI) -- C:\Windows\System32\drivers\CPLMACPI.sys (Capella Microsystems, Inc.)
DRV - (rtii2sac) -- C:\Windows\System32\drivers\rtii2sac.sys (Realtek Semiconductor Corp.)
DRV - (HIDSwitch) -- C:\Windows\System32\drivers\AsHIDSwitch.sys (ASUS)
DRV - (BtwSerialBus) -- C:\Windows\System32\drivers\BtwSerialBus.sys (Broadcom Corporation.)
DRV - (BCMSDH43XX) -- C:\Windows\System32\drivers\bcmdhd63.sys (Broadcom Corp)
DRV - (bcmfn2) -- C:\Windows\System32\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV - (TXEI) -- C:\Windows\System32\drivers\TXEI.sys (Intel Corporation)
DRV - (ssudserd) -- C:\Windows\System32\drivers\ssudserd.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (ssudobex) -- C:\Windows\System32\drivers\ssudobex.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (ssudmdm) -- C:\Windows\System32\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (ssuddmgr) -- C:\Windows\System32\drivers\ssuddmgr.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (dg_ssudbus) -- C:\Windows\System32\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (ssudrmnet) -- C:\Windows\System32\drivers\ssudrmnet.sys (DEVGURU Co., LTD.)
DRV - (ssudcdf) -- C:\Windows\System32\drivers\ssudcdf.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (ss_conn_usb_driver) -- C:\Windows\System32\drivers\ss_conn_usb_driver.sys (DEVGURU Co., LTD.)
DRV - (DptfManager) -- C:\Windows\System32\drivers\DptfManager.sys (Intel Corporation)
DRV - (DptfDevProc) -- C:\Windows\System32\drivers\DptfDevProc.sys (Intel Corporation)
DRV - (DptfDevAmbient) -- C:\Windows\System32\drivers\DptfDevAmbient.sys (Intel Corporation)
DRV - (DptfDevGen) -- C:\Windows\System32\drivers\DptfDevGen.sys (Intel Corporation)
DRV - (DptfDevDisplay) -- C:\Windows\System32\drivers\DptfDevDisplay.sys (Intel Corporation)
DRV - (DptfDevDBPT) -- C:\Windows\System32\drivers\DptfDevPower.sys (Intel Corporation)
DRV - (IntelSST) -- C:\Windows\System32\drivers\isstrtc.sys (Intel(R) Corporation)
DRV - (iaiouart) -- C:\Windows\System32\drivers\iaiouart.sys (Intel Corporation)
DRV - (iaiospi) -- C:\Windows\System32\drivers\iaiospi.sys (Intel Corporation)
DRV - (PMIC) -- C:\Windows\System32\drivers\PMIC.sys (Intel Corporation)
DRV - (GPIO) -- C:\Windows\System32\drivers\iaiogpioe.sys (Intel Corporation)
DRV - (MBI) -- C:\Windows\System32\drivers\MBI.sys (Intel Corporation)
DRV - (GpioVirtual) -- C:\Windows\System32\drivers\iaiogpiovirtual.sys (Intel Corporation)
DRV - (camera) -- C:\Windows\System32\drivers\camera.sys (Intel Corporation)
DRV - (imx175) -- C:\Windows\System32\drivers\imx175.sys (Intel Corporation)
DRV - (ov5693) -- C:\Windows\System32\drivers\ov5693.sys (Intel Corporation)
DRV - (ov2722) -- C:\Windows\System32\drivers\ov2722.sys (Intel Corporation)
DRV - (MT9M114) -- C:\Windows\System32\drivers\mt9m114.sys (Intel Corporation)
DRV - (Lm3554) -- C:\Windows\System32\drivers\lm3554.sys (Intel Corporation)
DRV - (iaioi2c) -- C:\Windows\System32\drivers\iaioi2ce.sys (Intel Corporation)
DRV - (iaStorA) -- C:\Windows\System32\drivers\iaStorA.sys (Intel Corporation)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1444560762&z=80a4472a25d8dd166f52817g9zfz0z7wfqbe4m9q8o&from=amt&uid=3219913727_198259_7cb24ec9
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/web/?type=ds&ts=1444560762&z=80a4472a25d8dd166f52817g9zfz0z7wfqbe4m9q8o&from=amt&uid=3219913727_198259_7cb24ec9&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/web/?type=ds&ts=1444560762&z=80a4472a25d8dd166f52817g9zfz0z7wfqbe4m9q8o&from=amt&uid=3219913727_198259_7cb24ec9&q={searchTerms}
IE - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-21-268313292-3464243622-4115469141-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1444560762&z=80a4472a25d8dd166f52817g9zfz0z7wfqbe4m9q8o&from=amt&uid=3219913727_198259_7cb24ec9
IE - HKU\S-1-5-21-268313292-3464243622-4115469141-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\S-1-5-21-268313292-3464243622-4115469141-1001\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKU\S-1-5-21-268313292-3464243622-4115469141-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-268313292-3464243622-4115469141-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.66.2: C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2: C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)



[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\
CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\
CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\arman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2015/10/07 18:09:08 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\System32\DptfPolicyLpmServiceHelper.exe (Intel Corporation)
O4 - HKLM..\Run: [Logitech Download Assistant] C:\WINDOWS\System32\LogiLDA.dll (Logitech, Inc.)
O4 - HKLM..\Run: [Wondershare Helper Compact.exe] C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\WINDOWS\System32\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\WINDOWS\System32\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-268313292-3464243622-4115469141-1001..\Run: [apphide] C:\Program Files\baidu\pps.exe ()
O4 - HKU\S-1-5-21-268313292-3464243622-4115469141-1001..\Run: [DAEMON Tools Lite Automount] C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-268313292-3464243622-4115469141-1001..\Run: [OneDrive] C:\Users\arman\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-268313292-3464243622-4115469141-1001..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-268313292-3464243622-4115469141-1001..\Run: [uTorrent] C:\Users\arman\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{d6432aa5-9434-4520-a7cc-7dca8c21c3f1}: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\WINDOWS\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3d4a5ae0-a99a-11e5-9668-40167ed3a4d3}\Shell - "" = AutoRun
O33 - MountPoints2\{3d4a5ae0-a99a-11e5-9668-40167ed3a4d3}\Shell\AutoRun\command - "" = "D:\startme.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2016/01/18 02:04:49 | 000,000,000 | ---D | C] -- C:\Users\arman\Desktop\Nouveau dossier (2)
[2016/01/18 01:51:54 | 000,000,000 | ---D | C] -- C:\Users\arman\Desktop\FAN
[2016/01/18 01:51:31 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\ElevatedDiagnostics
[2016/01/18 01:50:30 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\MattHTML5
[2016/01/18 01:34:40 | 000,000,000 | ---D | C] -- C:\Users\arman\Desktop\MEDITATION OF A MOBILE
[2016/01/17 15:44:08 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
[2016/01/17 15:42:55 | 000,000,000 | ---D | C] -- C:\Program Files\Overwolf
[2016/01/17 15:42:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Overwolf
[2016/01/17 15:42:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Overwolf
[2016/01/17 15:41:34 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\TS3Client
[2016/01/17 15:41:32 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\Overwolf
[2016/01/17 15:41:30 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
[2016/01/17 15:41:11 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\TeamSpeak 3 Client
[2016/01/16 16:02:00 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\obs-studio
[2016/01/16 16:01:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Multiplatform
[2016/01/16 16:01:04 | 000,000,000 | ---D | C] -- C:\Program Files\obs-studio
[2016/01/15 18:23:57 | 000,000,000 | ---D | C] -- C:\Users\arman\Desktop\Nouveau dossier
[2016/01/13 18:57:54 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2016/01/13 18:51:08 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\CEF
[2016/01/13 18:51:06 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\Steam
[2016/01/13 18:42:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2016/01/13 18:42:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2016/01/13 18:42:00 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2016/01/11 02:29:35 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\.ascentia
[2016/01/11 02:29:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2016/01/11 02:29:04 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\Sun
[2016/01/11 02:29:03 | 000,000,000 | ---D | C] -- C:\Users\arman\.oracle_jre_usage
[2016/01/11 02:28:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2016/01/11 02:28:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2016/01/11 02:28:09 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2016/01/11 02:24:20 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\Blizzard Entertainment
[2016/01/11 02:24:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2016/01/11 02:24:06 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\Battle.net
[2016/01/11 02:24:06 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\Battle.net
[2016/01/11 02:24:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
[2016/01/11 02:22:02 | 000,000,000 | ---D | C] -- C:\Program Files\Battle.net
[2016/01/11 02:20:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2016/01/10 17:34:48 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Software Inc
[2016/01/10 00:29:18 | 000,000,000 | ---D | C] -- C:\Users\arman\Desktop\PHOTO
[2016/01/09 21:13:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016/01/09 21:13:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2016/01/09 21:13:35 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2016/01/09 20:29:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KaraFun Player 2
[2016/01/09 20:28:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Recisio
[2016/01/09 20:28:46 | 000,000,000 | ---D | C] -- C:\Program Files\KaraFun Player 2
[2016/01/09 15:18:10 | 000,000,000 | ---D | C] -- C:\Users\arman\Desktop\Armand Explique
[2016/01/09 10:57:06 | 000,000,000 | ---D | C] -- C:\Users\arman\Desktop\win32
[2016/01/08 16:54:21 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\Sonic7
[2016/01/08 16:49:47 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\Presentable_Liberty
[2016/01/05 07:21:52 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2016/01/03 17:36:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\%LOCALAPPDATA%
[2016/01/02 18:19:42 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\PopcornTimeDesktop
[2016/01/02 18:17:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
[2016/01/02 18:15:40 | 000,000,000 | ---D | C] -- C:\Program Files\Popcorn Time
[2016/01/02 01:17:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\Ubisoft
[2016/01/02 01:14:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
[2015/12/31 12:04:53 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\CrashDumps
[2015/12/30 17:56:31 | 000,000,000 | ---D | C] -- C:\Users\arman\Tracing
[2015/12/30 17:55:49 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\Skype
[2015/12/30 17:55:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2015/12/30 16:26:06 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\Notepad++
[2015/12/30 16:25:42 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++
[2015/12/30 15:46:09 | 000,000,000 | ---D | C] -- C:\Users\arman\Desktop\Site
[2015/12/30 15:28:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Home Ftp Server
[2015/12/30 11:18:04 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\FileZilla Server
[2015/12/30 11:06:00 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\FileZilla
[2015/12/29 00:42:13 | 000,000,000 | ---D | C] -- C:\Users\arman\Documents\WebAcappella_4
[2015/12/29 00:37:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebAcappella4
[2015/12/29 00:36:10 | 000,000,000 | ---D | C] -- C:\Program Files\Intuisphere
[2015/12/23 13:54:01 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\Apple Computer
[2015/12/23 13:54:00 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Roaming\Apple Computer
[2015/12/23 13:51:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2015/12/23 13:50:30 | 000,000,000 | ---D | C] -- C:\Users\arman\AppData\Local\Apple
[2015/12/23 13:48:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[1 C:\Users\arman\AppData\Roaming\*.tmp files -> C:\Users\arman\AppData\Roaming\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2016/01/19 21:28:30 | 000,016,148 | ---- | M] () -- C:\WINDOWS\System32\DESKTOP-O7S0P7Q_arman_HistoryPrediction.bin
[2016/01/19 20:16:14 | 000,822,568 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2016/01/19 20:16:14 | 000,732,880 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2016/01/19 20:16:14 | 000,155,200 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2016/01/19 20:16:14 | 000,139,012 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2016/01/19 19:04:22 | 000,000,267 | ---- | M] () -- C:\Users\arman\Desktop\Default.ini
[2016/01/19 17:39:53 | 000,001,092 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2016/01/19 17:34:44 | 405,409,792 | -HS- | M] () -- C:\hiberfil.sys
[2016/01/19 17:34:38 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2016/01/18 02:07:55 | 000,200,880 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2016/01/18 02:07:49 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2016/01/17 15:41:30 | 000,001,280 | ---- | M] () -- C:\Users\arman\Desktop\TeamSpeak 3 Client.lnk
[2016/01/16 16:01:36 | 000,001,233 | ---- | M] () -- C:\Users\Public\Desktop\OBS Multiplatform.lnk
[2016/01/15 22:45:41 | 000,002,204 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016/01/15 17:10:24 | 000,126,816 | ---- | M] () -- C:\Users\arman\Desktop\Sans titre.mp4.sfk
[2016/01/13 23:12:49 | 000,000,214 | ---- | M] () -- C:\Users\arman\Desktop\Garry's Mod.url
[2016/01/13 18:42:13 | 000,000,990 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2016/01/11 02:25:59 | 000,290,705 | ---- | M] () -- C:\Users\arman\Desktop\Launcher Ascentia 3.3.exe
[2016/01/11 02:24:04 | 000,001,177 | ---- | M] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2016/01/10 17:34:49 | 000,002,779 | ---- | M] () -- C:\Users\Public\Desktop\Photo to Cartoon.lnk
[2016/01/10 14:37:37 | 000,015,184 | ---- | M] () -- C:\Users\arman\Desktop\images.jpg
[2016/01/09 21:13:38 | 000,002,628 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2016/01/09 20:29:14 | 000,001,115 | ---- | M] () -- C:\Users\arman\Desktop\KaraFun Player 2.lnk
[2016/01/06 22:20:22 | 701,121,397 | ---- | M] () -- C:\Users\arman\Desktop\Sans titre.mp4
[2016/01/06 00:29:26 | 000,689,599 | ---- | M] () -- C:\Users\arman\Desktop\intro fin ag.jpg
[2016/01/05 23:38:53 | 000,001,836 | ---- | M] () -- C:\Users\arman\Desktop\Photoshop - Raccourci.lnk
[2016/01/05 07:18:55 | 000,001,573 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Application Manager.lnk
[2016/01/02 18:17:03 | 000,002,006 | ---- | M] () -- C:\Users\Public\Desktop\Popcorn Time.lnk
[2015/12/31 12:37:43 | 000,127,213 | ---- | M] () -- C:\WINDOWS\System32\ega.cpi
[2015/12/31 12:37:43 | 000,021,232 | ---- | M] () -- C:\WINDOWS\System32\graphics.pro
[2015/12/31 12:37:43 | 000,018,832 | ---- | M] () -- C:\WINDOWS\System32\v7vga.rom
[2015/12/31 12:37:42 | 000,028,420 | ---- | M] () -- C:\WINDOWS\System32\bios1.rom
[2015/12/31 12:37:42 | 000,008,191 | ---- | M] () -- C:\WINDOWS\System32\bios4.rom
[2015/12/30 10:47:38 | 125,974,021 | ---- | M] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-30-(10h47).zip
[2015/12/29 21:50:43 | 125,787,163 | ---- | M] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-29-(21h50).zip
[2015/12/29 20:34:45 | 000,246,196 | ---- | M] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-29-(20h34).zip
[2015/12/29 20:02:19 | 000,210,102 | ---- | M] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-29-(20h02).zip
[2015/12/29 14:40:45 | 000,195,067 | ---- | M] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-29-(14h40).zip
[2015/12/29 00:37:02 | 000,001,250 | ---- | M] () -- C:\Users\arman\Desktop\WebAcappella4.lnk
[2015/12/28 15:39:18 | 001,383,346 | ---- | M] () -- C:\Users\arman\Desktop\DSC_0007.JPG
[2015/12/23 13:53:02 | 000,001,096 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[1 C:\Users\arman\AppData\Roaming\*.tmp files -> C:\Users\arman\AppData\Roaming\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2016/01/19 21:28:30 | 000,016,148 | ---- | C] () -- C:\WINDOWS\System32\DESKTOP-O7S0P7Q_arman_HistoryPrediction.bin
[2016/01/19 19:04:22 | 000,000,267 | ---- | C] () -- C:\Users\arman\Desktop\Default.ini
[2016/01/17 15:41:30 | 000,001,280 | ---- | C] () -- C:\Users\arman\Desktop\TeamSpeak 3 Client.lnk
[2016/01/16 16:01:36 | 000,001,233 | ---- | C] () -- C:\Users\Public\Desktop\OBS Multiplatform.lnk
[2016/01/15 17:09:39 | 000,126,816 | ---- | C] () -- C:\Users\arman\Desktop\Sans titre.mp4.sfk
[2016/01/15 17:08:55 | 701,121,397 | ---- | C] () -- C:\Users\arman\Desktop\Sans titre.mp4
[2016/01/13 23:12:49 | 000,000,214 | ---- | C] () -- C:\Users\arman\Desktop\Garry's Mod.url
[2016/01/13 18:42:13 | 000,000,990 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2016/01/11 02:25:30 | 000,290,705 | ---- | C] () -- C:\Users\arman\Desktop\Launcher Ascentia 3.3.exe
[2016/01/11 02:24:04 | 000,001,177 | ---- | C] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2016/01/10 17:34:49 | 000,002,779 | ---- | C] () -- C:\Users\Public\Desktop\Photo to Cartoon.lnk
[2016/01/10 17:34:49 | 000,002,673 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo to Cartoon.lnk
[2016/01/10 14:38:30 | 000,015,184 | ---- | C] () -- C:\Users\arman\Desktop\images.jpg
[2016/01/10 14:00:36 | 001,095,596 | ---- | C] () -- C:\Users\arman\Desktop\Fine College.ttf
[2016/01/09 21:13:37 | 000,002,628 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2016/01/09 20:29:14 | 000,001,115 | ---- | C] () -- C:\Users\arman\Desktop\KaraFun Player 2.lnk
[2016/01/06 00:29:19 | 000,689,599 | ---- | C] () -- C:\Users\arman\Desktop\intro fin ag.jpg
[2016/01/05 23:38:53 | 000,001,836 | ---- | C] () -- C:\Users\arman\Desktop\Photoshop - Raccourci.lnk
[2016/01/05 07:22:31 | 000,001,329 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014 (32 Bit).lnk
[2016/01/05 07:18:55 | 000,001,585 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
[2016/01/05 07:18:55 | 000,001,573 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Application Manager.lnk
[2016/01/02 18:17:03 | 000,002,006 | ---- | C] () -- C:\Users\Public\Desktop\Popcorn Time.lnk
[2015/12/30 10:47:20 | 125,974,021 | ---- | C] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-30-(10h47).zip
[2015/12/29 21:50:26 | 125,787,163 | ---- | C] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-29-(21h50).zip
[2015/12/29 20:34:45 | 000,246,196 | ---- | C] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-29-(20h34).zip
[2015/12/29 20:02:19 | 000,210,102 | ---- | C] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-29-(20h02).zip
[2015/12/29 14:40:44 | 000,195,067 | ---- | C] () -- C:\Users\arman\Documents\ArmandExplique_site1_2015-12-29-(14h40).zip
[2015/12/29 12:59:50 | 001,383,346 | ---- | C] () -- C:\Users\arman\Desktop\DSC_0007.JPG
[2015/12/29 00:37:02 | 000,001,250 | ---- | C] () -- C:\Users\arman\Desktop\WebAcappella4.lnk
[2015/10/11 17:45:26 | 000,005,050 | ---- | C] () -- C:\ProgramData\wmzddnmb.cix
[2015/10/11 17:45:25 | 000,000,016 | ---- | C] () -- C:\ProgramData\mntemp
[2015/10/09 06:28:26 | 000,013,824 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxLHMLibv2_0.dll
[2015/10/09 06:28:26 | 000,013,824 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxLHMLib.dll
[2015/10/09 06:28:25 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\igfxCUIServicePS.dll
[2015/10/09 06:28:25 | 000,078,336 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDHLibv2_0.dll
[2015/10/09 06:28:25 | 000,068,096 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDHLib.dll
[2015/10/09 06:28:25 | 000,020,976 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDILib.dll
[2015/10/09 06:28:25 | 000,020,464 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxEMLib.dll
[2015/10/09 06:28:25 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxEMLibv2_0.dll
[2015/10/09 06:28:25 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDILibv2_0.dll
[2015/10/09 06:28:23 | 000,196,080 | ---- | C] () -- C:\WINDOWS\System32\igdde32.dll
[2015/10/09 06:28:22 | 000,154,096 | ---- | C] () -- C:\WINDOWS\System32\igdail32.dll
[2015/10/09 06:28:13 | 000,102,912 | ---- | C] () -- C:\WINDOWS\System32\IccLibDll.dll
[2015/10/08 03:56:44 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2015/10/08 03:53:04 | 000,200,880 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2015/10/07 18:56:08 | 000,822,568 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[2015/10/07 18:56:08 | 000,350,774 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[2015/10/07 18:56:08 | 000,155,200 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[2015/10/07 18:56:08 | 000,040,528 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[2015/10/07 18:31:32 | 000,732,880 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2015/10/07 18:31:32 | 000,296,742 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2015/10/07 18:31:32 | 000,139,012 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2015/10/07 18:31:32 | 000,033,362 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2015/10/07 18:22:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\NOISE.DAT
[2015/10/07 18:22:08 | 000,215,943 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2015/10/07 18:22:03 | 000,000,389 | ---- | C] () -- C:\WINDOWS\System32\AutoWorkplace.exe.config
[2015/10/07 18:09:57 | 000,016,148 | ---- | C] () -- C:\WINDOWS\System32\DESKTOP-O7S0P7Q_defaultuser0_HistoryPrediction.bin
[2015/10/01 18:48:07 | 001,766,952 | ---- | C] () -- C:\WINDOWS\System32\CoreUIComponents.dll
[2015/10/01 05:40:08 | 000,053,352 | ---- | C] () -- C:\WINDOWS\System32\ASGCoInstaller_x86.dll
[2015/09/10 05:02:18 | 000,301,056 | ---- | C] () -- C:\WINDOWS\System32\diagtrack_wininternal.dll
[2015/09/10 05:02:15 | 001,823,232 | ---- | C] () -- C:\WINDOWS\System32\InputService.dll
[2015/09/10 05:02:15 | 000,284,672 | ---- | C] () -- C:\WINDOWS\System32\diagtrack_win.dll
[2015/09/10 05:02:15 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\TextInputFramework.dll
[2015/09/10 05:02:15 | 000,025,088 | ---- | C] () -- C:\WINDOWS\System32\LicenseManagerApi.dll
[2015/07/10 23:41:10 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\Gfxv2_0.exe.config
[2015/07/10 23:41:10 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\DPTopologyAppv2_0.exe.config
[2015/07/10 23:41:10 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\Gfxv4_0.exe.config
[2015/07/10 23:41:10 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\DPTopologyApp.exe.config
[2015/07/10 23:41:08 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\CustomModeAppv2_0.exe.config
[2015/07/10 23:41:08 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\CustomModeApp.exe.config
[2015/07/10 09:25:11 | 001,520,828 | ---- | C] () -- C:\WINDOWS\System32\WpcNBModel.bin
[2015/07/10 09:25:11 | 000,526,068 | ---- | C] () -- C:\WINDOWS\System32\staticurllist.bin
[2015/07/10 09:25:09 | 000,161,632 | ---- | C] () -- C:\WINDOWS\System32\weretw.dll
[2015/07/10 09:25:06 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2015/07/10 09:25:03 | 000,047,104 | ---- | C] () -- C:\WINDOWS\System32\BWContextHandler.dll
[2015/07/10 09:25:00 | 000,174,080 | ---- | C] () -- C:\WINDOWS\System32\MTFServer.dll
[2015/07/10 09:25:00 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\MTF.dll
[2015/07/10 09:25:00 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\WppRecorderUM.dll
[2015/07/10 09:24:54 | 000,167,640 | ---- | C] () -- C:\WINDOWS\System32\chs_singlechar_pinyin.dat
[2015/07/10 09:24:52 | 000,081,408 | ---- | C] () -- C:\WINDOWS\System32\InputLocaleManager.dll
[2015/07/10 09:24:52 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\EditBufferTestHook.dll
[2015/07/10 09:24:52 | 000,053,760 | ---- | C] () -- C:\WINDOWS\System32\WpKbdLayout.dll
[2015/07/10 09:24:52 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\WordBreakers.dll
[2015/07/10 09:24:50 | 007,561,248 | ---- | C] () -- C:\WINDOWS\System32\DefaultHrtfs.bin
[2015/07/10 09:24:50 | 000,328,048 | ---- | C] () -- C:\WINDOWS\System32\LargeRoom.bin
[2015/07/10 09:24:50 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\HrtfApo.dll
[2015/07/10 09:24:50 | 000,246,048 | ---- | C] () -- C:\WINDOWS\System32\MediumRoom.bin
[2015/07/10 09:24:50 | 000,164,048 | ---- | C] () -- C:\WINDOWS\System32\SmallRoom.bin
[2015/07/10 09:24:50 | 000,131,248 | ---- | C] () -- C:\WINDOWS\System32\OutdoorAudioEnvironment.bin
[2015/07/10 09:24:45 | 000,462,848 | ---- | C] () -- C:\WINDOWS\System32\EditionUpgradeManagerObj.dll
[2015/07/10 09:24:45 | 000,325,632 | ---- | C] () -- C:\WINDOWS\System32\EditionUpgradeHelper.dll
[2015/07/10 09:24:45 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\efsext.dll
[2015/07/10 09:24:42 | 000,002,269 | ---- | C] () -- C:\WINDOWS\System32\WimBootCompress.ini
[2015/07/10 09:24:39 | 000,055,803 | ---- | C] () -- C:\WINDOWS\System32\srms.dat
[2015/07/10 09:24:36 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\settings.dat
[2015/07/10 09:24:33 | 000,074,752 | ---- | C] () -- C:\WINDOWS\System32\BthpanContextHandler.dll
[2015/07/10 09:24:33 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2015/07/10 09:24:28 | 000,031,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\Udecx.sys
[2014/06/19 21:39:00 | 000,010,375 | ---- | C] () -- C:\ProgramData\regid.2008-04.com.caricaturesoft_4ECD9E60-F79E-481F-B428-F04A7E9EF846.swidtag
[2014/04/22 19:35:34 | 000,410,369 | ---- | C] () -- C:\WINDOWS\System32\drivers\43241b4rtecdc.bin
[2014/03/07 04:32:40 | 007,332,936 | ---- | C] () -- C:\WINDOWS\System32\drivers\isp_firmware.bin
[2014/03/07 04:32:40 | 000,526,500 | ---- | C] () -- C:\WINDOWS\System32\drivers\realtek_fw_sst.bin

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2016/01/13 20:11:22 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2015/09/17 07:28:40 | 005,120,056 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2015/07/10 09:24:35 | 000,754,688 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2015/07/10 09:24:35 | 000,408,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== LOP Check ==========[/color]

[2016/01/11 22:01:34 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\.ascentia
[2016/01/11 02:24:06 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\Battle.net
[2015/10/11 15:35:56 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\DAEMON Tools Lite
[2015/12/30 11:14:29 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\FileZilla
[2015/12/30 11:18:04 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\FileZilla Server
[2015/10/11 17:57:40 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\Movavi
[2015/12/31 12:57:56 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\Notepad++
[2016/01/16 16:02:00 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\obs-studio
[2015/10/09 06:06:59 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\Origin
[2015/10/08 19:10:51 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\Publish Providers
[2015/10/12 19:47:32 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\Sony
[2015/10/12 18:22:10 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\Sony Creative Software Inc
[2016/01/19 20:46:08 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\TS3Client
[2016/01/17 16:04:12 | 000,000,000 | ---D | M] -- C:\Users\arman\AppData\Roaming\uTorrent

[color=#E56717]========== Purity Check ==========[/color]



< End of report >

Publicité


Signaler le contenu de ce document

Publicité