cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 07/04/2016 13:53:54 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\maman\Desktop\Nouveau dossier
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,96 Gb Total Physical Memory | 0,53 Gb Available Physical Memory | 27,03% Memory free
3,92 Gb Paging File | 2,01 Gb Available in Paging File | 51,42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 93,06 Gb Total Space | 13,76 Gb Free Space | 14,79% Space Free | Partition Type: NTFS

Computer Name: MAMAN-PC | User Name: maman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Users\maman\Desktop\Nouveau dossier\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSvc.exe (Baidu, Inc.)
PRC - C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavTray.exe (Baidu, Inc.)
PRC - C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BHipsSvc.exe (Baidu, Inc.)
PRC - C:\Program Files\baidu\Baidu Browser\sparkservice.exe (Baidu Inc.)
PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
PRC - C:\Program Files\PC Faster\PCFTray.exe (Baidu, Inc.)
PRC - C:\Program Files\PC Faster\SysOptEngineSvc.exe (Baidu, Inc.)
PRC - C:\Program Files\PC Faster\PCFasterSvc.exe (Baidu, Inc.)
PRC - C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe (Baidu, Inc.)
PRC - C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bas_helper.exe (Baidu, Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\prevhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
PRC - C:\Program Files\Larousse\Petit Larousse 2010\bin\Hyperappel.exe ()
PRC - C:\PROGRA~1\MICROS~2\Office12\WINWORD.EXE (Microsoft Corporation)


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Windows\assembly\GAC\Office\7.0.3300.0__b03f5f7f11d50a3a\Office.dll ()
MOD - C:\Windows\assembly\GAC\Microsoft.Office.Interop.Word\10.0.4504.0__31bf3856ad364e35\Microsoft.Office.Interop.Word.dll ()
MOD - C:\Windows\assembly\GAC\Microsoft.Office.Interop.PowerPoint\10.0.4504.0__31bf3856ad364e35\Microsoft.Office.Interop.PowerPoint.dll ()
MOD - C:\Windows\assembly\GAC\Microsoft.Office.Interop.Excel\10.0.4504.0__31bf3856ad364e35\Microsoft.Office.Interop.Excel.dll ()
MOD - C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Pulgin_Dark_DeleteFileTip.dll ()
MOD - C:\Windows\assembly\GAC\Extensibility\7.0.3300.0__b03f5f7f11d50a3a\Extensibility.dll ()
MOD - C:\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll ()
MOD - C:\Windows\assembly\GAC\Microsoft.Office.Interop.Word\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Word.dll ()
MOD - C:\Program Files\CCleaner\lang\lang-1036.dll ()
MOD - C:\Program Files\PC Faster\sqlite.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\zlib1.dll ()
MOD - C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\skiax.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Microsoft.WSMan.Management.resources\1.0.0.0_fr_31bf3856ad364e35\Microsoft.WSMan.Management.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Management.Automation.resources\1.0.0.0_fr_31bf3856ad364e35\System.Management.Automation.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost.resources\1.0.0.0_fr_31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Microsoft.PowerShell.Security.resources\1.0.0.0_fr_31bf3856ad364e35\Microsoft.PowerShell.Security.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_fr_b77a5c561934e089\System.Windows.Forms.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Man#\f1865caa683ceb3d12b383a94a35da14\Microsoft.WSMan.Management.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\08d608378aa405adc844f3cf36974b8c\Microsoft.VisualBasic.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\6c5bef3ab74c06a641444eff648c0dde\Microsoft.PowerShell.Security.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\4bdde288f147e3b3f2c090ecdf704e6d\Microsoft.PowerShell.ConsoleHost.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\82d7758f278f47dc4191abab1cb11ce3\Microsoft.PowerShell.Commands.Utility.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\583c7b9f52114c026088bdb9f19f64e8\Microsoft.PowerShell.Commands.Management.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\a8e3a41ecbcc4bb1598ed5719f965110\System.Management.Automation.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\e112e4460a0c9122de8c382126da4a2f\Microsoft.PowerShell.Commands.Diagnostics.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\bf7e7494e75e32979c7824a07570a8a9\CustomMarshalers.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\6f3b99ed0b791ff4d8aa52f2f0cd0bcf\System.Management.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\fbc05b5b05dc6366b02b8e2f77d080f1\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\f02737c83305687a68c088927a6c5a98\System.Configuration.Install.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\ad18f93fc713db2c4b29b25116c13bd8\System.Transactions.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\1e85062785e286cd9eae9c26d2c61f73\System.Data.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\45ec12795950a7d54691591c615a9e3c\System.DirectoryServices.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\3afcd5168c7a6cb02eab99d7fd71e102\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\dbfe8642a8ed7b2b103ad28e0c96418a\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\461d3b6b3f43e6fbe6c897d5936e17e4\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9e0a3b9b9f457233a335d7fba8f95419\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\62a0b3e4b40ec0e8c5cfaa0c8848e64a\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll ()
MOD - C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll ()
MOD - C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll ()
MOD - C:\Program Files\Larousse\Petit Larousse 2010\bin\Hyperappel.exe ()
MOD - C:\Program Files\Learning Essentials\Thesis\ThesisCommon\fr\ThesisCommon.resources.dll ()
MOD - C:\Program Files\Learning Essentials\Thesis\ThesisCommon\ThesisCommon.dll ()
MOD - C:\Program Files\Learning Essentials\Thesis\ThesisCommon\WordConn.dll ()
MOD - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL ()


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - (BavSvc) -- C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavSvc.exe (Baidu, Inc.)
SRV - (BHipsSvc) -- C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BHipsSvc.exe (Baidu, Inc.)
SRV - (SparkUpdater) -- C:\Program Files\Baidu\SparkUpdate\Sparkupdate.exe (Baidu.com, Inc.)
SRV - (SparkSvc) -- C:\Program Files\baidu\Baidu Browser\sparkservice.exe (Baidu Inc.)
SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (PCFasterSvc_{PCFaster_5.1.0.0}) -- C:\Program Files\PC Faster\PCFasterSvc.exe (Baidu, Inc.)
SRV - (BdSandboxSrv) -- C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BdSandboxSrv.exe (Baidu, Inc.)
SRV - (BASSVC) -- C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe (Baidu, Inc.)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (Baidu PC Faster FileShredder) -- C:\Program Files\PC Faster\FileKill_x86.sys ()
DRV - (Bndef) -- C:\Windows\System32\drivers\bndef.sys (Baidu, Inc.)
DRV - (Bprotect) -- C:\Windows\System32\drivers\Bprotect.sys (Baidu, Inc.)
DRV - (BHipsEx) -- C:\Windows\System32\drivers\BHipsEx.sys (Baidu, Inc.)
DRV - (BdApiUtil) -- C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BdApiUtil.sys (Baidu, Inc.)
DRV - (BNmon) -- C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\Bnmon.sys (Baidu, Inc.)
DRV - (Bhbase) -- C:\Windows\System32\drivers\Bhbase.sys (Baidu, Inc.)
DRV - (Bnbase) -- C:\Windows\System32\drivers\bnbasex.sys (Baidu, Inc.)
DRV - (Bfilter) -- C:\Windows\System32\drivers\Bfilter.sys (Baidu, Inc.)
DRV - (Bfmon) -- C:\Windows\System32\drivers\Bfmon.sys (Baidu, Inc.)
DRV - (BdCameraProtect) -- C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BdCameraProtect.sys (Baidu, Inc.)
DRV - (bdark) -- C:\Windows\System32\drivers\bdark.sys ()
DRV - (PCFApiUtil) -- C:\Program Files\PC Faster\PCFApiUtil.sys (Baidu, Inc.)
DRV - (BprotectEx) -- C:\Windows\System32\drivers\BprotectEx.sys (Baidu, Inc.)
DRV - (BdSandbox) -- C:\Windows\System32\drivers\BdSandbox.sys (Baidu, Inc.)
DRV - (Netaapl) -- C:\Windows\System32\drivers\netaapl.sys (Apple Inc.)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV - (TPM) -- C:\Windows\System32\drivers\tpm.sys (Microsoft Corporation)
DRV - (netw5v32) -- C:\Windows\System32\drivers\netw5v32.sys (Intel Corporation)
DRV - (e1express) -- C:\Windows\System32\drivers\e1e6032.sys (Intel Corporation)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bendot.co.nr
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)



O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O4 - HKLM..\Run: [Baidu Antivirus] C:\Program Files\Baidu Security\Baidu Antivirus\5.4.3.148966.0\BavTray.exe (Baidu, Inc.)
O4 - HKLM..\Run: [Baidu PC Faster 4.0.0.0] C:\Program Files\PC Faster\PCFTray.exe (Baidu, Inc.)
O4 - HKLM..\Run: [Baidu PC Faster 5.1.0.0] C:\Program Files\PC Faster\PCFTray.exe (Baidu, Inc.)
O4 - HKCU..\Run: [{6A750C26-489D-4710-BDCF-BCFF0FE465DA}] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [Df5serv] Wscript.exe //e:VBScript "C:\Users\maman\Documents\df5srvc.bfe" File not found
O4 - HKCU..\Run: [Explorer] Wscript.exe //e:VBScript "C:\Users\maman\AppData\Local\Microsoft\CD Burning\dekstop.ini" File not found
F3 - HKCU WinNT: Load - (C:\ProgramData\msfrs.exe) - C:\ProgramData\msfrs.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1C91F188-A405-44C6-9C44-ABAE682F68CD}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{93A68607-1313-4B74-9AD8-4B572D833B38}: DhcpNameServer = 172.20.10.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2016/04/02 12:53:51 | 000,000,127 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found


ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2016/04/07 13:43:34 | 000,000,000 | ---D | C] -- C:\Users\maman\Desktop\Nouveau dossier
[2016/04/07 13:22:30 | 000,000,000 | ---D | C] -- C:\Users\maman\Desktop\Encarta Premium 2009 FR
[2016/04/06 10:06:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HunterStone
[2016/04/06 10:06:55 | 000,000,000 | ---D | C] -- C:\Users\maman\Documents\Thesis
[2016/04/06 10:06:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les Indispensables Éducation
[2016/04/06 10:05:54 | 000,000,000 | ---D | C] -- C:\Program Files\Learning Essentials
[2016/04/02 12:54:11 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Démarrage
[2016/04/02 12:54:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Démarrage
[2016/04/02 12:54:07 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Le Traducteur
[2016/04/02 12:53:43 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\ST4UNST.EXE
[2016/04/02 12:53:43 | 000,000,000 | ---D | C] -- C:\Language
[2016/03/28 22:53:34 | 000,000,000 | ---D | C] -- C:\Users\maman\Desktop\Elage Diouf
[2016/03/25 22:44:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2016/03/13 22:44:05 | 000,000,000 | ---D | C] -- C:\Users\maman\Desktop\dinama neex
[2016/03/12 17:18:23 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Baidu Security
[2016/03/12 16:12:54 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Apple Computer
[2016/03/12 16:12:54 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Local\Apple Computer
[2016/03/12 16:12:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2016/03/12 16:11:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2016/03/12 16:10:02 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2016/03/12 16:10:01 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2016/03/12 16:10:01 | 000,000,000 | ---D | C] -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
[2016/03/12 16:10:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2016/03/12 16:07:51 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Local\Apple
[2016/03/12 16:07:36 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2016/03/12 16:05:51 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2016/03/12 16:04:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2016/03/12 16:04:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2016/03/11 23:48:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2016/03/11 23:48:27 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2016/03/11 23:23:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Larousse
[2016/03/11 23:23:27 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2016/03/11 23:22:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2016/03/11 23:06:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016/03/11 23:06:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2016/03/11 23:06:50 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2016/03/10 20:40:40 | 000,000,000 | ---D | C] -- C:\Users\maman\Desktop\UTILITAIRE
[2016/03/10 01:38:01 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Local\Adobe
[2016/03/09 15:46:21 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
[2016/03/09 15:45:09 | 000,000,000 | ---D | C] -- C:\Program Files\FormatFactory
[2016/03/09 15:34:27 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Local\Opera Software
[2016/03/09 15:34:24 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Opera Software
[2016/03/09 15:30:26 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Skype
[2016/03/09 15:28:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2016/03/09 15:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2016/03/09 15:06:44 | 000,330,272 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\BdSandboxDll32.dll
[2016/03/09 12:50:28 | 000,113,992 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\BprotectEx.sys
[2016/03/09 12:50:00 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster
[2016/03/09 12:50:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster
[2016/03/09 12:49:19 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\PC Faster
[2016/03/09 12:49:19 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Faster
[2016/03/09 12:48:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Browser
[2016/03/09 12:48:01 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Baidu
[2016/03/09 12:47:57 | 000,000,000 | ---D | C] -- C:\Program Files\baidu
[2016/03/09 12:47:09 | 000,000,000 | ---D | C] -- C:\Program Files\PC Faster
[2016/03/09 12:47:04 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\PC Faster
[2016/03/09 12:45:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Antivirus
[2016/03/09 12:20:06 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2016/03/09 12:20:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2016/03/09 12:17:37 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\WinRAR
[2016/03/09 12:17:36 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016/03/09 12:17:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016/03/09 12:17:26 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2016/03/09 12:16:53 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Local\Programs
[2016/03/09 12:16:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2016/03/09 12:15:41 | 000,000,000 | ---D | C] -- C:\9f6561ea73478cb42c6e1d6302d19ac3
[2016/03/09 12:15:03 | 000,194,552 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\BdSandbox.sys
[2016/03/09 12:15:01 | 000,461,224 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\bndef.sys
[2016/03/09 12:14:57 | 000,075,432 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\bnbasex.sys
[2016/03/09 12:14:53 | 000,197,064 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\Bprotect.sys
[2016/03/09 12:14:48 | 000,031,176 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\Bfmon.sys
[2016/03/09 12:14:44 | 000,050,120 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\Bfilter.sys
[2016/03/09 12:14:40 | 000,138,184 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\BHipsEx.sys
[2016/03/09 12:14:35 | 000,081,736 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\Bhbase.sys
[2016/03/09 12:14:10 | 000,000,000 | ---D | C] -- C:\ProgramData\baidu
[2016/03/09 12:12:53 | 000,000,000 | ---D | C] -- C:\Users\maman\AppData\Roaming\BavMini
[2016/03/09 11:59:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Baidu Security
[2016/03/09 11:59:51 | 000,000,000 | ---D | C] -- C:\Program Files\Baidu Security
[2016/03/09 11:59:37 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Baidu
[2016/03/09 11:55:14 | 002,425,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2016/03/09 11:55:14 | 000,045,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2016/03/09 11:55:05 | 000,581,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2016/03/09 11:55:05 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2016/03/09 11:55:05 | 000,036,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2016/03/09 11:54:55 | 000,179,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2016/03/09 11:54:55 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2016/04/07 13:55:50 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2016/04/07 13:54:08 | 000,000,581 | ---- | M] () -- C:\Windows\tasks\Microsoft.lnk
[2016/04/07 13:54:08 | 000,000,579 | ---- | M] () -- C:\Windows\tasks\Aplikasi.lnk
[2016/04/07 13:53:35 | 000,000,752 | ---- | M] () -- C:\Users\maman\Desktop.lnk
[2016/04/07 13:53:35 | 000,000,617 | ---- | M] () -- C:\Users\maman\Application Data.lnk
[2016/04/07 13:53:35 | 000,000,601 | ---- | M] () -- C:\Users\maman\Contacts.lnk
[2016/04/07 13:53:35 | 000,000,599 | ---- | M] () -- C:\Users\maman\Cookies.lnk
[2016/04/07 13:53:34 | 000,000,603 | ---- | M] () -- C:\Users\maman\Microsoft.lnk
[2016/04/07 13:53:34 | 000,000,601 | ---- | M] () -- C:\Users\maman\Aplikasi.lnk
[2016/04/07 13:53:34 | 000,000,599 | ---- | M] () -- C:\Users\maman\AppData.lnk
[2016/04/07 13:53:33 | 000,000,657 | ---- | M] () -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB.lnk
[2016/04/07 13:53:32 | 000,000,748 | ---- | M] () -- C:\ProgramData\Adobe.lnk
[2016/04/07 13:53:32 | 000,000,617 | ---- | M] () -- C:\ProgramData\Application Data.lnk
[2016/04/07 13:53:32 | 000,000,613 | ---- | M] () -- C:\ProgramData\Apple Computer.lnk
[2016/04/07 13:53:32 | 000,000,603 | ---- | M] () -- C:\ProgramData\Microsoft.lnk
[2016/04/07 13:53:32 | 000,000,601 | ---- | M] () -- C:\ProgramData\Aplikasi.lnk
[2016/04/07 13:53:32 | 000,000,595 | ---- | M] () -- C:\ProgramData\Apple.lnk
[2016/04/07 13:53:23 | 000,000,756 | ---- | M] () -- C:\Users\Public\Documents\Microsoft.lnk
[2016/04/07 13:53:23 | 000,000,754 | ---- | M] () -- C:\Users\Public\Documents\Aplikasi.lnk
[2016/04/07 13:38:52 | 000,695,004 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2016/04/07 13:38:52 | 000,607,190 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2016/04/07 13:38:52 | 000,127,684 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2016/04/07 13:38:52 | 000,103,568 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2016/04/07 13:25:28 | 000,000,764 | ---- | M] () -- C:\Users\maman\Documents\Mes vidéos.lnk
[2016/04/07 13:25:28 | 000,000,764 | ---- | M] () -- C:\Users\maman\Documents\Mes images.lnk
[2016/04/07 13:25:28 | 000,000,764 | ---- | M] () -- C:\Users\maman\Documents\Ma musique.lnk
[2016/04/07 13:25:28 | 000,000,762 | ---- | M] () -- C:\Users\maman\Documents\Microsoft.lnk
[2016/04/07 13:25:28 | 000,000,754 | ---- | M] () -- C:\Users\maman\Documents\Music.lnk
[2016/04/07 13:25:27 | 000,000,760 | ---- | M] () -- C:\Users\maman\Documents\Aplikasi.lnk
[2016/04/07 13:25:00 | 000,028,128 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016/04/07 13:24:59 | 000,028,128 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016/04/07 13:19:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2016/04/07 13:19:15 | 1577,816,064 | -HS- | M] () -- C:\hiberfil.sys
[2016/04/06 10:06:37 | 000,001,808 | ---- | M] () -- C:\Users\Public\Desktop\Les Indispensables Éducation pour les enseignants.lnk
[2016/04/06 10:06:13 | 000,001,808 | ---- | M] () -- C:\Users\Public\Desktop\Les Indispensables Éducation pour les étudiants.lnk
[2016/04/02 23:59:55 | 000,000,595 | ---- | M] () -- C:\Users\maman\Music.lnk
[2016/04/02 23:59:52 | 000,000,595 | ---- | M] () -- C:\ProgramData\Music.lnk
[2016/04/02 23:59:43 | 000,000,748 | ---- | M] () -- C:\Users\Public\Documents\Music.lnk
[2016/04/02 23:58:47 | 000,000,573 | ---- | M] () -- C:\Windows\tasks\Music.lnk
[2016/04/02 12:53:51 | 000,008,192 | ---- | M] () -- C:\Windows\System32\dwfafr57.ocw
[2016/04/02 12:53:51 | 000,004,096 | ---- | M] () -- C:\Windows\System32\dwfafr57.dlw
[2016/04/02 12:53:51 | 000,000,127 | ---- | M] () -- C:\autoexec.bat
[2016/04/02 12:53:44 | 000,000,027 | -H-- | M] () -- C:\TraFgFr.Tra
[2016/04/02 12:44:11 | 000,075,902 | ---- | M] () -- C:\Users\maman\Documents\types-diodes.jpg
[2016/04/02 12:43:56 | 000,254,541 | ---- | M] () -- C:\Users\maman\Documents\diode-defectueuse.png
[2016/04/02 12:43:38 | 000,007,161 | ---- | M] () -- C:\Users\maman\Documents\diode-roue-libre.gif
[2016/04/02 12:43:23 | 000,024,481 | ---- | M] () -- C:\Users\maman\Documents\test-transistor.jpg
[2016/04/02 12:43:18 | 000,038,856 | ---- | M] () -- C:\Users\maman\Documents\types-transistors.jpg
[2016/03/31 22:46:49 | 000,127,962 | ---- | M] () -- C:\Users\maman\Documents\ccleaner registre erreurs corrigees.reg
[2016/03/30 16:28:28 | 002,034,202 | ---- | M] () -- C:\Users\maman\Desktop\page2.JPG
[2016/03/30 16:21:02 | 002,233,589 | ---- | M] () -- C:\Users\maman\Desktop\page1.JPG
[2016/03/30 11:45:54 | 001,911,080 | ---- | M] () -- C:\Users\maman\Desktop\page3.JPG
[2016/03/25 23:49:19 | 000,001,148 | ---- | M] () -- C:\Users\maman\Desktop\Mes vidéos - Raccourci.lnk
[2016/03/23 14:56:15 | 000,047,047 | ---- | M] () -- C:\Users\maman\Documents\Anglais_LV1_1er_gr.pdf
[2016/03/23 14:54:28 | 000,038,458 | ---- | M] () -- C:\Users\maman\Documents\philosophie_serie_L.pdf
[2016/03/23 14:53:45 | 000,061,951 | ---- | M] () -- C:\Users\maman\Documents\Francais_L_1er_Gr.pdf
[2016/03/23 14:53:16 | 000,047,673 | ---- | M] () -- C:\Users\maman\Documents\Economie_L2_1er_Gr.pdf
[2016/03/22 00:05:36 | 000,288,320 | ---- | M] () -- C:\Users\maman\Desktop\IMG_6067.JPG
[2016/03/13 00:45:15 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_netaapl_01009.Wdf
[2016/03/12 16:12:10 | 000,001,753 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2016/03/12 16:09:28 | 000,000,766 | ---- | M] () -- C:\ProgramData\Baidu Security.lnk
[2016/03/12 16:09:28 | 000,000,748 | ---- | M] () -- C:\ProgramData\baidu.lnk
[2016/03/12 16:04:15 | 000,000,597 | ---- | M] () -- C:\ProgramData\Bureau.lnk
[2016/03/11 23:48:28 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/03/11 23:23:49 | 000,002,181 | ---- | M] () -- C:\Users\Public\Desktop\Petit Larousse 2010.lnk
[2016/03/11 23:23:33 | 000,001,295 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hyperappel du Petit Larousse 2010.lnk
[2016/03/11 23:06:51 | 000,002,503 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2016/03/09 15:47:24 | 000,000,000 | ---- | M] () -- C:\Windows\System32\track
[2016/03/09 15:46:22 | 000,001,029 | ---- | M] () -- C:\Users\maman\Desktop\Format Factory.lnk
[2016/03/09 15:33:55 | 000,001,097 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2016/03/09 12:50:13 | 000,002,184 | ---- | M] () -- C:\Users\maman\Application Data\Microsoft\Internet Explorer\Quick Launch\Baidu Browser.lnk
[2016/03/09 12:50:06 | 000,014,501 | ---- | M] () -- C:\ProgramData\Duplicaterecord.js
[2016/03/09 12:50:02 | 000,000,989 | ---- | M] () -- C:\Users\maman\Desktop\Baidu PC Faster.lnk
[2016/03/09 12:48:11 | 000,002,143 | ---- | M] () -- C:\Users\Public\Desktop\Facebook.lnk
[2016/03/09 12:48:11 | 000,002,127 | ---- | M] () -- C:\Users\Public\Desktop\Google.lnk
[2016/03/09 12:48:11 | 000,002,095 | ---- | M] () -- C:\Users\Public\Desktop\Baidu Browser.lnk
[2016/03/09 12:45:15 | 000,000,976 | ---- | M] () -- C:\Users\Public\Desktop\Baidu Antivirus.lnk
[2016/03/09 12:44:20 | 000,461,224 | ---- | M] (Baidu, Inc.) -- C:\Windows\System32\drivers\bndef.sys
[2016/03/09 12:44:20 | 000,197,064 | ---- | M] (Baidu, Inc.) -- C:\Windows\System32\drivers\Bprotect.sys
[2016/03/09 12:44:20 | 000,138,184 | ---- | M] (Baidu, Inc.) -- C:\Windows\System32\drivers\BHipsEx.sys
[2016/03/09 12:44:20 | 000,081,736 | ---- | M] (Baidu, Inc.) -- C:\Windows\System32\drivers\Bhbase.sys
[2016/03/09 12:44:20 | 000,075,432 | ---- | M] (Baidu, Inc.) -- C:\Windows\System32\drivers\bnbasex.sys
[2016/03/09 12:44:20 | 000,050,120 | ---- | M] (Baidu, Inc.) -- C:\Windows\System32\drivers\Bfilter.sys
[2016/03/09 12:44:20 | 000,031,176 | ---- | M] (Baidu, Inc.) -- C:\Windows\System32\drivers\Bfmon.sys
[2016/03/09 12:23:10 | 000,001,989 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2016/03/09 12:10:31 | 000,000,603 | ---- | M] () -- C:\ProgramData\Documents.lnk
[2016/03/09 12:10:31 | 000,000,599 | ---- | M] () -- C:\ProgramData\Desktop.lnk
[2016/03/09 11:57:27 | 000,000,599 | ---- | M] () -- C:\ProgramData\Favoris.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2016/04/07 13:25:27 | 000,000,760 | ---- | C] () -- C:\Users\maman\Documents\Aplikasi.lnk
[2016/04/07 13:13:01 | 000,000,754 | ---- | C] () -- C:\Users\Public\Documents\Aplikasi.lnk
[2016/04/06 10:06:37 | 000,001,808 | ---- | C] () -- C:\Users\Public\Desktop\Les Indispensables Éducation pour les enseignants.lnk
[2016/04/06 10:06:13 | 000,001,808 | ---- | C] () -- C:\Users\Public\Desktop\Les Indispensables Éducation pour les étudiants.lnk
[2016/04/02 23:54:14 | 000,000,764 | ---- | C] () -- C:\Users\maman\Documents\Mes vidéos.lnk
[2016/04/02 23:54:14 | 000,000,764 | ---- | C] () -- C:\Users\maman\Documents\Mes images.lnk
[2016/04/02 23:54:14 | 000,000,764 | ---- | C] () -- C:\Users\maman\Documents\Ma musique.lnk
[2016/04/02 23:54:14 | 000,000,754 | ---- | C] () -- C:\Users\maman\Documents\Music.lnk
[2016/04/02 23:54:13 | 000,000,762 | ---- | C] () -- C:\Users\maman\Documents\Microsoft.lnk
[2016/04/02 18:44:38 | 000,000,756 | ---- | C] () -- C:\Users\Public\Documents\Microsoft.lnk
[2016/04/02 18:44:38 | 000,000,748 | ---- | C] () -- C:\Users\Public\Documents\Music.lnk
[2016/04/02 16:27:26 | 268,254,098 | ---- | C] () -- C:\Users\maman\Desktop\Ne voient-ils pas.wmv
[2016/04/02 12:53:51 | 000,008,192 | ---- | C] () -- C:\Windows\System32\dwfafr57.ocw
[2016/04/02 12:53:44 | 000,000,027 | -H-- | C] () -- C:\TraFgFr.Tra
[2016/04/02 12:53:17 | 000,004,096 | ---- | C] () -- C:\Windows\System32\dwfafr57.dlw
[2016/04/02 12:44:06 | 000,075,902 | ---- | C] () -- C:\Users\maman\Documents\types-diodes.jpg
[2016/04/02 12:43:52 | 000,254,541 | ---- | C] () -- C:\Users\maman\Documents\diode-defectueuse.png
[2016/04/02 12:43:38 | 000,007,161 | ---- | C] () -- C:\Users\maman\Documents\diode-roue-libre.gif
[2016/04/02 12:43:23 | 000,024,481 | ---- | C] () -- C:\Users\maman\Documents\test-transistor.jpg
[2016/04/02 12:43:10 | 000,038,856 | ---- | C] () -- C:\Users\maman\Documents\types-transistors.jpg
[2016/03/31 22:46:33 | 000,127,962 | ---- | C] () -- C:\Users\maman\Documents\ccleaner registre erreurs corrigees.reg
[2016/03/31 22:26:46 | 001,911,080 | ---- | C] () -- C:\Users\maman\Desktop\page3.JPG
[2016/03/31 22:26:41 | 002,034,202 | ---- | C] () -- C:\Users\maman\Desktop\page2.JPG
[2016/03/31 22:26:36 | 002,233,589 | ---- | C] () -- C:\Users\maman\Desktop\page1.JPG
[2016/03/28 22:55:44 | 000,011,330 | RHS- | C] () -- C:\Users\maman\Documents\dekstop.ini
[2016/03/28 22:50:34 | 000,011,330 | RHS- | C] () -- C:\Users\maman\Documents\df5srvc.bfe
[2016/03/28 22:05:57 | 735,234,061 | ---- | C] () -- C:\Users\maman\Desktop\The.Wedding.Ringer.avi
[2016/03/23 15:19:32 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2016/03/23 14:56:14 | 000,047,047 | ---- | C] () -- C:\Users\maman\Documents\Anglais_LV1_1er_gr.pdf
[2016/03/23 14:54:27 | 000,038,458 | ---- | C] () -- C:\Users\maman\Documents\philosophie_serie_L.pdf
[2016/03/23 14:53:44 | 000,061,951 | ---- | C] () -- C:\Users\maman\Documents\Francais_L_1er_Gr.pdf
[2016/03/23 14:53:09 | 000,047,673 | ---- | C] () -- C:\Users\maman\Documents\Economie_L2_1er_Gr.pdf
[2016/03/23 00:30:54 | 000,288,320 | ---- | C] () -- C:\Users\maman\Desktop\IMG_6067.JPG
[2016/03/13 00:45:15 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_netaapl_01009.Wdf
[2016/03/12 16:12:19 | 000,000,657 | ---- | C] () -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB.lnk
[2016/03/12 16:12:19 | 000,000,613 | ---- | C] () -- C:\ProgramData\Apple Computer.lnk
[2016/03/12 16:12:10 | 000,001,753 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2016/03/12 16:07:39 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2016/03/12 16:07:08 | 000,000,595 | ---- | C] () -- C:\ProgramData\Apple.lnk
[2016/03/11 23:48:28 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/03/11 23:23:49 | 000,002,181 | ---- | C] () -- C:\Users\Public\Desktop\Petit Larousse 2010.lnk
[2016/03/11 23:23:30 | 000,001,295 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hyperappel du Petit Larousse 2010.lnk
[2016/03/11 23:06:51 | 000,002,503 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2016/03/09 15:47:24 | 000,000,000 | ---- | C] () -- C:\Windows\System32\track
[2016/03/09 15:46:22 | 000,001,029 | ---- | C] () -- C:\Users\maman\Desktop\Format Factory.lnk
[2016/03/09 15:33:57 | 000,001,097 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2016/03/09 15:33:57 | 000,001,097 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2016/03/09 12:50:06 | 000,014,501 | ---- | C] () -- C:\ProgramData\Duplicaterecord.js
[2016/03/09 12:50:02 | 000,000,989 | ---- | C] () -- C:\Users\maman\Desktop\Baidu PC Faster.lnk
[2016/03/09 12:48:12 | 000,002,184 | ---- | C] () -- C:\Users\maman\Application Data\Microsoft\Internet Explorer\Quick Launch\Baidu Browser.lnk
[2016/03/09 12:48:11 | 000,002,143 | ---- | C] () -- C:\Users\Public\Desktop\Facebook.lnk
[2016/03/09 12:48:11 | 000,002,127 | ---- | C] () -- C:\Users\Public\Desktop\Google.lnk
[2016/03/09 12:48:11 | 000,002,095 | ---- | C] () -- C:\Users\Public\Desktop\Baidu Browser.lnk
[2016/03/09 12:45:11 | 000,082,376 | ---- | C] () -- C:\Windows\System32\drivers\bdark.sys
[2016/03/09 12:26:11 | 000,000,748 | ---- | C] () -- C:\ProgramData\baidu.lnk
[2016/03/09 12:26:11 | 000,000,748 | ---- | C] () -- C:\ProgramData\Adobe.lnk
[2016/03/09 12:23:10 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2016/03/09 12:23:10 | 000,001,989 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2016/03/09 12:14:22 | 000,000,976 | ---- | C] () -- C:\Users\Public\Desktop\Baidu Antivirus.lnk
[2016/03/09 12:01:37 | 000,000,766 | ---- | C] () -- C:\ProgramData\Baidu Security.lnk
[2016/03/07 19:45:40 | 000,000,601 | ---- | C] () -- C:\Users\maman\Aplikasi.lnk
[2016/03/07 19:45:27 | 000,000,601 | ---- | C] () -- C:\ProgramData\Aplikasi.lnk
[2016/03/06 03:52:37 | 000,000,030 | ---- | C] () -- C:\Windows\grwin.ini
[2016/03/05 20:48:31 | 000,011,330 | RHS- | C] () -- C:\Users\maman\dekstop.ini
[2016/03/05 20:48:31 | 000,000,752 | ---- | C] () -- C:\Users\maman\Desktop.lnk
[2016/03/05 20:48:31 | 000,000,617 | ---- | C] () -- C:\Users\maman\Application Data.lnk
[2016/03/05 20:48:31 | 000,000,603 | ---- | C] () -- C:\Users\maman\Microsoft.lnk
[2016/03/05 20:48:31 | 000,000,601 | ---- | C] () -- C:\Users\maman\Contacts.lnk
[2016/03/05 20:48:31 | 000,000,599 | ---- | C] () -- C:\Users\maman\Cookies.lnk
[2016/03/05 20:48:31 | 000,000,599 | ---- | C] () -- C:\Users\maman\AppData.lnk
[2016/03/05 20:48:31 | 000,000,595 | ---- | C] () -- C:\Users\maman\Music.lnk
[2016/03/05 20:48:19 | 000,000,603 | ---- | C] () -- C:\ProgramData\Documents.lnk
[2016/03/05 20:48:19 | 000,000,599 | ---- | C] () -- C:\ProgramData\Favoris.lnk
[2016/03/05 20:48:19 | 000,000,599 | ---- | C] () -- C:\ProgramData\Desktop.lnk
[2016/03/05 20:48:19 | 000,000,597 | ---- | C] () -- C:\ProgramData\Bureau.lnk
[2016/03/05 20:48:18 | 000,011,330 | RHS- | C] () -- C:\ProgramData\dekstop.ini
[2016/03/05 20:48:18 | 000,000,617 | ---- | C] () -- C:\ProgramData\Application Data.lnk
[2016/03/05 20:48:18 | 000,000,603 | ---- | C] () -- C:\ProgramData\Microsoft.lnk
[2016/03/05 20:48:18 | 000,000,595 | ---- | C] () -- C:\ProgramData\Music.lnk
[2010/11/20 23:29:20 | 099,335,296 | -HS- | C] () -- C:\ProgramData\msfrs.exe
[2010/11/20 23:29:20 | 090,683,520 | -HS- | C] () -- C:\ProgramData\msokeqmr.exe

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010/11/20 23:29:11 | 012,872,192 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< >[/color]

[color=#A23BEC]< >[/color]

[color=#A23BEC]< >[/color]

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
Invalid Environment Variable: alluserprofile
Invalid Environment Variable: alluserprofile

[color=#A23BEC]< %appdata%\*. >[/color]
[2016/03/10 01:38:01 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Adobe
[2016/03/12 16:39:50 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Apple Computer
[2016/03/06 03:49:31 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Ashampoo
[2016/03/09 13:43:35 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Baidu
[2016/03/09 15:00:15 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\BavMini
[2016/03/05 20:36:03 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\DRPSu
[2016/03/05 15:52:47 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Identities
[2016/03/08 01:47:33 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Macromedia
[2011/04/12 03:44:38 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Media Center Programs
[2016/04/06 10:09:18 | 000,000,000 | --SD | M] -- C:\Users\maman\AppData\Roaming\Microsoft
[2016/03/09 15:34:24 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Opera Software
[2016/03/09 12:49:19 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\PC Faster
[2016/04/06 13:58:32 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\Skype
[2016/03/11 22:56:57 | 000,000,000 | ---D | M] -- C:\Users\maman\AppData\Roaming\WinRAR

[color=#A23BEC]< %appdata%\*.exe /s >[/color]
[2016/03/09 15:03:06 | 000,532,792 | ---- | M] () -- C:\Users\maman\AppData\Roaming\Baidu\Spark\SysData\ExtApp\SnapImg\screensnapshot.exe

[color=#A23BEC]< %systemdrive%\*. >[/color]
[2016/01/01 21:09:48 | 000,000,000 | -HSD | M] -- C:\$360Section
[2016/03/05 15:52:44 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2016/03/09 12:16:23 | 000,000,000 | ---D | M] -- C:\9f6561ea73478cb42c6e1d6302d19ac3
[2009/07/14 06:53:55 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2016/03/13 01:00:07 | 000,000,000 | ---D | M] -- C:\DRIVERS
[2016/04/07 13:11:47 | 000,000,000 | ---D | M] -- C:\Language
[2016/02/25 18:14:54 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2009/07/14 04:37:05 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2016/04/06 10:05:54 | 000,000,000 | R--D | M] -- C:\Program Files
[2016/04/07 13:21:42 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2016/03/05 15:52:18 | 000,000,000 | -HSD | M] -- C:\Recovery
[2016/04/07 13:56:08 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2016/03/05 15:52:28 | 000,000,000 | R--D | M] -- C:\Users
[2016/04/02 13:02:53 | 000,000,000 | ---D | M] -- C:\Windows
[2016/03/28 22:50:22 | 000,000,000 | ---D | M] -- C:\Windows.old

[color=#A23BEC]< %systemdrive%\*.exe >[/color]

[color=#A23BEC]< %programfiles%\*. >[/color]
[2016/03/09 12:20:06 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2016/03/12 16:07:37 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2016/03/09 12:50:36 | 000,000,000 | ---D | M] -- C:\Program Files\baidu
[2016/03/13 00:49:48 | 000,000,000 | ---D | M] -- C:\Program Files\Baidu Security
[2016/03/12 16:05:55 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2016/03/11 23:48:36 | 000,000,000 | ---D | M] -- C:\Program Files\CCleaner
[2016/03/12 16:04:52 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2016/03/06 03:54:14 | 000,000,000 | ---D | M] -- C:\Program Files\directx
[2011/04/12 03:45:02 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Maker
[2016/03/05 15:52:18 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs
[2016/03/09 15:46:22 | 000,000,000 | ---D | M] -- C:\Program Files\FormatFactory
[2016/03/11 23:23:27 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2011/04/12 03:35:39 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2016/03/12 16:10:02 | 000,000,000 | ---D | M] -- C:\Program Files\iPod
[2016/03/12 16:11:38 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes
[2016/03/11 23:23:34 | 000,000,000 | ---D | M] -- C:\Program Files\Larousse
[2016/03/06 03:52:00 | 000,000,000 | ---D | M] -- C:\Program Files\Le Grand Robert
[2016/04/06 10:08:21 | 000,000,000 | ---D | M] -- C:\Program Files\Learning Essentials
[2011/04/12 03:44:57 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2016/03/06 01:00:15 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2016/03/06 01:00:12 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio
[2016/03/06 00:56:17 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio 8
[2016/03/06 01:00:55 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2016/03/06 00:59:15 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2016/03/06 01:00:29 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2016/03/06 03:53:16 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2016/04/02 12:48:10 | 000,000,000 | ---D | M] -- C:\Program Files\Opera
[2016/03/20 23:48:48 | 000,000,000 | ---D | M] -- C:\Program Files\PC Faster
[2009/07/14 06:52:30 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2016/03/11 23:06:51 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2009/07/14 06:53:23 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2011/04/12 03:35:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2011/04/12 03:45:01 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2011/04/12 03:35:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2011/04/12 03:35:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2016/03/05 15:52:18 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2011/04/12 03:35:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Viewer
[2010/11/20 23:33:48 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2011/04/12 03:35:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2016/03/09 12:17:35 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2010/11/20 23:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\explorer.exe
[2010/11/20 23:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2010/11/20 23:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010/11/20 23:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2010/11/20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010/11/20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2010/11/20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010/11/20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe

[color=#A23BEC]< >[/color]

< End of report >

Publicité


Signaler le contenu de ce document

Publicité