Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 04 Ran by nicolas (administrator) on NICOLAS on 03-02-2014 10:51:11 Running from C:\Users\nicolas\Desktop Windows 8.1 (X64) OS Language: French Standard Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Akamai Technologies, Inc.) C:\Users\nicolas\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\nicolas\AppData\Local\Akamai\netsession_win.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9600.16422_x64__8wekyb3d8bbwe\glcnd.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [661400 2012-11-09] (Alps Electric Co., Ltd.) HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13626072 2013-06-25] (Realtek Semiconductor) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133248 2013-05-31] ( (Qualcomm Atheros Commnucations)) HKU\S-1-5-21-1075306282-704854533-380126294-1002\...\Run: [Akamai NetSession Interface] - C:\Users\nicolas\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.) AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} SearchScopes: HKLM - {E88608A0-CDCD-465E-B9A7-6BD03796E7FF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS SearchScopes: HKLM-x32 - {E88608A0-CDCD-465E-B9A7-6BD03796E7FF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS SearchScopes: HKCU - {E88608A0-CDCD-465E-B9A7-6BD03796E7FF} URL = BHO: No Name - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No File BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited) BHO-x32: No Name - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No File BHO-x32: PassWidget - {cf3eef74-bc7c-43eb-a92b-a652f3c5a8f2} - C:\Program Files (x86)\Pass-Widget\150.dll () Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File FireFox: ======== FF ProfilePath: C:\Users\nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\j975cryt.default FF Homepage: hxxp://sfr.fr FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll () FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL No File FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL No File FF Plugin-x32: @mcafee.com/SAFFPlugin - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll () FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-france.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-france.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-france.xml FF Extension: Extension_Protected - C:\Users\nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\j975cryt.default\Extensions\jid0-O6MIff3eO5dIGf5Tcv8RsJDKxrs@jetpack.xpi [2014-02-01] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor FF HKLM-x32\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\j975cryt.default\extensions\lightningnewtab@gmail.com.xpi FF HKCU\...\Firefox\Extensions: [{f9820cf4-de9a-441e-b465-d0219fdd147e}] - C:\Program Files (x86)\Pass-Widget\150.xpi FF Extension: No Name - C:\Program Files (x86)\Pass-Widget\150.xpi [2014-02-01] Chrome: ======= Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION CHR HKLM-x32\...\Chrome\Extension: [fbdagnimlohkpamglloopgfnoiijpmoj] - C:\Program Files (x86)\Pass-Widget\150.crx [2014-02-01] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2014-02-01] ==================== Services (Whitelisted) ================= R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [310912 2013-05-31] (Windows (R) Win 7 DDK provider) R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated) S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-05-01] (Acer Incorporated) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated) R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-01-14] (Cherished Technololgy LIMITED) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation) R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-29] (Acer Incorporate) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-05-30] (Qualcomm Atheros) S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation) S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-06] (Microsoft Corporation) R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated) S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-06] (Microsoft Corporation) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) S3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation) ========================== Drivers MD5 ======================= C:\Windows\System32\drivers\1394ohci.sys E1832BD9FD7E0FC2DC9FA5935DE3E8C1 C:\Windows\System32\drivers\3ware.sys AD508A1A46EC21B740AB31C28EFDFDB1 C:\Windows\System32\drivers\ACPI.sys 3D30878A269D934100FA5F972E53AF39 C:\Windows\System32\Drivers\acpiex.sys AC8279D229398BCF05C3154ADCA86813 C:\Windows\System32\drivers\acpipagr.sys A8970D9BF23CD309E0403978A1B58F3F C:\Windows\System32\drivers\acpipmi.sys 111A89C99C5B4F1A7BCE5F643DD86F65 C:\Windows\System32\drivers\acpitime.sys 5758387D68A20AE7D3245011B07E36E7 C:\Windows\System32\drivers\ADP80XX.SYS 7C1FDF1B48298CBA7CE4BDD4978951AD C:\Windows\system32\drivers\afd.sys 239268BAB58EAE9A3FF4E08334C00451 C:\Windows\System32\drivers\agp440.sys 7DFAEBA9AD62D20102B576D5CAC45EC8 C:\Windows\System32\DRIVERS\ahcache.sys 8E8E34B7BA059050EED827410D0697A2 C:\Windows\System32\drivers\amdk8.sys 7589DE749DB6F71A68489DCE04158729 C:\Windows\System32\drivers\amdppm.sys B46D2D89AFF8A9490FA8C98C7A5616E3 C:\Windows\System32\drivers\amdsata.sys D2BF2F94A47D332814910FD47C6BBCD2 C:\Windows\System32\drivers\amdsbs.sys A8E04943C7BBA7219AA50400272C3C6E C:\Windows\System32\drivers\amdxata.sys CEA5F4F27CFC08E3A44D576811B35F50 C:\Windows\system32\DRIVERS\Apfiltr.sys 968A4A0FD5BF07717F4E869875A4B149 C:\Windows\system32\drivers\appid.sys 04951A9A937CBE28A2D3FEEA360B6D1F C:\Windows\System32\drivers\arcsas.sys 65045784366F7EC5FB4E71BCF923187B C:\Windows\System32\drivers\atapi.sys 74B14192CF79A72F7536B27CB8814FBD C:\Windows\system32\DRIVERS\btath_flt.sys 65DD42A358451920A703EEEC1AB4995B C:\Windows\system32\DRIVERS\athw8x.sys 1BBC9DC016F64B5031A35BBD0C037761 C:\Windows\System32\drivers\bxvbda.sys A4A73F631FE2AA2826FBE4A399B04DEF C:\Windows\System32\drivers\BasicDisplay.sys 8CC7F7E4AFCBA605921B137ED7992C68 C:\Windows\System32\drivers\BasicRender.sys 2748E116F8621A4DB0D39FCDD7318C01 C:\Windows\System32\drivers\bcmfn2.sys C1ABB0F7E3BEA48A0417BDF6FF14AB21 C:\Windows\System32\Drivers\Beep.sys EC19013E4CF87609534165DF897274D6 C:\Windows\System32\DRIVERS\bowser.sys 6B4FFFDDC618FCF64473CAA86E305697 C:\Windows\system32\drivers\btath_a2dp.sys BCDB654338FA6C4BEE20A8EA47092171 C:\Windows\system32\drivers\btath_avdt.sys A71E33AEF3289BE2BA6CAD032BF9BFBA C:\Windows\System32\drivers\btath_hcrp.sys 4AF7C20F94DAC343C01ED671C82DCB99 C:\Windows\system32\DRIVERS\btath_lwflt.sys 785C38070043BEEE9E9D591DE4067244 C:\Windows\System32\drivers\btath_rcp.sys 31EC5FC3FC5CB273F2709AAF4AD88ED4 C:\Windows\system32\DRIVERS\btfilter.sys B22C4DC8E240811B3D13DE638F06F371 C:\Windows\System32\drivers\BthAvrcpTg.sys A8F23D453A424FF4DE04989C4727ECC7 C:\Windows\system32\DRIVERS\BthEnum.sys 131F1C8573E7BFB41C54FBF5309CCD94 C:\Windows\System32\drivers\bthhfenum.sys 746B9F94214915AECDE4B7FEA5FF9664 C:\Windows\System32\drivers\BthHFHid.sys 71FE2A48E4C93DDB9798C024880B6C07 C:\Windows\system32\DRIVERS\BthLEEnum.sys FCD8BD17B7193CFFF18C332D1A381D7F C:\Windows\System32\drivers\bthmodem.sys 07E33226AD218A2A162662A05CAFB52F C:\Windows\system32\DRIVERS\bthpan.sys 3AFE71D80EDF5D4DE0C5731352905669 C:\Windows\System32\Drivers\BTHport.sys 10EDF9E0838BA4578FFFFF274632D454 C:\Windows\System32\Drivers\BTHUSB.sys 0E7FA34B975764C33B5DBC6F8C401627 C:\Windows\System32\DRIVERS\cdfs.sys 2FA6510E33F7DEFEC03658B74101A9B9 C:\Windows\System32\drivers\cdrom.sys C6796EA22B513E3457514D92DCDB1A3D C:\Windows\System32\drivers\circlass.sys BE9936EDD3267FAAFF94A7835867F00B C:\Windows\System32\drivers\CLFS.sys 7F006813C2AFE622C13D7AF94F56CD07 C:\Windows\System32\drivers\CmBatt.sys EF6EF85DADC3184A10D8F2F7159973CB C:\Windows\System32\Drivers\cng.sys 825BE21E6395E00698D8A23955A87972 C:\Windows\System32\drivers\CompositeBus.sys 03AAED827C36F35D70900558B8274905 C:\Windows\System32\drivers\condrv.sys A1FF7DFBFBE164CF92603C651D304DD2 C:\Windows\System32\drivers\dam.sys 315BA4BC19316D72B2E037534E048B93 C:\Windows\system32\DRIVERS\dc3d.sys C6E1C081C0849E08FECEC18DF73B10C4 C:\Windows\System32\Drivers\dfsc.sys 5DB26D7E0216D0BF364A81D3829AD7B9 C:\Windows\System32\drivers\disk.sys 4D40C9B33F738797CF50E77CB7C53E85 C:\Windows\System32\drivers\dmvsc.sys EB70A894708D1BC176AFD690FF06085F C:\Windows\system32\drivers\drmkaud.sys DDC11A202207C0400CBE07315B8FDE5E C:\Windows\System32\drivers\dxgkrnl.sys A3D1CB64DF885ACE126543E6D7067348 C:\Windows\System32\drivers\evbda.sys 114BCFDF367FF37C3F1B0A96AF542E4D C:\Windows\System32\drivers\EhStorClass.sys 43531A5993380CC5113242C29D265FD9 C:\Windows\System32\drivers\EhStorTcgDrv.sys 6F8E738A9505A388B1157FDDE7B3101B C:\Windows\System32\drivers\errdev.sys DFFFAE1442BA4076E18EED5E406FA0D3 C:\Windows\System32\Drivers\exfat.sys 7729D294A555C7AEB281ED8E4D0E01E4 C:\Windows\System32\Drivers\fastfat.sys 7C4E0D5900B2A1D11EDD626D6DDB937B C:\Windows\System32\drivers\fdc.sys 5D8402613E778B3BD45E687A8372710B C:\Windows\System32\drivers\fileinfo.sys 957A7A8F5ACCAF23DD9DFF6DAA393CE5 C:\Windows\System32\drivers\filetrace.sys A1A66C4FDAFD6B0289523232AFB7D8AF C:\Windows\System32\drivers\flpydisk.sys BE743083CF7063C486A4398E3AEFE59A C:\Windows\System32\drivers\fltmgr.sys 60D5067FCE6D9433D35E04C01D8538B3 C:\Windows\System32\drivers\FsDepends.sys 35005534E600E993A90B036E4E599F2B C:\Windows\System32\Drivers\Fs_Rec.sys 09F460AFEDCA03F3BF6E07D1CCC9AC42 C:\Windows\System32\DRIVERS\fvevol.sys 83E1F0983B02A6F8EC764D18E24ECF10 C:\Windows\System32\drivers\fxppm.sys 9591D0B9351ED489EAFD9D1CE52A8015 C:\Windows\System32\drivers\gagp30kx.sys FC3EF65EE20D39F8749C2218DBA681CA C:\Windows\System32\drivers\vmgencounter.sys 0BF5CAD281E25F1418E5B8875DC5ADD1 C:\Windows\System32\Drivers\msgpioclx.sys FDA72810CA2F8409D9B31E833C448E34 C:\Windows\System32\drivers\HDAudBus.sys 03909BDBFF0DCACCABF2B2D4ADEE44DC C:\Windows\System32\drivers\HidBatt.sys 10A70BC1871CD955D85CD88372724906 C:\Windows\System32\drivers\hidbth.sys 1EA1B4FABB8CC348E73CA90DBA22E104 C:\Windows\System32\drivers\hidi2c.sys C241A8BAFBBFC90176EA0F5240EACC17 C:\Windows\System32\drivers\hidir.sys 9BDDEE26255421017E161CCB9D5EDA95 C:\Windows\System32\drivers\hidusb.sys F31397220D9687E11EB448649AA6E038 C:\Windows\System32\drivers\HipShieldK.sys 29F981739E50305128022CBE10B3659C C:\Windows\System32\drivers\HpSAMD.sys A6AACEA4C785789BDA5912AD1FEDA80D C:\Windows\System32\drivers\HTTP.sys 3502776E366C913D49C0DA928AE3E6CB C:\Windows\System32\drivers\hwpolicy.sys 90656C0B3864804B090434EFC582404F C:\Windows\System32\drivers\hyperkbd.sys 6D6F9E3BF0484967E52F7E846BFF1CA1 C:\Windows\system32\DRIVERS\HyperVideo.sys 907C870F8C31F8DDD6F090857B46AB25 C:\Windows\System32\drivers\i8042prt.sys 84CFC5EFA97D0C965EDE1D56F116A541 C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 5D90E32E36CE5D4C535D17CE08AEAF05 C:\Windows\System32\drivers\iaLPSSi_I2C.sys DD05E7E80F52ADE9AEB292819920F32C C:\Windows\System32\drivers\iaStorA.sys 6C024B3AE192D72B216166802AF345DD C:\Windows\System32\drivers\iaStorAV.sys 08BFE413B0B4AA8DFA4B5684CE06D3DC C:\Windows\System32\drivers\iaStorV.sys A2200C3033FA4EF249FC096A7A7D02A2 C:\Windows\system32\DRIVERS\igdkmd64.sys 4F6363C26B4A3DDBC9FAFCBA68602B01 C:\Windows\system32\drivers\intelaud.sys 4011430BC9DA46ADFAE9915EFEC312FB C:\Windows\system32\drivers\RTKVHD64.sys 0DA11C075CAA15A08707FCEF38C1421C C:\Windows\system32\DRIVERS\IntcDAud.sys F5495B38BFB9149925F54F65AB40EFBF C:\Windows\System32\drivers\intelide.sys 4E448FCFFD00E8D657CD9E48D3E47157 C:\Windows\System32\drivers\intelpep.sys 139CFCDCD36B1B1782FD8C0014AC9B0E C:\Windows\System32\drivers\intelppm.sys 47E74A8E53C7C24DCE38311E1451C1D9 C:\Windows\System32\DRIVERS\ipfltdrv.sys 9DB76D7F9E4E53EFE5DD8C53DE837514 C:\Windows\System32\drivers\IPMIDrv.sys 9949A3C7590B8C536C05312205079A82 C:\Windows\System32\drivers\ipnat.sys E23D32BAF152FBE35F18C6A2AB8EF271 C:\Windows\System32\drivers\irenum.sys AE44C526AB5F8A487D941CEB57B10C97 C:\Windows\System32\drivers\isapnp.sys 8AFEEA3955AA43616A60F133B1D25F21 C:\Windows\System32\drivers\msiscsi.sys 034D4BD9DC67C64F3A4C8A049B5173BF C:\Windows\System32\drivers\iwdbus.sys EE03564B7FAFE2E44EDA33D52E83B4A3 C:\Windows\System32\drivers\kbdclass.sys 8BE92376799B6B44D543E8D07CDCF885 C:\Windows\System32\drivers\kbdhid.sys FB6E47E569D4872ABEB506BE03A45FBA C:\Windows\system32\DRIVERS\kdnic.sys 813871C7D402A05F2E3A7075F9584A05 C:\Windows\System32\Drivers\ksecdd.sys ADDECBCC777665BD113BED437E602AB0 C:\Windows\System32\Drivers\ksecpkg.sys 7296EA420134EAC390798B3232D066A4 C:\Windows\system32\drivers\ksthunk.sys 11AFB527AA370B1DAFD5C36F35F6D45F C:\Windows\system32\DRIVERS\L1C63x64.sys 3B270BFBB391C79E2836C15D1094F574 C:\Windows\system32\DRIVERS\lltdio.sys C09010B3680860131631F53E8FE7BAD8 C:\Windows\System32\drivers\LMDriver.sys 95DD1E89A772A383E0FDC677A2E2ED44 C:\Windows\System32\drivers\lsi_sas.sys C755AE4635457AA2A11F79C0DF857ABC C:\Windows\System32\drivers\lsi_sas2.sys ADAC09CBE7A2040B7F68B5E5C9A75141 C:\Windows\System32\drivers\lsi_sas3.sys 04D1274BB9BBCCF12BD12374002AA191 C:\Windows\System32\drivers\lsi_sss.sys 327469EEF3833D0C584B7E88A76AEC0C C:\Windows\system32\drivers\luafv.sys 5EF604B0698F4FA962778285E8C5F1F2 C:\WINDOWS\system32\drivers\mbam.sys 0BB97D43299910CBFBA59C461B99B910 C:\Windows\System32\drivers\megasas.sys EB5C03A070F30D64A6DF80E53B22F53F C:\Windows\System32\drivers\megasr.sys F6F13533196DE7A582D422B0241E4363 C:\Windows\System32\drivers\HECIx64.sys 772A1DEEDFDBC244183B5C805D1B7D85 C:\Windows\System32\drivers\modem.sys 8B38C44F69259987C95135C9627E2378 C:\Windows\System32\drivers\monitor.sys 601589000CC90F0DF8DA2CC254A3CCC9 C:\Windows\System32\drivers\mouclass.sys CEAC6D40FE887CE8406C2393CF97DE06 C:\Windows\System32\drivers\mouhid.sys 02D98BF804084E9A0D69D1C69B02CCA9 C:\Windows\System32\drivers\mountmgr.sys 515549560D481138E6E21AF7C6998E56 C:\Windows\System32\drivers\mpsdrv.sys F170510BE94CF45E3C6274578F6204B2 C:\Windows\system32\drivers\mrxdav.sys 59DCEC7499095DE5AED741358037AE2D C:\Windows\System32\DRIVERS\mrxsmb.sys 6129EDB793A4255B1E2FB41773AC9D9A C:\Windows\System32\DRIVERS\mrxsmb10.sys 295771B092D4F7FCF2B62F80CCD14320 C:\Windows\System32\DRIVERS\mrxsmb20.sys AAF56E4E84D35411B4E446C445732DFE C:\Windows\system32\DRIVERS\bridge.sys 4E888019078AC363076A5433E89AA4F8 C:\Windows\System32\Drivers\Msfs.sys D13329FBF8345B28AB30F44CC247DC08 C:\Windows\System32\drivers\msgpiowin32.sys C6B474E46F9E543B875981ED3FFE6ADD C:\Windows\System32\drivers\mshidkmdf.sys 65C92EB9D08DB5C69F28C7FFD4E84E31 C:\Windows\System32\drivers\mshidumdf.sys 52299F086AC2DAFD100DD5DC4A8614BA C:\Windows\System32\drivers\msisadrv.sys 36D92AF3343C3A3E57FEF11C449AEA4C C:\Windows\system32\drivers\MSKSSRV.sys A9BBBD2BAE6142253B9195E949AC2E8D C:\Windows\system32\DRIVERS\mslldp.sys 375E44168F2DFB91A68B8A3F619C5A7C C:\Windows\system32\drivers\MSPCLOCK.sys 7B2128EB875DCBC006E6A913211006D6 C:\Windows\system32\drivers\MSPQM.sys 1E88171579B218115C7A772F8DE04BD8 C:\Windows\System32\Drivers\MsRPC.sys BBE2A455053E63BECBF42C2F9B21FAE0 C:\Windows\System32\drivers\mssmbios.sys 8D6B7D515C5CBCDB75B928A0B73C3C5E C:\Windows\system32\drivers\MSTEE.sys 115019AE01E0EB9C048530D2928AB4A2 C:\Windows\System32\drivers\MTConfig.sys 96D604A35070360F0DD4A7A8AF410B5E C:\Windows\System32\Drivers\mup.sys 619CA29326B82372621DB2C0964D8365 C:\Windows\System32\drivers\mvumis.sys B8C35C94DCB2DFEAF03BB42131F2F77F C:\Windows\system32\DRIVERS\nwifi.sys CF8B989D89D6807B887690F2CF24EFD9 C:\Windows\System32\drivers\ndis.sys AD9086052A5E5153AF43FE74138A4B27 C:\Windows\system32\DRIVERS\ndiscap.sys C6BB12BC35D1637CA17AE16D3A4725EB C:\Windows\system32\DRIVERS\NdisImPlatform.sys 9F1DA20E943BE7AA4ED5F3E1EBA78B37 C:\Windows\system32\DRIVERS\ndistapi.sys 9423421E735BD5394351E0C47C76BB92 C:\Windows\system32\DRIVERS\ndisuio.sys B832B35055BA2B7B4181861FF94D8E59 C:\Windows\System32\drivers\NdisVirtualBus.sys 1F58E48EF75F34C35D8E93A0DC535CFE C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A C:\Windows\System32\Drivers\NDProxy.sys A5BD69A8812FA79D1A487691DD3FB244 C:\Windows\System32\drivers\Ndu.sys 5A072F0B90C29C5233D78BE33EF5ED78 C:\Windows\System32\DRIVERS\netbios.sys A83D67D347A684F10B7D3019C8A6380C C:\Windows\System32\DRIVERS\netbt.sys 0217532E19A748F0E5D569307363D5FD C:\Windows\system32\DRIVERS\netvsc63.sys 70414DB660BFBB7BD58FCE8EA4364E1B C:\Windows\system32\drivers\ccdcmbx64.sys 907B5E1E4A592E5EDC5E4CCBDE4863C2 C:\Windows\system32\drivers\ccdcmbox64.sys 41C1AC1F3613435EB32D67BCB80A5FA5 C:\Windows\System32\Drivers\Npfs.sys 8F44A2F57C9F1A19AC9C6288C10FB351 C:\Windows\System32\drivers\npsvctrig.sys CBDB4F0871C88DF930FC0E8588CA67FC C:\Windows\System32\drivers\nsiproxy.sys E490B459978CB87779E84C761D22B827 C:\Windows\System32\Drivers\Ntfs.sys 4412D565C0278C401575E11072C7DCE3 C:\Windows\System32\drivers\NuidFltr.sys 77EB11DA191D12D12E28D7BD8905C42C C:\Windows\System32\Drivers\Null.sys EF1B290FC9F0E47CC0B537292BEE5904 C:\Windows\system32\DRIVERS\nvlddmkm.sys 9B93CC9C70EDE60A9C486E7719DB9E8D C:\Windows\System32\DRIVERS\nvpciflt.sys F76296368BB813E0C6996501A3271C7C C:\Windows\System32\drivers\nvraid.sys BC6B5942AFF25EBAF62DE43C3807EDF8 C:\Windows\System32\drivers\nvstor.sys 1F43ABFFAC3D6CA356851D517392966E C:\Windows\System32\drivers\nv_agp.sys 6934A936A7369DFE37B7DBA93F5E5E49 C:\Windows\System32\drivers\parport.sys 764B1121867B2D9B31C491668AC72B2B C:\Windows\System32\drivers\partmgr.sys EF0C1749C9A8CEE9A457473D433CC00F C:\Windows\System32\drivers\pci.sys C0D3F3BC1C84B4BA746D9847314C1164 C:\Windows\System32\drivers\pciide.sys 346E38FCC6859A727DD28AFAD1F0AFF4 C:\Windows\System32\drivers\pcmcia.sys 4D3BDCC1C7B40C9D7B6AD990E6DEC397 C:\Windows\System32\drivers\pcw.sys BF28771D1436C88BE1D297D3098B0F7D C:\Windows\System32\drivers\pdc.sys B9D968D8E2B0F9C6301CEB39CFC9B9E4 C:\Windows\System32\drivers\peauth.sys BA50CC0BD19004AAB88BE37338B6FA0D C:\Windows\System32\drivers\processr.sys ECD373F9571C745894367CC2635EA44F C:\Windows\system32\DRIVERS\pacer.sys 8528BB05E4D4E25945F78B00B2555FB7 C:\Windows\system32\drivers\qwavedrv.sys 3FB466684609A4329858CF2EBD62E0FD C:\Windows\System32\drivers\RadioShim.sys E94067155C8AA4EF134CB2528E0C9CD7 C:\Windows\System32\DRIVERS\rasacd.sys 2C56F0EE27E4EF70CA4B4983D3638905 C:\Windows\system32\DRIVERS\raspppoe.sys 5247F308C4103CDC4FE12AE1D235800A C:\Windows\System32\DRIVERS\rdbss.sys B939A2A0F9D6C6C186721E268EB6FA93 C:\Windows\System32\drivers\rdpbus.sys 6B21EBF892CD8CACB71669B35AB5DE32 C:\Windows\System32\drivers\rdpdr.sys 680C1DAE268B6FB67FA21B389A8B79EF C:\Windows\System32\drivers\rdpvideominiport.sys 858776908AF838E3790F3261B799CDA6 C:\Windows\System32\drivers\rdyboost.sys 847C6A08912C3515807049C93E526D65 C:\Windows\System32\Drivers\ReFS.sys 036746D54347FD2D0385668E2A4064E4 C:\Windows\system32\DRIVERS\rfcomm.sys 02307C86CB24769306B0DFA0C751952E C:\Windows\system32\DRIVERS\RtsPStor.sys 294CEFA27ED078654A310D167024EAE1 C:\Windows\system32\DRIVERS\rspndr.sys 2D05A5508F4685412F2B89E8C2189ABC C:\Windows\System32\drivers\vms3cap.sys 1A063730F221B2746FF00457AE17E4F0 C:\Windows\System32\drivers\sbp2port.sys C624A1B32211C3166EDB3F4AB02A30B7 C:\Windows\System32\DRIVERS\scfilter.sys ABD0237B15DBD2B4695F4B7D734A58F7 C:\Windows\System32\drivers\sdbus.sys 2F9A3380B8C0380E5608E29C7AA66899 C:\Windows\System32\drivers\sdstor.sys 4EAF4DCF9DBD9A56952A58F56D61C005 C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit C:\Windows\System32\drivers\SerCx.sys DB2FF24CE0BDD15FE75870AFE312BA89 C:\Windows\System32\drivers\SerCx2.sys 0044B31F93946D5D41982314381FE431 C:\Windows\System32\drivers\serenum.sys 3CD600C089C1251BEEB4CD4CD5164F9E C:\Windows\System32\drivers\serial.sys D864381BC9C725FAB01D94C060660166 C:\Windows\System32\drivers\sermouse.sys 0BD2B65DCE756FDE95A2E5CCCBF7705D C:\Windows\System32\drivers\sfloppy.sys 472B7A5AC181C050888DB454663DD764 C:\Windows\System32\drivers\SiSRaid2.sys 2F518D13DD6F3053837FE606F1A2EA1F C:\Windows\System32\drivers\sisraid4.sys 1AC9A200A9C49C4508F04AAFFCA34A3F C:\Windows\System32\drivers\spaceport.sys F6EBE514D13ECE7EDC23440039CDF9AB C:\Windows\System32\drivers\SpbCx.sys F337BE11071818FC3F5DC2940B6BDE34 C:\Windows\System32\DRIVERS\srv.sys 2B78788A1485F9B99A578A299DF42C02 C:\Windows\System32\DRIVERS\srv2.sys C1AE59C0B0817236EC083A91C396005A C:\Windows\System32\DRIVERS\srvnet.sys 77195C32175FC63D6054EBA5A066D727 C:\Windows\System32\drivers\stexstor.sys 366DEA74BBA65B362BCCFC6FC2ADFD8B C:\Windows\System32\drivers\storahci.sys 0ED2E318ABB68C1A35A8B8038BDB4C90 C:\Windows\System32\DRIVERS\vmstorfl.sys 7A08CEE1535F5A448215634C5EA74E50 C:\Windows\System32\drivers\stornvme.sys 6B06E2D11E604BE2B1A406C4CB3B90DE C:\Windows\System32\drivers\storvsc.sys 548759755BC73DAD663250239D7E0B9F C:\Windows\System32\drivers\swenum.sys 84E0F5D41C138C5CC975137A2A98F6D3 C:\Windows\System32\drivers\tcpip.sys 6617F44D2432C529B2249A0498B6B40A C:\Windows\system32\DRIVERS\tcpip.sys 6617F44D2432C529B2249A0498B6B40A C:\Windows\System32\drivers\tcpipreg.sys 33A7D83EEB15431773A6E186CFAABA21 C:\Windows\system32\DRIVERS\tdx.sys FFF28F9F6823EB1756C60F1649560BBF C:\Windows\System32\drivers\terminpt.sys 232D185D2337F141311D0CF1983E1431 C:\Windows\system32\drivers\tpm.sys 82F909359600D3603FE852DB7F135626 C:\Windows\System32\drivers\tsusbflt.sys BF8F54CA37E9C9D6582C31C5761F8C93 C:\Windows\System32\drivers\TsUsbGD.sys E0088068DCE2EE82897027DDB8E05254 C:\Windows\system32\DRIVERS\tunnel.sys C8E0E78B5D284C2FF59BDFFDAF997242 C:\Windows\System32\drivers\uagp35.sys F6EEAD052943B5A3104C1405BB856C54 C:\Windows\System32\drivers\uaspstor.sys FE6067B1FD4E63650C667B33D080565B C:\Windows\System32\drivers\ucx01000.sys 5D1B430EA11064C56E7C8F84B90DEB6A C:\Windows\System32\DRIVERS\udfs.sys 1EC649F112896FAE33250F0B97AC5D0B C:\Windows\System32\drivers\UEFI.sys 9578691F297E1B1F519970FE6D47CB21 C:\Windows\System32\drivers\uliagpkx.sys 5EAB5117DDB24FC4D39E6FFFCF1837B9 C:\Windows\System32\drivers\umbus.sys DA34C39A18E60E7C3FA0630566408034 C:\Windows\System32\drivers\umpass.sys AE8294875E5446E359B1E8035D40C05E C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys 4E93C8496359E97830C75AC36393654D C:\Windows\System32\drivers\usbccgp.sys 433ECDE01A52691FA7ACA51C10C09B70 C:\Windows\System32\drivers\usbcir.sys B3D6457D841A0CAEF4C52D88621715F2 C:\Windows\System32\drivers\usbehci.sys 5477D6E27C7D266EF8C152B9A25ADE5E C:\Windows\System32\drivers\usbhub.sys DF56C2C04EFA328D7A66B69007130266 C:\Windows\System32\drivers\UsbHub3.sys C0E33820326199CE3CFD3B9F27F81D99 C:\Windows\System32\drivers\usbohci.sys 3019097FB6C985EF24C058090FF3BDBD C:\Windows\System32\drivers\usbprint.sys 4D655E3B684BE9B0F7FFD8A2935C348C C:\Windows\system32\DRIVERS\usbscan.sys F04D164C4168701A4E7835607722E5F1 C:\Windows\system32\drivers\usbser.sys 029DFB6E5B38ADD45561A8CE0F60B331 C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys 8844CB19A37B65E27049D4A7786726A9 C:\Windows\System32\drivers\USBSTOR.SYS B1230E9813B5C7E762DF27756AA23917 C:\Windows\System32\drivers\usbuhci.sys BA4FA655E0FC577DB7436FC963932CE4 C:\Windows\System32\Drivers\usbvideo.sys 18F744E8CCEB2670040EBAF7AD77B8C6 C:\Windows\System32\drivers\USBXHCI.SYS 3B44CB989757428208CCFCC028C13110 C:\Windows\System32\drivers\vdrvroot.sys FEB26E3B8345A7E8D62F945C4AE86562 C:\Windows\System32\drivers\VerifierExt.sys A026EDEAA5EECAE0B08E2748B616D4BD C:\Windows\System32\drivers\vhdmp.sys 041D3EF364E624DBB2703A64A5AADF89 C:\Windows\System32\drivers\viaide.sys 06D38968028E9AB19DE9B618C7B6D199 C:\Windows\System32\drivers\vmbus.sys C6305BDFC4F7CE51F72BB072C03D4ACE C:\Windows\System32\drivers\VMBusHID.sys DA40BEA0A863CE768C940CA9723BF81F C:\Windows\System32\drivers\volmgr.sys 55D7D963DE85162F1C49721E502F9744 C:\Windows\System32\drivers\volmgrx.sys CCB9E901F7254BF96D28EB1B0E5329B7 C:\Windows\System32\drivers\volsnap.sys 9F9CE33B50611A1C61A46B8911E0B30B C:\Windows\System32\drivers\vpci.sys 01355C98B5C3ED1EC446743CDA848FCE C:\Windows\System32\drivers\vsmraid.sys 4539F45F9F4C9757A86A56C949421E07 C:\Windows\System32\drivers\vstxraid.sys 0849B7260F26FE05EA56DED0672E2F4B C:\Windows\System32\drivers\vwifibus.sys BE970C369E43B509C1EDA2B8FA7CECB0 C:\Windows\system32\DRIVERS\vwififlt.sys 6B26AD573CCDD5209DF4397438B76354 C:\Windows\system32\DRIVERS\vwifimp.sys 0B48E0DFB44EE475F4FD8A8EE599AF30 C:\Windows\System32\drivers\wacompen.sys 0910AB9ED404C1434E2D0376C2AD5D8B C:\Windows\System32\drivers\WdBoot.sys 694B28DE12AD47031FFB4B052662131A C:\Windows\System32\drivers\Wdf01000.sys CB6C63FF8342B467E2EF76E98D5B934D C:\Windows\System32\drivers\WdFilter.sys 0B99529A3BECC3528D865DDECB62503B C:\Windows\System32\Drivers\WdNisDrv.sys 282E7D46310338FF4A6B7680440EB0DA C:\Windows\System32\DRIVERS\wfplwfs.sys 2E3E82D7B1076B90F4E228A8EF17B261 C:\Windows\System32\drivers\wimmount.sys 867BCC69ED9C31C501465EB0E8BA9DFA C:\Windows\system32\DRIVERS\WinUsb.sys AC263C2F66405589528995AA41040599 C:\Windows\System32\drivers\wmiacpi.sys 2834D9D3B4F554A39C72F00EA3F0E128 C:\Windows\System32\DRIVERS\wpcfltr.sys E746BCDBA2E02CF6B8D6B26FB167FBE0 C:\Windows\System32\drivers\WpdUpFltr.sys 9F2904B55F6CECCD1A8D986B5CE2609A C:\Windows\system32\drivers\ws2ifsl.sys AE072B0339D0A18E455DC21666CAD572 C:\Windows\System32\drivers\WudfPf.sys 2FEAE33E9B2B56104596E1BA444405A9 C:\Windows\System32\drivers\WUDFRd.sys 19240C13F526125554B5370566F21A0A C:\Windows\system32\DRIVERS\WUDFRd.sys 19240C13F526125554B5370566F21A0A C:\Windows\system32\DRIVERS\WUDFRd.sys 19240C13F526125554B5370566F21A0A C:\Windows\system32\DRIVERS\WUDFRd.sys 19240C13F526125554B5370566F21A0A C:\Windows\system32\DRIVERS\WUDFRd.sys 19240C13F526125554B5370566F21A0A ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-03 10:51 - 2014-02-03 10:51 - 00034529 _____ () C:\Users\nicolas\Desktop\FRST.txt 2014-02-03 10:50 - 2014-02-03 10:51 - 00000000 ____D () C:\FRST 2014-02-03 10:47 - 2014-02-03 10:48 - 02080256 _____ (Farbar) C:\Users\nicolas\Desktop\FRST64.exe 2014-02-02 20:21 - 2014-02-02 20:21 - 00001171 _____ () C:\Users\nicolas\Desktop\JRT.txt 2014-02-02 14:44 - 2014-02-03 10:49 - 00000000 ____D () C:\Users\nicolas\Desktop\Téléchargements 2014-02-02 14:44 - 2014-02-02 14:44 - 01037068 _____ (Thisisu) C:\Users\nicolas\Desktop\JRT.exe 2014-02-02 14:43 - 2014-02-02 14:43 - 01037068 _____ (Thisisu) C:\Users\nicolas\Downloads\JRT(1).exe 2014-02-02 08:16 - 2014-02-03 10:43 - 00003940 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{86D8DA31-F6CF-4580-A70A-A82331ED216C} 2014-02-02 08:16 - 2014-02-02 08:16 - 00000000 ____D () C:\WINDOWS\ERUNT 2014-02-02 08:15 - 2014-02-02 08:15 - 01037068 _____ (Thisisu) C:\Users\nicolas\Downloads\JRT.exe 2014-02-02 08:13 - 2014-02-02 08:13 - 00001160 _____ () C:\Users\nicolas\Desktop\AdwCleaner[S1].txt 2014-02-01 20:42 - 2014-02-01 20:42 - 00009996 _____ () C:\Users\nicolas\Desktop\AdwCleaner[S0].txt 2014-02-01 20:39 - 2014-02-02 08:11 - 00000000 ____D () C:\AdwCleaner 2014-02-01 20:38 - 2014-02-01 20:38 - 01166132 _____ () C:\Users\nicolas\Downloads\adwcleaner.exe 2014-02-01 20:16 - 2014-02-01 20:16 - 00000060 _____ () C:\Users\nicolas\AppData\Roaming\WB.CFG 2014-02-01 20:16 - 2014-02-01 20:16 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Google 2014-02-01 20:04 - 2014-02-01 21:39 - 00000000 ____D () C:\ProgramData\WPM 2014-02-01 20:04 - 2014-02-01 20:04 - 00000000 ____D () C:\ProgramData\IePluginService 2014-02-01 20:04 - 2014-02-01 20:04 - 00000000 ____D () C:\Program Files (x86)\SupTab 2014-02-01 20:03 - 2014-02-01 20:03 - 00000404 _____ () C:\WINDOWS\Tasks\PassWidget Update.job 2014-02-01 20:03 - 2014-02-01 20:03 - 00000000 ____D () C:\Program Files (x86)\Pass-Widget 2014-02-01 18:52 - 2014-02-01 19:14 - 848599040 _____ () C:\Users\nicolas\Documents\OfficeProfessionalPlus_x64_fr-fr.img 2014-02-01 18:51 - 2014-02-01 18:51 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Akamai 2014-01-28 15:29 - 2014-01-28 15:29 - 00000000 ____D () C:\Users\nicolas\AppData\Roaming\Canneverbe Limited 2014-01-28 15:29 - 2014-01-28 15:29 - 00000000 ____D () C:\ProgramData\Canneverbe Limited 2014-01-28 15:29 - 2014-01-28 15:29 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP 2014-01-28 15:26 - 2014-01-28 15:27 - 05284632 _____ (Canneverbe Limited ) C:\Users\nicolas\Downloads\cdbxp_setup_4.5.2.4478.exe 2014-01-27 15:19 - 2014-01-31 20:33 - 00000000 ____D () C:\Users\nicolas\Desktop\tests aft iftim 2014-01-26 16:13 - 2014-01-26 16:13 - 00022950 _____ () C:\Users\nicolas\Downloads\WLMContacts.csv 2014-01-25 15:32 - 2014-01-25 15:32 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_wpdcomp_01_11_00.Wdf 2014-01-25 15:32 - 2014-01-25 15:32 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ccdcmbx64_01009.Wdf 2014-01-15 08:47 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll 2014-01-15 08:47 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe 2014-01-15 08:47 - 2013-11-27 11:34 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll 2014-01-15 08:47 - 2013-11-27 10:54 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll 2014-01-15 08:47 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-01-15 08:47 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll 2014-01-15 08:47 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-01-15 08:47 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll 2014-01-15 08:47 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll 2014-01-15 08:47 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll 2014-01-15 08:46 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2014-01-11 17:53 - 2014-01-11 17:53 - 00012768 _____ () C:\Users\nicolas\Desktop\Facture Fabrice.htm 2014-01-10 18:43 - 2014-01-10 18:43 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-01-10 18:43 - 2014-01-10 18:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware 2014-01-10 18:43 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-01-10 18:40 - 2014-01-10 18:40 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\nicolas\Downloads\mbam-setup-1.75.0.1300.exe 2014-01-10 17:46 - 2014-02-01 20:00 - 00000000 ____D () C:\Program Files\office.tmp 2014-01-10 17:43 - 2014-02-01 19:53 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Deployment 2014-01-10 17:42 - 2014-02-01 19:55 - 00005074 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for NICOLAS-nicolas Nicolas 2014-01-10 17:38 - 2014-01-10 17:38 - 00002160 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2014-01-10 17:38 - 2014-01-10 17:38 - 00002160 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2014-01-10 17:38 - 2014-01-10 17:38 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive 2014-01-10 17:38 - 2014-01-10 17:38 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive 2014-01-10 17:32 - 2014-01-10 17:32 - 00574664 _____ (Microsoft Corporation) C:\Users\nicolas\Downloads\Setup.X86.fr-FR_O365HomePremRetail_2801c505-e429-4284-9c4a-c406045d2277_TX_DB_.exe 2014-01-10 17:11 - 2014-01-28 17:18 - 00000000 ____D () C:\WINDOWS\AutoKMS 2014-01-10 17:10 - 2014-02-01 19:55 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit 2014-01-10 16:58 - 2014-01-10 17:03 - 00000000 ___RD () C:\WINDOWS\BrowserChoice 2014-01-06 18:04 - 2014-01-06 18:04 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf 2014-01-06 11:15 - 2014-02-03 09:54 - 00000000 __RDO () C:\Users\nicolas\SkyDrive 2014-01-06 11:14 - 2014-01-06 11:14 - 00000000 ____D () C:\Users\nicolas\Documents\Bluetooth Folder 2014-01-06 11:14 - 2014-01-06 11:14 - 00000000 ____D () C:\Users\nicolas\AppData\Local\BMExplorer 2014-01-06 11:11 - 2014-02-01 20:39 - 00001023 _____ () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-01-06 11:10 - 2014-01-06 11:10 - 00000020 ___SH () C:\Users\nicolas\ntuser.ini 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Voisinage réseau 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Voisinage d'impression 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Modèles 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Menu Démarrer 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Documents\Mes vidéos 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Documents\Mes images 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Documents\Ma musique 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historique 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\Documents\Mes vidéos 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\Documents\Mes images 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\Documents\Ma musique 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historique 2014-01-06 09:17 - 2014-01-06 09:17 - 00023108 _____ () C:\WINDOWS\system32\emptyregdb.dat 2014-01-06 09:08 - 2014-01-06 09:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Pokki 2014-01-06 09:08 - 2014-01-06 09:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help 2014-01-06 09:08 - 2014-01-06 09:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Pokki 2014-01-06 09:08 - 2014-01-06 09:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help 2014-01-06 09:05 - 2014-01-06 09:05 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate 2014-01-06 09:04 - 2014-01-06 11:15 - 00000000 ____D () C:\Users\nicolas 2014-01-06 09:04 - 2014-01-06 09:17 - 00034293 _____ () C:\WINDOWS\diagwrn.xml 2014-01-06 09:04 - 2014-01-06 09:17 - 00034293 _____ () C:\WINDOWS\diagerr.xml 2014-01-06 09:04 - 2014-01-06 09:05 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-01-06 09:04 - 2014-01-06 09:05 - 00000000 ___RD () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Voisinage réseau 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Voisinage d'impression 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Modèles 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Menu Démarrer 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Mes vidéos 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Mes images 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Ma musique 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Historique 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Voisinage réseau 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Voisinage d'impression 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Modèles 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Menu Démarrer 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Documents\Mes vidéos 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Documents\Mes images 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Documents\Ma musique 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\AppData\Local\Historique 2014-01-06 09:04 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-01-06 09:04 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-01-06 09:04 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-01-06 09:04 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-01-06 09:04 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-01-06 09:04 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-01-06 09:00 - 2014-01-08 18:07 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-01-06 09:00 - 2014-01-06 09:00 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_dc3d_01011.Wdf 2014-01-06 09:00 - 2014-01-06 09:00 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf 2014-01-06 09:00 - 2014-01-06 09:00 - 00000000 ____D () C:\Program Files\Realtek 2014-01-06 09:00 - 2014-01-06 09:00 - 00000000 ____D () C:\Program Files\Apoint2K 2014-01-06 08:59 - 2013-08-29 23:43 - 06599968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2014-01-06 08:59 - 2013-08-29 23:43 - 03452192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2014-01-06 08:59 - 2013-08-29 23:43 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2014-01-06 08:59 - 2013-08-29 23:43 - 01042208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2014-01-06 08:59 - 2013-08-29 23:43 - 00920864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2014-01-06 08:59 - 2013-08-29 23:43 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2014-01-06 08:59 - 2013-08-29 23:43 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2014-01-06 08:59 - 2013-08-29 23:43 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2014-01-06 08:59 - 2013-08-29 21:28 - 03349466 _____ () C:\WINDOWS\system32\nvcoproc.bin 2014-01-06 08:58 - 2014-02-03 10:14 - 01381585 _____ () C:\WINDOWS\WindowsUpdate.log 2014-01-06 08:58 - 2014-01-06 09:06 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-01-06 08:58 - 2014-01-06 08:59 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-01-06 08:58 - 2014-01-06 08:58 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-01-06 08:57 - 2014-01-06 09:06 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-01-06 08:57 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2014-01-06 08:57 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL 2014-01-06 08:55 - 2014-01-07 08:32 - 00000000 ___DC () C:\WINDOWS\Panther 2014-01-06 08:55 - 2014-01-06 08:55 - 00000000 __SHD () C:\Recovery 2014-01-06 08:54 - 2014-01-06 08:54 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2014-01-06 08:54 - 2014-01-06 08:54 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2014-01-06 08:53 - 2014-01-06 08:53 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-01-06 08:53 - 2014-01-06 08:53 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2014-01-06 08:53 - 2014-01-06 08:53 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2014-01-06 08:53 - 2014-01-06 08:53 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2014-01-06 08:53 - 2014-01-06 08:53 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll 2014-01-06 08:51 - 2014-01-06 08:51 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff 2014-01-06 08:48 - 2014-01-06 09:10 - 00000000 ____D () C:\Program Files (x86)\MSBuild 2014-01-06 08:48 - 2014-01-06 08:48 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer 2014-01-06 08:48 - 2014-01-06 08:48 - 00000000 ____D () C:\Program Files\Reference Assemblies 2014-01-06 08:48 - 2014-01-06 08:48 - 00000000 ____D () C:\Program Files\MSBuild 2014-01-06 08:48 - 2014-01-06 08:48 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies 2014-01-06 08:47 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2014-01-06 08:47 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2014-01-06 08:47 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2014-01-06 08:47 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2014-01-06 08:47 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2014-01-06 08:47 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2014-01-06 08:20 - 2014-01-06 09:17 - 00006569 _____ () C:\WINDOWS\comsetup.log ==================== One Month Modified Files and Folders ======= 2014-02-03 10:51 - 2014-02-03 10:51 - 00034529 _____ () C:\Users\nicolas\Desktop\FRST.txt 2014-02-03 10:51 - 2014-02-03 10:50 - 00000000 ____D () C:\FRST 2014-02-03 10:49 - 2014-02-02 14:44 - 00000000 ____D () C:\Users\nicolas\Desktop\Téléchargements 2014-02-03 10:48 - 2014-02-03 10:47 - 02080256 _____ (Farbar) C:\Users\nicolas\Desktop\FRST64.exe 2014-02-03 10:43 - 2014-02-02 08:16 - 00003940 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{86D8DA31-F6CF-4580-A70A-A82331ED216C} 2014-02-03 10:29 - 2013-12-25 18:28 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-02-03 10:14 - 2014-01-06 08:58 - 01381585 _____ () C:\WINDOWS\WindowsUpdate.log 2014-02-03 10:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-02-03 09:54 - 2014-01-06 11:15 - 00000000 __RDO () C:\Users\nicolas\SkyDrive 2014-02-02 20:21 - 2014-02-02 20:21 - 00001171 _____ () C:\Users\nicolas\Desktop\JRT.txt 2014-02-02 14:44 - 2014-02-02 14:44 - 01037068 _____ (Thisisu) C:\Users\nicolas\Desktop\JRT.exe 2014-02-02 14:43 - 2014-02-02 14:43 - 01037068 _____ (Thisisu) C:\Users\nicolas\Downloads\JRT(1).exe 2014-02-02 08:26 - 2013-12-25 10:48 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1075306282-704854533-380126294-1002 2014-02-02 08:18 - 2013-11-14 08:32 - 01824010 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-02-02 08:18 - 2013-11-14 08:13 - 00812350 _____ () C:\WINDOWS\system32\perfh00C.dat 2014-02-02 08:18 - 2013-11-14 08:13 - 00159412 _____ () C:\WINDOWS\system32\perfc00C.dat 2014-02-02 08:16 - 2014-02-02 08:16 - 00000000 ____D () C:\WINDOWS\ERUNT 2014-02-02 08:15 - 2014-02-02 08:15 - 01037068 _____ (Thisisu) C:\Users\nicolas\Downloads\JRT.exe 2014-02-02 08:13 - 2014-02-02 08:13 - 00001160 _____ () C:\Users\nicolas\Desktop\AdwCleaner[S1].txt 2014-02-02 08:12 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-02-02 08:11 - 2014-02-01 20:39 - 00000000 ____D () C:\AdwCleaner 2014-02-02 08:11 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2014-02-01 21:39 - 2014-02-01 20:04 - 00000000 ____D () C:\ProgramData\WPM 2014-02-01 21:39 - 2013-11-13 23:22 - 00014834 _____ () C:\WINDOWS\PFRO.log 2014-02-01 20:42 - 2014-02-01 20:42 - 00009996 _____ () C:\Users\nicolas\Desktop\AdwCleaner[S0].txt 2014-02-01 20:39 - 2014-01-06 11:11 - 00001023 _____ () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-02-01 20:39 - 2013-12-25 10:42 - 00000000 ___RD () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-02-01 20:38 - 2014-02-01 20:38 - 01166132 _____ () C:\Users\nicolas\Downloads\adwcleaner.exe 2014-02-01 20:16 - 2014-02-01 20:16 - 00000060 _____ () C:\Users\nicolas\AppData\Roaming\WB.CFG 2014-02-01 20:16 - 2014-02-01 20:16 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Google 2014-02-01 20:04 - 2014-02-01 20:04 - 00000000 ____D () C:\ProgramData\IePluginService 2014-02-01 20:04 - 2014-02-01 20:04 - 00000000 ____D () C:\Program Files (x86)\SupTab 2014-02-01 20:03 - 2014-02-01 20:03 - 00000404 _____ () C:\WINDOWS\Tasks\PassWidget Update.job 2014-02-01 20:03 - 2014-02-01 20:03 - 00000000 ____D () C:\Program Files (x86)\Pass-Widget 2014-02-01 20:00 - 2014-01-10 17:46 - 00000000 ____D () C:\Program Files\office.tmp 2014-02-01 19:55 - 2014-01-10 17:42 - 00005074 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for NICOLAS-nicolas Nicolas 2014-02-01 19:55 - 2014-01-10 17:10 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit 2014-02-01 19:53 - 2014-01-10 17:43 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Deployment 2014-02-01 19:44 - 2013-12-28 09:09 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-02-01 19:14 - 2014-02-01 18:52 - 848599040 _____ () C:\Users\nicolas\Documents\OfficeProfessionalPlus_x64_fr-fr.img 2014-02-01 18:51 - 2014-02-01 18:51 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Akamai 2014-02-01 16:36 - 2013-08-22 15:46 - 00338174 _____ () C:\WINDOWS\setupact.log 2014-02-01 16:31 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-01-31 20:33 - 2014-01-27 15:19 - 00000000 ____D () C:\Users\nicolas\Desktop\tests aft iftim 2014-01-31 14:33 - 2013-12-28 17:03 - 00000000 ____D () C:\Users\nicolas\Desktop\Bureau 20122013 2014-01-28 17:18 - 2014-01-10 17:11 - 00000000 ____D () C:\WINDOWS\AutoKMS 2014-01-28 17:15 - 2013-12-28 18:16 - 00122480 _____ () C:\Users\nicolas\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-28 15:29 - 2014-01-28 15:29 - 00000000 ____D () C:\Users\nicolas\AppData\Roaming\Canneverbe Limited 2014-01-28 15:29 - 2014-01-28 15:29 - 00000000 ____D () C:\ProgramData\Canneverbe Limited 2014-01-28 15:29 - 2014-01-28 15:29 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP 2014-01-28 15:27 - 2014-01-28 15:26 - 05284632 _____ (Canneverbe Limited ) C:\Users\nicolas\Downloads\cdbxp_setup_4.5.2.4478.exe 2014-01-26 16:13 - 2014-01-26 16:13 - 00022950 _____ () C:\Users\nicolas\Downloads\WLMContacts.csv 2014-01-25 15:32 - 2014-01-25 15:32 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_wpdcomp_01_11_00.Wdf 2014-01-25 15:32 - 2014-01-25 15:32 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ccdcmbx64_01009.Wdf 2014-01-19 08:38 - 2013-12-27 12:17 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2014-01-17 10:55 - 2013-12-25 18:27 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Adobe 2014-01-17 10:46 - 2013-12-25 18:28 - 00003890 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2014-01-16 20:28 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore 2014-01-15 11:47 - 2013-12-25 10:41 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Packages 2014-01-15 09:07 - 2013-12-25 11:30 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-01-15 09:06 - 2013-12-25 11:30 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-01-11 17:53 - 2014-01-11 17:53 - 00012768 _____ () C:\Users\nicolas\Desktop\Facture Fabrice.htm 2014-01-10 20:41 - 2013-08-22 15:44 - 00478544 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-01-10 19:41 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-01-10 18:43 - 2014-01-10 18:43 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-01-10 18:43 - 2014-01-10 18:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware 2014-01-10 18:40 - 2014-01-10 18:40 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\nicolas\Downloads\mbam-setup-1.75.0.1300.exe 2014-01-10 17:44 - 2013-12-28 09:09 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Microsoft Help 2014-01-10 17:38 - 2014-01-10 17:38 - 00002160 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2014-01-10 17:38 - 2014-01-10 17:38 - 00002160 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2014-01-10 17:38 - 2014-01-10 17:38 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive 2014-01-10 17:38 - 2014-01-10 17:38 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive 2014-01-10 17:32 - 2014-01-10 17:32 - 00574664 _____ (Microsoft Corporation) C:\Users\nicolas\Downloads\Setup.X86.fr-FR_O365HomePremRetail_2801c505-e429-4284-9c4a-c406045d2277_TX_DB_.exe 2014-01-10 17:32 - 2013-12-25 10:41 - 00000000 ____D () C:\Users\nicolas\AppData\Local\VirtualStore 2014-01-10 17:03 - 2014-01-10 16:58 - 00000000 ___RD () C:\WINDOWS\BrowserChoice 2014-01-10 16:57 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\restore 2014-01-08 18:07 - 2014-01-06 09:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-01-07 08:32 - 2014-01-06 08:55 - 00000000 ___DC () C:\WINDOWS\Panther 2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-01-06 18:04 - 2014-01-06 18:04 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf 2014-01-06 11:15 - 2014-01-06 09:04 - 00000000 ____D () C:\Users\nicolas 2014-01-06 11:14 - 2014-01-06 11:14 - 00000000 ____D () C:\Users\nicolas\Documents\Bluetooth Folder 2014-01-06 11:14 - 2014-01-06 11:14 - 00000000 ____D () C:\Users\nicolas\AppData\Local\BMExplorer 2014-01-06 11:14 - 2013-08-13 23:44 - 00000000 ____D () C:\ProgramData\Atheros 2014-01-06 11:11 - 2013-12-25 10:42 - 00000000 ___RD () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-01-06 11:10 - 2014-01-06 11:10 - 00000020 ___SH () C:\Users\nicolas\ntuser.ini 2014-01-06 11:10 - 2013-08-13 23:32 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV 2014-01-06 11:10 - 2013-08-13 23:32 - 00000000 ____D () C:\WINDOWS\system32\NV 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Voisinage réseau 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Voisinage d'impression 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Modèles 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Menu Démarrer 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Documents\Mes vidéos 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Documents\Mes images 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\Documents\Ma musique 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historique 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\Documents\Mes vidéos 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\Documents\Mes images 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\Documents\Ma musique 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2014-01-06 09:18 - 2014-01-06 09:18 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historique 2014-01-06 09:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows NT 2014-01-06 09:18 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default 2014-01-06 09:17 - 2014-01-06 09:17 - 00023108 _____ () C:\WINDOWS\system32\emptyregdb.dat 2014-01-06 09:17 - 2014-01-06 09:04 - 00034293 _____ () C:\WINDOWS\diagwrn.xml 2014-01-06 09:17 - 2014-01-06 09:04 - 00034293 _____ () C:\WINDOWS\diagerr.xml 2014-01-06 09:17 - 2014-01-06 08:20 - 00006569 _____ () C:\WINDOWS\comsetup.log 2014-01-06 09:17 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Registration 2014-01-06 09:14 - 2013-08-22 16:36 - 00000000 __RSD () C:\WINDOWS\Media 2014-01-06 09:14 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries 2014-01-06 09:10 - 2014-01-06 08:48 - 00000000 ____D () C:\Program Files (x86)\MSBuild 2014-01-06 09:10 - 2013-11-14 08:16 - 00000000 ____D () C:\WINDOWS\ShellNew 2014-01-06 09:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Help 2014-01-06 09:10 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep 2014-01-06 09:10 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-01-06 09:10 - 2013-08-13 23:28 - 00000000 ____D () C:\WINDOWS\SysWOW64\Atheros_L1e 2014-01-06 09:08 - 2014-01-06 09:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Pokki 2014-01-06 09:08 - 2014-01-06 09:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help 2014-01-06 09:08 - 2014-01-06 09:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Pokki 2014-01-06 09:08 - 2014-01-06 09:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help 2014-01-06 09:08 - 2013-08-22 16:37 - 00004893 _____ () C:\WINDOWS\DtcInstall.log 2014-01-06 09:08 - 2012-07-26 06:37 - 00000000 ____D () C:\Users\Default.migrated 2014-01-06 09:07 - 2013-11-14 08:13 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN 2014-01-06 09:07 - 2013-11-14 08:13 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep 2014-01-06 09:07 - 2013-11-14 08:13 - 00000000 ____D () C:\WINDOWS\system32\WCN 2014-01-06 09:07 - 2013-08-22 16:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker 2014-01-06 09:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz 2014-01-06 09:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME 2014-01-06 09:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\WinBioPlugIns 2014-01-06 09:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\spool 2014-01-06 09:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\IME 2014-01-06 09:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\IME 2014-01-06 09:07 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI 2014-01-06 09:07 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\oobe 2014-01-06 09:07 - 2013-08-13 23:27 - 00000000 ____D () C:\WINDOWS\SysWOW64\sda 2014-01-06 09:07 - 2013-07-19 10:20 - 00000000 ____D () C:\ProgramData\PRICache 2014-01-06 09:06 - 2014-01-06 08:58 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-01-06 09:06 - 2014-01-06 08:57 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-01-06 09:06 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files\Windows Sidebar 2014-01-06 09:06 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar 2014-01-06 09:06 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-01-06 09:05 - 2014-01-06 09:05 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate 2014-01-06 09:05 - 2014-01-06 09:04 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-01-06 09:05 - 2014-01-06 09:04 - 00000000 ___RD () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-01-06 09:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Voisinage réseau 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Voisinage d'impression 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Modèles 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Menu Démarrer 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Mes vidéos 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Mes images 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Ma musique 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Historique 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Voisinage réseau 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Voisinage d'impression 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Modèles 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Menu Démarrer 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Documents\Mes vidéos 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Documents\Mes images 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\Documents\Ma musique 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2014-01-06 09:04 - 2014-01-06 09:04 - 00000000 _SHDL () C:\Users\nicolas\AppData\Local\Historique 2014-01-06 09:00 - 2014-01-06 09:00 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_dc3d_01011.Wdf 2014-01-06 09:00 - 2014-01-06 09:00 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf 2014-01-06 09:00 - 2014-01-06 09:00 - 00000000 ____D () C:\Program Files\Realtek 2014-01-06 09:00 - 2014-01-06 09:00 - 00000000 ____D () C:\Program Files\Apoint2K 2014-01-06 09:00 - 2013-08-22 15:46 - 00000090 _____ () C:\WINDOWS\setuperr.log 2014-01-06 08:59 - 2014-01-06 08:58 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-01-06 08:58 - 2014-01-06 08:58 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-01-06 08:55 - 2014-01-06 08:55 - 00000000 __SHD () C:\Recovery 2014-01-06 08:54 - 2014-01-06 08:54 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2014-01-06 08:54 - 2014-01-06 08:54 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll 2014-01-06 08:54 - 2014-01-06 08:54 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll 2014-01-06 08:54 - 2013-08-22 16:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template 2014-01-06 08:53 - 2014-01-06 08:53 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2014-01-06 08:53 - 2014-01-06 08:53 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-01-06 08:53 - 2014-01-06 08:53 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2014-01-06 08:53 - 2014-01-06 08:53 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2014-01-06 08:53 - 2014-01-06 08:53 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2014-01-06 08:53 - 2014-01-06 08:53 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-01-06 08:53 - 2014-01-06 08:53 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2014-01-06 08:53 - 2014-01-06 08:53 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll 2014-01-06 08:53 - 2014-01-06 08:53 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll 2014-01-06 08:53 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData 2014-01-06 08:53 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer 2014-01-06 08:53 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager 2014-01-06 08:53 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera 2014-01-06 08:51 - 2014-01-06 08:51 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff 2014-01-06 08:48 - 2014-01-06 08:48 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer 2014-01-06 08:48 - 2014-01-06 08:48 - 00000000 ____D () C:\Program Files\Reference Assemblies 2014-01-06 08:48 - 2014-01-06 08:48 - 00000000 ____D () C:\Program Files\MSBuild 2014-01-06 08:48 - 2014-01-06 08:48 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies 2014-01-06 08:48 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI 2014-01-06 08:48 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\MUI 2014-01-06 08:37 - 2013-08-13 23:23 - 01536904 _____ () C:\WINDOWS\WindowsUpdate (1).log 2014-01-06 07:48 - 2013-12-25 10:40 - 00000000 ____D () C:\Users\nicolas\AppData\Local\Pokki 2014-01-04 14:46 - 2014-01-01 18:53 - 00000000 ____D () C:\Users\nicolas\AppData\Local\clear.fi Some content of TEMP: ==================== C:\Users\nicolas\AppData\Local\Temp\228945-670980-microsoft-office-2013.exe C:\Users\nicolas\AppData\Local\Temp\64004uninstall.exe C:\Users\nicolas\AppData\Local\Temp\BackupSetup.exe C:\Users\nicolas\AppData\Local\Temp\ICReinstall_Nero2014-15.0.02500_trial.exe C:\Users\nicolas\AppData\Local\Temp\OfficeSetup.exe C:\Users\nicolas\AppData\Local\Temp\PidGenX.dll C:\Users\nicolas\AppData\Local\Temp\Quarantine.exe C:\Users\nicolas\AppData\Local\Temp\Setup.X86.fr-FR_O365HomePremRetail_2801c505-e429-4284-9c4a-c406045d2277_TX_DB_.exe C:\Users\nicolas\AppData\Local\Temp\Sqlite3.dll C:\Users\nicolas\AppData\Local\Temp\vit_sweet-page.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} timeout 2 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} integrityservices Enable default {current} resumeobject {b4609953-04c3-11e3-b99c-54bef72dd443} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {b4609950-04c3-11e3-b99c-54bef72dd443} device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{b4609951-04c3-11e3-b99c-54bef72dd443} path \windows\system32\winload.efi description Windows Recovery Environment locale en-us inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{b4609951-04c3-11e3-b99c-54bef72dd443} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 8.1 locale fr-FR inherit {bootloadersettings} recoverysequence {b4609955-04c3-11e3-b99c-54bef72dd443} integrityservices Enable recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {b4609953-04c3-11e3-b99c-54bef72dd443} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {b4609955-04c3-11e3-b99c-54bef72dd443} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{b4609956-04c3-11e3-b99c-54bef72dd443} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{b4609956-04c3-11e3-b99c-54bef72dd443} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {b460994e-04c3-11e3-b99c-54bef72dd443} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {b4609950-04c3-11e3-b99c-54bef72dd443} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {b4609953-04c3-11e3-b99c-54bef72dd443} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {b4609955-04c3-11e3-b99c-54bef72dd443} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options Ramdisk du programme d'installation ------------------------------------------- identificateur {ramdiskoptions} description Acer Recovery Management ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \boot\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {b4609951-04c3-11e3-b99c-54bef72dd443} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume1 ramdisksdipath \Recovery\WindowsRE\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {b4609952-04c3-11e3-b99c-54bef72dd443} description Windows Setup ramdisksdidevice partition=C: ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {b4609956-04c3-11e3-b99c-54bef72dd443} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi LastRegBack: 2014-02-02 08:26 ==================== End Of Log ============================