cjoint

Publicité

Cliquez pour partager vos propres fichiers

Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 19/01/2017 10:21:25 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\mouched\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

4,00 Gb Total Physical Memory | 2,77 Gb Available Physical Memory | 69,24% Memory free
7,99 Gb Paging File | 6,71 Gb Available in Paging File | 83,98% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 148,95 Gb Total Space | 107,05 Gb Free Space | 71,87% Space Free | Partition Type: NTFS
Drive D: | 100,00 Mb Total Space | 84,44 Mb Free Space | 84,44% Space Free | Partition Type: NTFS
Drive E: | 149,05 Gb Total Space | 69,83 Gb Free Space | 46,85% Space Free | Partition Type: NTFS

Computer Name: MOUCHED-PC | User Name: mouched | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2017/01/19 10:09:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\mouched\Desktop\OTL.exe
PRC - [2017/01/18 20:20:05 | 000,554,440 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Firefox Developer Edition\firefox.exe
PRC - [2017/01/14 14:55:01 | 000,225,280 | -H-- | M] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe
PRC - [2016/12/19 22:38:14 | 000,082,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2016/12/14 14:12:36 | 001,065,248 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Driver Booster\4.2.0\Scheduler.exe
PRC - [2015/08/20 17:04:56 | 001,843,392 | ---- | M] (Adobe Systems, Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
PRC - [2012/09/17 06:39:30 | 000,171,600 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2009/03/30 15:00:56 | 000,221,184 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2017/01/14 14:55:01 | 000,225,280 | -H-- | M] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe
MOD - [2009/02/27 16:38:20 | 000,139,264 | R--- | M] () -- C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2017/01/18 20:20:05 | 000,173,000 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2017/01/14 15:21:16 | 000,270,936 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016/12/19 22:38:14 | 000,082,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2015/08/20 17:04:56 | 001,843,392 | ---- | M] (Adobe Systems, Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe -- (AGSService)
SRV - [2012/09/17 06:39:30 | 000,171,600 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor11.0)
SRV - [2010/12/20 15:55:14 | 000,251,760 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files (x86)\ma-config.com\maconfservice.exe -- (maconfservice)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2017/01/14 15:04:56 | 000,418,784 | ---- | M] (Realsil Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsUer.sys -- (RTSUER)
DRV:[b]64bit:[/b] - [2017/01/14 15:04:41 | 000,467,736 | ---- | M] (Broadcom Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2017/01/14 15:04:24 | 000,011,944 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdide64.sys -- (amdide64)
DRV:[b]64bit:[/b] - [2017/01/14 14:17:17 | 000,508,472 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:[b]64bit:[/b] - [2012/08/10 03:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:[b]64bit:[/b] - [2010/02/18 08:22:56 | 000,316,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2009/10/10 03:41:20 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009/07/14 02:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/07/13 22:59:33 | 005,020,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:[b]64bit:[/b] - [2009/06/10 21:35:42 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:38 | 001,311,232 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2017/01/14 15:00:15 | 000,027,552 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV - [2010/08/30 11:19:54 | 000,015,872 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys -- (driverhardwarev2x64)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/keyword/%s
IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\..\SearchScopes,DefaultScope = {3F6A2909-5928-4F88-8AE9-9930C6F534C2}
IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\..\SearchScopes\{3F6A2909-5928-4F88-8AE9-9930C6F534C2}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll ()
FF - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files (x86)\ma-config.com\nphardwaredetection.dll (Cybelsoft)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2852: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1662: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox Developer Edition 52.0a2\extensions\\Components: C:\Program Files (x86)\Firefox Developer Edition\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox Developer Edition 52.0a2\extensions\\Plugins: C:\Program Files (x86)\Firefox Developer Edition\plugins

[2017/01/14 14:32:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\Extensions
[2017/01/14 15:39:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\Firefox\Profiles\atgk5yqp.default\extensions
[2017/01/15 13:13:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\Firefox\Profiles\atgk5yqp.default\extensions\staged
[2017/01/17 18:02:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\Firefox\Profiles\nyls61q5.dev-edition-default\extensions
[2017/01/17 18:02:12 | 000,770,771 | ---- | M] () (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\firefox\profiles\nyls61q5.dev-edition-default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi

O1 HOSTS File: ([2017/01/17 10:00:29 | 000,001,173 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 serius.mwbsys.com
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O1 - Hosts: 127.0.0.1 idb.iobit.com
O1 - Hosts: 127.0.0.1 asc55.iobit.com
O1 - Hosts: 127.0.0.1 is360.iobit.com
O1 - Hosts: 127.0.0.1 asc.iobit.com
O1 - Hosts: 127.0.0.1 pf.iobit.com
O1 - Hosts: 127.0.0.1 98.129.229.186
O1 - Hosts: 127.0.0.1 www.iana.org
O1 - Hosts: 127.0.0.1 iana.org# ::1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found
O4 - HKU\S-1-5-20..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found
O4 - HKU\S-1-5-21-891854826-2538821857-508926778-1000..\Run: [Bienvenue] C:\Windows\SysWow64\OobeFldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-891854826-2538821857-508926778-1000..\Run: [Tknynr] C:\Users\mouched\AppData\Roaming\Tknynr.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 1
O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B460592D-2D96-48EC-B981-599188735D6B}: DhcpNameServer = 192.168.0.254
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)


SafeBootMin:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] Base - Driver Group
SafeBootMin:[b]64bit:[/b] Boot Bus Extender - Driver Group
SafeBootMin:[b]64bit:[/b] Boot file system - Driver Group
SafeBootMin:[b]64bit:[/b] File system - Driver Group
SafeBootMin:[b]64bit:[/b] Filter - Driver Group
SafeBootMin:[b]64bit:[/b] HelpSvc - Service
SafeBootMin:[b]64bit:[/b] PCI Configuration - Driver Group
SafeBootMin:[b]64bit:[/b] PNP Filter - Driver Group
SafeBootMin:[b]64bit:[/b] Primary disk - Driver Group
SafeBootMin:[b]64bit:[/b] sacsvr - Service
SafeBootMin:[b]64bit:[/b] SCSI Class - Driver Group
SafeBootMin:[b]64bit:[/b] System Bus Extender - Driver Group
SafeBootMin:[b]64bit:[/b] vmms - Service
SafeBootMin:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Base - Driver Group
SafeBootNet:[b]64bit:[/b] Boot Bus Extender - Driver Group
SafeBootNet:[b]64bit:[/b] Boot file system - Driver Group
SafeBootNet:[b]64bit:[/b] File system - Driver Group
SafeBootNet:[b]64bit:[/b] Filter - Driver Group
SafeBootNet:[b]64bit:[/b] HelpSvc - Service
SafeBootNet:[b]64bit:[/b] NDIS Wrapper - Driver Group
SafeBootNet:[b]64bit:[/b] NetBIOSGroup - Driver Group
SafeBootNet:[b]64bit:[/b] NetDDEGroup - Driver Group
SafeBootNet:[b]64bit:[/b] Network - Driver Group
SafeBootNet:[b]64bit:[/b] NetworkProvider - Driver Group
SafeBootNet:[b]64bit:[/b] PCI Configuration - Driver Group
SafeBootNet:[b]64bit:[/b] PNP Filter - Driver Group
SafeBootNet:[b]64bit:[/b] PNP_TDI - Driver Group
SafeBootNet:[b]64bit:[/b] Primary disk - Driver Group
SafeBootNet:[b]64bit:[/b] rdsessmgr - Service
SafeBootNet:[b]64bit:[/b] sacsvr - Service
SafeBootNet:[b]64bit:[/b] SCSI Class - Driver Group
SafeBootNet:[b]64bit:[/b] Streams Drivers - Driver Group
SafeBootNet:[b]64bit:[/b] System Bus Extender - Driver Group
SafeBootNet:[b]64bit:[/b] TDI - Driver Group
SafeBootNet:[b]64bit:[/b] vmms - Service
SafeBootNet:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] WudfUsbccidDriver - Driver
SafeBootNet:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:[b]64bit:[/b] {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:[b]64bit:[/b] {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:[b]64bit:[/b] {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:[b]64bit:[/b] {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:[b]64bit:[/b] {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:[b]64bit:[/b] >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:[b]64bit:[/b] >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (http://www.mp3dev.org/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.DIVX - C:\Windows\SysWow64\divx.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org)

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2017/01/19 10:11:47 | 000,000,000 | ---D | C] -- C:\_OTL
[2017/01/19 10:09:00 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\mouched\Desktop\OTL.exe
[2017/01/19 08:43:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft XNA
[2017/01/18 20:56:15 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\ZHP
[2017/01/18 14:09:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\ASSURANCE
[2017/01/18 14:05:56 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\mp3
[2017/01/18 07:59:26 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\vlc
[2017/01/18 07:59:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2017/01/18 07:58:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2017/01/18 07:56:11 | 011,348,661 | ---- | C] (Denis ROBERT ) -- C:\Users\mouched\Desktop\FreeVCL.exe
[2017/01/17 18:05:21 | 000,000,000 | ---D | C] -- C:\Users\mouched\dwhelper
[2017/01/17 11:27:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Jasc Software Inc
[2017/01/17 11:27:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2017/01/17 11:03:01 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2017/01/17 11:00:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2017/01/17 10:58:06 | 000,056,336 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\PxHlpa64.sys
[2017/01/17 10:58:06 | 000,011,376 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\cdralw2k.sys
[2017/01/17 10:58:06 | 000,010,864 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\cdr4_xp.sys
[2017/01/17 10:57:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared
[2017/01/17 10:57:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2017/01/17 10:56:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2017/01/17 10:50:34 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\Adobe Photoshop Elements 11.0 Multilingual+Patch+Keygen
[2017/01/17 10:18:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
[2017/01/17 10:17:18 | 000,176,128 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysWow64\BroSNMP.dll
[2017/01/17 10:17:18 | 000,073,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2.dll
[2017/01/17 10:17:18 | 000,005,120 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2L.dll
[2017/01/17 10:17:18 | 000,003,072 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2S.dll
[2017/01/17 10:17:17 | 001,560,064 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysNative\BrWia09b.dll
[2017/01/17 10:17:17 | 000,057,344 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\brprtink.dll
[2017/01/17 10:17:17 | 000,050,176 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysNative\BrUsi09a.dll
[2017/01/17 10:17:16 | 000,167,936 | ---- | C] (brother) -- C:\Windows\SysWow64\NSSearch.dll
[2017/01/17 10:17:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Brother
[2017/01/17 10:17:11 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2017/01/17 10:16:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Brother
[2017/01/17 10:16:37 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\InstallShield
[2017/01/17 10:16:18 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\wlan_wiz
[2017/01/17 10:16:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\mflpro_c1
[2017/01/17 10:12:46 | 050,187,152 | ---- | C] (A.I.SOFT,INC.) -- C:\Users\mouched\DCP-195C-inst-B1-win78.EXE
[2017/01/17 10:07:52 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\No Company Name
[2017/01/17 09:01:48 | 000,305,152 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2017/01/17 09:00:27 | 005,455,526 | ---- | C] (InstallShield Software Corporation) -- C:\Users\mouched\Desktop\acrobat4.exe
[2017/01/17 08:54:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2017/01/16 19:50:32 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2017/01/16 19:50:32 | 000,065,408 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2017/01/16 19:50:32 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys
[2017/01/16 19:48:32 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\M.Anti.Malware.2.2.1.1043.Portable.21.08.2016
[2017/01/16 17:49:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Documents\Notes
[2017/01/15 10:19:32 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield
[2017/01/15 10:19:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jasc Software
[2017/01/15 10:19:06 | 000,000,000 | ---D | C] -- C:\Users\mouched\Documents\Mes fichiers PSP
[2017/01/15 10:19:06 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Jasc Software Inc
[2017/01/15 10:18:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Jasc Software Inc
[2017/01/15 10:16:38 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\paint shop pro9 fr
[2017/01/15 09:56:32 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\baatna 2012
[2017/01/15 09:52:52 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Media Player Classic
[2017/01/15 09:40:46 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\CEF
[2017/01/15 09:39:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2017/01/15 09:39:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2017/01/15 09:37:48 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Adobe
[2017/01/15 08:38:17 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Macromedia
[2017/01/15 08:38:17 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Macromedia
[2017/01/15 08:38:17 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Adobe
[2017/01/14 15:47:09 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Mp3jam
[2017/01/14 15:43:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MP3jam
[2017/01/14 15:40:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2017/01/14 15:19:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2017/01/14 15:16:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
[2017/01/14 15:11:41 | 000,802,904 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2017/01/14 15:11:40 | 000,144,472 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2017/01/14 15:11:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2017/01/14 15:09:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DAX3
[2017/01/14 15:09:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DAX2
[2017/01/14 15:09:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Audyssey Labs
[2017/01/14 15:09:28 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2017/01/14 15:09:26 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2017/01/14 15:08:34 | 015,202,032 | ---- | C] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE3.dll
[2017/01/14 15:08:34 | 003,299,816 | ---- | C] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE2.dll
[2017/01/14 15:08:34 | 002,190,984 | ---- | C] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE.dll
[2017/01/14 15:08:33 | 003,204,096 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2017/01/14 15:08:33 | 003,014,144 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2017/01/14 15:08:33 | 002,995,000 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\slcnt64.dll
[2017/01/14 15:08:33 | 002,706,856 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sltech64.dll
[2017/01/14 15:08:33 | 002,110,592 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll
[2017/01/14 15:08:33 | 001,435,136 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRRPTR64.dll
[2017/01/14 15:08:33 | 001,382,232 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll
[2017/01/14 15:08:33 | 001,337,640 | ---- | C] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tossaeapo64.dll
[2017/01/14 15:08:33 | 001,003,320 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysNative\SEHDHF64.dll
[2017/01/14 15:08:33 | 000,984,912 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sl3apo64.dll
[2017/01/14 15:08:33 | 000,965,016 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll
[2017/01/14 15:08:33 | 000,962,120 | ---- | C] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tosasfapo64.dll
[2017/01/14 15:08:33 | 000,873,456 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll
[2017/01/14 15:08:33 | 000,865,912 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysWow64\SEHDHF32.dll
[2017/01/14 15:08:33 | 000,859,216 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysNative\SEHDRA64.dll
[2017/01/14 15:08:33 | 000,850,400 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysNative\SECOMN64.dll
[2017/01/14 15:08:33 | 000,721,800 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysWow64\SECOMN32.dll
[2017/01/14 15:08:33 | 000,601,144 | ---- | C] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tossaemaxapo64.dll
[2017/01/14 15:08:33 | 000,571,376 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\tbb_waves.dll
[2017/01/14 15:08:33 | 000,532,376 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2017/01/14 15:08:33 | 000,499,152 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysNative\SEAPO64.dll
[2017/01/14 15:08:33 | 000,467,152 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRAPO64.dll
[2017/01/14 15:08:33 | 000,447,176 | ---- | C] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\toseaeapo64.dll
[2017/01/14 15:08:33 | 000,381,400 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM64.dll
[2017/01/14 15:08:33 | 000,343,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2017/01/14 15:08:33 | 000,341,144 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysWow64\SRCOM.dll
[2017/01/14 15:08:33 | 000,341,144 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM.dll
[2017/01/14 15:08:33 | 000,258,864 | ---- | C] (TODO: <Company name>) -- C:\Windows\SysNative\slprp64.dll
[2017/01/14 15:08:33 | 000,231,912 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
[2017/01/14 15:08:33 | 000,221,960 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2017/01/14 15:08:33 | 000,209,536 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2017/01/14 15:08:33 | 000,166,200 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2017/01/14 15:08:33 | 000,158,696 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll
[2017/01/14 15:08:33 | 000,090,912 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
[2017/01/14 15:08:33 | 000,088,320 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
[2017/01/14 15:08:33 | 000,083,624 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2017/01/14 15:08:33 | 000,075,536 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll
[2017/01/14 15:08:32 | 072,520,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2017/01/14 15:08:32 | 003,503,048 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2017/01/14 15:08:32 | 003,201,376 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll
[2017/01/14 15:08:32 | 002,828,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysWow64\RltkAPO.dll
[2017/01/14 15:08:32 | 002,201,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2017/01/14 15:08:32 | 001,360,512 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2017/01/14 15:08:32 | 000,689,872 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
[2017/01/14 15:08:32 | 000,387,312 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2017/01/14 15:08:32 | 000,321,712 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2017/01/14 15:08:32 | 000,321,712 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2017/01/14 15:08:32 | 000,214,832 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2017/01/14 15:08:32 | 000,192,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2017/01/14 15:08:32 | 000,110,984 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2017/01/14 15:08:32 | 000,088,344 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2017/01/14 15:08:32 | 000,023,688 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2017/01/14 15:08:31 | 013,122,576 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO3064.dll
[2017/01/14 15:08:31 | 012,988,336 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO4064.dll
[2017/01/14 15:08:31 | 007,172,912 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
[2017/01/14 15:08:31 | 006,198,136 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICV3apo.dll
[2017/01/14 15:08:31 | 005,793,520 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICV2apo.dll
[2017/01/14 15:08:31 | 005,593,608 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOlfx.dll
[2017/01/14 15:08:31 | 001,003,856 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NahimicAPONSControl.dll
[2017/01/14 15:08:31 | 000,923,736 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\MISS_APO.dll
[2017/01/14 15:08:31 | 000,677,672 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2017/01/14 15:08:31 | 000,447,712 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
[2017/01/14 15:08:31 | 000,151,784 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
[2017/01/14 15:08:31 | 000,134,200 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
[2017/01/14 15:08:31 | 000,084,616 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
[2017/01/14 15:08:30 | 023,547,544 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRenderAVX64.dll
[2017/01/14 15:08:30 | 023,447,352 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRender64.dll
[2017/01/14 15:08:30 | 014,057,248 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll
[2017/01/14 15:08:30 | 001,334,376 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxSpeechAPO64.dll
[2017/01/14 15:08:30 | 000,999,848 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll
[2017/01/14 15:08:29 | 017,398,616 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioCapture64.dll
[2017/01/14 15:08:29 | 010,532,048 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\IntelSSTAPO.dll
[2017/01/14 15:08:29 | 002,291,304 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO7064.dll
[2017/01/14 15:08:29 | 002,050,168 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll
[2017/01/14 15:08:29 | 001,422,920 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO6064.dll
[2017/01/14 15:08:29 | 001,213,656 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll
[2017/01/14 15:08:29 | 001,186,816 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\IntelSstCApoPropPage.dll
[2017/01/14 15:08:29 | 001,166,152 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO4064.dll
[2017/01/14 15:08:29 | 000,931,616 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2017/01/14 15:08:29 | 000,678,176 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2017/01/14 15:08:29 | 000,618,176 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
[2017/01/14 15:08:29 | 000,588,032 | ---- | C] (ICEpower a/s) -- C:\Windows\SysNative\ICEsoundAPO64.dll
[2017/01/14 15:08:29 | 000,416,504 | ---- | C] (Harman) -- C:\Windows\SysNative\HMUI.dll
[2017/01/14 15:08:29 | 000,366,120 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\HMAPO.dll
[2017/01/14 15:08:29 | 000,360,344 | ---- | C] (Harman) -- C:\Windows\SysNative\HMClariFi.dll
[2017/01/14 15:08:29 | 000,330,560 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2017/01/14 15:08:29 | 000,203,840 | ---- | C] (Harman) -- C:\Windows\SysNative\HMHVS.dll
[2017/01/14 15:08:29 | 000,190,928 | ---- | C] (Harman) -- C:\Windows\SysNative\HMEQ_Voice.dll
[2017/01/14 15:08:29 | 000,190,928 | ---- | C] (Harman) -- C:\Windows\SysNative\HMEQ.dll
[2017/01/14 15:08:29 | 000,179,592 | ---- | C] (Harman) -- C:\Windows\SysNative\HMLimiter.dll
[2017/01/14 15:08:28 | 007,096,184 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64A.dll
[2017/01/14 15:08:28 | 006,264,632 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64AF3.dll
[2017/01/14 15:08:28 | 005,347,000 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOv211.dll
[2017/01/14 15:08:28 | 003,295,064 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2017/01/14 15:08:28 | 002,444,688 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOv201.dll
[2017/01/14 15:08:28 | 001,965,808 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64A.dll
[2017/01/14 15:08:28 | 001,959,592 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64AF3.dll
[2017/01/14 15:08:28 | 001,780,616 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2017/01/14 15:08:28 | 001,591,056 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2017/01/14 15:08:28 | 001,516,896 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DAX3APOProp.dll
[2017/01/14 15:08:28 | 001,508,928 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2017/01/14 15:08:28 | 001,363,096 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DAX3APOv251.dll
[2017/01/14 15:08:28 | 001,133,584 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOProp.dll
[2017/01/14 15:08:28 | 000,785,608 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOvlldp.dll
[2017/01/14 15:08:28 | 000,743,960 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2017/01/14 15:08:28 | 000,727,432 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2017/01/14 15:08:28 | 000,708,312 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2017/01/14 15:08:28 | 000,514,520 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll
[2017/01/14 15:08:28 | 000,504,304 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2017/01/14 15:08:28 | 000,500,552 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll
[2017/01/14 15:08:28 | 000,445,400 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2017/01/14 15:08:28 | 000,441,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2017/01/14 15:08:28 | 000,428,224 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll
[2017/01/14 15:08:28 | 000,426,568 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\HiFiDAX2APIPCLL.dll
[2017/01/14 15:08:28 | 000,378,384 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\HiFiDAX2API.dll
[2017/01/14 15:08:28 | 000,362,048 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64AF3.dll
[2017/01/14 15:08:28 | 000,327,448 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64A.dll
[2017/01/14 15:08:28 | 000,310,416 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64F3.dll
[2017/01/14 15:08:28 | 000,272,712 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64.dll
[2017/01/14 15:08:28 | 000,253,896 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2017/01/14 15:08:28 | 000,253,864 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2017/01/14 15:08:28 | 000,252,872 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2017/01/14 15:08:28 | 000,154,360 | ---- | C] (Harman) -- C:\Windows\SysNative\HarmanAudioInterface.dll
[2017/01/14 15:08:27 | 002,993,712 | ---- | C] (Audyssey Labs) -- C:\Windows\SysNative\AudysseyEfx.dll
[2017/01/14 15:08:27 | 001,615,656 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64APO.dll
[2017/01/14 15:08:27 | 001,529,136 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64Proxy.dll
[2017/01/14 15:08:27 | 000,574,752 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2017/01/14 15:08:27 | 000,438,688 | ---- | C] (Conexant Systems, Inc.) -- C:\Windows\SysNative\CAF64APO2.dll
[2017/01/14 15:08:27 | 000,122,320 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll
[2017/01/14 15:08:27 | 000,118,592 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2017/01/14 15:08:27 | 000,112,488 | ---- | C] (Conexant Systems, Inc.) -- C:\Windows\SysNative\Caf64api.dll
[2017/01/14 15:04:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sda
[2017/01/14 15:04:56 | 009,891,328 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysWow64\RsCRIcon.dll
[2017/01/14 15:04:56 | 004,332,032 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtCRU64.exe
[2017/01/14 15:04:56 | 000,418,784 | ---- | C] (Realsil Semiconductor Corporation) -- C:\Windows\SysNative\drivers\RtsUer.sys
[2017/01/14 15:04:56 | 000,084,480 | ---- | C] (Realtek Semiconductor.) -- C:\Windows\SysNative\RtCRX64.dll
[2017/01/14 15:04:41 | 000,467,736 | ---- | C] (Broadcom Limited) -- C:\Windows\SysNative\drivers\b57nd60a.sys
[2017/01/14 15:04:24 | 000,011,944 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\drivers\amdide64.sys
[2017/01/14 15:03:56 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2017/01/14 15:03:56 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2017/01/14 15:03:56 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2017/01/14 15:03:32 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2017/01/14 15:03:32 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2017/01/14 15:03:32 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2017/01/14 15:03:26 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2017/01/14 15:03:26 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2017/01/14 15:00:35 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2017/01/14 15:00:34 | 000,000,000 | ---D | C] -- C:\Windows\IObit
[2017/01/14 15:00:16 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2017/01/14 15:00:15 | 000,027,552 | ---- | C] (REALiX(tm)) -- C:\Windows\SysWow64\drivers\HWiNFO64A.SYS
[2017/01/14 15:00:15 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\IObit
[2017/01/14 15:00:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2017/01/14 14:59:52 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Programs
[2017/01/14 14:59:29 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\Driver.Booster.Pro.3.3
[2017/01/14 14:59:24 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\WinRAR
[2017/01/14 14:53:58 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2017/01/14 14:53:50 | 001,721,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01009.dll
[2017/01/14 14:53:50 | 000,396,584 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCOM.dll
[2017/01/14 14:53:50 | 000,316,464 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\drivers\SynTP.sys
[2017/01/14 14:53:50 | 000,264,488 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCtrl.dll
[2017/01/14 14:53:50 | 000,210,216 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCtrl.dll
[2017/01/14 14:53:50 | 000,207,144 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPAPI.dll
[2017/01/14 14:53:50 | 000,173,352 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCOM.dll
[2017/01/14 14:53:50 | 000,147,752 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPCo4.dll
[2017/01/14 14:53:50 | 000,107,816 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynTPCOM.dll
[2017/01/14 14:52:44 | 000,258,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSFLXGRD.OCX
[2017/01/14 14:52:44 | 000,221,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TabCtl32.OCX
[2017/01/14 14:52:44 | 000,218,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RICHTX32.OCX
[2017/01/14 14:49:21 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\python-qbittorrent-0.1.8
[2017/01/14 14:32:31 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Mozilla
[2017/01/14 14:28:11 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\ElevatedDiagnostics
[2017/01/14 14:24:44 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2017/01/14 14:24:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2017/01/14 14:24:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2017/01/14 14:24:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2017/01/14 14:24:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Firefox Developer Edition
[2017/01/14 14:20:47 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Mozilla
[2017/01/14 14:16:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
[2017/01/14 14:16:58 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\SysWow64\pncrt.dll
[2017/01/14 14:16:58 | 000,185,944 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2017/01/14 14:16:58 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2017/01/14 14:16:58 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2017/01/14 14:16:56 | 000,860,160 | ---- | C] (http://www.mp3dev.org/) -- C:\Windows\SysWow64\lameACM.acm
[2017/01/14 14:16:56 | 000,118,784 | ---- | C] (fccHandler) -- C:\Windows\SysWow64\ac3acm.acm
[2017/01/14 14:16:55 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\SysWow64\yv12vfw.dll
[2017/01/14 14:16:55 | 000,081,920 | ---- | C] (DivX, Inc.) -- C:\Windows\SysWow64\dpl100.dll
[2017/01/14 14:16:54 | 000,683,520 | ---- | C] (DivX, Inc.) -- C:\Windows\SysWow64\divx.dll
[2017/01/14 14:16:53 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Real
[2017/01/14 14:16:53 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Real
[2017/01/14 14:16:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2017/01/14 14:16:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
[2017/01/14 14:16:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2017/01/14 14:16:34 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2017/01/14 14:16:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2017/01/14 14:16:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
[2017/01/14 14:16:24 | 000,000,000 | ---D | C] -- C:\ProgramData\ma-config.com
[2017/01/14 14:16:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ma-config.com
[2017/01/14 14:15:18 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2017/01/14 14:15:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ShellExt
[2017/01/14 14:15:15 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2017/01/14 14:15:15 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2017/01/14 14:15:15 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2017/01/14 14:15:15 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2017/01/14 14:15:15 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2017/01/14 14:15:15 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2017/01/14 14:15:14 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2017/01/14 14:15:14 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2017/01/14 14:15:14 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2017/01/14 14:15:14 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2017/01/14 14:15:14 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2017/01/14 14:15:14 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2017/01/14 14:15:14 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2017/01/14 14:15:14 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2017/01/14 14:15:13 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2017/01/14 14:15:13 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2017/01/14 14:15:13 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2017/01/14 14:15:13 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2017/01/14 14:15:13 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2017/01/14 14:15:13 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2017/01/14 14:15:13 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2017/01/14 14:15:13 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2017/01/14 14:15:13 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2017/01/14 14:15:13 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2017/01/14 14:15:13 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2017/01/14 14:15:13 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2017/01/14 14:15:13 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2017/01/14 14:15:13 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2017/01/14 14:15:13 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2017/01/14 14:15:13 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2017/01/14 14:15:12 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2017/01/14 14:15:12 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2017/01/14 14:15:12 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2017/01/14 14:15:12 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2017/01/14 14:15:12 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2017/01/14 14:15:12 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2017/01/14 14:15:12 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2017/01/14 14:15:12 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2017/01/14 14:15:11 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2017/01/14 14:15:11 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2017/01/14 14:15:11 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2017/01/14 14:15:11 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2017/01/14 14:15:11 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2017/01/14 14:15:11 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2017/01/14 14:15:11 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2017/01/14 14:15:11 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2017/01/14 14:15:11 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2017/01/14 14:15:11 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2017/01/14 14:15:10 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2017/01/14 14:15:10 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2017/01/14 14:15:10 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2017/01/14 14:15:10 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2017/01/14 14:15:10 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2017/01/14 14:15:10 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2017/01/14 14:15:10 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2017/01/14 14:15:10 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2017/01/14 14:15:10 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2017/01/14 14:15:10 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2017/01/14 14:15:09 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2017/01/14 14:15:09 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2017/01/14 14:15:09 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2017/01/14 14:15:09 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2017/01/14 14:15:09 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2017/01/14 14:15:09 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2017/01/14 14:15:09 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2017/01/14 14:15:09 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2017/01/14 14:15:09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2017/01/14 14:15:09 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2017/01/14 14:15:09 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2017/01/14 14:15:09 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2017/01/14 14:15:09 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2017/01/14 14:15:09 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2017/01/14 14:15:09 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2017/01/14 14:15:09 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2017/01/14 14:15:09 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2017/01/14 14:15:09 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2017/01/14 14:15:08 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2017/01/14 14:15:08 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2017/01/14 14:15:08 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2017/01/14 14:15:08 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2017/01/14 14:15:08 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2017/01/14 14:15:08 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2017/01/14 14:15:07 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2017/01/14 14:15:07 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2017/01/14 14:15:07 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2017/01/14 14:15:07 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2017/01/14 14:15:07 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2017/01/14 14:15:07 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2017/01/14 14:15:07 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2017/01/14 14:15:07 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2017/01/14 14:15:07 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2017/01/14 14:15:07 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2017/01/14 14:15:07 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2017/01/14 14:15:07 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2017/01/14 14:15:06 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2017/01/14 14:15:06 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2017/01/14 14:15:06 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2017/01/14 14:15:06 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2017/01/14 14:15:06 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2017/01/14 14:15:06 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2017/01/14 14:15:06 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2017/01/14 14:15:06 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2017/01/14 14:15:06 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2017/01/14 14:15:06 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2017/01/14 14:15:05 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2017/01/14 14:15:05 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2017/01/14 14:15:05 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2017/01/14 14:15:05 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2017/01/14 14:15:05 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2017/01/14 14:15:05 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2017/01/14 14:15:05 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2017/01/14 14:15:05 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2017/01/14 14:15:04 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2017/01/14 14:15:04 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2017/01/14 14:15:04 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2017/01/14 14:15:04 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2017/01/14 14:15:04 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2017/01/14 14:15:04 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2017/01/14 14:15:03 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2017/01/14 14:15:03 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2017/01/14 14:15:03 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2017/01/14 14:15:03 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2017/01/14 14:15:03 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2017/01/14 14:15:03 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2017/01/14 14:15:03 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2017/01/14 14:15:03 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2017/01/14 14:15:03 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2017/01/14 14:15:03 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2017/01/14 14:15:02 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2017/01/14 14:15:02 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2017/01/14 14:15:02 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2017/01/14 14:15:02 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2017/01/14 14:15:02 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2017/01/14 14:15:02 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2017/01/14 14:15:01 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2017/01/14 14:15:01 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2017/01/14 14:15:01 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2017/01/14 14:15:01 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2017/01/14 14:15:01 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2017/01/14 14:15:01 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2017/01/14 14:15:01 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2017/01/14 14:15:01 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2017/01/14 14:15:01 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2017/01/14 14:15:01 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2017/01/14 14:15:01 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2017/01/14 14:15:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2017/01/14 14:15:00 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2017/01/14 14:15:00 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2017/01/14 14:15:00 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2017/01/14 14:15:00 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2017/01/14 14:15:00 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2017/01/14 14:15:00 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2017/01/14 14:15:00 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2017/01/14 14:15:00 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2017/01/14 14:14:59 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2017/01/14 14:14:59 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2017/01/14 14:14:59 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2017/01/14 14:14:59 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2017/01/14 14:14:59 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2017/01/14 14:14:59 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2017/01/14 14:14:59 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2017/01/14 14:14:59 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2017/01/14 14:14:59 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2017/01/14 14:14:59 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2017/01/14 14:14:57 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2017/01/14 14:14:57 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2017/01/14 14:14:57 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2017/01/14 14:14:57 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2017/01/14 14:14:57 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2017/01/14 14:14:57 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2017/01/14 14:14:56 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2017/01/14 14:14:56 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2017/01/14 14:14:56 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2017/01/14 14:14:56 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2017/01/14 14:14:56 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2017/01/14 14:14:56 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2017/01/14 14:14:55 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2017/01/14 14:14:55 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2017/01/14 14:14:55 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2017/01/14 14:14:55 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2017/01/14 14:14:55 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2017/01/14 14:14:55 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2017/01/14 14:14:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2017/01/14 14:14:16 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2017/01/14 14:14:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2017/01/14 14:13:52 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2017/01/14 14:13:38 | 000,000,000 | R--D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2017/01/14 14:13:38 | 000,000,000 | R--D | C] -- C:\Users\mouched\Searches
[2017/01/14 14:13:38 | 000,000,000 | R--D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2017/01/14 14:13:38 | 000,000,000 | -H-D | C] -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2017/01/14 14:13:29 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Identities
[2017/01/14 14:13:26 | 000,000,000 | R--D | C] -- C:\Users\mouched\Contacts
[2017/01/14 14:13:16 | 000,000,000 | --SD | C] -- C:\Users\mouched\AppData\Roaming\Microsoft
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Videos
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Saved Games
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Pictures
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Music
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Links
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Favorites
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Downloads
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Documents
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Desktop
[2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Voisinage réseau
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Voisinage d'impression
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\AppData\Local\Temporary Internet Files
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\SendTo
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Recent
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Modèles
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Documents\Mes vidéos
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Documents\Mes images
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Mes documents
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Menu Démarrer
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Documents\Ma musique
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Local Settings
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\AppData\Local\Historique
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Cookies
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Application Data
[2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\AppData\Local\Application Data
[2017/01/14 14:13:16 | 000,000,000 | -H-D | C] -- C:\Users\mouched\AppData
[2017/01/14 14:13:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Temp
[2017/01/14 14:13:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Microsoft
[2017/01/14 14:13:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Media Center Programs
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Recovery
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modèles
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes vidéos
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes images
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Démarrer
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Ma musique
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoris
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureau
[2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2017/01/14 13:45:29 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2017/01/14 13:45:23 | 000,000,000 | ---D | C] -- C:\Windows\CSC

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2017/01/19 10:12:47 | 001,549,700 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2017/01/19 10:12:47 | 000,704,242 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2017/01/19 10:12:47 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2017/01/19 10:12:47 | 000,130,548 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2017/01/19 10:12:47 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2017/01/19 10:11:30 | 000,019,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017/01/19 10:11:30 | 000,019,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017/01/19 10:09:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\mouched\Desktop\OTL.exe
[2017/01/19 10:06:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2017/01/19 10:05:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2017/01/19 08:46:17 | 000,002,292 | ---- | M] () -- C:\Users\Public\Desktop\Driver Booster 4.lnk
[2017/01/18 08:10:34 | 000,001,518 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Application Manager.lnk
[2017/01/18 07:59:08 | 000,001,066 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2017/01/18 07:58:07 | 030,533,688 | ---- | M] () -- C:\Users\mouched\vlc-2.2.4-win32.exe
[2017/01/18 07:56:30 | 011,348,661 | ---- | M] (Denis ROBERT ) -- C:\Users\mouched\Desktop\FreeVCL.exe
[2017/01/17 19:09:51 | 001,771,056 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2017/01/17 19:07:49 | 068,668,549 | ---- | M] () -- C:\Users\mouched\Desktop\Tarage injecteurs IH 1055-1.mp4
[2017/01/17 18:44:58 | 021,849,065 | ---- | M] () -- C:\Users\mouched\Desktop\démontage pompe de tarage 12.mp4
[2017/01/17 18:41:47 | 005,525,505 | ---- | M] () -- C:\Users\mouched\Desktop\tareuse a injecteur.mp4
[2017/01/17 18:38:43 | 017,423,187 | ---- | M] () -- C:\Users\mouched\Desktop\CEFCM - Tarage d'injecteur.mp4
[2017/01/17 18:10:39 | 068,668,549 | ---- | M] () -- C:\Users\mouched\Desktop\Tarage injecteurs IH 1055.mp4
[2017/01/17 18:08:30 | 010,899,901 | ---- | M] () -- C:\Users\mouched\Desktop\Test tarage injecteurs mécaniques.mp4
[2017/01/17 11:50:38 | 002,237,548 | ---- | M] () -- C:\Users\mouched\Desktop\1 copie_modifié-1.jpg
[2017/01/17 11:44:50 | 001,192,830 | ---- | M] () -- C:\Users\mouched\Desktop\1 copie.jpg
[2017/01/17 11:41:03 | 001,657,321 | ---- | M] () -- C:\Users\mouched\Desktop\0190_6232959(1)-1.jpg
[2017/01/17 11:35:25 | 001,657,321 | ---- | M] () -- C:\Users\mouched\Desktop\henr)-1.jpg
[2017/01/17 11:08:42 | 000,405,211 | ---- | M] () -- C:\Users\mouched\Desktop\1 001.jpg
[2017/01/17 10:58:06 | 000,001,896 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Photoshop Elements 11.lnk
[2017/01/17 10:18:29 | 000,002,160 | ---- | M] () -- C:\Users\Public\Desktop\Brother Creative Center.lnk
[2017/01/17 10:18:08 | 000,000,050 | ---- | M] () -- C:\Windows\SysNative\bridf08b.dat
[2017/01/17 10:18:04 | 000,000,434 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2017/01/17 10:13:33 | 050,187,152 | ---- | M] (A.I.SOFT,INC.) -- C:\Users\mouched\DCP-195C-inst-B1-win78.EXE
[2017/01/17 10:00:29 | 000,001,173 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2017/01/17 09:53:42 | 000,493,267 | ---- | M] () -- C:\Users\mouched\Desktop\8627422_0190_6232959(1).pdf
[2017/01/17 09:01:17 | 005,455,526 | ---- | M] (InstallShield Software Corporation) -- C:\Users\mouched\Desktop\acrobat4.exe
[2017/01/17 08:51:08 | 000,305,184 | ---- | M] () -- C:\Users\mouched\Desktop\Avenants_103768818.pdf
[2017/01/16 19:25:52 | 106,705,313 | ---- | M] () -- C:\Users\mouched\Desktop\M.Anti.Malware.2.2.1.1043.Portable.21.08.2016.rar
[2017/01/16 09:08:44 | 000,095,957 | ---- | M] () -- C:\Users\mouched\Desktop\aDSCF8074.jpg
[2017/01/16 09:08:10 | 000,096,489 | ---- | M] () -- C:\Users\mouched\Desktop\aDSCF8079.jpg
[2017/01/15 10:19:25 | 000,002,723 | ---- | M] () -- C:\Users\Public\Desktop\Jasc Paint Shop Pro 9.lnk
[2017/01/15 10:19:25 | 000,002,723 | ---- | M] () -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\Jasc Paint Shop Pro 9.lnk
[2017/01/14 15:43:55 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\MP3jam.lnk
[2017/01/14 15:21:16 | 000,802,904 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2017/01/14 15:21:16 | 000,144,472 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2017/01/14 15:09:49 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl
[2017/01/14 15:08:34 | 015,202,032 | ---- | M] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE3.dll
[2017/01/14 15:08:34 | 003,299,816 | ---- | M] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE2.dll
[2017/01/14 15:08:34 | 002,190,984 | ---- | M] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE.dll
[2017/01/14 15:08:33 | 005,804,772 | ---- | M] () -- C:\Windows\SysNative\drivers\rtvienna.dat
[2017/01/14 15:08:33 | 003,204,096 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2017/01/14 15:08:33 | 003,014,144 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2017/01/14 15:08:33 | 002,995,000 | ---- | M] (DTS, Inc.) -- C:\Windows\SysNative\slcnt64.dll
[2017/01/14 15:08:33 | 002,706,856 | ---- | M] (DTS, Inc.) -- C:\Windows\SysNative\sltech64.dll
[2017/01/14 15:08:33 | 002,110,592 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll
[2017/01/14 15:08:33 | 001,921,016 | ---- | M] () -- C:\Windows\SysNative\drivers\rtkSSTsetting.dat
[2017/01/14 15:08:33 | 001,435,136 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRRPTR64.dll
[2017/01/14 15:08:33 | 001,382,232 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll
[2017/01/14 15:08:33 | 001,337,640 | ---- | M] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tossaeapo64.dll
[2017/01/14 15:08:33 | 001,003,320 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysNative\SEHDHF64.dll
[2017/01/14 15:08:33 | 000,984,912 | ---- | M] (DTS, Inc.) -- C:\Windows\SysNative\sl3apo64.dll
[2017/01/14 15:08:33 | 000,965,016 | ---- | M] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll
[2017/01/14 15:08:33 | 000,962,120 | ---- | M] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tosasfapo64.dll
[2017/01/14 15:08:33 | 000,873,456 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll
[2017/01/14 15:08:33 | 000,865,912 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysWow64\SEHDHF32.dll
[2017/01/14 15:08:33 | 000,859,216 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysNative\SEHDRA64.dll
[2017/01/14 15:08:33 | 000,850,400 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysNative\SECOMN64.dll
[2017/01/14 15:08:33 | 000,721,800 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysWow64\SECOMN32.dll
[2017/01/14 15:08:33 | 000,601,144 | ---- | M] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tossaemaxapo64.dll
[2017/01/14 15:08:33 | 000,571,376 | ---- | M] (Intel Corporation) -- C:\Windows\SysNative\tbb_waves.dll
[2017/01/14 15:08:33 | 000,532,376 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2017/01/14 15:08:33 | 000,499,152 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysNative\SEAPO64.dll
[2017/01/14 15:08:33 | 000,467,152 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRAPO64.dll
[2017/01/14 15:08:33 | 000,447,176 | ---- | M] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\toseaeapo64.dll
[2017/01/14 15:08:33 | 000,381,400 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM64.dll
[2017/01/14 15:08:33 | 000,343,704 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2017/01/14 15:08:33 | 000,341,144 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysWow64\SRCOM.dll
[2017/01/14 15:08:33 | 000,341,144 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM.dll
[2017/01/14 15:08:33 | 000,258,864 | ---- | M] (TODO: <Company name>) -- C:\Windows\SysNative\slprp64.dll
[2017/01/14 15:08:33 | 000,231,912 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
[2017/01/14 15:08:33 | 000,221,960 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2017/01/14 15:08:33 | 000,209,536 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2017/01/14 15:08:33 | 000,166,200 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2017/01/14 15:08:33 | 000,158,696 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll
[2017/01/14 15:08:33 | 000,090,912 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
[2017/01/14 15:08:33 | 000,088,320 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
[2017/01/14 15:08:33 | 000,083,624 | ---- | M] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2017/01/14 15:08:33 | 000,075,536 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll
[2017/01/14 15:08:32 | 072,520,712 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2017/01/14 15:08:32 | 007,704,619 | ---- | M] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2017/01/14 15:08:32 | 003,503,048 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2017/01/14 15:08:32 | 003,201,376 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll
[2017/01/14 15:08:32 | 002,828,432 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysWow64\RltkAPO.dll
[2017/01/14 15:08:32 | 002,201,088 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2017/01/14 15:08:32 | 001,360,512 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2017/01/14 15:08:32 | 000,689,872 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
[2017/01/14 15:08:32 | 000,387,312 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2017/01/14 15:08:32 | 000,321,712 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2017/01/14 15:08:32 | 000,321,712 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2017/01/14 15:08:32 | 000,214,832 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2017/01/14 15:08:32 | 000,192,976 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2017/01/14 15:08:32 | 000,110,984 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2017/01/14 15:08:32 | 000,088,344 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2017/01/14 15:08:32 | 000,023,688 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2017/01/14 15:08:31 | 013,122,576 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO3064.dll
[2017/01/14 15:08:31 | 012,988,336 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO4064.dll
[2017/01/14 15:08:31 | 007,172,912 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
[2017/01/14 15:08:31 | 006,198,136 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICV3apo.dll
[2017/01/14 15:08:31 | 005,793,520 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICV2apo.dll
[2017/01/14 15:08:31 | 005,593,608 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOlfx.dll
[2017/01/14 15:08:31 | 001,003,856 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NahimicAPONSControl.dll
[2017/01/14 15:08:31 | 000,923,736 | ---- | M] (Sony Corporation) -- C:\Windows\SysNative\MISS_APO.dll
[2017/01/14 15:08:31 | 000,677,672 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2017/01/14 15:08:31 | 000,447,712 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
[2017/01/14 15:08:31 | 000,151,784 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
[2017/01/14 15:08:31 | 000,134,200 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
[2017/01/14 15:08:31 | 000,084,616 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
[2017/01/14 15:08:30 | 023,547,544 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRenderAVX64.dll
[2017/01/14 15:08:30 | 023,447,352 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRender64.dll
[2017/01/14 15:08:30 | 014,057,248 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll
[2017/01/14 15:08:30 | 001,334,376 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxSpeechAPO64.dll
[2017/01/14 15:08:30 | 000,999,848 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll
[2017/01/14 15:08:29 | 017,398,616 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioCapture64.dll
[2017/01/14 15:08:29 | 010,532,048 | ---- | M] (Intel Corporation) -- C:\Windows\SysNative\IntelSSTAPO.dll
[2017/01/14 15:08:29 | 002,291,304 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO7064.dll
[2017/01/14 15:08:29 | 002,050,168 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll
[2017/01/14 15:08:29 | 001,422,920 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO6064.dll
[2017/01/14 15:08:29 | 001,213,656 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll
[2017/01/14 15:08:29 | 001,186,816 | ---- | M] (Intel Corporation) -- C:\Windows\SysNative\IntelSstCApoPropPage.dll
[2017/01/14 15:08:29 | 001,166,152 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO4064.dll
[2017/01/14 15:08:29 | 000,931,616 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2017/01/14 15:08:29 | 000,678,176 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2017/01/14 15:08:29 | 000,618,176 | ---- | M] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
[2017/01/14 15:08:29 | 000,588,032 | ---- | M] (ICEpower a/s) -- C:\Windows\SysNative\ICEsoundAPO64.dll
[2017/01/14 15:08:29 | 000,426,568 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\HiFiDAX2APIPCLL.dll
[2017/01/14 15:08:29 | 000,416,504 | ---- | M] (Harman) -- C:\Windows\SysNative\HMUI.dll
[2017/01/14 15:08:29 | 000,366,120 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\HMAPO.dll
[2017/01/14 15:08:29 | 000,360,344 | ---- | M] (Harman) -- C:\Windows\SysNative\HMClariFi.dll
[2017/01/14 15:08:29 | 000,330,560 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2017/01/14 15:08:29 | 000,203,840 | ---- | M] (Harman) -- C:\Windows\SysNative\HMHVS.dll
[2017/01/14 15:08:29 | 000,190,928 | ---- | M] (Harman) -- C:\Windows\SysNative\HMEQ_Voice.dll
[2017/01/14 15:08:29 | 000,190,928 | ---- | M] (Harman) -- C:\Windows\SysNative\HMEQ.dll
[2017/01/14 15:08:29 | 000,179,592 | ---- | M] (Harman) -- C:\Windows\SysNative\HMLimiter.dll
[2017/01/14 15:08:28 | 007,096,184 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64A.dll
[2017/01/14 15:08:28 | 006,264,632 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64AF3.dll
[2017/01/14 15:08:28 | 005,347,000 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOv211.dll
[2017/01/14 15:08:28 | 003,295,064 | ---- | M] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2017/01/14 15:08:28 | 002,444,688 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOv201.dll
[2017/01/14 15:08:28 | 001,965,808 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64A.dll
[2017/01/14 15:08:28 | 001,959,592 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64AF3.dll
[2017/01/14 15:08:28 | 001,780,616 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2017/01/14 15:08:28 | 001,591,056 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2017/01/14 15:08:28 | 001,516,896 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DAX3APOProp.dll
[2017/01/14 15:08:28 | 001,508,928 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2017/01/14 15:08:28 | 001,363,096 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DAX3APOv251.dll
[2017/01/14 15:08:28 | 001,133,584 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOProp.dll
[2017/01/14 15:08:28 | 000,785,608 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOvlldp.dll
[2017/01/14 15:08:28 | 000,743,960 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2017/01/14 15:08:28 | 000,727,432 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2017/01/14 15:08:28 | 000,708,312 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2017/01/14 15:08:28 | 000,514,520 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll
[2017/01/14 15:08:28 | 000,504,304 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2017/01/14 15:08:28 | 000,500,552 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll
[2017/01/14 15:08:28 | 000,445,400 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2017/01/14 15:08:28 | 000,441,264 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2017/01/14 15:08:28 | 000,428,224 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll
[2017/01/14 15:08:28 | 000,378,384 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\HiFiDAX2API.dll
[2017/01/14 15:08:28 | 000,362,048 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64AF3.dll
[2017/01/14 15:08:28 | 000,327,448 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64A.dll
[2017/01/14 15:08:28 | 000,310,416 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64F3.dll
[2017/01/14 15:08:28 | 000,272,712 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64.dll
[2017/01/14 15:08:28 | 000,253,896 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2017/01/14 15:08:28 | 000,253,864 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2017/01/14 15:08:28 | 000,252,872 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2017/01/14 15:08:28 | 000,154,360 | ---- | M] (Harman) -- C:\Windows\SysNative\HarmanAudioInterface.dll
[2017/01/14 15:08:27 | 002,993,712 | ---- | M] (Audyssey Labs) -- C:\Windows\SysNative\AudysseyEfx.dll
[2017/01/14 15:08:27 | 001,615,656 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64APO.dll
[2017/01/14 15:08:27 | 001,529,136 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64Proxy.dll
[2017/01/14 15:08:27 | 000,574,752 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2017/01/14 15:08:27 | 000,438,688 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\SysNative\CAF64APO2.dll
[2017/01/14 15:08:27 | 000,122,320 | ---- | M] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll
[2017/01/14 15:08:27 | 000,118,592 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2017/01/14 15:08:27 | 000,118,592 | ---- | M] () -- C:\Windows\SysNative\AcpiServiceVnA64.dll
[2017/01/14 15:08:27 | 000,112,488 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\SysNative\Caf64api.dll
[2017/01/14 15:08:27 | 000,105,304 | ---- | M] () -- C:\Windows\SysNative\audioLibVc.dll
[2017/01/14 15:08:27 | 000,005,604 | ---- | M] () -- C:\Windows\SysNative\cxapo.lncs
[2017/01/14 15:08:27 | 000,000,736 | ---- | M] () -- C:\Windows\SysNative\cxapo.prop
[2017/01/14 15:04:56 | 009,891,328 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysWow64\RsCRIcon.dll
[2017/01/14 15:04:56 | 004,332,032 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\RtCRU64.exe
[2017/01/14 15:04:56 | 000,418,784 | ---- | M] (Realsil Semiconductor Corporation) -- C:\Windows\SysNative\drivers\RtsUer.sys
[2017/01/14 15:04:56 | 000,084,480 | ---- | M] (Realtek Semiconductor.) -- C:\Windows\SysNative\RtCRX64.dll
[2017/01/14 15:04:41 | 000,467,736 | ---- | M] (Broadcom Limited) -- C:\Windows\SysNative\drivers\b57nd60a.sys
[2017/01/14 15:04:24 | 000,011,944 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\drivers\amdide64.sys
[2017/01/14 15:00:15 | 000,027,552 | ---- | M] (REALiX(tm)) -- C:\Windows\SysWow64\drivers\HWiNFO64A.SYS
[2017/01/14 14:55:01 | 000,225,280 | -H-- | M] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe
[2017/01/14 14:54:02 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2017/01/14 14:52:44 | 000,258,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MSFLXGRD.OCX
[2017/01/14 14:52:44 | 000,221,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\TabCtl32.OCX
[2017/01/14 14:52:44 | 000,218,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RICHTX32.OCX
[2017/01/14 14:31:59 | 000,000,000 | -H-- | M] () -- C:\Users\mouched\Documents\Default.rdp
[2017/01/14 14:24:07 | 000,001,233 | ---- | M] () -- C:\Users\Public\Desktop\Firefox Developer Edition.lnk
[2017/01/14 14:17:17 | 000,508,472 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2017/01/14 14:16:30 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2017/01/14 13:47:39 | 000,057,704 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2017/01/14 13:47:39 | 000,057,704 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2017/01/14 13:46:38 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2017/01/14 13:46:38 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\atiicdxx.dat
[2017/01/14 12:54:53 | 001,310,336 | ---- | M] () -- C:\Users\mouched\Desktop\der nier 2017bookmarks.html
[2016/11/27 15:26:52 | 1182,872,146 | ---- | M] () -- C:\Users\mouched\Desktop\Adobe Photoshop Elements 11.0 Multilingual+Patch+Keygen.tgz

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2017/01/18 08:10:34 | 000,001,530 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
[2017/01/18 08:10:34 | 000,001,518 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Application Manager.lnk
[2017/01/18 07:59:08 | 000,001,066 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2017/01/18 07:57:27 | 030,533,688 | ---- | C] () -- C:\Users\mouched\vlc-2.2.4-win32.exe
[2017/01/17 18:56:20 | 068,668,549 | ---- | C] () -- C:\Users\mouched\Desktop\Tarage injecteurs IH 1055-1.mp4
[2017/01/17 18:44:24 | 021,849,065 | ---- | C] () -- C:\Users\mouched\Desktop\démontage pompe de tarage 12.mp4
[2017/01/17 18:41:19 | 005,525,505 | ---- | C] () -- C:\Users\mouched\Desktop\tareuse a injecteur.mp4
[2017/01/17 18:38:01 | 017,423,187 | ---- | C] () -- C:\Users\mouched\Desktop\CEFCM - Tarage d'injecteur.mp4
[2017/01/17 18:07:36 | 010,899,901 | ---- | C] () -- C:\Users\mouched\Desktop\Test tarage injecteurs mécaniques.mp4
[2017/01/17 18:05:29 | 068,668,549 | ---- | C] () -- C:\Users\mouched\Desktop\Tarage injecteurs IH 1055.mp4
[2017/01/17 11:50:33 | 002,237,548 | ---- | C] () -- C:\Users\mouched\Desktop\1 copie_modifié-1.jpg
[2017/01/17 11:44:44 | 001,192,830 | ---- | C] () -- C:\Users\mouched\Desktop\1 copie.jpg
[2017/01/17 11:40:52 | 001,657,321 | ---- | C] () -- C:\Users\mouched\Desktop\0190_6232959(1)-1.jpg
[2017/01/17 11:35:19 | 001,657,321 | ---- | C] () -- C:\Users\mouched\Desktop\henr)-1.jpg
[2017/01/17 11:08:42 | 000,405,211 | ---- | C] () -- C:\Users\mouched\Desktop\1 001.jpg
[2017/01/17 10:58:06 | 000,001,912 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Elements 11.lnk
[2017/01/17 10:58:06 | 000,001,896 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Photoshop Elements 11.lnk
[2017/01/17 10:18:29 | 000,002,160 | ---- | C] () -- C:\Users\Public\Desktop\Brother Creative Center.lnk
[2017/01/17 10:18:08 | 000,000,050 | ---- | C] () -- C:\Windows\SysNative\bridf08b.dat
[2017/01/17 10:18:04 | 000,000,434 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2017/01/17 09:54:51 | 1182,872,146 | ---- | C] () -- C:\Users\mouched\Desktop\Adobe Photoshop Elements 11.0 Multilingual+Patch+Keygen.tgz
[2017/01/17 09:53:39 | 000,493,267 | ---- | C] () -- C:\Users\mouched\Desktop\8627422_0190_6232959(1).pdf
[2017/01/17 08:51:05 | 000,305,184 | ---- | C] () -- C:\Users\mouched\Desktop\Avenants_103768818.pdf
[2017/01/16 09:08:43 | 000,095,957 | ---- | C] () -- C:\Users\mouched\Desktop\aDSCF8074.jpg
[2017/01/16 09:08:10 | 000,096,489 | ---- | C] () -- C:\Users\mouched\Desktop\aDSCF8079.jpg
[2017/01/15 12:15:26 | 106,705,313 | ---- | C] () -- C:\Users\mouched\Desktop\M.Anti.Malware.2.2.1.1043.Portable.21.08.2016.rar
[2017/01/15 10:20:50 | 000,002,723 | ---- | C] () -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\Jasc Paint Shop Pro 9.lnk
[2017/01/15 10:20:49 | 000,002,723 | ---- | C] () -- C:\Users\Public\Desktop\Jasc Paint Shop Pro 9.lnk
[2017/01/15 09:53:44 | 105,420,275 | ---- | C] () -- C:\Users\mouched\Desktop\paint shop pro9 fr.rar
[2017/01/15 09:32:15 | 000,565,244 | ---- | C] () -- C:\Users\mouched\Desktop\google earth pro 2012 cracked full version pass=24 .rar
[2017/01/14 15:43:55 | 000,000,979 | ---- | C] () -- C:\Users\Public\Desktop\MP3jam.lnk
[2017/01/14 15:16:35 | 000,002,292 | ---- | C] () -- C:\Users\Public\Desktop\Driver Booster 4.lnk
[2017/01/14 15:11:50 | 000,001,002 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2017/01/14 15:09:49 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2017/01/14 15:08:33 | 005,804,772 | ---- | C] () -- C:\Windows\SysNative\drivers\rtvienna.dat
[2017/01/14 15:08:33 | 001,921,016 | ---- | C] () -- C:\Windows\SysNative\drivers\rtkSSTsetting.dat
[2017/01/14 15:08:32 | 007,704,619 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2017/01/14 15:08:27 | 000,118,592 | ---- | C] () -- C:\Windows\SysNative\AcpiServiceVnA64.dll
[2017/01/14 15:08:27 | 000,105,304 | ---- | C] () -- C:\Windows\SysNative\audioLibVc.dll
[2017/01/14 15:08:27 | 000,005,604 | ---- | C] () -- C:\Windows\SysNative\cxapo.lncs
[2017/01/14 15:08:27 | 000,000,736 | ---- | C] () -- C:\Windows\SysNative\cxapo.prop
[2017/01/14 14:55:01 | 000,225,280 | -H-- | C] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe
[2017/01/14 14:54:02 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2017/01/14 14:31:59 | 000,000,000 | -H-- | C] () -- C:\Users\mouched\Documents\Default.rdp
[2017/01/14 14:24:07 | 000,001,245 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk
[2017/01/14 14:24:07 | 000,001,233 | ---- | C] () -- C:\Users\Public\Desktop\Firefox Developer Edition.lnk
[2017/01/14 14:22:54 | 001,310,336 | ---- | C] () -- C:\Users\mouched\Desktop\der nier 2017bookmarks.html
[2017/01/14 14:17:17 | 000,508,472 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2017/01/14 14:16:57 | 000,164,352 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2017/01/14 14:16:57 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2017/01/14 14:16:56 | 000,000,414 | ---- | C] () -- C:\Windows\SysWow64\lame_acm.xml
[2017/01/14 14:16:55 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2017/01/14 14:16:55 | 000,755,027 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2017/01/14 14:16:55 | 000,159,839 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2017/01/14 14:16:54 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2017/01/14 14:13:16 | 000,000,290 | ---- | C] () -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2017/01/14 14:13:16 | 000,000,272 | ---- | C] () -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2017/01/14 13:46:38 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2017/01/14 13:46:38 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 02:41:54 | 014,160,384 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010/07/27 15:03:24 | 012,867,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== LOP Check ==========[/color]

[2017/01/14 15:00:15 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\IObit
[2017/01/14 15:47:09 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Mp3jam
[2017/01/17 10:07:52 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\No Company Name
[2017/01/18 20:59:54 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\ZHP

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color]

[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color]

[color=#A23BEC]< %APPDATA%\*. >[/color]
[2017/01/17 11:38:21 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Adobe
[2017/01/14 14:13:29 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Identities
[2017/01/17 10:16:37 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\InstallShield
[2017/01/14 15:00:15 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\IObit
[2017/01/15 10:19:06 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Jasc Software Inc
[2017/01/15 08:38:17 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Macromedia
[2009/07/14 16:35:02 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Media Center Programs
[2017/01/15 09:52:54 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Media Player Classic
[2017/01/15 08:38:17 | 000,000,000 | --SD | M] -- C:\Users\mouched\AppData\Roaming\Microsoft
[2017/01/14 14:32:42 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Mozilla
[2017/01/14 15:47:09 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Mp3jam
[2017/01/17 10:07:52 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\No Company Name
[2017/01/14 14:16:53 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Real
[2017/01/18 08:01:51 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\vlc
[2017/01/14 14:59:25 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\WinRAR
[2017/01/18 20:59:54 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\ZHP

[color=#A23BEC]< %APPDATA%\*.exe /s >[/color]
[2017/01/14 14:55:01 | 000,225,280 | -H-- | M] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe
[2017/01/18 20:55:15 | 002,105,344 | ---- | M] () -- C:\Users\mouched\AppData\Roaming\ZHP\ZHPDiag3.exe

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

[color=#A23BEC]< MD5 for: ALG.EXE >[/color]
[2009/07/14 02:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=3290D6946B5E30E70414990574883DDB -- C:\Windows\SysNative\alg.exe
[2009/07/14 02:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=3290D6946B5E30E70414990574883DDB -- C:\Windows\winsxs\amd64_microsoft-windows-alg_31bf3856ad364e35_6.1.7600.16385_none_04de43c774cf8fe3\alg.exe

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys

[color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009/07/14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

[color=#A23BEC]< MD5 for: CSRSS.EXE >[/color]
[2009/07/14 02:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\SysNative\csrss.exe
[2009/07/14 02:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\winsxs\amd64_microsoft-windows-csrss_31bf3856ad364e35_6.1.7600.16385_none_b4d8d57efdc6b4f3\csrss.exe

[color=#A23BEC]< MD5 for: CTFMON.EXE >[/color]
[2009/07/14 02:39:02 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=42B6A94DD747DF2B5F628A2752E62A98 -- C:\Windows\SysNative\ctfmon.exe
[2009/07/14 02:39:02 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=42B6A94DD747DF2B5F628A2752E62A98 -- C:\Windows\winsxs\amd64_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_f9257e7aaa4290ce\ctfmon.exe
[2009/07/14 02:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4A3CDCEF8ED41B221F3DBEF5792FB52D -- C:\Windows\SysWOW64\ctfmon.exe
[2009/07/14 02:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4A3CDCEF8ED41B221F3DBEF5792FB52D -- C:\Windows\winsxs\x86_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_9d06e2f6f1e51f98\ctfmon.exe

[color=#A23BEC]< MD5 for: DISK.SYS >[/color]
[2009/07/14 02:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\SysNative\drivers\disk.sys
[2009/07/14 02:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\SysNative\DriverStore\FileRepository\disk.inf_amd64_neutral_10ce25bbc5a9cc43\disk.sys
[2009/07/14 02:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\winsxs\amd64_disk.inf_31bf3856ad364e35_6.1.7600.16385_none_55bb738b8ddd8a01\disk.sys

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009/08/03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009/08/03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=B6E7FEE1CAE4895CC6C644F0244F7591 -- C:\Windows\explorer.exe
[2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=B6E7FEE1CAE4895CC6C644F0244F7591 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=B6E7FEE1CAE4895CC6C644F0244F7591 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/10/31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/10/31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009/08/03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

[color=#A23BEC]< MD5 for: I8042PRT.SYS >[/color]
[2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\SysNative\drivers\i8042prt.sys
[2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\SysNative\DriverStore\FileRepository\keyboard.inf_amd64_neutral_423c286802951189\i8042prt.sys
[2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\SysNative\DriverStore\FileRepository\msmouse.inf_amd64_neutral_7a5f47d3150cc0eb\i8042prt.sys
[2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\winsxs\amd64_keyboard.inf_31bf3856ad364e35_6.1.7600.16385_none_f3435f7ff2a9f325\i8042prt.sys
[2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\winsxs\amd64_msmouse.inf_31bf3856ad364e35_6.1.7600.16385_none_aa28fd23ec0c39f9\i8042prt.sys

[color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
[2009/07/14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2009/07/14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

[color=#A23BEC]< MD5 for: INTELIDE.SYS >[/color]
[2009/07/14 02:48:04 | 000,016,960 | ---- | M] (Microsoft Corporation) MD5=F00F20E70C6EC3AA366910083A0518AA -- C:\Windows\SysNative\drivers\intelide.sys
[2009/07/14 02:48:04 | 000,016,960 | ---- | M] (Microsoft Corporation) MD5=F00F20E70C6EC3AA366910083A0518AA -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\intelide.sys
[2009/07/14 02:48:04 | 000,016,960 | ---- | M] (Microsoft Corporation) MD5=F00F20E70C6EC3AA366910083A0518AA -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\intelide.sys

[color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color]
[2009/07/14 02:48:27 | 000,094,784 | ---- | M] (Microsoft Corporation) MD5=791AF66C4D0E7C90A3646066386FB571 -- C:\Windows\SysNative\drivers\mountmgr.sys
[2009/07/14 02:48:27 | 000,094,784 | ---- | M] (Microsoft Corporation) MD5=791AF66C4D0E7C90A3646066386FB571 -- C:\Windows\winsxs\amd64_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.1.7600.16385_none_4e8d166d20b6ca3b\mountmgr.sys

[color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color]
[2010/02/27 08:52:22 | 000,157,696 | ---- | M] (Microsoft Corporation) MD5=767A4C3BCF9410C286CED15A2DB17108 -- C:\Windows\SysNative\drivers\mrxsmb.sys
[2010/02/27 08:52:22 | 000,157,696 | ---- | M] (Microsoft Corporation) MD5=767A4C3BCF9410C286CED15A2DB17108 -- C:\Windows\winsxs\amd64_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7600.16539_none_dbc0736c6aa249bf\mrxsmb.sys
[2010/02/27 08:52:14 | 000,157,696 | ---- | M] (Microsoft Corporation) MD5=968613CC6C0F7427FAC62ACED6F7B8C5 -- C:\Windows\winsxs\amd64_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7600.20655_none_dc306f3783d3bc0f\mrxsmb.sys
[2009/07/14 00:24:00 | 000,157,184 | ---- | M] (Microsoft Corporation) MD5=CFDCD8CA87C2A657DEBC150AC35B5E08 -- C:\Windows\winsxs\amd64_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7600.16385_none_db865edc6ace75ca\mrxsmb.sys

[color=#A23BEC]< MD5 for: MRXSMB10.SYS >[/color]
[2009/07/14 00:24:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=1BEE517B220B7F024F411AEC1571DD5A -- C:\Windows\winsxs\amd64_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7600.16385_none_e4997d30651fb42c\mrxsmb10.sys
[2010/02/27 08:52:17 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=2DD6A56A8C7B58F3181C98E536A327B2 -- C:\Windows\winsxs\amd64_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7600.20655_none_e5438d8b7e24fa71\mrxsmb10.sys
[2010/02/27 08:52:29 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=920EE0FF995FCFDEB08C41605A959E1C -- C:\Windows\SysNative\drivers\mrxsmb10.sys
[2010/02/27 08:52:29 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=920EE0FF995FCFDEB08C41605A959E1C -- C:\Windows\winsxs\amd64_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7600.16539_none_e4d391c064f38821\mrxsmb10.sys

[color=#A23BEC]< MD5 for: MRXSMB20.SYS >[/color]
[2010/02/27 08:52:12 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=00716986E11C4F6A53E1177683D1DB20 -- C:\Windows\winsxs\amd64_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7600.20655_none_e779f79dbc7c2de2\mrxsmb20.sys
[2009/07/14 00:24:06 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=6B2D5FEF385828B6E485C1C90AFB8195 -- C:\Windows\winsxs\amd64_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7600.16385_none_e6cfe742a376e79d\mrxsmb20.sys
[2010/02/27 08:52:28 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=740D7EA9D72C981510A5292CF6ADC941 -- C:\Windows\SysNative\drivers\mrxsmb20.sys
[2010/02/27 08:52:28 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=740D7EA9D72C981510A5292CF6ADC941 -- C:\Windows\winsxs\amd64_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7600.16539_none_e709fbd2a34abb92\mrxsmb20.sys

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2009/07/14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009/07/14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2009/07/14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009/07/14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

[color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
[2009/07/14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys
[2009/07/14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

[color=#A23BEC]< MD5 for: RASACD.SYS >[/color]
[2009/07/14 01:10:09 | 000,014,848 | ---- | M] (Microsoft Corporation) MD5=5A0DA8AD5762FA2D91678A8A01311704 -- C:\Windows\SysNative\drivers\rasacd.sys
[2009/07/14 01:10:09 | 000,014,848 | ---- | M] (Microsoft Corporation) MD5=5A0DA8AD5762FA2D91678A8A01311704 -- C:\Windows\winsxs\amd64_microsoft-windows-rasautodial_31bf3856ad364e35_6.1.7600.16385_none_6bcef05d7f04260a\rasacd.sys

[color=#A23BEC]< MD5 for: RDPCDD.SYS >[/color]
[2009/07/14 01:16:34 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=CEA6CC257FC9B7715F1C2B4849286D24 -- C:\Windows\SysNative\drivers\RDPCDD.sys
[2009/07/14 01:16:34 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=CEA6CC257FC9B7715F1C2B4849286D24 -- C:\Windows\winsxs\amd64_microsoft-windows-t..niportdisplaydriver_31bf3856ad364e35_6.1.7600.16385_none_30d015c257effe8b\RDPCDD.sys

[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009/07/14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

[color=#A23BEC]< MD5 for: SERVICES.EXE >[/color]
[2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

[color=#A23BEC]< MD5 for: SMSS.EXE >[/color]
[2009/07/14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009/07/14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

[color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color]
[2010/08/20 06:38:12 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=8547491BE7086EE317163365D83A37D2 -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.20785_none_32ca3745f45762fc\spoolsv.exe
[2009/07/14 02:39:44 | 000,558,080 | ---- | M] (Microsoft Corporation) MD5=89E8550C5862999FCF482EA562B0E98E -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_324094c8db39cbbd\spoolsv.exe
[2010/08/21 07:29:47 | 000,558,592 | ---- | M] (Microsoft Corporation) MD5=F8E1FA03CB70D54A9892AC88B91D1E7B -- C:\Windows\SysNative\spoolsv.exe
[2010/08/21 07:29:47 | 000,558,592 | ---- | M] (Microsoft Corporation) MD5=F8E1FA03CB70D54A9892AC88B91D1E7B -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16661_none_3252392adb2d25f4\spoolsv.exe

[color=#A23BEC]< MD5 for: STORPORT.SYS >[/color]
[2009/07/14 02:45:55 | 000,185,936 | ---- | M] (Microsoft Corporation) MD5=141E6F0B54DA421B8DE146F5AD947760 -- C:\Windows\SysNative\drivers\storport.sys
[2009/07/14 02:45:55 | 000,185,936 | ---- | M] (Microsoft Corporation) MD5=141E6F0B54DA421B8DE146F5AD947760 -- C:\Windows\winsxs\amd64_microsoft-windows-storport_31bf3856ad364e35_6.1.7600.16385_none_8371405049dfec7a\storport.sys

[color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

[color=#A23BEC]< MD5 for: TCPIP.SYS >[/color]
[2010/06/14 07:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010/06/14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010/06/14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009/07/14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys

[color=#A23BEC]< MD5 for: TERMDD.SYS >[/color]
[2009/07/14 02:45:55 | 000,062,544 | ---- | M] (Microsoft Corporation) MD5=C448651339196C0E869A355171875522 -- C:\Windows\SysNative\drivers\termdd.sys
[2009/07/14 02:45:55 | 000,062,544 | ---- | M] (Microsoft Corporation) MD5=C448651339196C0E869A355171875522 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\termdd.sys
[2009/07/14 02:45:55 | 000,062,544 | ---- | M] (Microsoft Corporation) MD5=C448651339196C0E869A355171875522 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\termdd.sys

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe

[color=#A23BEC]< MD5 for: WIN32K.SYS >[/color]
[2014/09/15 01:44:17 | 003,195,392 | ---- | M] (Microsoft Corporation) MD5=6A7A217A6514BE39E78A7BF58C06F712 -- C:\Windows\SoftwareDistribution\Download\b684a20cb169e2d8e73f9795f2978b93\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.17633_none_151c6953b411231a\win32k.sys
[2010/10/20 04:25:10 | 003,126,272 | ---- | M] (Microsoft Corporation) MD5=7E5E9C8FC212ABBF72D87AF3370D8D35 -- C:\Windows\winsxs\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.20821_none_15aeee24cd2857cb\win32k.sys
[2010/10/20 04:09:15 | 003,124,224 | ---- | M] (Microsoft Corporation) MD5=A94AAAE340658B6C29091B9FD74D2317 -- C:\Windows\SysNative\win32k.sys
[2010/10/20 04:09:15 | 003,124,224 | ---- | M] (Microsoft Corporation) MD5=A94AAAE340658B6C29091B9FD74D2317 -- C:\Windows\winsxs\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.16691_none_14d99fffb4437e71\win32k.sys
[2014/09/15 02:01:24 | 003,200,512 | ---- | M] (Microsoft Corporation) MD5=BC4E4FDB701C1E9E739EFAE0456ED10D -- C:\Windows\SoftwareDistribution\Download\b684a20cb169e2d8e73f9795f2978b93\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.21838_none_15ab0976cd2a3ebe\win32k.sys
[2009/07/14 00:40:40 | 003,122,176 | ---- | M] (Microsoft Corporation) MD5=CBEF2EB83438ED9FC39411CC8378B0E7 -- C:\Windows\winsxs\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.16385_none_14e86b61b437d067\win32k.sys

[color=#A23BEC]< MD5 for: WININIT.EXE >[/color]
[2009/07/14 02:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\SysNative\wininit.exe
[2009/07/14 02:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe
[2009/07/14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\SysWOW64\wininit.exe
[2009/07/14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2009/07/14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]

< End of report >

Publicité

Signaler le contenu de ce document

Publicité