cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 2017-11-13 20:50:59 - Run
OTLPE by OldTimer - Version 3.1.29.0 Folder = Y:\Programs\OTLPE
64bit-Windows 7 Professional Service Pack 1 (Version = 6.1.7601) - Type = System
Internet Explorer (Version = 9.11.9600.18816)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 73,00% Memory free
3,00 Gb Paging File | 2,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 906,12 Gb Total Space | 389,33 Gb Free Space | 42,97% Space Free | Partition Type: NTFS
Drive D: | 100,00 Mb Total Space | 70,19 Mb Free Space | 70,19% Space Free | Partition Type: NTFS
Drive E: | 25,29 Gb Total Space | 0,94 Gb Free Space | 3,70% Space Free | Partition Type: NTFS
Drive F: | 1,96 Gb Total Space | 1,96 Gb Free Space | 100,00% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 256,71 Mb Total Space | 254,28 Mb Free Space | 99,05% Space Free | Partition Type: NTFS
Drive Y: | 548,00 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: MININT-PEWJ52
Current User Name: Système
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
Using ControlSet: ControlSet001

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2017-11-01 12:58:30 | 000,051,016 | ---- | M] (Dropbox, Inc.) [Auto] -- C:\Windows\System32\DbxSvc.exe -- (DbxSvc)
SRV:[b]64bit:[/b] - [2017-09-13 16:27:55 | 000,034,816 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV:[b]64bit:[/b] - [2017-09-07 22:01:30 | 000,116,224 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2017-09-07 16:32:18 | 000,083,768 | ---- | M] (Apple Inc.) [Disabled] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device Service)
SRV:[b]64bit:[/b] - [2017-08-07 10:25:08 | 006,058,960 | ---- | M] (Malwarebytes) [On_Demand] -- C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe -- (MBAMService)
SRV:[b]64bit:[/b] - [2017-05-12 16:58:45 | 001,180,160 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV:[b]64bit:[/b] - [2016-08-22 17:19:43 | 001,386,496 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2015-08-12 16:03:42 | 000,462,096 | ---- | M] (Apple Inc.) [Disabled] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV:[b]64bit:[/b] - [2014-01-28 03:32:46 | 000,228,864 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV:[b]64bit:[/b] - [2013-11-08 11:26:14 | 001,141,360 | ---- | M] (Paramount Software UK Ltd) [Disabled] -- C:\Program Files\Macrium\Reflect\ReflectService.exe -- (ReflectService.exe)
SRV:[b]64bit:[/b] - [2013-05-27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2013-05-08 15:09:34 | 003,385,584 | ---- | M] (Intel® Corporation) [Disabled] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService) Intel(R)
SRV:[b]64bit:[/b] - [2013-05-08 15:09:26 | 000,273,136 | ---- | M] () [Disabled] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:[b]64bit:[/b] - [2013-05-08 15:09:18 | 000,621,296 | ---- | M] (Intel(R) Corporation) [Disabled] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) Intel(R)
SRV:[b]64bit:[/b] - [2013-05-08 15:09:06 | 000,149,744 | ---- | M] (Intel(R) Corporation) [Disabled] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) Intel(R)
SRV:[b]64bit:[/b] - [2013-04-11 02:12:50 | 000,772,064 | ---- | M] (Intel Corporation) [Disabled] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:[b]64bit:[/b] - [2012-10-02 20:50:57 | 000,891,240 | ---- | M] (NVIDIA Corporation) [Disabled] -- C:\Windows\System32\nvvsvc.exe -- (nvsvc)
SRV:[b]64bit:[/b] - [2012-10-01 14:36:42 | 001,255,736 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV:[b]64bit:[/b] - [2012-09-12 18:07:06 | 000,135,984 | ---- | M] (Intel(R) Corporation) [Disabled] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr) Intel(R) Centrino(R) Wireless Bluetooth(R)
SRV:[b]64bit:[/b] - [2012-07-17 15:14:44 | 002,292,480 | ---- | M] (Microsoft Corp.) [Auto] -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV:[b]64bit:[/b] - [2012-02-02 14:29:52 | 000,628,448 | ---- | M] (Intel(R) Corporation) [Disabled] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R) Capability Licensing Service Interface) Intel(R)
SRV:[b]64bit:[/b] - [2011-09-23 15:20:42 | 000,079,664 | ---- | M] (Diskeeper Corporation) [Disabled] -- C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe -- (ExpressCache)
SRV:[b]64bit:[/b] - [2011-04-13 15:08:04 | 000,066,048 | ---- | M] (Hewlett-Packard) [Disabled] -- C:\Windows\System32\HPZipm12.dll -- (Pml Driver HPZ12)
SRV:[b]64bit:[/b] - [2011-04-13 15:08:00 | 000,050,688 | ---- | M] (Hewlett-Packard) [Auto] -- C:\Windows\System32\HPZinw12.dll -- (Net Driver HPZ12)
SRV:[b]64bit:[/b] - [2011-01-10 14:45:00 | 000,231,280 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Home Server\Microsoft.HomeServer.Archive.TransferService.exe -- (arXfrSvc)
SRV:[b]64bit:[/b] - [2011-01-10 14:44:44 | 000,109,936 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Home Server\esClient.exe -- (esClient)
SRV:[b]64bit:[/b] - [2011-01-10 14:44:38 | 000,490,352 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Home Server\WHSConnector.exe -- (WHSConnector)
SRV:[b]64bit:[/b] - [2010-11-21 04:25:14 | 001,504,256 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\windows\System32\wbengine.exe -- (wbengine)
SRV:[b]64bit:[/b] - [2010-11-21 04:25:14 | 000,689,152 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\FXSSVC.exe -- (Fax)
SRV:[b]64bit:[/b] - [2010-11-21 04:25:07 | 000,214,528 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\umrdp.dll -- (UmRdpService)
SRV:[b]64bit:[/b] - [2010-11-21 04:24:51 | 000,232,448 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV:[b]64bit:[/b] - [2010-11-21 04:24:51 | 000,187,904 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV:[b]64bit:[/b] - [2010-11-21 04:24:41 | 000,692,224 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\cscsvc.dll -- (CscService)
SRV:[b]64bit:[/b] - [2010-11-21 04:24:34 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV)
SRV:[b]64bit:[/b] - [2010-11-21 04:24:00 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2010-11-21 04:23:56 | 003,524,608 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV:[b]64bit:[/b] - [2010-01-21 17:13:58 | 051,445,112 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV:[b]64bit:[/b] - [2010-01-09 19:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV:[b]64bit:[/b] - [2010-01-09 19:20:56 | 000,174,440 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose64)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:56 | 000,202,240 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:56 | 000,163,840 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\umpo.dll -- (Power)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:54 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:54 | 000,029,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:54 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 000,327,168 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 000,327,168 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 000,067,072 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV:[b]64bit:[/b] - [2009-07-14 02:40:28 | 000,291,328 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:40:13 | 000,083,968 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\bthserv.dll -- (bthserv)
SRV:[b]64bit:[/b] - [2009-07-14 02:40:10 | 000,100,864 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\appmgmts.dll -- (AppMgmt)
SRV - [2017-10-27 09:35:19 | 000,194,000 | ---- | M] (Mozilla Foundation) [Disabled] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2017-10-25 20:57:54 | 000,272,384 | ---- | M] (Adobe Systems Incorporated) [Disabled] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2017-10-09 15:14:46 | 001,085,968 | ---- | M] (Garmin Ltd. or its subsidiaries) [Disabled] -- C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe -- (Garmin Device Interaction Service)
SRV - [2017-10-06 13:15:12 | 000,490,968 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- C:\Program Files (x86)\Avira\Antivirus\sched.exe -- (AntiVirSchedulerService)
SRV - [2017-10-06 13:15:05 | 001,525,240 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe -- (AntiVirWebService)
SRV - [2017-10-06 13:15:03 | 001,128,432 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe -- (AntiVirMailService)
SRV - [2017-10-06 13:15:02 | 000,490,968 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- C:\Program Files (x86)\Avira\Antivirus\avguard.exe -- (AntiVirService)
SRV - [2017-09-27 08:04:08 | 000,323,952 | ---- | M] (HP Inc.) [Auto] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe -- (HPSupportSolutionsFrameworkService)
SRV - [2017-08-23 11:51:32 | 002,257,016 | ---- | M] (Adobe Systems, Incorporated) [Disabled] -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe -- (AGSService)
SRV - [2017-07-19 22:50:40 | 000,083,032 | ---- | M] (Adobe Systems Incorporated) [Disabled] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2017-05-10 15:12:40 | 000,294,912 | ---- | M] () [Disabled] -- C:\ProgramData\myCANAL\nssm.exe -- (myCANAL Server)
SRV - [2017-04-21 13:53:36 | 000,107,656 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2017-04-21 13:50:56 | 000,128,648 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2017-04-21 13:50:56 | 000,052,856 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2016-10-04 16:07:48 | 003,296,104 | ---- | M] (Samsung Electronics Co., Ltd.) [Disabled] -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe -- (SWUpdateService)
SRV - [2016-07-26 17:30:32 | 001,206,312 | ---- | M] (Motorola Solutions, Inc.) [Disabled] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2016-07-26 17:30:22 | 001,714,216 | ---- | M] (Motorola Solutions, Inc.) [Disabled] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2016-07-26 17:30:14 | 001,165,352 | ---- | M] (Motorola Solutions, Inc.) [Disabled] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2016-04-16 17:24:31 | 000,143,144 | ---- | M] (Dropbox, Inc.) [Disabled] -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe -- (dbupdatem) Service Mise à jour Dropbox (dbupdatem)
SRV - [2016-04-16 17:24:31 | 000,143,144 | ---- | M] (Dropbox, Inc.) [Disabled] -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe -- (dbupdate) Service Mise à jour Dropbox (dbupdate)
SRV - [2016-03-23 18:08:24 | 000,327,808 | R--- | M] (Skype Technologies) [Disabled] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015-08-29 05:53:58 | 000,144,200 | ---- | M] (Google Inc.) [Disabled] -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe -- (gupdatem) Service Google Update (gupdatem)
SRV - [2015-08-29 05:53:58 | 000,144,200 | ---- | M] (Google Inc.) [Disabled] -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe -- (gupdate) Service Google Update (gupdate)
SRV - [2014-09-15 13:48:32 | 000,729,608 | ---- | M] (Orange SA) [Disabled] -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe -- (Orange update Core Service)
SRV - [2014-09-15 10:01:40 | 001,970,544 | ---- | M] () [Disabled] -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe -- (Dedicarz Service)
SRV - [2014-03-20 23:50:31 | 000,090,776 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2012-10-08 11:42:54 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Disabled] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012-09-12 15:58:46 | 001,512,448 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2012-05-02 20:02:16 | 000,164,864 | ---- | M] (HP) [Disabled] -- C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe -- (HP LaserJet Service)
SRV - [2012-02-13 15:02:24 | 000,031,624 | ---- | M] () [Auto] -- C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe -- (SamsungDeviceConfigurationWinService)
SRV - [2012-02-08 03:03:36 | 000,363,800 | ---- | M] (Intel Corporation) [Disabled] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2012-02-08 03:03:34 | 000,277,784 | ---- | M] (Intel Corporation) [Disabled] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2012-02-08 03:03:28 | 000,128,280 | ---- | M] () [Disabled] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R) ME Service) Intel(R)
SRV - [2012-02-08 03:03:16 | 000,161,560 | ---- | M] (Intel Corporation) [Disabled] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service) Intel(R)
SRV - [2012-02-02 18:34:42 | 000,274,200 | ---- | M] (Intel Corporation) [Disabled] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs) Intel(R)
SRV - [2011-10-17 14:51:54 | 000,013,824 | ---- | M] (Hewlett-Packard Company) [Disabled] -- C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe -- (HP DS Service)
SRV - [2011-05-09 23:46:34 | 000,136,120 | ---- | M] (Google) [Disabled] -- C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2010-11-21 04:25:10 | 000,165,376 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
SRV - [2010-11-21 04:24:09 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV - [2010-11-20 13:21:36 | 000,351,232 | ---- | M] (Microsoft Corporation) [On_Demand] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2010-07-06 10:07:24 | 000,188,416 | ---- | M] (Canal+ Active) [Disabled] -- C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe -- (CanalPlus.VOD)
SRV - [2010-03-10 13:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Disabled] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2009-12-01 08:21:48 | 000,244,904 | ---- | M] () [Disabled] -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe -- (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2009-07-14 04:20:14 | 000,000,000 | ---D | M] [On_Demand] -- C:\Windows\Vss -- (VSS)
SRV - [2009-07-14 04:20:14 | 000,000,000 | ---D | M] [On_Demand] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2009-07-13 21:30:11 | 000,061,056 | ---- | M] () [On_Demand] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2017-10-30 16:01:20 | 000,252,232 | ---- | M] (Malwarebytes) [Kernel | On_Demand] -- C:\windows\System32\Drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV:[b]64bit:[/b] - [2017-10-06 13:15:18 | 000,064,504 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | Boot] -- C:\Windows\System32\drivers\avdevprot.sys -- (avdevprot)
DRV:[b]64bit:[/b] - [2017-10-06 13:15:18 | 000,034,128 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | Boot] -- C:\Windows\System32\drivers\avusbflt.sys -- (avusbflt)
DRV:[b]64bit:[/b] - [2017-10-06 13:15:17 | 000,194,272 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV:[b]64bit:[/b] - [2017-10-06 13:15:17 | 000,151,128 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV:[b]64bit:[/b] - [2017-10-06 13:15:17 | 000,078,600 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | Auto] -- C:\Windows\System32\drivers\avnetflt.sys -- (avnetflt)
DRV:[b]64bit:[/b] - [2017-10-06 13:15:17 | 000,035,328 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV:[b]64bit:[/b] - [2017-09-13 16:32:33 | 000,154,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\ksecpkg.sys -- (KSecPkg)
DRV:[b]64bit:[/b] - [2017-09-13 16:00:50 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\appid.sys -- (AppID)
DRV:[b]64bit:[/b] - [2017-07-06 05:56:32 | 000,119,296 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\bthpan.sys -- (BthPan) Périphérique Bluetooth (réseau personnel)
DRV:[b]64bit:[/b] - [2017-05-18 21:17:30 | 000,166,288 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm) SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)
DRV:[b]64bit:[/b] - [2017-05-18 21:17:28 | 000,131,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus) SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.)
DRV:[b]64bit:[/b] - [2016-11-20 15:07:52 | 000,467,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\cng.sys -- (CNG)
DRV:[b]64bit:[/b] - [2016-11-02 07:15:38 | 000,038,680 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ICCWDT.sys -- (ICCWDT) Intel(R) Watchdog Timer Driver (Intel(R) WDT)
DRV:[b]64bit:[/b] - [2016-08-22 02:01:30 | 000,215,608 | ---- | M] (GenesysLogic) [Kernel | On_Demand] -- C:\Windows\System32\drivers\GeneStor.sys -- (GeneStor)
DRV:[b]64bit:[/b] - [2016-02-05 20:03:08 | 000,147,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tpm.sys -- (TPM) Module de plateforme sécurisée (TPM)
DRV:[b]64bit:[/b] - [2015-06-17 17:04:24 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2014-11-26 18:04:14 | 001,448,248 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\btmhsf.sys -- (btmhsf)
DRV:[b]64bit:[/b] - [2014-11-05 09:37:44 | 000,087,864 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\btmaud.sys -- (btmaudio)
DRV:[b]64bit:[/b] - [2014-10-28 14:00:42 | 000,141,624 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\btmaux.sys -- (btmaux)
DRV:[b]64bit:[/b] - [2013-10-02 03:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013-08-29 02:29:52 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2013-07-25 15:53:46 | 000,023,040 | ---- | M] (Apple Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\netaapl64.sys -- (Netaapl)
DRV:[b]64bit:[/b] - [2013-07-12 11:41:35 | 000,185,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\System32\Drivers\usbvideo.sys -- (usbvideo) Périphérique vidéo USB (WDM)
DRV:[b]64bit:[/b] - [2013-04-23 12:24:26 | 000,069,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\iBtFltCoex.sys -- (ibtfltcoex)
DRV:[b]64bit:[/b] - [2013-04-11 02:13:08 | 000,164,832 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand] -- C:\Windows\System32\drivers\AmpPal.sys -- (AMPPALP) Protocole Intel(r) Centrino(r) Wireless Bluetooth(r)
DRV:[b]64bit:[/b] - [2013-04-11 02:13:08 | 000,164,832 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand] -- C:\Windows\System32\drivers\AmpPal.sys -- (AMPPAL) Carte réseau virtuelle Intel(r) Centrino(r) Wireless Bluetooth(r)
DRV:[b]64bit:[/b] - [2013-01-24 07:01:01 | 000,223,752 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\fvevol.sys -- (fvevol)
DRV:[b]64bit:[/b] - [2012-10-09 18:48:52 | 000,035,256 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2012-10-09 18:48:52 | 000,025,528 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2012-10-09 18:48:50 | 000,188,896 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand] -- C:\Windows\System32\drivers\xHCIPort.sys -- (XHCIPort)
DRV:[b]64bit:[/b] - [2012-10-09 18:48:50 | 000,047,072 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usb3Hub.sys -- (usb3Hub)
DRV:[b]64bit:[/b] - [2012-10-08 11:42:36 | 000,030,056 | ---- | M] (NVIDIA Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\nvpciflt.sys -- (nvpciflt)
DRV:[b]64bit:[/b] - [2012-10-08 11:42:18 | 013,443,944 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV:[b]64bit:[/b] - [2012-09-12 15:20:04 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\fssfltr.sys -- (fssfltr)
DRV:[b]64bit:[/b] - [2012-08-26 13:56:21 | 000,138,400 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\AnyDVD.sys -- (AnyDVD)
DRV:[b]64bit:[/b] - [2012-08-23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012-08-23 15:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2012-08-21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012-08-07 18:51:52 | 004,102,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\RTKVHD64.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV:[b]64bit:[/b] - [2012-07-26 03:26:45 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\WUDFPf.sys -- (WudfPf)
DRV:[b]64bit:[/b] - [2012-07-17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\HECIx64.sys -- (MEIx64) Intel(R)
DRV:[b]64bit:[/b] - [2012-07-06 21:07:42 | 000,552,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\bthport.sys -- (BTHPORT)
DRV:[b]64bit:[/b] - [2012-06-07 07:01:16 | 000,293,712 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2012-04-18 15:05:16 | 000,019,304 | ---- | M] (GARMIN Corp.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\grmnusb.sys -- (grmnusb)
DRV:[b]64bit:[/b] - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot] -- C:\Windows\System32\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012-01-05 11:36:54 | 014,652,768 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2012-01-04 19:58:50 | 000,786,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\iusb3xhc.sys -- (iusb3xhc) Pilote du contrôleur d'hôte extensible Intel(R)
DRV:[b]64bit:[/b] - [2012-01-04 19:58:50 | 000,355,096 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\iusb3hub.sys -- (iusb3hub) Pilote de concentrateur Intel(R)
DRV:[b]64bit:[/b] - [2012-01-04 19:58:50 | 000,016,152 | ---- | M] (Intel Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\iusb3hcs.sys -- (iusb3hcs) Pilote de commutateur de contrôleur d'hôte Intel(R)
DRV:[b]64bit:[/b] - [2011-12-20 09:38:38 | 000,042,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\WDKMD.sys -- (wdkmd)
DRV:[b]64bit:[/b] - [2011-12-05 19:23:08 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:[b]64bit:[/b] - [2011-12-01 14:51:00 | 011,417,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\NETwNs64.sys -- (NETwNs64) ___ Pilote de carte de la série Intel(R)
DRV:[b]64bit:[/b] - [2011-11-29 11:40:32 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2011-11-23 15:02:20 | 000,648,808 | ---- | M] (Realtek ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2011-09-23 15:20:50 | 000,080,688 | ---- | M] (Diskeeper Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\excsd.sys -- (excsd)
DRV:[b]64bit:[/b] - [2011-09-23 15:20:50 | 000,023,344 | ---- | M] (Diskeeper Corporation) [File_System | System] -- C:\Windows\System32\drivers\excfs.sys -- (excfs)
DRV:[b]64bit:[/b] - [2011-09-22 06:39:44 | 000,013,824 | ---- | M] (SAMSUNG ELECTRONICS) [Kernel | System] -- C:\Windows\System32\drivers\SABI.sys -- (SABI)
DRV:[b]64bit:[/b] - [2011-08-17 08:19:38 | 000,031,216 | ---- | M] (CyberLink Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\clwvd.sys -- (clwvd)
DRV:[b]64bit:[/b] - [2011-06-01 03:17:34 | 000,848,384 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\rtl8192cu.sys -- (RTL8192cu)
DRV:[b]64bit:[/b] - [2011-04-28 04:54:56 | 000,080,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\BTHUSB.SYS -- (BTHUSB)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\nvstor.sys -- (nvstor)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\nvraid.sys -- (nvraid)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\iaStorV.sys -- (iaStorV)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand] -- C:\windows\system32\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand] -- C:\windows\system32\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2011-02-11 22:23:34 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto] -- C:\Windows\System32\drivers\npf.sys -- (npf)
DRV:[b]64bit:[/b] - [2011-01-25 10:34:40 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV:[b]64bit:[/b] - [2011-01-25 10:34:33 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\vwififlt.sys -- (VWiFiFlt)
DRV:[b]64bit:[/b] - [2010-12-16 23:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\Windows\System32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:[b]64bit:[/b] - [2010-11-21 04:24:41 | 000,514,560 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\csc.sys -- (CSC)
DRV:[b]64bit:[/b] - [2010-11-21 04:24:33 | 000,213,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV:[b]64bit:[/b] - [2010-11-21 04:24:24 | 000,014,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV:[b]64bit:[/b] - [2010-11-21 04:24:09 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,199,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\vmbus.sys -- (vmbus)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,046,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,034,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\storvsc.sys -- (storvsc)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,350,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,229,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\1394ohci.sys -- (1394ohci)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,215,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\vhdmp.sys -- (vhdmp)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand] -- C:\windows\system32\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\acpipmi.sys -- (AcpiPmi)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:31 | 000,017,488 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\cmdide.sys -- (cmdide)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 000,491,088 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 000,339,536 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\adpahci.sys -- (adpahci)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 000,182,864 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\adpu320.sys -- (adpu320)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 000,097,856 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\arcsas.sys -- (arcsas)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 000,087,632 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\arc.sys -- (arc)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 000,015,440 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\aliide.sys -- (aliide)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:26 | 000,051,264 | ---- | M] (IBM Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,284,736 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\MegaSR.sys -- (MegaSR)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,115,776 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,114,752 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,106,560 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,044,112 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand] -- C:\windows\system32\drivers\iirsp.sys -- (iirsp)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,035,392 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\megasas.sys -- (megasas)
DRV:[b]64bit:[/b] - [2009-07-14 02:47:49 | 000,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV:[b]64bit:[/b] - [2009-07-14 02:47:48 | 000,530,496 | ---- | M] (Emulex) [Kernel | On_Demand] -- C:\windows\system32\drivers\elxstor.sys -- (elxstor)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:56 | 000,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,161,872 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand] -- C:\windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand] -- C:\windows\system32\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,017,488 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\viaide.sys -- (viaide)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:46 | 001,524,816 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\ql2300.sys -- (ql2300)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:46 | 000,080,464 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand] -- C:\windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:45 | 000,128,592 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:45 | 000,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:45 | 000,043,584 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand] -- C:\windows\system32\drivers\SiSRaid2.sys -- (SiSRaid2)
DRV:[b]64bit:[/b] - [2009-07-14 02:19:07 | 000,286,720 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV:[b]64bit:[/b] - [2009-07-14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\serscan.sys -- (StillCam)
DRV:[b]64bit:[/b] - [2009-07-14 01:17:46 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV:[b]64bit:[/b] - [2009-07-14 01:16:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV:[b]64bit:[/b] - [2009-07-14 01:10:24 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV:[b]64bit:[/b] - [2009-07-14 01:09:26 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV:[b]64bit:[/b] - [2009-07-14 01:08:13 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV:[b]64bit:[/b] - [2009-07-14 01:07:21 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV:[b]64bit:[/b] - [2009-07-14 01:06:56 | 000,158,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\rfcomm.sys -- (RFCOMM) Périphérique Bluetooth (TDI protocole RFCOMM)
DRV:[b]64bit:[/b] - [2009-07-14 01:06:53 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\bthenum.sys -- (BthEnum)
DRV:[b]64bit:[/b] - [2009-07-14 01:06:52 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\umpass.sys -- (UmPass)
DRV:[b]64bit:[/b] - [2009-07-14 01:06:24 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV:[b]64bit:[/b] - [2009-07-14 01:02:08 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\MTConfig.sys -- (MTConfig)
DRV:[b]64bit:[/b] - [2009-07-14 01:00:24 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\acpials.sys -- (acpials)
DRV:[b]64bit:[/b] - [2009-07-14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\beep.sys -- (Beep)
DRV:[b]64bit:[/b] - [2009-07-14 00:37:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV:[b]64bit:[/b] - [2009-07-14 00:31:06 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\HidBatt.sys -- (HidBatt)
DRV:[b]64bit:[/b] - [2009-07-14 00:31:03 | 000,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\CmBatt.sys -- (CmBatt)
DRV:[b]64bit:[/b] - [2009-07-14 00:19:25 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\amdppm.sys -- (AmdPPM)
DRV:[b]64bit:[/b] - [2009-06-10 21:41:10 | 000,047,104 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV:[b]64bit:[/b] - [2009-06-10 21:41:10 | 000,014,976 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV:[b]64bit:[/b] - [2009-06-10 21:41:10 | 000,014,720 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV:[b]64bit:[/b] - [2009-06-10 21:41:06 | 000,018,432 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- C:\windows\system32\drivers\BrFiltLo.sys -- (BrFiltLo)
DRV:[b]64bit:[/b] - [2009-06-10 21:41:06 | 000,008,704 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- C:\windows\system32\drivers\BrFiltUp.sys -- (BrFiltUp)
DRV:[b]64bit:[/b] - [2009-06-10 21:37:19 | 000,023,040 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Disabled] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\windows\system32\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand] -- C:\windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-02-12 15:11:26 | 000,026,024 | ---- | M] (EldoS Corporation) [Kernel | System] -- C:\Windows\System32\drivers\rsdrvx64.sys -- (ElRawDisk)
DRV:[b]64bit:[/b] - [2007-05-14 15:06:18 | 000,027,520 | ---- | M] (Research In Motion Limited) [Kernel | On_Demand] -- C:\Windows\System32\drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV - [2017-11-11 19:08:24 | 000,000,000 | ---D | M] [Kernel | System] -- C:\Windows\CSC -- (CSC)
DRV - [2012-08-26 13:56:21 | 000,138,400 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\Windows\SysWOW64\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2011-03-15 14:46:40 | 000,097,648 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\Windows\SysWOW64\ElbyCDIO.dll -- (ElbyCDIO)
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-07-14 02:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\SysWOW64\winusb.dll -- (WinUsb)
DRV - [2009-07-14 02:16:02 | 000,014,336 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\SysWOW64\netbios.dll -- (NetBIOS)
DRV - [2009-06-10 22:43:20 | 000,144,862 | ---- | M] () [Kernel | On_Demand] -- C:\Windows\SysWOW64\tpm.msc -- (TPM) Module de plateforme sécurisée (TPM)
DRV - [2009-06-10 22:28:14 | 000,001,088 | ---- | M] () [Kernel | On_Demand] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2009-06-10 22:15:18 | 000,003,066 | ---- | M] () [Kernel | Boot] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\CloB_ON_C\Software\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\CloB\Desktop
IE - HKU\CloB_ON_C\Software\Microsoft\Internet Explorer\Main,Default_search_url = http://www.google.com/ie
IE - HKU\CloB_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://home.microsoft.com/access/allinone.asp
IE - HKU\CloB_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.facebook.com/?sk=welcome
IE - HKU\CloB_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 8F 31 EA 22 BD A7 D1 01 [binary data]
IE - HKU\CloB_ON_C\Software\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = [Binary data over 100 bytes]
IE - HKU\CloB_ON_C\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\CloB_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\CloB_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0





IE - HKU\UpdatusUser_ON_C\Software\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\UpdatusUser\Desktop
IE - HKU\UpdatusUser_ON_C\Software\Microsoft\Internet Explorer\Main,Default_search_url = http://www.google.com/ie
IE - HKU\UpdatusUser_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\UpdatusUser_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr-fr.facebook.com/
IE - HKU\UpdatusUser_ON_C\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\UpdatusUser_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\UpdatusUser_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\UpdatusUser_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\software\mozilla\Mozilla Firefox 56.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKLM\software\mozilla\Mozilla Firefox 56.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2017-10-11 18:50:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2009-09-08 10:32:28 | 001,093,632 | ---- | M] (UNISYS France) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npornap.dll

O1 HOSTS File: ([2017-11-11 19:04:39 | 000,000,855 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:[b]64bit:[/b] - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Adblock Plus for IE Browser Helper Object) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Eyeo GmbH)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Programme d aide de l Assistant de connexion au compte Microsoft) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Adblock Plus for IE Browser Helper Object) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Eyeo GmbH)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4 - HKLM..\Run: [Dropbox] C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.)
O4 - HKLM..\Run: [Qsync] C:\Program Files (x86)\QNAP\Qsync\Qsync.exe (QNAP Systems, Inc.)
O4 - HKU\.DEFAULT..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd. or its subsidiaries)
O4 - HKU\CloB_ON_C..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\UpdatusUser_ON_C..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKU\UpdatusUser_ON_C..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DelayedDesktopSwitchTimeout = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPath = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\CloB_ON_C\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\CloB_ON_C\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\CloB_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\CloB_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSimpleStartMenu = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecycleFiles = 0
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\UpdatusUser_ON_C\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present
O7 - HKU\UpdatusUser_ON_C\Software\Policies\Microsoft\Internet Explorer\Feeds present
O7 - HKU\UpdatusUser_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\UpdatusUser_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\windows\SysWow64\GPhotos.scr (Google Inc.)
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: iGraal - {0FB6492F-7FED-4446-9863-992806E1C419} - Reg Error: Key error. File not found
O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13:[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15:[b]64bit:[/b] - UpdatusUser_ON_C\..Trusted Domains: canalplay.com ([]* in Trusted sites)
O15:[b]64bit:[/b] - UpdatusUser_ON_C\..Trusted Domains: canalplusactive.com ([]* in Trusted sites)
O15:[b]64bit:[/b] - UpdatusUser_ON_C\..Trusted Domains: surcouf.com ([www] https in Trusted sites)
O15:[b]64bit:[/b] - UpdatusUser_ON_C\..Trusted Domains: 81 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\UpdatusUser_ON_C\..Trusted Domains: 7977 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\UpdatusUser_ON_C\..Trusted Ranges: 36 range(s) not assigned to a zone.
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\windows\System32\igfxdev.dll (Intel Corporation)
O28:[b]64bit:[/b] - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O30:[b]64bit:[/b] - LSA: Security Packages - (pku2u) - C:\windows\System32\pku2u.dll (Microsoft Corporation)
O30:[b]64bit:[/b] - LSA: Security Packages - (livessp) - C:\windows\System32\livessp.dll (Microsoft Corp.)
O30 - LSA: Security Packages - (pku2u) - C:\windows\SysWow64\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\windows\SysWow64\livessp.dll (Microsoft Corp.)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
[b]64bit:[/b] O35 - comfile [open] -- "%1" %* File not found
[b]64bit:[/b] O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- Reg Error: Key error.
O35 - exefile [open] -- Reg Error: Key error.

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2017-11-13 20:02:51 | 000,000,000 | ---D | C] -- C:\CloB
[2017-11-13 14:16:22 | 003,199,656 | ---- | C] (Top Password Software, Inc. ) -- C:\Users\CloB\Desktop\ISO2DiscSetup.exe
[2017-11-13 11:26:32 | 000,000,000 | ---D | C] -- C:\Users\CloB\AppData\Local\QNAP
[2017-11-13 11:26:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QNAP
[2017-11-13 07:56:04 | 000,000,000 | ---D | C] -- C:\Users\CloB\Desktop\SFC
[2017-11-12 17:08:50 | 000,000,000 | ---D | C] -- C:\Users\CloB\Desktop\Smart
[2017-11-12 17:08:02 | 003,861,936 | ---- | C] (Crystal Dew World) -- C:\Users\CloB\Desktop\DiskInfo64.exe
[2017-11-12 17:08:02 | 000,000,000 | ---D | C] -- C:\Users\CloB\Desktop\License
[2017-11-12 17:08:01 | 000,000,000 | ---D | C] -- C:\Users\CloB\Desktop\CdiResource
[2017-11-12 15:59:11 | 000,000,000 | ---D | C] -- C:\windows\System32\catroot2
[2017-11-12 09:37:43 | 000,000,000 | ---D | C] -- C:\Users\CloB\Desktop\FRST-OlderVersion
[2017-11-11 19:16:03 | 000,000,000 | ---D | C] -- C:\windows\SoftwareDistribution
[2017-11-11 19:11:58 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2017-11-11 17:13:17 | 000,000,000 | ---D | C] -- C:\RegBackup
[2017-11-11 12:21:49 | 000,000,000 | ---D | C] -- C:\FRST
[2017-11-11 12:11:53 | 002,392,576 | ---- | C] (Farbar) -- C:\Users\CloB\Desktop\FRST64.exe
[2017-11-09 07:29:51 | 000,194,272 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avgntflt.sys
[2017-11-09 07:29:51 | 000,151,128 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avipbb.sys
[2017-11-09 07:29:51 | 000,078,600 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avnetflt.sys
[2017-11-09 07:29:51 | 000,064,504 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avdevprot.sys
[2017-11-09 07:29:51 | 000,035,328 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avkmgr.sys
[2017-11-09 07:29:51 | 000,034,128 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avusbflt.sys
[2017-11-01 12:58:30 | 000,051,016 | ---- | C] (Dropbox, Inc.) -- C:\windows\System32\DbxSvc.exe
[2017-11-01 12:58:30 | 000,045,672 | ---- | C] (Dropbox, Inc.) -- C:\windows\System32\drivers\dbx-dev.sys
[2017-11-01 12:58:30 | 000,045,640 | ---- | C] (Dropbox, Inc.) -- C:\windows\System32\drivers\dbx-stable.sys
[2017-11-01 12:58:30 | 000,045,640 | ---- | C] (Dropbox, Inc.) -- C:\windows\System32\drivers\dbx-canary.sys
[2017-10-31 09:05:37 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2017-10-30 16:01:20 | 000,252,232 | ---- | C] (Malwarebytes) -- C:\windows\System32\drivers\mbamswissarmy.sys
[2017-10-26 10:59:58 | 000,000,000 | ---D | C] -- C:\Users\CloB\Desktop\demandes cni-passeport
[2017-10-20 14:54:36 | 000,995,272 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ucrtbase.dll
[2017-10-20 14:54:36 | 000,922,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ucrtbase.dll
[2017-10-20 14:54:36 | 000,066,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-private-l1-1-0.dll
[2017-10-20 14:54:36 | 000,022,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-math-l1-1-0.dll
[2017-10-20 14:54:36 | 000,020,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-math-l1-1-0.dll
[2017-10-20 14:54:36 | 000,019,808 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-multibyte-l1-1-0.dll
[2017-10-20 14:54:36 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-string-l1-1-0.dll
[2017-10-20 14:54:36 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-string-l1-1-0.dll
[2017-10-20 14:54:36 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-stdio-l1-1-0.dll
[2017-10-20 14:54:36 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-stdio-l1-1-0.dll
[2017-10-20 14:54:36 | 000,016,224 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-runtime-l1-1-0.dll
[2017-10-20 14:54:36 | 000,015,712 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-convert-l1-1-0.dll
[2017-10-20 14:54:36 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-time-l1-1-0.dll
[2017-10-20 14:54:36 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localization-l1-2-0.dll
[2017-10-20 14:54:36 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-localization-l1-2-0.dll
[2017-10-20 14:54:36 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-process-l1-1-0.dll
[2017-10-20 14:54:36 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-heap-l1-1-0.dll
[2017-10-20 14:54:36 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-utility-l1-1-0.dll
[2017-10-20 14:54:36 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-utility-l1-1-0.dll
[2017-10-20 14:54:36 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-locale-l1-1-0.dll
[2017-10-20 14:54:36 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-environment-l1-1-0.dll
[2017-10-20 14:54:36 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-environment-l1-1-0.dll
[2017-10-20 14:54:36 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-synch-l1-2-0.dll
[2017-10-20 14:54:36 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-xstate-l2-1-0.dll
[2017-10-20 14:54:36 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-timezone-l1-1-0.dll
[2017-10-20 14:54:36 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-file-l2-1-0.dll
[2017-10-20 14:54:36 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-file-l1-2-0.dll
[2017-10-20 14:54:36 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-file-l1-2-0.dll
[2017-10-20 14:54:35 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\usbport.sys
[2017-10-20 14:54:35 | 000,063,840 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-private-l1-1-0.dll
[2017-10-20 14:54:35 | 000,019,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-multibyte-l1-1-0.dll
[2017-10-20 14:54:35 | 000,016,224 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-runtime-l1-1-0.dll
[2017-10-20 14:54:35 | 000,015,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-convert-l1-1-0.dll
[2017-10-20 14:54:35 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-time-l1-1-0.dll
[2017-10-20 14:54:35 | 000,013,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-filesystem-l1-1-0.dll
[2017-10-20 14:54:35 | 000,013,664 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-filesystem-l1-1-0.dll
[2017-10-20 14:54:35 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-process-l1-1-0.dll
[2017-10-20 14:54:35 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-heap-l1-1-0.dll
[2017-10-20 14:54:35 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-crt-conio-l1-1-0.dll
[2017-10-20 14:54:35 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-conio-l1-1-0.dll
[2017-10-20 14:54:35 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-crt-locale-l1-1-0.dll
[2017-10-20 14:54:35 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-synch-l1-2-0.dll
[2017-10-20 14:54:35 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-1.dll
[2017-10-20 14:54:35 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-processthreads-l1-1-1.dll
[2017-10-20 14:54:35 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-xstate-l2-1-0.dll
[2017-10-20 14:54:35 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-timezone-l1-1-0.dll
[2017-10-20 14:54:35 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\api-ms-win-core-file-l2-1-0.dll
[2017-10-20 14:54:35 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\usbd.sys
[2017-10-16 19:50:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Top Password
[2017-10-15 17:22:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AnalogX
[1 C:\Users\CloB\Desktop\*.tmp files -> C:\Users\CloB\Desktop\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2017-11-13 19:07:04 | 000,001,663 | ---- | M] () -- X:\Users\Default\Desktop\PENetwork.lnk
[2017-11-13 19:07:04 | 000,001,560 | ---- | M] () -- X:\Users\Default\Desktop\Command Prompt.lnk
[2017-11-13 19:07:04 | 000,001,444 | ---- | M] () -- X:\Users\Default\Desktop\Explorer.lnk
[2017-11-13 19:07:03 | 000,000,891 | ---- | M] () -- X:\Users\Default\Desktop\OTLPE.lnk
[2017-11-13 19:07:03 | 000,000,697 | ---- | M] () -- X:\Users\Default\Desktop\RogueKiller.lnk
[2017-11-13 19:07:03 | 000,000,637 | ---- | M] () -- X:\Users\Default\Desktop\HD Tune v2.55.lnk
[2017-11-13 19:07:03 | 000,000,625 | ---- | M] () -- X:\Users\Default\Desktop\Opera12.lnk
[2017-11-13 19:07:03 | 000,000,591 | ---- | M] () -- X:\Users\Default\Desktop\FRST.lnk
[2017-11-13 19:02:45 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2017-11-13 19:02:43 | 000,031,808 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017-11-13 19:02:43 | 000,031,808 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017-11-13 19:02:40 | 001,232,578 | -H-- | M] () -- C:\Users\CloB\AppData\Local\IconCache.db
[2017-11-13 18:57:51 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT
[2017-11-13 18:57:41 | 4065,890,303 | -HS- | M] () -- C:\hiberfil.sys
[2017-11-13 18:53:04 | 001,577,256 | ---- | M] () -- C:\windows\System32\PerfStringBackup.INI
[2017-11-13 18:53:04 | 000,700,048 | ---- | M] () -- C:\windows\System32\perfh00C.dat
[2017-11-13 18:53:04 | 000,619,240 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2017-11-13 18:53:04 | 000,132,968 | ---- | M] () -- C:\windows\System32\perfc00C.dat
[2017-11-13 18:53:04 | 000,107,868 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2017-11-13 18:20:12 | 000,001,182 | ---- | M] () -- C:\windows\tasks\DropboxUpdateTaskMachineUA.job
[2017-11-13 17:42:00 | 000,000,604 | ---- | M] () -- C:\windows\tasks\G2MUploadTask-S-1-5-21-827003602-197118443-3871896379-1001.job
[2017-11-13 17:25:01 | 000,000,508 | ---- | M] () -- C:\windows\tasks\G2MUpdateTask-S-1-5-21-827003602-197118443-3871896379-1001.job
[2017-11-13 15:11:12 | 000,010,848 | ---- | M] () -- C:\Users\CloB\Desktop\I_AvisDOperation_PDF.pdf
[2017-11-13 14:43:47 | 006,243,840 | ---- | M] () -- C:\Users\CloB\Desktop\recettes light.doc
[2017-11-13 14:30:14 | 000,000,995 | ---- | M] () -- C:\Users\CloB\Desktop\ISO2Disc.lnk
[2017-11-13 14:30:04 | 574,615,552 | ---- | M] () -- C:\Users\CloB\Desktop\CD_Live_Malekal.iso
[2017-11-13 14:16:31 | 003,199,656 | ---- | M] (Top Password Software, Inc. ) -- C:\Users\CloB\Desktop\ISO2DiscSetup.exe
[2017-11-13 14:01:48 | 000,001,598 | ---- | M] () -- C:\Users\CloB\Desktop\QNAPFORBIN - Raccourci.lnk
[2017-11-13 13:41:10 | 000,165,376 | ---- | M] () -- C:\Users\CloB\Desktop\SystemLook_x64.exe
[2017-11-13 10:18:15 | 000,039,101 | ---- | M] () -- C:\Users\CloB\Desktop\mandat_SEPA_FreeMobile-31015826.pdf
[2017-11-13 07:57:36 | 002,392,576 | ---- | M] (Farbar) -- C:\Users\CloB\Desktop\FRST64.exe
[2017-11-13 07:26:46 | 000,000,619 | ---- | M] () -- C:\Users\CloB\Desktop\SFC.bat
[2017-11-13 07:26:02 | 000,000,328 | ---- | M] () -- C:\windows\tasks\HPCeeScheduleForCloB.job
[2017-11-12 17:09:11 | 000,000,261 | ---- | M] () -- C:\Users\CloB\Desktop\DiskInfo.ini
[2017-11-12 14:42:53 | 000,002,032 | ---- | M] () -- C:\Users\CloB\Desktop\Malwarebytes.lnk
[2017-11-12 09:37:06 | 000,000,000 | ---- | M] () -- C:\Users\CloB\Desktop\avira_antivirus_fr-fr.exe
[2017-11-11 19:14:42 | 000,132,120 | ---- | M] () -- C:\Users\CloB\AppData\Local\GDIPFONTCACHEV1.DAT
[2017-11-11 19:11:34 | 000,452,128 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2017-11-11 19:04:39 | 000,000,855 | ---- | M] () -- C:\windows\System32\drivers\etc\hosts
[2017-11-11 19:04:32 | 000,000,865 | ---- | M] () -- C:\windows\win.ini
[2017-11-11 17:13:23 | 000,000,207 | ---- | M] () -- C:\windows\tweaking.com-regbackup-CLOSAMSUNG-Windows-7-Professional-(64-bit).dat
[2017-11-11 16:13:22 | 000,175,960 | -H-- | M] () -- C:\windows\System32\mlfcache.dat
[2017-11-11 16:10:13 | 000,000,348 | ---- | M] () -- C:\windows\tasks\HPCeeScheduleForCLOSAMSUNG$.job
[2017-11-09 19:21:27 | 319,553,372 | ---- | M] () -- C:\Users\CloB\AppData\Local\ACCCx4_3_0_256.zip.aamdownload
[2017-11-09 19:21:27 | 000,003,567 | ---- | M] () -- C:\Users\CloB\AppData\Local\ACCCx4_3_0_256.zip.aamdownload.aamd
[2017-11-09 18:50:27 | 000,285,440 | ---- | M] () -- C:\Users\CloB\Desktop\permis Aym.pdf
[2017-11-08 09:01:28 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_Kernel_avusbflt_01011.Wdf
[2017-11-07 13:43:06 | 000,308,856 | ---- | M] () -- C:\Users\CloB\Desktop\mascarpomme.png
[2017-11-01 12:58:30 | 000,051,016 | ---- | M] (Dropbox, Inc.) -- C:\windows\System32\DbxSvc.exe
[2017-11-01 12:58:30 | 000,045,672 | ---- | M] (Dropbox, Inc.) -- C:\windows\System32\drivers\dbx-dev.sys
[2017-11-01 12:58:30 | 000,045,640 | ---- | M] (Dropbox, Inc.) -- C:\windows\System32\drivers\dbx-stable.sys
[2017-11-01 12:58:30 | 000,045,640 | ---- | M] (Dropbox, Inc.) -- C:\windows\System32\drivers\dbx-canary.sys
[2017-10-30 16:01:20 | 000,252,232 | ---- | M] (Malwarebytes) -- C:\windows\System32\drivers\mbamswissarmy.sys
[2017-10-30 16:00:57 | 000,077,440 | ---- | M] () -- C:\windows\System32\drivers\mbae64.sys
[2017-10-27 10:41:08 | 001,630,371 | ---- | M] () -- C:\Users\CloB\Desktop\Licence_dematerialisee_2017_2018_1208147420171027-19-1uyos6s.pdf
[2017-10-25 20:57:51 | 000,803,328 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2017-10-25 20:57:51 | 000,144,896 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2017-10-20 15:01:45 | 001,653,260 | ---- | M] () -- C:\windows\SysWow64\PerfStringBackup.INI
[1 C:\Users\CloB\Desktop\*.tmp files -> C:\Users\CloB\Desktop\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2017-11-13 19:07:04 | 000,001,663 | ---- | C] () -- X:\Users\Default\Desktop\PENetwork.lnk
[2017-11-13 19:07:04 | 000,001,560 | ---- | C] () -- X:\Users\Default\Desktop\Command Prompt.lnk
[2017-11-13 19:07:04 | 000,001,444 | ---- | C] () -- X:\Users\Default\Desktop\Explorer.lnk
[2017-11-13 19:07:03 | 000,000,891 | ---- | C] () -- X:\Users\Default\Desktop\OTLPE.lnk
[2017-11-13 19:07:03 | 000,000,697 | ---- | C] () -- X:\Users\Default\Desktop\RogueKiller.lnk
[2017-11-13 19:07:03 | 000,000,637 | ---- | C] () -- X:\Users\Default\Desktop\HD Tune v2.55.lnk
[2017-11-13 19:07:03 | 000,000,625 | ---- | C] () -- X:\Users\Default\Desktop\Opera12.lnk
[2017-11-13 19:07:03 | 000,000,591 | ---- | C] () -- X:\Users\Default\Desktop\FRST.lnk
[2017-11-13 15:11:12 | 000,010,848 | ---- | C] () -- C:\Users\CloB\Desktop\I_AvisDOperation_PDF.pdf
[2017-11-13 14:30:14 | 000,000,995 | ---- | C] () -- C:\Users\CloB\Desktop\ISO2Disc.lnk
[2017-11-13 14:16:09 | 574,615,552 | ---- | C] () -- C:\Users\CloB\Desktop\CD_Live_Malekal.iso
[2017-11-13 13:41:09 | 000,165,376 | ---- | C] () -- C:\Users\CloB\Desktop\SystemLook_x64.exe
[2017-11-13 10:18:15 | 000,039,101 | ---- | C] () -- C:\Users\CloB\Desktop\mandat_SEPA_FreeMobile-31015826.pdf
[2017-11-13 07:26:46 | 000,000,619 | ---- | C] () -- C:\Users\CloB\Desktop\SFC.bat
[2017-11-12 17:08:09 | 000,000,261 | ---- | C] () -- C:\Users\CloB\Desktop\DiskInfo.ini
[2017-11-12 09:37:06 | 000,000,000 | ---- | C] () -- C:\Users\CloB\Desktop\avira_antivirus_fr-fr.exe
[2017-11-11 17:13:23 | 000,000,207 | ---- | C] () -- C:\windows\tweaking.com-regbackup-CLOSAMSUNG-Windows-7-Professional-(64-bit).dat
[2017-11-11 16:13:22 | 000,175,960 | -H-- | C] () -- C:\windows\System32\mlfcache.dat
[2017-11-09 19:21:08 | 319,553,372 | ---- | C] () -- C:\Users\CloB\AppData\Local\ACCCx4_3_0_256.zip.aamdownload
[2017-11-09 19:21:08 | 000,003,567 | ---- | C] () -- C:\Users\CloB\AppData\Local\ACCCx4_3_0_256.zip.aamdownload.aamd
[2017-11-09 18:50:27 | 000,285,440 | ---- | C] () -- C:\Users\CloB\Desktop\permis Aym.pdf
[2017-11-08 09:01:28 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_Kernel_avusbflt_01011.Wdf
[2017-11-07 13:43:06 | 000,308,856 | ---- | C] () -- C:\Users\CloB\Desktop\mascarpomme.png
[2017-10-31 11:10:53 | 000,316,928 | ---- | C] () -- C:\windows\SysWow64\hpcc3117.DLL
[2017-10-30 15:57:14 | 000,002,032 | ---- | C] () -- C:\Users\CloB\Desktop\Malwarebytes.lnk
[2017-10-30 15:57:09 | 000,077,440 | ---- | C] () -- C:\windows\System32\drivers\mbae64.sys
[2017-10-27 10:41:07 | 001,630,371 | ---- | C] () -- C:\Users\CloB\Desktop\Licence_dematerialisee_2017_2018_1208147420171027-19-1uyos6s.pdf
[2017-10-26 00:48:45 | 000,000,328 | ---- | C] () -- C:\windows\tasks\HPCeeScheduleForCloB.job
[2017-08-09 10:08:58 | 000,518,144 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll
[2017-06-23 12:49:19 | 331,479,536 | ---- | C] () -- C:\Users\CloB\AppData\Local\ACCCx4_1_1_202.zip.aamdownload
[2017-06-23 12:49:19 | 000,003,693 | ---- | C] () -- C:\Users\CloB\AppData\Local\ACCCx4_1_1_202.zip.aamdownload.aamd
[2015-10-26 08:27:47 | 000,000,988 | ---- | C] () -- C:\Users\CloB\AppData\Local\recently-used.xbel
[2014-07-21 14:02:16 | 000,000,051 | ---- | C] () -- C:\windows\npornap.INI
[2014-02-10 11:21:59 | 000,023,414 | ---- | C] () -- C:\Users\CloB\AppData\Local\WiDiSetupLog.20140210.112159.txt
[2014-02-10 11:04:22 | 000,019,903 | ---- | C] () -- C:\Users\CloB\AppData\Local\WiDiSetupLog.20140210.110422.txt
[2013-09-30 13:15:21 | 000,000,173 | ---- | C] () -- C:\windows\Readiris.ini
[2013-08-21 10:34:44 | 000,000,038 | ---- | C] () -- C:\windows\AviSplitter.INI
[2013-04-28 17:25:53 | 001,653,260 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2012-12-15 10:47:55 | 000,000,136 | ---- | C] () -- C:\windows\ODBC.INI
[2012-12-15 10:47:45 | 000,036,864 | ---- | C] () -- C:\windows\SysWow64\ODBCSTF.DLL
[2012-12-15 10:43:37 | 000,000,040 | ---- | C] () -- C:\windows\NAVIGMA.INI
[2012-10-11 06:34:17 | 000,000,000 | ---- | C] () -- C:\windows\EEventManager.INI
[2012-10-10 08:48:12 | 000,000,097 | ---- | C] () -- C:\windows\SysWow64\PICSDK.ini
[2012-10-08 07:27:24 | 000,001,994 | ---- | C] () -- C:\Users\CloB\AppData\Roaming\filterclsid.dat
[2012-10-08 07:27:24 | 000,000,114 | ---- | C] () -- C:\Users\CloB\AppData\Roaming\wklnhst.dat
[2012-10-08 07:12:39 | 000,119,296 | ---- | C] () -- C:\Users\CloB\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-10-08 07:12:39 | 000,001,356 | ---- | C] () -- C:\Users\CloB\AppData\Local\d3d9caps.dat
[2012-10-08 07:12:39 | 000,000,091 | ---- | C] () -- C:\Users\CloB\AppData\Local\fusioncache.dat
[2012-05-18 10:34:18 | 000,006,794 | ---- | C] () -- C:\windows\HotFixList.ini
[2012-02-06 05:42:53 | 000,058,880 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2012-02-06 05:42:52 | 012,978,688 | ---- | C] () -- C:\windows\SysWow64\ig7icd32.dll
[2012-02-02 14:08:26 | 000,001,536 | ---- | C] () -- C:\windows\SysWow64\IusEventLog.dll
[2011-05-20 10:16:50 | 000,974,848 | ---- | C] () -- C:\windows\SysWow64\cis-2.4.dll
[2011-05-20 10:16:50 | 000,081,920 | ---- | C] () -- C:\windows\SysWow64\issacapi_bs-2.3.dll
[2011-05-20 10:16:50 | 000,065,536 | ---- | C] () -- C:\windows\SysWow64\issacapi_pe-2.3.dll
[2011-05-20 10:16:50 | 000,057,344 | ---- | C] () -- C:\windows\SysWow64\issacapi_se-2.3.dll
[2011-02-11 22:23:34 | 000,053,299 | ---- | C] () -- C:\windows\SysWow64\pthreadVC.dll
[2009-10-06 08:16:02 | 000,819,200 | ---- | C] () -- C:\windows\SysWow64\xvidcore.dll
[2009-07-14 00:42:10 | 000,064,000 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll

[color=#E56717]========== LOP Check ==========[/color]

[2017-08-28 15:41:04 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\AMS Software
[2016-11-26 14:38:44 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Apowersoft
[2016-03-30 09:35:46 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Audacity
[2017-08-28 15:41:05 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Below
[2017-10-30 12:11:14 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Bookin
[2016-02-25 18:42:14 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\calibre
[2012-10-08 07:29:09 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\CocoonSoftware
[2015-10-26 12:40:14 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012-10-08 07:29:10 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\com.adobe.example.widget-programmes.40247E01796E652D304FB5752B197AB47987A585.1
[2016-05-24 12:56:55 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\com.erclab.air.phototransferapp
[2015-02-26 15:42:39 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\DeezerDrive
[2014-06-18 18:17:37 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\DiskDefrag
[2015-01-13 07:31:06 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\DMCache
[2016-04-16 17:26:10 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Dropbox
[2012-11-21 14:58:27 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Easy File Share
[2012-10-08 07:29:10 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Elaborate Bytes
[2012-10-18 11:10:30 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\EPSON
[2015-05-11 06:29:09 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\fr.orange.assistancelivebox
[2012-10-10 10:43:18 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Free Download Manager
[2012-10-08 07:29:10 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Free Sound Recorder
[2012-10-08 07:29:10 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\FreeAudioPack
[2013-02-26 10:11:16 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\FreeVideoConverter
[2016-12-27 13:47:21 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Garmin
[2014-06-18 20:01:27 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\GlarySoft
[2012-10-08 07:29:10 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\HandBrake
[2012-10-08 07:29:10 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\ImgBurn
[2016-11-06 10:10:44 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Infineon
[2012-10-08 07:29:10 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\InterVideo
[2012-10-08 07:29:21 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\iPhone Tool Kits
[2016-10-26 17:06:25 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Luniitheque
[2012-10-05 22:26:48 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\OnlineStorage
[2014-10-14 08:28:49 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Orange
[2014-10-21 06:54:19 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\PDF Pro 10 9
[2012-10-08 07:29:21 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\PhotoFiltre
[2015-10-25 10:31:50 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\PhotoFiltre 7
[2017-09-18 11:09:53 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\PhotoScape
[2013-04-30 13:05:57 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\player
[2017-01-23 09:47:02 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Remo
[2012-11-19 17:02:44 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Samsung
[2012-10-10 13:50:40 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Smilebox
[2012-10-10 13:49:49 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Spotify
[2012-10-08 07:29:15 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Studio-Scrap3
[2012-10-08 07:29:15 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Template
[2012-10-08 07:29:15 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Thunderbird
[2014-03-03 14:09:22 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\TomTom
[2017-09-13 17:46:35 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Ulead Systems
[2017-10-11 06:32:18 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\ViberPC
[2016-12-02 08:13:21 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Visan
[2012-10-11 16:37:26 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Windows Home Server
[2012-10-08 07:29:21 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Windows Live Writer
[2015-09-05 17:14:41 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\WindSolutions
[2012-10-08 07:29:21 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\Xilisoft
[2016-11-27 15:46:43 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\YCanPDF
[2017-10-13 13:48:14 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\ZHP
[2012-10-08 07:29:21 | 000,000,000 | ---D | M] -- C:\Users\CloB\AppData\Roaming\ZIP RAR ACE Password Recovery
[2016-11-06 10:10:44 | 000,000,000 | ---D | M] -- C:\Users\UpdatusUser\AppData\Roaming\Infineon
[2017-10-11 19:00:11 | 000,001,178 | ---- | M] () -- C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
[2017-11-13 18:20:12 | 000,001,182 | ---- | M] () -- C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
[2017-11-13 17:25:01 | 000,000,508 | ---- | M] () -- C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-827003602-197118443-3871896379-1001.job
[2017-11-13 17:42:00 | 000,000,604 | ---- | M] () -- C:\Windows\Tasks\G2MUploadTask-S-1-5-21-827003602-197118443-3871896379-1001.job
[2013-05-01 08:18:38 | 000,000,828 | ---- | M] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2013-05-01 08:18:38 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2016-08-24 07:33:41 | 000,032,496 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2017-06-23 12:52:43 | 000,006,364 | ---- | M] ()(C:\Users\CloB\Documents\? En mai, on vous gâte___ Ouvrez-vite !.txt) -- C:\Users\CloB\Documents\& En mai, on vous gâte___ Ouvrez-vite !.txt
[2017-06-23 12:52:43 | 000,006,364 | ---- | C] ()(C:\Users\CloB\Documents\? En mai, on vous gâte___ Ouvrez-vite !.txt) -- C:\Users\CloB\Documents\& En mai, on vous gâte___ Ouvrez-vite !.txt
[2013-11-23 10:27:34 | 105,792,079 | ---- | M] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\eUžÕd’
[2013-11-22 20:15:40 | 105,792,079 | ---- | C] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\eUžÕd’
[2013-11-21 18:24:43 | 105,514,518 | ---- | M] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\ça†d‹
[2013-11-20 20:15:31 | 105,514,518 | ---- | C] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\ça†d‹
[2013-11-20 14:16:43 | 105,361,780 | ---- | M] ()(C:\windows\SysWow64\???) -- C:\windows\SysWow64\$IYd
[2013-11-20 14:15:15 | 105,361,780 | ---- | C] ()(C:\windows\SysWow64\???) -- C:\windows\SysWow64\$IYd
[2013-11-15 13:08:22 | 104,401,821 | ---- | M] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\Üôäd‘
[2013-11-15 07:08:22 | 104,401,821 | ---- | C] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\Üôäd‘
[2013-11-12 10:55:47 | 103,837,334 | ---- | M] ()(C:\windows\SysWow64\???) -- C:\windows\SysWow64\P³ý˜d
[2013-11-12 10:55:47 | 103,837,334 | ---- | C] ()(C:\windows\SysWow64\???) -- C:\windows\SysWow64\P³ý˜d
[2013-11-05 13:06:58 | 105,043,933 | ---- | M] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\M}·d‘
[2013-11-05 13:06:58 | 105,043,933 | ---- | C] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\M}·d‘
[2013-10-12 13:46:46 | 100,615,351 | ---- | M] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\äŽ`ªd‹
[2013-10-12 07:46:37 | 100,615,351 | ---- | C] ()(C:\windows\SysWow64\????) -- C:\windows\SysWow64\äŽ`ªd‹

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 973 bytes -> C:\Users\CloB\Documents\Suivi de votre commande _ colis remis à Adrexo.eml:OECustomProperty
@Alternate Data Stream - 500 bytes -> C:\windows\System32\drivers\lhqkrvxi.sys:changelist
< End of report >

Publicité


Signaler le contenu de ce document

Publicité