OTL logfile created on: 03/03/2016 12:10:47 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\3D\Downloads Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.18204) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,34% Memory free 3,98 Gb Paging File | 2,33 Gb Available in Paging File | 58,45% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 150,16 Gb Total Space | 113,39 Gb Free Space | 75,51% Space Free | Partition Type: NTFS Drive D: | 390,62 Gb Total Space | 337,94 Gb Free Space | 86,51% Space Free | Partition Type: NTFS Drive E: | 390,62 Gb Total Space | 390,01 Gb Free Space | 99,84% Space Free | Partition Type: NTFS Computer Name: PERSONNEL | User Name: 3D | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2016/03/03 11:01:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\3D\Downloads\OTL.exe PRC - [2016/03/02 05:47:45 | 000,874,648 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe PRC - [2016/02/10 08:15:59 | 000,252,232 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.29.5\GoogleCrashHandler.exe PRC - [2015/12/13 23:48:02 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2014/04/20 16:15:58 | 000,233,552 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe PRC - [2014/04/20 16:15:18 | 000,192,160 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe PRC - [2012/11/23 03:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe PRC - [2012/04/12 15:48:10 | 000,929,792 | ---- | M] (arcai.com) -- C:\Program Files\NetCutDefender\NetCutDefender.exe PRC - [2012/02/13 21:19:20 | 000,240,408 | ---- | M] (Microsoft Corporation.) -- C:\Program Files\Microsoft\BingBar\7.1.362.0\SeaPort.exe PRC - [2012/01/13 20:40:30 | 000,268,800 | ---- | M] (ZKSoftware Inc) -- C:\Program Files\FPSensor\bin\iZHost.exe PRC - [2011/07/28 17:35:44 | 000,262,144 | ---- | M] (Arcai.com) -- C:\Program Files\NetCutDefender\services\AIPS.exe PRC - [2010/11/20 22:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2010/08/02 20:38:30 | 000,237,568 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\FPSensor\bin\DpHost.exe PRC - [2008/09/25 13:07:58 | 000,181,624 | ---- | M] (CANON INC.) -- C:\Windows\System32\spool\drivers\w32x86\3\CNAP2RPK.EXE PRC - [2008/09/22 07:02:08 | 001,119,624 | ---- | M] (CANON INC.) -- C:\Windows\System32\spool\drivers\w32x86\3\CNAB8SWK.EXE PRC - [2007/09/06 00:48:00 | 000,406,944 | ---- | M] (CANON INC.) -- C:\Windows\System32\spool\drivers\w32x86\3\CNAP2LAK.EXE PRC - [2007/01/29 17:34:06 | 000,598,920 | ---- | M] (Piriform Ltd) -- C:\Program Files\CCleaner\CCleaner.exe PRC - [2003/11/12 02:41:48 | 000,114,688 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\OmniPagePro14.0\OpScheduler.exe PRC - [2003/11/12 02:40:36 | 000,139,363 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\OmniPagePro14.0\WorkFlowTray.exe PRC - [2003/11/12 02:39:30 | 000,057,344 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\OmniPagePro14.0\opware14.exe PRC - [2003/11/12 01:20:48 | 000,020,480 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\OmniPagePro14.0\PdfPrn\SPrnAgent.exe PRC - [2003/05/08 11:00:58 | 000,049,152 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2007/01/31 15:21:02 | 000,024,064 | ---- | M] () -- C:\Program Files\CCleaner\lang-1036.dll MOD - [2006/12/03 14:53:06 | 000,126,464 | ---- | M] () -- C:\Program Files\WinRAR\rarext.dll MOD - [2005/05/12 09:04:26 | 000,049,152 | ---- | M] () -- C:\Program Files\CCleaner\ccleaner.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2016/02/10 11:32:49 | 000,269,504 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2016/01/22 06:52:03 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService) SRV - [2015/12/13 23:48:02 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2014/04/20 16:15:58 | 000,233,552 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe -- (AVP15.0.0) SRV - [2013/05/27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend) SRV - [2012/02/13 21:19:20 | 000,240,408 | ---- | M] (Microsoft Corporation.) [On_Demand | Running] -- C:\Program Files\Microsoft\BingBar\7.1.362.0\SeaPort.exe -- (BBUpdate) SRV - [2012/02/13 21:19:20 | 000,193,816 | ---- | M] (Microsoft Corporation.) [Auto | Stopped] -- C:\Program Files\Microsoft\BingBar\7.1.362.0\BBSvc.exe -- (BBSvc) SRV - [2012/01/13 20:40:30 | 000,268,800 | ---- | M] (ZKSoftware Inc) [Auto | Running] -- C:\Program Files\FPSensor\bin\iZHost.exe -- (iZHost) SRV - [2011/07/28 17:35:44 | 000,262,144 | ---- | M] (Arcai.com) [Auto | Running] -- C:\Program Files\NetCutDefender\services\AIPS.exe -- (AIPS) SRV - [2010/08/02 20:38:30 | 000,237,568 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files\FPSensor\bin\DpHost.exe -- (DpHost) SRV - [2010/06/25 18:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) SRV - [2009/07/14 02:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc) SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009/07/14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2015/04/14 13:33:40 | 000,644,808 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF) DRV - [2015/04/14 13:33:39 | 000,112,136 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klflt.sys -- (klflt) DRV - [2014/04/10 17:25:32 | 000,034,400 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klhk.sys -- (klhk) DRV - [2014/03/28 17:51:02 | 000,024,672 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klkbdflt.sys -- (klkbdflt) DRV - [2014/03/26 17:05:26 | 000,145,888 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kneps.sys -- (kneps) DRV - [2014/03/25 16:26:04 | 000,045,024 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kltdi.sys -- (kltdi) DRV - [2014/02/25 13:09:02 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6) DRV - [2014/02/20 12:59:02 | 000,135,264 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\kl1.sys -- (kl1) DRV - [2013/08/08 17:10:58 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt) DRV - [2013/07/17 22:43:40 | 000,016,880 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\iusb3hcs.sys -- (iusb3hcs) DRV - [2013/04/12 15:34:48 | 000,014,432 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klpd.sys -- (klpd) DRV - [2011/09/08 16:40:24 | 000,363,112 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2010/11/20 22:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV - [2010/11/20 22:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus) DRV - [2010/11/20 22:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc) DRV - [2010/11/20 22:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt) DRV - [2010/11/20 22:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc) DRV - [2010/11/20 22:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD) DRV - [2010/11/20 22:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID) DRV - [2010/11/20 22:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap) DRV - [2010/08/02 20:35:36 | 000,047,104 | ---- | M] (DigitalPersona, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbdpfp.sys -- (usbdpfp) DRV - [2010/08/02 20:35:36 | 000,046,592 | ---- | M] (DigitalPersona, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dpK00701.sys -- (dpK00701) DRV - [2010/06/25 18:07:14 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\npf.sys -- (NPF) DRV - [2009/07/13 23:02:52 | 000,043,008 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2007/06/18 13:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr) [color=#E56717]========== Standard Registry (All) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation) IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation) IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ar-eg/?ocid=iehp IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 42 90 F0 76 B9 6E D0 01 [binary data] IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation) IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 IE - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: {3C5F0F00-683D-4847-89C8-E7AF64FD1CFB}:1.3.334.2 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.3 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@kaspersky.com/content_blocker: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2015/04/14 13:34:01 | 000,000,000 | ---D | M] FF - HKLM\Software\MozillaPlugins\@kaspersky.com/online_banking: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2015/04/14 13:34:01 | 000,000,000 | ---D | M] FF - HKLM\Software\MozillaPlugins\@kaspersky.com/virtual_keyboard: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2015/04/14 13:34:02 | 000,000,000 | ---D | M] FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\content_blocker@kaspersky.com: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2015/04/14 13:34:01 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtual_keyboard@kaspersky.com: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2015/04/14 13:34:02 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\url_advisor@kaspersky.com: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com [2015/04/14 13:34:01 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\anti_banner@kaspersky.com: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com [2015/04/14 13:34:01 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\online_banking@kaspersky.com: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2015/04/14 13:34:01 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3C5F0F00-683D-4847-89C8-E7AF64FD1CFB}: C:\Program Files\RelevantKnowledge [2015/11/16 09:12:33 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2015/03/22 13:31:09 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2016/01/14 09:30:07 | 000,000,000 | ---D | M] [2015/02/01 13:06:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\3D\AppData\Roaming\mozilla\Extensions [2015/02/01 13:06:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\3D\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2015/02/01 13:06:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\3D\AppData\Roaming\mozilla\Firefox\Profiles\ql3tzwyv.default\extensions [2015/01/31 11:03:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions [2015/01/31 11:03:14 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2015/11/16 09:12:33 | 000,000,000 | ---D | M] (RelevantKnowledge) -- C:\PROGRAM FILES\RELEVANTKNOWLEDGE [2008/09/25 14:42:53 | 000,023,040 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll [2008/09/25 14:42:53 | 000,134,656 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll [2008/09/25 14:42:53 | 000,065,536 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll [2006/10/26 20:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2015/12/18 16:42:30 | 000,225,976 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015/01/31 11:04:02 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015/01/31 11:04:02 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015/01/31 11:04:02 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015/01/31 11:04:02 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015/01/31 11:04:02 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015/01/31 11:04:02 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2015/01/31 11:04:02 | 000,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2006/09/10 12:35:08 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml [2006/06/04 19:56:02 | 000,001,055 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml [2008/04/16 05:08:20 | 000,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml [2006/09/10 12:35:08 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml [2008/03/29 14:59:44 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml [2006/09/12 19:49:04 | 000,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml [color=#E56717]========== Chrome ==========[/color] CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.20.8.63909_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle\1.3.337.3_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\mppnoffgpafgpgbaigljliadgbnhljfl\1.1_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf\1.1_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\ CHR - Extension: No name found = C:\Users\3D\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\ O1 HOSTS File: ([2016/02/09 11:08:43 | 000,000,851 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) O2 - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Safe Money Plugin) - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.362.0\BingExt.dll (Microsoft Corporation.) O2 - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll () O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.362.0\BingExt.dll (Microsoft Corporation.) O4 - HKLM..\Run: [CNAP2 Launcher] C:\Windows\System32\spool\drivers\w32x86\3\CNAP2LAK.EXE (CANON INC.) O4 - HKLM..\Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe (Intel Corporation) O4 - HKLM..\Run: [IgfxTray] C:\Windows\System32\igfxtray.exe (Intel Corporation) O4 - HKLM..\Run: [OP14 Reminder] C:\Program Files\ScanSoft\OmniPagePro14.0\EregFre\Ereg.exe () O4 - HKLM..\Run: [OpScheduler] C:\Program Files\ScanSoft\OmniPagePro14.0\OpScheduler.exe (ScanSoft, Inc.) O4 - HKLM..\Run: [OPSE reminder] C:\Program Files\ScanSoft\OmniPageSE2.0\EregFre\Ereg.exe () O4 - HKLM..\Run: [Opware14] C:\Program Files\ScanSoft\OmniPagePro14.0\Opware14.exe (ScanSoft, Inc.) O4 - HKLM..\Run: [OpwareSE2] C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe (ScanSoft, Inc.) O4 - HKLM..\Run: [PDF Converter Registry Controller] C:\Program Files\ScanSoft\OmniPagePro14.0\PdfCnv\RegistryController.exe (ScanSoft, Inc.) O4 - HKLM..\Run: [Persistence] C:\Windows\System32\igfxpers.exe (Intel Corporation) O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.) O4 - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Scansoft, Inc.) O4 - HKLM..\Run: [SSPrnAgent] C:\Program Files\ScanSoft\OmniPagePro14.0\PdfPrn\SPrnAgent.exe (ScanSoft, Inc.) O4 - HKLM..\Run: [WorkFlowTray] C:\Program Files\ScanSoft\OmniPagePro14.0\WorkFlowTray.exe (ScanSoft, Inc.) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17 O7 - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: msdll = C:\Windows\ms1dll0.exe O7 - HKU\S-1-5-21-3997265195-2959067916-1336028185-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: mssky = www.dzaier.sitew.com O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\ie_banner_deny.htm () O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files\Canon\Easy-WebPrint\Resource.dll () O8 - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files\Canon\Easy-WebPrint\Resource.dll () O8 - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files\Canon\Easy-WebPrint\Resource.dll () O8 - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files\Canon\Easy-WebPrint\Resource.dll () O8 - Extra context menu item: Ouvrir le fichier PDF dans Word - C:\Program Files\ScanSoft\OmniPagePro14.0\PdfCnv\IEShellExt.dll (ScanSoft, Inc.) O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.) O9 - Extra Button: Clavier virtuel - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra Button: Analyse des liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A6B7B1EB-382D-4E5D-BD67-4C4B8FA94EB1}: NameServer = 192.168.1.1 O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation) O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation) O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation) O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation) O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation) O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\System32\igfxdev.dll (Intel Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation) O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation) O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation) O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation) O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation) O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation) O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation) O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation) O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{1698b0fd-cf03-11e5-aad7-00e04a09e31d}\Shell - "" = AutoRun O33 - MountPoints2\{1698b0fd-cf03-11e5-aad7-00e04a09e31d}\Shell\AutoRun\command - "" = G:\autorun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation) NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: NTDS - File not found SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vmms - Service SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: HelpSvc - Service SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NTDS - File not found SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vmms - Service SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SafeBootNet: WudfUsbccidDriver - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {66C64F22-FC60-4E6C-A6B5-F0D580E680CE} - C:\Windows\System32\ie4uinit.exe -EnableTLS ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {7D715857-A67C-4C2F-A929-038448584D63} - C:\Windows\System32\ie4uinit.exe -DisableSSL3 ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files\Google\Chrome\Application\49.0.2623.75\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.ffds - C:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll () CREATERESTOREPOINT Restore point Set: OTL Restore Point [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2016/02/23 15:35:40 | 000,000,000 | ---D | C] -- C:\Users\3D\Desktop\co-signataire [2016/02/13 11:45:21 | 000,000,000 | ---D | C] -- C:\Users\3D\Desktop\Nouveau dossier (3) [2016/02/10 08:15:31 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll [2016/02/10 08:15:31 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jnwmon.dll [2016/02/10 08:15:30 | 002,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2016/02/10 08:15:27 | 003,993,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2016/02/10 08:15:27 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll [2016/02/10 08:15:27 | 000,535,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll [2016/02/10 08:15:26 | 003,938,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2016/02/10 08:15:26 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msorcl32.dll [2016/02/10 08:15:25 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll [2016/02/10 08:15:25 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe [2016/02/10 08:15:25 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe [2016/02/10 08:15:25 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll [2016/02/10 08:15:25 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll [2016/02/10 08:15:25 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe [2016/02/10 08:15:25 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll [2016/02/10 08:15:25 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll [2016/02/10 08:15:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll [2016/02/10 08:15:25 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll [2016/02/10 08:15:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll [2016/02/10 08:15:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll [2016/02/10 08:15:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll [2016/02/10 08:15:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll [2016/02/10 08:15:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll [2016/02/10 08:15:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll [2016/02/10 08:15:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll [2016/02/10 08:15:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll [2016/02/10 08:15:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll [2016/02/10 08:15:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll [2016/02/10 08:15:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll [2016/02/10 08:15:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll [2016/02/10 08:15:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll [2016/02/10 08:15:24 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll [2016/02/10 08:15:24 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll [2016/02/10 08:15:24 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll [2016/02/10 08:15:24 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll [2016/02/10 08:15:24 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll [2016/02/10 08:15:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll [2016/02/10 08:15:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll [2016/02/10 08:15:19 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2016/02/10 08:15:16 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2016/02/10 08:14:27 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2016/02/10 08:14:27 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe [2016/02/10 08:14:27 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [2016/02/10 08:14:27 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll [2016/02/10 08:14:26 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2016/02/10 08:14:26 | 000,687,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2016/02/10 08:14:26 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe [2016/02/10 08:14:26 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll [2016/02/10 08:14:26 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2016/02/10 08:14:26 | 000,341,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2016/02/10 08:14:26 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2016/02/10 08:14:26 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2016/02/10 08:14:26 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2016/02/10 08:14:26 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2016/02/10 08:14:25 | 002,050,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2016/02/10 08:14:25 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2016/02/10 08:14:24 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2016/02/10 08:14:24 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll [2016/02/10 08:14:23 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2016/02/10 08:14:22 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2016/02/10 08:14:21 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll [2016/02/10 08:14:20 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll [2016/02/10 08:14:18 | 004,611,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2016/02/09 11:08:03 | 000,000,000 | ---D | C] -- C:\wamp [2016/01/24 11:26:53 | 000,000,000 | ---D | C] -- C:\Program Files\BAG_SPA [2016/01/24 11:26:35 | 000,304,128 | ---- | C] (InstallShield Corporation, Inc.) -- C:\Windows\unin040c.exe [2016/01/14 14:56:58 | 000,000,000 | ---D | C] -- C:\Users\3D\AppData\Local\CEF [2016/01/14 11:07:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programme de désinstallation de l'imprimante Canon [2016/01/14 09:29:48 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2016/01/14 09:14:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt [2016/01/14 08:38:23 | 000,000,000 | ---D | C] -- C:\LBP3010_R102_V101_Win_x64_uk_FR_7 [2016/01/13 15:47:12 | 000,221,184 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNAP2LMK.DLL [2016/01/13 15:47:09 | 000,385,024 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNAB8EMK.DLL [2016/01/13 08:16:28 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll [2016/01/13 08:16:26 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mapistub.dll [2016/01/13 08:16:26 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mapi32.dll [2016/01/13 08:16:26 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fixmapi.exe [2016/01/13 08:16:23 | 003,209,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll [2016/01/13 08:16:23 | 002,285,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll [2016/01/13 08:16:23 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL [2016/01/13 08:16:23 | 000,970,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2adec.dll [2016/01/13 08:16:23 | 000,902,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMADMOD.DLL [2016/01/13 08:16:23 | 000,829,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2ENC.DLL [2016/01/13 08:16:22 | 001,568,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL [2016/01/13 08:16:22 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2016/01/13 08:16:22 | 000,815,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMADMOE.DLL [2016/01/13 08:16:22 | 000,740,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll [2016/01/13 08:16:22 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL [2016/01/13 08:16:22 | 000,728,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll [2016/01/13 08:16:22 | 000,665,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL [2016/01/13 08:16:22 | 000,609,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFWMAAEC.DLL [2016/01/13 08:16:22 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL [2016/01/13 08:16:22 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll [2016/01/13 08:16:22 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll [2016/01/13 08:16:22 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSENCD.DLL [2016/01/13 08:16:22 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll [2016/01/13 08:16:22 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MPG4DECD.DLL [2016/01/13 08:16:22 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP43DECD.DLL [2016/01/13 08:16:22 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COLORCNV.DLL [2016/01/13 08:16:22 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devenum.dll [2016/01/13 08:16:21 | 001,325,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOE.DLL [2016/01/13 08:16:21 | 000,415,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL [2016/01/13 08:16:21 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RESAMPLEDMO.DLL [2016/01/13 08:16:21 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qasf.dll [2016/01/13 08:16:21 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksproxy.ax [2016/01/13 08:16:21 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VIDRESZR.DLL [2016/01/13 08:16:21 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll [2016/01/13 08:16:21 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP3DMOD.DLL [2016/01/13 08:16:21 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfvdsp.dll [2016/01/13 08:16:21 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe [2016/01/13 08:16:21 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe [2016/01/13 08:16:21 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll [2016/01/13 08:16:21 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll [2013/09/20 21:41:16 | 031,142,400 | ---- | C] (Konami Digital Entertainment Co., Ltd.) -- C:\Users\3D\pes2014.exe [2013/08/22 02:20:14 | 001,386,864 | ---- | C] (Konami Digital Entertainment Co., Ltd.) -- C:\Users\3D\settings.exe [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2016/03/03 12:04:35 | 000,096,005 | ---- | M] () -- C:\Users\3D\Documents\cc_20160303_1204.reg [2016/03/03 11:51:06 | 000,696,988 | ---- | M] () -- C:\Windows\System32\perfh00C.dat [2016/03/03 11:51:06 | 000,618,714 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2016/03/03 11:51:06 | 000,130,820 | ---- | M] () -- C:\Windows\System32\perfc00C.dat [2016/03/03 11:51:06 | 000,107,034 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2016/03/03 11:45:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2016/03/03 11:32:01 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2016/03/03 11:21:01 | 000,000,832 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2016/03/03 11:02:53 | 000,031,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2016/03/03 11:02:53 | 000,031,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2016/03/03 10:48:21 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2016/03/03 10:48:21 | 000,000,828 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2016/03/03 10:48:09 | 1602,985,984 | -HS- | M] () -- C:\hiberfil.sys [2016/03/03 10:30:15 | 000,000,412 | ---- | M] () -- C:\Windows\tasks\Bidaily Synchronize Task[973b].job [2016/03/03 08:34:10 | 000,002,127 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2016/02/16 08:23:14 | 000,092,833 | ---- | M] () -- C:\Users\3D\Desktop\mise_en_forme_champs_publipostage.pdf [2016/02/11 09:35:34 | 000,340,928 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2016/02/10 11:32:48 | 000,796,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2016/02/10 11:32:48 | 000,142,528 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2016/02/06 10:54:50 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2016/02/06 10:38:27 | 000,476,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2016/02/02 11:09:35 | 000,428,548 | ---- | M] () -- C:\Users\3D\Desktop\Factures SARG.pdf [2016/01/22 21:10:31 | 000,341,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2016/01/22 07:14:07 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll [2016/01/22 07:13:15 | 003,993,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2016/01/22 07:13:15 | 003,938,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2016/01/22 07:06:34 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll [2016/01/22 07:06:11 | 000,400,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll [2016/01/22 07:04:36 | 000,642,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll [2016/01/22 07:02:58 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll [2016/01/22 07:02:52 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msorcl32.dll [2016/01/22 07:02:49 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll [2016/01/22 07:02:26 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll [2016/01/22 07:02:01 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2016/01/22 07:01:26 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll [2016/01/22 07:01:17 | 000,341,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2016/01/22 07:00:26 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll [2016/01/22 06:59:35 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll [2016/01/22 06:59:07 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll [2016/01/22 06:59:07 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll [2016/01/22 06:59:07 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll [2016/01/22 06:59:07 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll [2016/01/22 06:59:07 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll [2016/01/22 06:59:07 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll [2016/01/22 06:59:07 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll [2016/01/22 06:59:07 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll [2016/01/22 06:59:07 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll [2016/01/22 06:59:06 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll [2016/01/22 06:55:34 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2016/01/22 06:55:04 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2016/01/22 06:52:03 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe [2016/01/22 06:51:56 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2016/01/22 06:51:37 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll [2016/01/22 06:46:58 | 000,667,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe [2016/01/22 06:43:59 | 000,416,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2016/01/22 06:39:38 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [2016/01/22 06:38:51 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2016/01/22 06:37:07 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2016/01/22 06:35:15 | 004,611,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2016/01/22 06:34:56 | 000,279,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2016/01/22 06:25:31 | 000,687,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2016/01/22 06:25:22 | 000,684,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2016/01/22 06:24:59 | 002,050,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2016/01/22 06:24:40 | 001,155,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll [2016/01/22 06:07:09 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe [2016/01/22 06:02:12 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2016/01/22 06:01:48 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe [2016/01/22 06:00:13 | 000,262,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe [2016/01/22 05:51:52 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll [2016/01/22 05:51:40 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll [2016/01/22 05:51:40 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll [2016/01/22 05:51:40 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll [2016/01/22 05:51:40 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll [2016/01/14 09:30:07 | 000,002,017 | ---- | M] () -- C:\Users\Public\Desktop\Acrobat Reader DC.lnk [2016/01/07 18:47:26 | 002,386,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2016/01/06 19:41:10 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll [2016/01/06 18:56:06 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jnwmon.dll [2016/01/06 09:29:47 | 000,054,156 | -H-- | M] () -- C:\Windows\QTFont.qfn [color=#E56717]========== Files Created - No Company Name ==========[/color] [2016/03/03 12:04:22 | 000,096,005 | ---- | C] () -- C:\Users\3D\Documents\cc_20160303_1204.reg [2016/02/16 08:23:14 | 000,092,833 | ---- | C] () -- C:\Users\3D\Desktop\mise_en_forme_champs_publipostage.pdf [2016/02/02 11:10:03 | 000,428,548 | ---- | C] () -- C:\Users\3D\Desktop\Factures SARG.pdf [2016/01/14 09:30:07 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk [2016/01/14 09:30:07 | 000,002,017 | ---- | C] () -- C:\Users\Public\Desktop\Acrobat Reader DC.lnk [2015/10/20 10:33:14 | 000,000,050 | ---- | C] () -- C:\Windows\ABALWCNF.INI [2015/10/20 10:22:09 | 000,000,077 | ---- | C] () -- C:\Windows\newstock.INI [2015/07/08 11:24:29 | 002,563,811 | ---- | C] () -- C:\Users\3D\Certificat NOUAR Walid.rar [2015/07/01 11:29:06 | 004,464,613 | ---- | C] () -- C:\Users\3D\Fin de contrats.rar [2015/07/01 11:25:50 | 014,598,785 | ---- | C] () -- C:\Users\3D\Contrats ZEGHID Hakim.rar [2015/04/07 09:14:01 | 000,000,074 | ---- | C] () -- C:\Windows\avast5.ini [2015/04/07 09:14:01 | 000,000,002 | ---- | C] () -- C:\Windows\System32\avast5.ini [2015/04/06 11:32:32 | 000,008,704 | ---- | C] () -- C:\Windows\System32\CNMVS7I.DLL [2015/03/22 13:42:55 | 000,000,935 | ---- | C] () -- C:\Windows\MAXLINK.INI [2015/03/09 13:08:57 | 000,000,000 | ---- | C] () -- C:\Windows\WD.INI [2015/02/10 11:30:25 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini [2015/02/01 15:56:25 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl [2015/02/01 15:55:51 | 005,681,192 | ---- | C] () -- C:\Windows\System32\drivers\rtvienna.dat [2015/02/01 15:55:51 | 000,646,313 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT [2015/02/01 15:55:36 | 000,502,584 | ---- | C] () -- C:\Windows\System32\audioLibVc.dll [2015/02/01 15:55:36 | 000,188,696 | ---- | C] () -- C:\Windows\System32\AcpiServiceVnA.dll [2015/02/01 14:33:39 | 000,421,888 | ---- | C] () -- C:\Windows\System32\genpcid10.exe [2015/02/01 14:33:39 | 000,102,400 | ---- | C] () -- C:\Windows\System32\usb_dll.dll [2015/02/01 14:33:39 | 000,005,461 | ---- | C] () -- C:\Windows\System32\izscrr1b55.bin [2015/02/01 14:33:38 | 000,710,656 | ---- | C] () -- C:\Windows\System32\match.dll [2015/02/01 14:33:38 | 000,136,192 | ---- | C] () -- C:\Windows\System32\FPCom.dll [2015/02/01 14:33:38 | 000,102,400 | ---- | C] () -- C:\Windows\System32\UVCXUControl.dll [2015/02/01 14:33:38 | 000,086,016 | ---- | C] () -- C:\Windows\System32\fpslib.dll [2015/02/01 14:33:38 | 000,083,968 | ---- | C] () -- C:\Windows\System32\fpslib_m.dll [2015/02/01 14:33:38 | 000,080,384 | ---- | C] () -- C:\Windows\System32\zkfpri.dll [2015/02/01 14:33:38 | 000,041,984 | ---- | C] () -- C:\Windows\System32\matchdll.dll [2015/02/01 14:33:38 | 000,040,960 | ---- | C] () -- C:\Windows\System32\dewarp.dll [2015/02/01 14:33:11 | 000,100,352 | ---- | C] () -- C:\Windows\System32\plce.dll [2015/02/01 14:33:10 | 000,161,280 | ---- | C] () -- C:\Windows\System32\rscagent.dll [2015/02/01 14:33:10 | 000,146,432 | ---- | C] () -- C:\Windows\System32\usbcomm.dll [2015/02/01 14:33:09 | 000,209,408 | ---- | C] () -- C:\Windows\System32\zkemsdk.dll [2015/02/01 14:33:09 | 000,184,320 | ---- | C] () -- C:\Windows\System32\rscomm.dll [2015/02/01 14:33:09 | 000,064,512 | ---- | C] () -- C:\Windows\System32\commpro.dll [2015/02/01 14:33:09 | 000,043,520 | ---- | C] () -- C:\Windows\System32\tcpcomm.dll [2015/02/01 14:33:09 | 000,043,520 | ---- | C] () -- C:\Windows\System32\comms.dll [2015/02/01 13:06:12 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat [2015/01/31 10:43:55 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll [2013/09/20 21:23:54 | 000,182,784 | ---- | C] () -- C:\Users\3D\PESEdit Selector.exe [color=#E56717]========== ZeroAccess Check ==========[/color] [2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2015/08/06 18:44:51 | 012,875,776 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 22:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2015/03/26 16:36:07 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Apowersoft [2016/02/22 13:53:41 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Canon [2015/05/28 07:58:26 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\DMCache [2015/05/28 07:58:25 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\IDM [2015/04/01 12:47:25 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\MPC-HC [2015/04/30 15:28:53 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\OpenCandy [2015/04/28 11:11:28 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\RHEng [2015/04/06 11:37:13 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\ScanSoft [2016/02/23 08:23:22 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color] [color=#A23BEC]< %APPDATA%\*. >[/color] [2015/04/09 12:48:56 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Adobe [2015/03/26 16:36:07 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Apowersoft [2016/02/22 13:53:41 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Canon [2015/05/28 07:58:26 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\DMCache [2015/01/31 10:36:09 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Identities [2015/05/28 07:58:25 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\IDM [2015/03/05 12:55:37 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Macromedia [2011/04/12 02:44:56 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Media Center Programs [2015/11/26 13:44:49 | 000,000,000 | --SD | M] -- C:\Users\3D\AppData\Roaming\Microsoft [2015/02/01 13:06:11 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Mozilla [2015/04/01 12:47:25 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\MPC-HC [2015/04/30 15:28:53 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\OpenCandy [2015/03/22 13:31:06 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\Real [2015/04/28 11:11:28 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\RHEng [2015/04/06 11:37:13 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\ScanSoft [2016/02/23 08:23:22 | 000,000,000 | ---D | M] -- C:\Users\3D\AppData\Roaming\uTorrent [color=#A23BEC]< %APPDATA%\*.exe /s >[/color] [2015/05/28 07:58:25 | 006,231,304 | ---- | M] (Tonec Inc.) -- C:\Users\3D\AppData\Roaming\IDM\idmupdt.exe [2015/04/30 15:28:58 | 000,198,640 | ---- | M] (OpenCandy) -- C:\Users\3D\AppData\Roaming\OpenCandy\OpenCandy_90D58A4932B64720A877583815E3E9BD\dh119i.exe [2015/04/30 15:29:02 | 000,073,408 | ---- | M] () -- C:\Users\3D\AppData\Roaming\OpenCandy\OpenCandy_90D58A4932B64720A877583815E3E9BD\dyesubd2_p3v1.exe [2015/04/28 11:11:29 | 000,198,640 | ---- | M] (OpenCandy) -- C:\Users\3D\AppData\Roaming\RHEng\421E810E56B649C786B0809948112E2C\dh119g.exe [2015/04/28 11:11:28 | 000,198,640 | ---- | M] (OpenCandy) -- C:\Users\3D\AppData\Roaming\RHEng\5F312A3149924B5DA7D3FA2B1CE0F63F\dh119g.exe [2015/04/28 11:11:36 | 000,073,408 | ---- | M] () -- C:\Users\3D\AppData\Roaming\RHEng\5F312A3149924B5DA7D3FA2B1CE0F63F\dyesubd1_p3v0.exe [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [2013/09/20 16:07:26 | 031,142,400 | ---- | M] (Konami Digital Entertainment Co., Ltd.) -- C:\pes2014.exe [2013/09/20 21:39:35 | 000,182,784 | ---- | M] () -- C:\PESEdit Selector.exe [2013/08/22 02:20:14 | 001,386,864 | ---- | M] (Konami Digital Entertainment Co., Ltd.) -- C:\settings.exe [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys [2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys [2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys [color=#A23BEC]< MD5 for: ALG.EXE >[/color] [2009/07/14 02:14:11 | 000,059,392 | ---- | M] (Microsoft Corporation) MD5=18A54E132947CD98FEA9ACCC57F98F13 -- C:\Windows\System32\alg.exe [2009/07/14 02:14:11 | 000,059,392 | ---- | M] (Microsoft Corporation) MD5=18A54E132947CD98FEA9ACCC57F98F13 -- C:\Windows\winsxs\x86_microsoft-windows-alg_31bf3856ad364e35_6.1.7600.16385_none_a8bfa843bc721ead\alg.exe [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys [2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys [2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2010/11/20 22:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys [2010/11/20 22:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys [2010/11/20 22:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys [color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color] [2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll [2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll [color=#A23BEC]< MD5 for: CSRSS.EXE >[/color] [2009/07/14 02:14:16 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=342271F6142E7C70805B8A81E1BA5F5C -- C:\Windows\System32\csrss.exe [2009/07/14 02:14:16 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=342271F6142E7C70805B8A81E1BA5F5C -- C:\Windows\winsxs\x86_microsoft-windows-csrss_31bf3856ad364e35_6.1.7600.16385_none_58ba39fb456943bd\csrss.exe [color=#A23BEC]< MD5 for: CTFMON.EXE >[/color] [2009/07/14 02:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4A3CDCEF8ED41B221F3DBEF5792FB52D -- C:\Windows\System32\ctfmon.exe [2009/07/14 02:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4A3CDCEF8ED41B221F3DBEF5792FB52D -- C:\Windows\winsxs\x86_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_9d06e2f6f1e51f98\ctfmon.exe [color=#A23BEC]< MD5 for: DISK.SYS >[/color] [2009/07/14 02:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A68E9FF -- C:\Windows\System32\drivers\disk.sys [2009/07/14 02:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A68E9FF -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_x86_neutral_b431b61a11f8df6c\disk.sys [2009/07/14 02:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A68E9FF -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.1.7600.16385_none_f99cd807d58018cb\disk.sys [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2010/11/20 22:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\explorer.exe [2010/11/20 22:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe [color=#A23BEC]< MD5 for: I8042PRT.SYS >[/color] [2009/07/14 00:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\System32\drivers\i8042prt.sys [2009/07/14 00:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_x86_neutral_50ad659974198591\i8042prt.sys [2009/07/14 00:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_x86_neutral_7a9084e0177406eb\i8042prt.sys [2009/07/14 00:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.1.7601.17514_none_9955d7c4373b0589\i8042prt.sys [2009/07/14 00:11:24 | 000,080,896 | ---- | M] (Microsoft Corporation) MD5=F151F0BDC47F4A28B1B20A0818EA36D6 -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.1.7600.16385_none_4e0a61a033aec8c3\i8042prt.sys [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color] [2010/11/20 22:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\drivers\iaStorV.sys [2010/11/20 22:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys [2010/11/20 22:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys [color=#A23BEC]< MD5 for: INTELIDE.SYS >[/color] [2009/07/14 02:20:36 | 000,015,424 | ---- | M] (Microsoft Corporation) MD5=A0F12F2C9BA6C72F3987CE780E77C130 -- C:\Windows\System32\drivers\intelide.sys [2009/07/14 02:20:36 | 000,015,424 | ---- | M] (Microsoft Corporation) MD5=A0F12F2C9BA6C72F3987CE780E77C130 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\intelide.sys [2009/07/14 02:20:36 | 000,015,424 | ---- | M] (Microsoft Corporation) MD5=A0F12F2C9BA6C72F3987CE780E77C130 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\intelide.sys [color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color] [2015/07/15 18:54:17 | 000,078,784 | ---- | M] (Microsoft Corporation) MD5=2F3DFD64D97830B5F00D2BFC4AC1445F -- C:\Windows\winsxs\x86_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.1.7601.23136_none_f515552a7e742878\mountmgr.sys [2015/02/03 04:16:30 | 000,078,784 | ---- | M] (Microsoft Corporation) MD5=644905A19D0F37F2233DFCE53BC4BC19 -- C:\Windows\winsxs\x86_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.1.7601.18741_none_f47c0b136562f85c\mountmgr.sys [2015/02/03 04:38:15 | 000,078,784 | ---- | M] (Microsoft Corporation) MD5=B4867EA6A6BC23EBE4DB0839ED3E3DC2 -- C:\Windows\winsxs\x86_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.1.7601.22948_none_f50cabca7e7a46ae\mountmgr.sys [2015/07/15 18:59:44 | 000,078,784 | ---- | M] (Microsoft Corporation) MD5=BAD9C0366134BA181514E9263C8CE606 -- C:\Windows\System32\drivers\mountmgr.sys [2015/07/15 18:59:44 | 000,078,784 | ---- | M] (Microsoft Corporation) MD5=BAD9C0366134BA181514E9263C8CE606 -- C:\Windows\winsxs\x86_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.1.7601.18933_none_f488df5f65590967\mountmgr.sys [2010/11/20 22:29:11 | 000,078,208 | ---- | M] (Microsoft Corporation) MD5=FC8771F45ECCCFD89684E38842539B9B -- C:\Windows\winsxs\x86_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.1.7601.17514_none_f49f8eb16547dc9f\mountmgr.sys [color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color] [2015/07/15 02:47:39 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=000C1EEF05D422A76E57E84736EF25F0 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23126_none_82196d85c883b816\mrxsmb.sys [2015/07/01 20:18:29 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=01C5B803F6E1FDF8F16F0763DA9B997D -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.18912_none_8196c75caf6163bd\mrxsmb.sys [2015/10/17 17:32:41 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=08855AAA5B91863D79AEC5F13751DDC0 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.19044_none_8178304eaf781d80\mrxsmb.sys [2015/10/16 17:31:50 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=19333B28C8A0EEA3484D83CB3D761FE8 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.19043_none_81773004af790429\mrxsmb.sys [2015/12/30 18:32:28 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=1D5CC65FECC628397CB72F87DD6A78F3 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.19110_none_8194a0d0af636178\mrxsmb.sys [2015/09/29 02:43:10 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=249FE98BD066894910A32DD53C8C5D16 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.19018_none_819ca13aaf5c2f09\mrxsmb.sys [2015/10/01 17:33:42 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=27CA5A47023AE986A16CDD7A0AAD7093 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23226_none_82196f6bc883b53d\mrxsmb.sys [2011/04/27 03:15:30 | 000,123,904 | ---- | M] (Microsoft Corporation) MD5=39A8FF477B3F5D0EDFE814155841C735 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.21714_none_822275d1c87d251f\mrxsmb.sys [2015/06/27 17:36:53 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=40060C3F325133CF0B7244A20706D61B -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23112_none_82203c49c87f36c9\mrxsmb.sys [2015/10/16 17:30:52 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=49EA7522035C23D3F1734F470344593E -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23249_none_8206d071c8913924\mrxsmb.sys [2011/04/27 03:17:22 | 000,123,904 | ---- | M] (Microsoft Corporation) MD5=5D16C921E3671636C0EBA3BBAAC5FD25 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.17605_none_81a4a93caf5682bb\mrxsmb.sys [2015/08/04 17:45:44 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=5FD8FE8A4F26A48ABC023B738F853E87 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23153_none_81f5fce3c89ebfe4\mrxsmb.sys [2015/07/15 17:35:53 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=688E0D9C2F56F4A6C7156F067D43D2FD -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23136_none_820e9d99c88bd407\mrxsmb.sys [2015/07/15 02:46:05 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=7A97B5B6E04AB52FA53C8EA574913A04 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.18923_none_818cf7baaf689905\mrxsmb.sys [2016/01/17 00:08:23 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=877CD312D923BBAF51DB2353D79465CD -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23334_none_820ca0d1c88d9ba7\mrxsmb.sys [2016/01/16 18:33:38 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=A477E969D59B55D77E420C9DBB99D4AC -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.19131_none_81800142af72b2b1\mrxsmb.sys [2010/11/20 22:29:15 | 000,123,904 | ---- | M] (Microsoft Corporation) MD5=B272B4C3E085EA860C12F2E4FAF2FFA2 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.17514_none_8198d720af5f882e\mrxsmb.sys [2015/07/01 17:36:05 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=B379802B88B9F1E360E485099B4EB425 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23115_none_82233d27c87c82ce\mrxsmb.sys [2016/01/22 05:55:32 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=B69369AAB43B36B9EF3AB8596E6B5921 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23338_none_8210a1f9c88a0103\mrxsmb.sys [2015/09/28 17:35:15 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=C005DA60943770FBDF1984420AD28631 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23223_none_82166e8dc8866938\mrxsmb.sys [2015/10/20 00:28:56 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=C7492026F6691A92C4508DDDB041CE4E -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.19045_none_81793098af7736d7\mrxsmb.sys [2011/02/23 04:09:47 | 000,123,904 | ---- | M] (Microsoft Corporation) MD5=C76FD653DB8B90DA85EAD12B12FFFC9F -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.21666_none_81ee64e3c8a3e65b\mrxsmb.sys [2015/10/20 00:31:22 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=D40C0988C276D10C8284713FDD09338F -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23250_none_81f2fdebc8a17106\mrxsmb.sys [2015/06/27 17:37:29 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=E8D313F401499D79298E1559CF44D18D -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.18909_none_81a8994eaf52f92d\mrxsmb.sys [2016/01/22 05:53:23 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=E900BD16B9EE8F09609D7FBE2027B376 -- C:\Windows\System32\drivers\mrxsmb.sys [2016/01/22 05:53:23 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=E900BD16B9EE8F09609D7FBE2027B376 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.19135_none_8184026aaf6f180d\mrxsmb.sys [2015/12/30 18:39:19 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=ED0629D8C4725560A64C6C86684B7843 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.23313_none_8221405fc87e4a6e\mrxsmb.sys [2011/02/23 05:47:36 | 000,123,904 | ---- | M] (Microsoft Corporation) MD5=ED3D3419B064F28D812995ED8CADC541 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.17565_none_8163c7ceaf872d3a\mrxsmb.sys [2015/07/15 17:36:23 | 000,124,416 | ---- | M] (Microsoft Corporation) MD5=FEDAAB6716B44DE8B9EFC14DD9A26215 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7601.18933_none_818227ceaf70b4f6\mrxsmb.sys [color=#A23BEC]< MD5 for: MRXSMB10.SYS >[/color] [2015/07/01 17:36:35 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=23E85EB20A3C0ECA1A1DCF337D0E22A7 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23115_none_8b365b7bc2cdc130\mrxsmb10.sys [2015/07/15 02:47:54 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=2A67D41C8007F57A527CDFF7D8AEB0C3 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23126_none_8b2c8bd9c2d4f678\mrxsmb10.sys [2015/08/04 17:46:00 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=33760E8A56C6763A0F11F9CEECD747F3 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23153_none_8b091b37c2effe46\mrxsmb10.sys [2015/10/20 00:29:22 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=34779EBCFEAB87A236B33C365A637144 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.19045_none_8a8c4eeca9c87539\mrxsmb10.sys [2016/01/22 05:53:37 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=34F71B69DD2875AF07C4DDF19563C457 -- C:\Windows\System32\drivers\mrxsmb10.sys [2016/01/22 05:53:37 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=34F71B69DD2875AF07C4DDF19563C457 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.19135_none_8a9720bea9c0566f\mrxsmb10.sys [2015/10/17 17:33:13 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=3A2064610AA509B13BC009D4062C36A3 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.19044_none_8a8b4ea2a9c95be2\mrxsmb10.sys [2015/10/20 00:32:10 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=41510AC902C3BB24CE39253F3C4B18A4 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23250_none_8b061c3fc2f2af68\mrxsmb10.sys [2015/07/15 02:46:16 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=59C105984629EEF7B3B72B8235207575 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.18923_none_8aa0160ea9b9d767\mrxsmb10.sys [2015/12/30 18:39:46 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=5D13D1A4A5FF7D24E791EFE90008166E -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23313_none_8b345eb3c2cf88d0\mrxsmb10.sys [2015/09/28 17:35:40 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=60DE5932F96738F252CD051D9EE508D4 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23223_none_8b298ce1c2d7a79a\mrxsmb10.sys [2011/07/09 03:30:00 | 000,223,744 | ---- | M] (Microsoft Corporation) MD5=6D17A4791ACA19328C685D256349FEFC -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.17647_none_8a8e8874a9c6638f\mrxsmb10.sys [2015/07/15 17:36:44 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=77DD652AB8708CDB55FDB7073B868784 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.18933_none_8a954622a9c1f358\mrxsmb10.sys [2016/01/16 18:33:52 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=8681B1F2751FB07782F666BBA22042F9 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.19131_none_8a931f96a9c3f113\mrxsmb10.sys [2015/10/01 17:33:50 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=8804D6679CE7E6040B32421696CDF369 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23226_none_8b2c8dbfc2d4f39f\mrxsmb10.sys [2015/10/16 17:31:20 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=944171BAB4F40D6E2F7A04C3E85EEE46 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23249_none_8b19eec5c2e27786\mrxsmb10.sys [2010/11/20 22:29:13 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=9AC33EF26C8A3AD0F117D00EB7301D03 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.17514_none_8aabf574a9b0c690\mrxsmb10.sys [2016/01/22 05:55:54 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=9DAEA5984C6BDC6DD6B0639AC47549BA -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23338_none_8b23c04dc2db3f65\mrxsmb10.sys [2015/10/16 17:31:59 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=AAADA161E8164D15710EFD1B8EE1CF0C -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.19043_none_8a8a4e58a9ca428b\mrxsmb10.sys [2011/07/09 04:15:40 | 000,223,744 | ---- | M] (Microsoft Corporation) MD5=AC8EB88C4176892062CF7A8952943662 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.21767_none_8b028567c2f43b3b\mrxsmb10.sys [2015/07/15 17:35:57 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=BEE5EA8E1F77925487774ECC9E680C0B -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23136_none_8b21bbedc2dd1269\mrxsmb10.sys [2015/07/01 20:18:39 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=C48A8284F018BEAAFC7A027A570D9C84 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.18912_none_8aa9e5b0a9b2a21f\mrxsmb10.sys [2015/06/27 17:37:28 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=CF9AAE55496E550D20A4FAD8E78DD246 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23112_none_8b335a9dc2d0752b\mrxsmb10.sys [2015/06/27 17:38:06 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=D0AEE02BC9E7E966647841FEC2F018C4 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.18909_none_8abbb7a2a9a4378f\mrxsmb10.sys [2015/12/30 18:32:38 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=D405E63A7FEED75B40ACE03E57B44AB5 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.19110_none_8aa7bf24a9b49fda\mrxsmb10.sys [2016/01/17 00:08:32 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=DAC67668919A109E5EC720B3038F3730 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.23334_none_8b1fbf25c2deda09\mrxsmb10.sys [2011/02/23 05:47:45 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=DC914446049169A964E27FD8888FFAEE -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.17565_none_8a76e622a9d86b9c\mrxsmb10.sys [2015/09/29 02:43:28 | 000,225,792 | ---- | M] (Microsoft Corporation) MD5=F9DCC39B1F4797448213725BFE4A26AC -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.19018_none_8aafbf8ea9ad6d6b\mrxsmb10.sys [2011/02/23 04:10:01 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=FF9C1079052D007EF6650BD526437F08 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7601.21666_none_8b018337c2f524bd\mrxsmb10.sys [color=#A23BEC]< MD5 for: MRXSMB20.SYS >[/color] [2015/10/20 00:31:54 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=01AF56569C76EC6ED7B55D5E6133FE01 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23250_none_8d3c86520149e2d9\mrxsmb20.sys [2015/08/04 17:45:55 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=0C99E149EAAED5FBB8811A38D7C600DE -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23153_none_8d3f854a014731b7\mrxsmb20.sys [2015/10/16 17:31:11 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=0CDDD3D443DC15E979B1AFBE0E604283 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23249_none_8d5058d80139aaf7\mrxsmb20.sys [2016/01/22 05:53:33 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=14063258261AA807DAADC9233422A5E5 -- C:\Windows\System32\drivers\mrxsmb20.sys [2016/01/22 05:53:33 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=14063258261AA807DAADC9233422A5E5 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.19135_none_8ccd8ad0e81789e0\mrxsmb20.sys [2015/10/16 17:31:56 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=1928BD900B46A82DAE8595C02AA41A4E -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.19043_none_8cc0b86ae82175fc\mrxsmb20.sys [2015/07/15 17:35:52 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=27689A7AD30ADF2442CB66CE357C964A -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23136_none_8d582600013445da\mrxsmb20.sys [2015/10/01 17:33:41 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=2A5CC64208B4ED110F0D128A5A0A7ED0 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23226_none_8d62f7d2012c2710\mrxsmb20.sys [2015/12/30 18:39:43 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=4369367FB78BFE7A50B7778C30EAAA09 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23313_none_8d6ac8c60126bc41\mrxsmb20.sys [2015/10/17 17:32:53 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=48295E45158D34474A65A514E7528CED -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.19044_none_8cc1b8b4e8208f53\mrxsmb20.sys [2016/01/17 00:08:28 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=485C9F7F649DFBA55D882CD47045F98A -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23334_none_8d56293801360d7a\mrxsmb20.sys [2015/07/01 17:36:21 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=4A92DDE951F42360CAFC0AC27BECAF2B -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23115_none_8d6cc58e0124f4a1\mrxsmb20.sys [2015/07/15 17:36:23 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=4ACDB6414918D8920875B00B286E1FBC -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.18933_none_8ccbb034e81926c9\mrxsmb20.sys [2015/07/15 02:47:39 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=4FDCF05ED0346C73D148129B7EAE81CE -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23126_none_8d62f5ec012c29e9\mrxsmb20.sys [2016/01/22 05:55:48 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=5B0340F02610BF978FEBB90A53004DB6 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23338_none_8d5a2a60013272d6\mrxsmb20.sys [2016/01/16 18:33:45 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=6E470BB30A9C1A844AA0DA35D32A1944 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.19131_none_8cc989a8e81b2484\mrxsmb20.sys [2015/07/15 02:46:06 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=7AF31FE4FAAD7770919CF0D3E774D753 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.18923_none_8cd68020e8110ad8\mrxsmb20.sys [2011/02/23 04:09:55 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=86CF607351BF18DB7B0B3FE593F5791E -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.21666_none_8d37ed4a014c582e\mrxsmb20.sys [2011/04/27 03:15:40 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=94191E6C88850E7E8C6713B04FF01006 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.21714_none_8d6bfe38012596f2\mrxsmb20.sys [2015/09/29 02:43:11 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=B74DE20F28B634FFD5F5F2CAE9D4ABEE -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.19018_none_8ce629a0e804a0dc\mrxsmb20.sys [2011/04/27 03:17:28 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=B81F204D146000BE76651A50670A5E9E -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.17605_none_8cee31a2e7fef48e\mrxsmb20.sys [2015/06/27 17:37:30 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=BBA53087F60B164138651013069BA305 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.18909_none_8cf221b4e7fb6b00\mrxsmb20.sys [2015/07/01 20:18:35 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=C1CC047CE391BB88350379153BC1C8FA -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.18912_none_8ce04fc2e809d590\mrxsmb20.sys [2015/10/20 00:28:57 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=C34DE43FDAD9C32383BB4A5EE60126D4 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.19045_none_8cc2b8fee81fa8aa\mrxsmb20.sys [2010/11/20 22:29:20 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=E0ABDB5ED7E199E242A7D028E76C1D3A -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.17514_none_8ce25f86e807fa01\mrxsmb20.sys [2015/09/28 17:35:15 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=E45D8868E2AE2E34A00076B1399A735A -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23223_none_8d5ff6f4012edb0b\mrxsmb20.sys [2015/12/30 18:32:32 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=E688B7D9B5422F23102E1920E19473E9 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.19110_none_8cde2936e80bd34b\mrxsmb20.sys [2011/02/23 05:47:40 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=E7D90388D14FAE057C166C1801E0BF94 -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.17565_none_8cad5034e82f9f0d\mrxsmb20.sys [2015/06/27 17:37:21 | 000,098,304 | ---- | M] (Microsoft Corporation) MD5=FC3DC94EBEB18AD8EF7DBC6B24A1178F -- C:\Windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7601.23112_none_8d69c4b00127a89c\mrxsmb20.sys [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2015/10/12 23:32:56 | 000,713,152 | ---- | M] (Microsoft Corporation) MD5=43C1C599FF590C875764CB6254A506B6 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.23235_none_aa435dc7937e55cc\ndis.sys [2015/10/13 05:50:31 | 000,712,640 | ---- | M] (Microsoft Corporation) MD5=9804FB2E46077F2977552347DFCA7E05 -- C:\Windows\System32\drivers\ndis.sys [2015/10/13 05:50:31 | 000,712,640 | ---- | M] (Microsoft Corporation) MD5=9804FB2E46077F2977552347DFCA7E05 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.19030_none_a9b4bda47a653a28\ndis.sys [2010/11/20 22:29:12 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2010/11/20 22:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll [2010/11/20 22:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll [color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color] [2010/11/20 22:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\drivers\nvstor.sys [2010/11/20 22:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys [2010/11/20 22:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys [color=#A23BEC]< MD5 for: RASACD.SYS >[/color] [2009/07/14 00:54:40 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=30A81B53C766D0133BB86D234E5556AB -- C:\Windows\System32\drivers\rasacd.sys [2009/07/14 00:54:40 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=30A81B53C766D0133BB86D234E5556AB -- C:\Windows\winsxs\x86_microsoft-windows-rasautodial_31bf3856ad364e35_6.1.7600.16385_none_0fb054d9c6a6b4d4\rasacd.sys [color=#A23BEC]< MD5 for: RDPCDD.SYS >[/color] [2010/11/20 22:29:12 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=23DAE03F29D253AE74C44F99E515F9A1 -- C:\Windows\System32\drivers\RDPCDD.sys [2010/11/20 22:29:12 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=23DAE03F29D253AE74C44F99E515F9A1 -- C:\Windows\winsxs\x86_microsoft-windows-t..niportdisplaydriver_31bf3856ad364e35_6.1.7601.17514_none_d6e28e069c8110ef\RDPCDD.sys [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2010/11/20 22:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll [2010/11/20 22:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll [color=#A23BEC]< MD5 for: SERVICES.EXE >[/color] [2015/04/13 04:19:24 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=0780A42DBD7D9969F9BF4A19AA4285B5 -- C:\Windows\System32\services.exe [2015/04/13 04:19:24 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=0780A42DBD7D9969F9BF4A19AA4285B5 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.18829_none_d1614ac32b8ec5cf\services.exe [2009/07/14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe [2015/04/11 04:53:55 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=97981140500E86E5BBAD7B76BA890146 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.23033_none_d1d9ee0844ba1cc2\services.exe [color=#A23BEC]< MD5 for: SMSS.EXE >[/color] [2015/02/03 04:12:00 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=01C6C743FE49D0FB3F0A1391FEF1DEB3 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18741_none_ae1e8e4a778ed482\smss.exe [2015/08/04 18:52:09 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=04B603E5589954DCB4EFB7FF89664C25 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23153_none_ae9f37ab90b2f07b\smss.exe [2015/01/29 04:01:22 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=0C41393891E2EB9F8FDF28A0654C5B5E -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18738_none_ae30603c778069f2\smss.exe [2015/07/15 03:55:18 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=10F4A8EE79F4E0ECC88AC71CA068B54C -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18923_none_ae363282777cc99c\smss.exe [2009/07/14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe [2016/01/22 05:51:47 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=1B30E9AF06CD2D24A8E781907D5CBEEE -- C:\Windows\System32\smss.exe [2016/01/22 05:51:47 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=1B30E9AF06CD2D24A8E781907D5CBEEE -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.19135_none_ae2d3d32778348a4\smss.exe [2015/12/30 18:30:47 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=21B61A6D775D95FEA6FD548A64BFE4DF -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.19110_none_ae3ddb987777920f\smss.exe [2015/07/15 18:54:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=2B8B8E5AE54D0EAAE5B84F65C325C3A7 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18933_none_ae2b62967784e58d\smss.exe [2015/10/20 01:46:41 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=2D4C894B10E8ADA7BBD897D1C019B491 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23250_none_ae9c38b390b5a19d\smss.exe [2016/01/16 18:32:11 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=2F8644EB9D856933AF7960ADD5D9A787 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.19131_none_ae293c0a7786e348\smss.exe [2015/03/17 05:56:43 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=485436C2A90318218777401FB973558C -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18798_none_adef80b477b11198\smss.exe [2013/07/08 04:02:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=634E0B45780F502304592C5615A31089 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_ae8fb42390bda114\smss.exe [2016/01/22 07:07:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=63FC218758C0D7DB656B9D61148D799F -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23338_none_aeb9dcc1909e319a\smss.exe [2015/07/15 03:59:35 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=697A24C3A9F1ECD602C3D961D001036C -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23126_none_aec2a84d9097e8ad\smss.exe [2015/12/30 18:37:11 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=7F8C3335B207E74096DDB51CCAAEE628 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23313_none_aeca7b2790927b05\smss.exe [2015/02/03 04:31:31 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=7FFC65934B6CC409D62448ADFE50EBF1 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22948_none_aeaf2f0190a622d4\smss.exe [2016/01/17 00:06:49 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=82C53962DDD5C68C48717370130287D6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23334_none_aeb5db9990a1cc3e\smss.exe [2015/09/29 03:58:37 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=9A282F6D9F02EF5DE4C081A7FE65999F -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.19018_none_ae45dc0277705fa0\smss.exe [2015/10/01 18:43:06 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=A0139421A3A940E49381EFFC6884DD65 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23226_none_aec2aa339097e5d4\smss.exe [2015/10/20 01:45:09 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=B86F1CE6E405F68A859AD6B7088A06C7 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.19045_none_ae226b60778b676e\smss.exe [2015/03/17 05:45:09 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=BCE230B8626E42E997285173A9426EE5 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23002_none_aed44517908b4e48\smss.exe [2015/09/28 21:16:48 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=BF9EF8C8D655675485EE8721883457A6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23223_none_aebfa955909a99cf\smss.exe [2015/07/15 18:49:21 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=C288ED8B99BC77DD8C8006CB8E97DC10 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23136_none_aeb7d86190a0049e\smss.exe [2015/04/06 07:59:36 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe [2014/04/12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22923_none_aebfcd67909a6c3f\smss.exe [2014/04/12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22921_none_aebdccd3909c3991\smss.exe [2014/04/12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22653_none_ae9f57f190b2c89d\smss.exe [2014/04/12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22923_none_aebfcd67909a6c3f\smss.exe [2013/03/19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe [2013/03/19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe [2015/04/06 07:59:36 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe [2015/01/27 04:27:49 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=EA4931A2EE99926C89935FC92526D7A4 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22943_none_aeaa2d8f90aaa421\smss.exe [color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color] [2010/11/20 22:29:06 | 000,317,440 | ---- | M] (Microsoft Corporation) MD5=866A43013535DC8587C258E43579C764 -- C:\Windows\System32\spoolsv.exe [2010/11/20 22:29:06 | 000,317,440 | ---- | M] (Microsoft Corporation) MD5=866A43013535DC8587C258E43579C764 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7601.17514_none_d8530d0d1fcade21\spoolsv.exe [color=#A23BEC]< MD5 for: STORPORT.SYS >[/color] [2010/11/20 22:29:12 | 000,148,864 | ---- | M] (Microsoft Corporation) MD5=B40CCEC755DC3FBAE95E568C7849405E -- C:\Windows\System32\drivers\storport.sys [2010/11/20 22:29:12 | 000,148,864 | ---- | M] (Microsoft Corporation) MD5=B40CCEC755DC3FBAE95E568C7849405E -- C:\Windows\winsxs\x86_microsoft-windows-storport_31bf3856ad364e35_6.1.7601.17514_none_2983b8948e70fede\storport.sys [color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color] [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe [color=#A23BEC]< MD5 for: TCPIP.SYS >[/color] [2011/04/25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\SoftwareDistribution\Download\819f2389c84fd99ac463e7d342b07134\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys [2010/11/20 22:29:20 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys [2014/04/05 03:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\System32\drivers\tcpip.sys [2014/04/05 03:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_b513c4dfc4b513b9\tcpip.sys [2015/04/06 07:59:16 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys [2011/04/25 07:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\SoftwareDistribution\Download\819f2389c84fd99ac463e7d342b07134\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys [2015/04/06 07:59:16 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys [2014/04/05 03:16:21 | 001,310,144 | ---- | M] (Microsoft Corporation) MD5=EA47AB18E289333AB94397D77CA6E3A1 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_b59293a4dddacc9b\tcpip.sys [color=#A23BEC]< MD5 for: TERMDD.SYS >[/color] [2010/11/20 22:29:03 | 000,053,120 | ---- | M] (Microsoft Corporation) MD5=04DBF4B01EA4BF25A9A3E84AFFAC9B20 -- C:\Windows\System32\drivers\termdd.sys [2010/11/20 22:29:03 | 000,053,120 | ---- | M] (Microsoft Corporation) MD5=04DBF4B01EA4BF25A9A3E84AFFAC9B20 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\termdd.sys [2010/11/20 22:29:03 | 000,053,120 | ---- | M] (Microsoft Corporation) MD5=04DBF4B01EA4BF25A9A3E84AFFAC9B20 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\termdd.sys [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2010/11/20 22:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe [2010/11/20 22:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe [color=#A23BEC]< MD5 for: WIN32K.SYS >[/color] [2015/09/02 02:35:00 | 002,393,600 | ---- | M] (Microsoft Corporation) MD5=14E2A15F6FA13CB8F263BF5F470EDA37 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23188_none_bb3c9b17121bed07\win32k.sys [2014/06/18 01:52:00 | 002,350,080 | ---- | M] (Microsoft Corporation) MD5=2A58DBC1BADEA2F496099F8CB068E698 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.18512_none_baf8cc49f8cac9be\win32k.sys [2015/06/25 09:46:17 | 002,383,872 | ---- | M] (Microsoft Corporation) MD5=358B1F17A8E5419AD108D5E5C522F674 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.18906_none_bb07a4f5f8bf07c5\win32k.sys [2016/01/07 18:48:45 | 002,395,648 | ---- | M] (Microsoft Corporation) MD5=39C86B1764671F6C97A94FF67CE7D25F -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23317_none_bb874e0d11e40a67\win32k.sys [2015/10/20 00:42:39 | 002,395,648 | ---- | M] (Microsoft Corporation) MD5=4233D3BE5184617D7FC8A4B401D8EFB9 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23250_none_bb550a71120acba3\win32k.sys [2015/05/25 18:04:27 | 002,393,088 | ---- | M] (Microsoft Corporation) MD5=4D829D464A1CBBA195F8A5F911160E58 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23072_none_bb41676112193be5\win32k.sys [2014/06/18 01:55:52 | 002,358,272 | ---- | M] (Microsoft Corporation) MD5=4DEBEBEAEDB6B740172E8C649C8B815C -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.22722_none_bb779b0f11f082a0\win32k.sys [2015/02/26 04:10:33 | 002,390,528 | ---- | M] (Microsoft Corporation) MD5=5D68D035BF9AA6EC732F6592B750F0FF -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.22978_none_bb4790fb1213a0ad\win32k.sys [2012/03/31 03:31:48 | 002,351,616 | ---- | M] (Microsoft Corporation) MD5=5E7C260B168054FCB68BE9C030A81CE8 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.21955_none_bb5a46bd12060325\win32k.sys [2015/07/30 17:47:57 | 002,393,088 | ---- | M] (Microsoft Corporation) MD5=660B481786C666371FD9657A95A6E939 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23149_none_bb68db1111fa969a\win32k.sys [2015/11/10 18:42:26 | 002,395,648 | ---- | M] (Microsoft Corporation) MD5=66F4D11BE5475F990045329A3BDAB9DE -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23265_none_bb4f3bf7120e6647\win32k.sys [2010/11/20 22:29:24 | 002,329,088 | ---- | M] (Microsoft Corporation) MD5=687464342342B933D6B7FAA4A907AF4C -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.17514_none_bafae3a5f8c8e2cb\win32k.sys [2015/04/20 03:02:43 | 002,391,040 | ---- | M] (Microsoft Corporation) MD5=6E4EE2594D3C73861F0F9FF763B12116 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23038_none_bb72a8cd11f3642b\win32k.sys [2014/08/23 01:44:17 | 002,360,832 | ---- | M] (Microsoft Corporation) MD5=7BA73EED90DE2CD00D8F8DB9A9AC0664 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.22783_none_bb37bbd11220439d\win32k.sys [2014/08/23 01:42:53 | 002,352,640 | ---- | M] (Microsoft Corporation) MD5=7DA17C38F8B8F2E89F52C1A08FD447EB -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.18577_none_babcee33f8f6f017\win32k.sys [2015/10/17 17:42:49 | 002,386,944 | ---- | M] (Microsoft Corporation) MD5=83D143B0A0EF22F6EC03BED9A08CCF2E -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.19044_none_bada3cd3f8e1781d\win32k.sys [2015/06/25 09:29:36 | 002,392,576 | ---- | M] (Microsoft Corporation) MD5=857F5AD38074318D3179190C8CC78EDB -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23109_none_bb941ac111da26d6\win32k.sys [2015/12/08 22:00:03 | 002,386,944 | ---- | M] (Microsoft Corporation) MD5=9788D850E682248246BA391A00796AB6 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.19091_none_baa12c59f90cb7cd\win32k.sys [2015/07/30 17:52:25 | 002,384,384 | ---- | M] (Microsoft Corporation) MD5=A22126F58B07E937D10F96A506E40107 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.18946_none_badc6545f8df7789\win32k.sys [2015/02/26 04:11:26 | 002,381,312 | ---- | M] (Microsoft Corporation) MD5=BA3CB7D5C1DCF17E6FFFB28DB950841A -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.18773_none_bab8f0d7f8fa8509\win32k.sys [2015/05/25 18:00:20 | 002,384,384 | ---- | M] (Microsoft Corporation) MD5=BCD4C37A7043E75131111EA447210DE7 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.18869_none_bac9c465f8ecfe49\win32k.sys [2015/11/10 18:40:30 | 002,386,944 | ---- | M] (Microsoft Corporation) MD5=C2B6C9E4F6FDE6CC534D5D9427D5A84D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.19061_none_bac19c1df8f463fa\win32k.sys [2016/01/07 18:47:26 | 002,386,944 | ---- | M] (Microsoft Corporation) MD5=C8E6615234C9A8175BC5F274F661034D -- C:\Windows\System32\win32k.sys [2016/01/07 18:47:26 | 002,386,944 | ---- | M] (Microsoft Corporation) MD5=C8E6615234C9A8175BC5F274F661034D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.19113_none_baf9ae33f8ca081a\win32k.sys [2015/12/08 18:39:43 | 002,395,648 | ---- | M] (Microsoft Corporation) MD5=CA7C8F81C1531BB4237F758DB19DEEE1 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23290_none_bb29cac1122b3b67\win32k.sys [2015/11/03 18:46:11 | 002,386,944 | ---- | M] (Microsoft Corporation) MD5=D4C169C423300F080FB9A889BBDB8839 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.19054_none_bacf6ce7f8e9940e\win32k.sys [2015/04/20 03:03:22 | 002,382,336 | ---- | M] (Microsoft Corporation) MD5=E62FA8858669B48E66DA21C366257F64 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.18834_none_bae532b7f8d92bc3\win32k.sys [2015/11/03 18:50:16 | 002,395,648 | ---- | M] (Microsoft Corporation) MD5=F60300FAC950E676D9B75A541154ED92 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.23259_none_bb5e0d0b1202afb2\win32k.sys [2012/03/31 03:36:11 | 002,343,424 | ---- | M] (Microsoft Corporation) MD5=F8DB740114248CE6910E550EE9C054A2 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.17803_none_bb04b8f9f8c1a4f8\win32k.sys [2015/09/02 02:36:35 | 002,384,896 | ---- | M] (Microsoft Corporation) MD5=FB460A3148186CF50CAE91AE5554A43C -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.1.7601.18985_none_bab0254bf900cdf6\win32k.sys [color=#A23BEC]< MD5 for: WININIT.EXE >[/color] [2009/07/14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\System32\wininit.exe [2009/07/14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2014/07/16 03:56:14 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=4F37B93C14AEE313BEC52A23AFB15C2E -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_7224b2134c7555fa\winlogon.exe [2014/07/17 02:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\System32\winlogon.exe [2014/07/17 02:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_71a5e34e334f9d18\winlogon.exe [2010/11/20 22:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe [2014/03/04 10:17:02 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=998507B046BA314CE8245364C686FA67 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_71da23b23327143c\winlogon.exe [2014/03/04 11:39:02 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=D53972F87D850CD2EB4B29B60CAFDD77 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_7255f1994c4f8119\winlogon.exe [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [2016/01/22 06:43:59 | 000,416,256 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\dxtmsft.dll [2016/01/22 06:34:56 | 000,279,040 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\dxtrans.dll [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color] [2009/07/14 02:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\adp94xx.sys [2009/07/14 02:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\adpahci.sys [2009/07/14 02:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\adpu320.sys [2009/07/14 02:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\aliide.sys [2010/11/20 22:29:03 | 000,080,256 | ---- | M] (Advanced Micro Devices)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\amdsata.sys [2009/07/14 02:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\amdsbs.sys [2010/11/20 22:29:03 | 000,022,400 | ---- | M] (Advanced Micro Devices)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\amdxata.sys [2009/07/14 02:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\arc.sys [2009/07/14 02:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\arcsas.sys [2009/07/13 23:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\b57nd60x.sys [2009/07/13 23:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\BrFiltLo.sys [2009/07/13 23:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\BrFiltUp.sys [2009/07/14 01:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\BrSerId.sys [2009/07/13 23:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\BrSerWdm.sys [2009/07/13 23:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\BrUsbMdm.sys [2009/07/13 23:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\BrUsbSer.sys [2009/07/13 23:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\bxvbdx.sys [2009/07/14 02:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\cmdide.sys [2009/07/14 02:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\djsvs.sys [2010/11/20 22:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\dmvsc.sys [2010/08/02 20:35:36 | 000,046,592 | ---- | M] (DigitalPersona, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\dpK00701.sys [2009/07/14 02:20:28 | 000,453,712 | ---- | M] (Emulex)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\elxstor.sys [2009/07/13 23:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\evbdx.sys [2009/07/13 23:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\hcw85cir.sys [2007/06/18 13:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\HpqKbFiltr.sys [2009/07/14 02:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\HpSAMD.sys [2010/11/20 22:29:03 | 000,332,160 | ---- | M] (Intel Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\iaStorV.sys [2009/09/23 13:18:14 | 004,808,192 | ---- | M] (Intel Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\igdkmd32.sys [2009/07/14 02:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\iirsp.sys [2013/07/17 22:43:40 | 000,016,880 | ---- | M] (Intel Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\iusb3hcs.sys [2014/02/20 12:59:02 | 000,135,264 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\kl1.sys [2015/04/14 13:33:39 | 000,112,136 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klflt.sys [2014/04/10 17:25:32 | 000,034,400 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klhk.sys [2015/04/14 13:33:40 | 000,644,808 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klif.sys [2014/02/25 13:09:02 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klim6.sys [2014/03/28 17:51:02 | 000,024,672 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klkbdflt.sys [2013/08/08 17:10:58 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klmouflt.sys [2013/04/12 15:34:48 | 000,014,432 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\klpd.sys [2014/03/25 16:26:04 | 000,045,024 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\kltdi.sys [2014/03/26 17:05:26 | 000,145,888 | ---- | M] (Kaspersky Lab ZAO)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\kneps.sys [2009/07/14 02:20:36 | 000,095,824 | ---- | M] (LSI Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\lsi_fc.sys [2009/07/14 02:20:37 | 000,089,168 | ---- | M] (LSI Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\lsi_sas.sys [2009/07/14 02:20:36 | 000,054,864 | ---- | M] (LSI Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\lsi_sas2.sys [2009/07/14 02:20:36 | 000,096,848 | ---- | M] (LSI Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\lsi_scsi.sys [2009/07/14 02:20:36 | 000,030,800 | ---- | M] (LSI Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\megasas.sys [2009/07/14 02:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\MegaSR.sys [2009/07/14 02:20:44 | 000,044,624 | ---- | M] (IBM Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\nfrd960.sys [2010/06/25 18:07:14 | 000,035,088 | ---- | M] (CACE Technologies, Inc.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\npf.sys [2010/11/20 22:29:03 | 000,117,120 | ---- | M] (NVIDIA Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\nvraid.sys [2010/11/20 22:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\nvstor.sys [2009/07/14 02:19:04 | 001,383,488 | ---- | M] (QLogic Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\ql2300.sys [2013/09/13 17:54:06 | 002,840,664 | ---- | M] (Realtek Semiconductor Corp.)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\RTKVHDA.sys [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] < End of report >