OTL logfile created on: 19/01/2017 10:21:25 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\mouched\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy 4,00 Gb Total Physical Memory | 2,77 Gb Available Physical Memory | 69,24% Memory free 7,99 Gb Paging File | 6,71 Gb Available in Paging File | 83,98% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 148,95 Gb Total Space | 107,05 Gb Free Space | 71,87% Space Free | Partition Type: NTFS Drive D: | 100,00 Mb Total Space | 84,44 Mb Free Space | 84,44% Space Free | Partition Type: NTFS Drive E: | 149,05 Gb Total Space | 69,83 Gb Free Space | 46,85% Space Free | Partition Type: NTFS Computer Name: MOUCHED-PC | User Name: mouched | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2017/01/19 10:09:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\mouched\Desktop\OTL.exe PRC - [2017/01/18 20:20:05 | 000,554,440 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Firefox Developer Edition\firefox.exe PRC - [2017/01/14 14:55:01 | 000,225,280 | -H-- | M] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe PRC - [2016/12/19 22:38:14 | 000,082,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2016/12/14 14:12:36 | 001,065,248 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Driver Booster\4.2.0\Scheduler.exe PRC - [2015/08/20 17:04:56 | 001,843,392 | ---- | M] (Adobe Systems, Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe PRC - [2012/09/17 06:39:30 | 000,171,600 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe PRC - [2009/03/30 15:00:56 | 000,221,184 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2017/01/14 14:55:01 | 000,225,280 | -H-- | M] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe MOD - [2009/02/27 16:38:20 | 000,139,264 | R--- | M] () -- C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009/07/14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2017/01/18 20:20:05 | 000,173,000 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2017/01/14 15:21:16 | 000,270,936 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2016/12/19 22:38:14 | 000,082,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2015/08/20 17:04:56 | 001,843,392 | ---- | M] (Adobe Systems, Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe -- (AGSService) SRV - [2012/09/17 06:39:30 | 000,171,600 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor11.0) SRV - [2010/12/20 15:55:14 | 000,251,760 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files (x86)\ma-config.com\maconfservice.exe -- (maconfservice) SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2017/01/14 15:04:56 | 000,418,784 | ---- | M] (Realsil Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsUer.sys -- (RTSUER) DRV:[b]64bit:[/b] - [2017/01/14 15:04:41 | 000,467,736 | ---- | M] (Broadcom Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2017/01/14 15:04:24 | 000,011,944 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdide64.sys -- (amdide64) DRV:[b]64bit:[/b] - [2017/01/14 14:17:17 | 000,508,472 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2012/08/10 03:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:[b]64bit:[/b] - [2010/02/18 08:22:56 | 000,316,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP) DRV:[b]64bit:[/b] - [2009/10/10 03:41:20 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:[b]64bit:[/b] - [2009/07/14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2009/07/14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009/07/14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009/07/14 02:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009/07/13 22:59:33 | 005,020,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag) DRV:[b]64bit:[/b] - [2009/06/10 21:35:42 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:[b]64bit:[/b] - [2009/06/10 21:34:38 | 001,311,232 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX) DRV:[b]64bit:[/b] - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV - [2017/01/14 15:00:15 | 000,027,552 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS -- (HWiNFO32) DRV - [2010/08/30 11:19:54 | 000,015,872 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys -- (driverhardwarev2x64) DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/keyword/%s IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\..\SearchScopes,DefaultScope = {3F6A2909-5928-4F88-8AE9-9930C6F534C2} IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\..\SearchScopes\{3F6A2909-5928-4F88-8AE9-9930C6F534C2}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 IE - HKU\S-1-5-21-891854826-2538821857-508926778-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll () FF - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files (x86)\ma-config.com\nphardwaredetection.dll (Cybelsoft) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2852: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1662: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox Developer Edition 52.0a2\extensions\\Components: C:\Program Files (x86)\Firefox Developer Edition\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox Developer Edition 52.0a2\extensions\\Plugins: C:\Program Files (x86)\Firefox Developer Edition\plugins [2017/01/14 14:32:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\Extensions [2017/01/14 15:39:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\Firefox\Profiles\atgk5yqp.default\extensions [2017/01/15 13:13:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\Firefox\Profiles\atgk5yqp.default\extensions\staged [2017/01/17 18:02:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\Firefox\Profiles\nyls61q5.dev-edition-default\extensions [2017/01/17 18:02:12 | 000,770,771 | ---- | M] () (No name found) -- C:\Users\mouched\AppData\Roaming\mozilla\firefox\profiles\nyls61q5.dev-edition-default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi O1 HOSTS File: ([2017/01/17 10:00:29 | 000,001,173 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 serius.mwbsys.com O1 - Hosts: 127.0.0.1 keystone.mwbsys.com O1 - Hosts: 127.0.0.1 idb.iobit.com O1 - Hosts: 127.0.0.1 asc55.iobit.com O1 - Hosts: 127.0.0.1 is360.iobit.com O1 - Hosts: 127.0.0.1 asc.iobit.com O1 - Hosts: 127.0.0.1 pf.iobit.com O1 - Hosts: 127.0.0.1 98.129.229.186 O1 - Hosts: 127.0.0.1 www.iana.org O1 - Hosts: 127.0.0.1 iana.org# ::1 localhost O1 - Hosts: 127.0.0.1 activate.adobe.com O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKU\S-1-5-19..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found O4 - HKU\S-1-5-20..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found O4 - HKU\S-1-5-21-891854826-2538821857-508926778-1000..\Run: [Bienvenue] C:\Windows\SysWow64\OobeFldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-891854826-2538821857-508926778-1000..\Run: [Tknynr] C:\Users\mouched\AppData\Roaming\Tknynr.exe () O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 1 O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-21-891854826-2538821857-508926778-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1 O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B460592D-2D96-48EC-B981-599188735D6B}: DhcpNameServer = 192.168.0.254 O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SafeBootMin:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SafeBootMin:[b]64bit:[/b] Base - Driver Group SafeBootMin:[b]64bit:[/b] Boot Bus Extender - Driver Group SafeBootMin:[b]64bit:[/b] Boot file system - Driver Group SafeBootMin:[b]64bit:[/b] File system - Driver Group SafeBootMin:[b]64bit:[/b] Filter - Driver Group SafeBootMin:[b]64bit:[/b] HelpSvc - Service SafeBootMin:[b]64bit:[/b] PCI Configuration - Driver Group SafeBootMin:[b]64bit:[/b] PNP Filter - Driver Group SafeBootMin:[b]64bit:[/b] Primary disk - Driver Group SafeBootMin:[b]64bit:[/b] sacsvr - Service SafeBootMin:[b]64bit:[/b] SCSI Class - Driver Group SafeBootMin:[b]64bit:[/b] System Bus Extender - Driver Group SafeBootMin:[b]64bit:[/b] vmms - Service SafeBootMin:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SafeBootMin:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vmms - Service SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SafeBootNet:[b]64bit:[/b] Base - Driver Group SafeBootNet:[b]64bit:[/b] Boot Bus Extender - Driver Group SafeBootNet:[b]64bit:[/b] Boot file system - Driver Group SafeBootNet:[b]64bit:[/b] File system - Driver Group SafeBootNet:[b]64bit:[/b] Filter - Driver Group SafeBootNet:[b]64bit:[/b] HelpSvc - Service SafeBootNet:[b]64bit:[/b] NDIS Wrapper - Driver Group SafeBootNet:[b]64bit:[/b] NetBIOSGroup - Driver Group SafeBootNet:[b]64bit:[/b] NetDDEGroup - Driver Group SafeBootNet:[b]64bit:[/b] Network - Driver Group SafeBootNet:[b]64bit:[/b] NetworkProvider - Driver Group SafeBootNet:[b]64bit:[/b] PCI Configuration - Driver Group SafeBootNet:[b]64bit:[/b] PNP Filter - Driver Group SafeBootNet:[b]64bit:[/b] PNP_TDI - Driver Group SafeBootNet:[b]64bit:[/b] Primary disk - Driver Group SafeBootNet:[b]64bit:[/b] rdsessmgr - Service SafeBootNet:[b]64bit:[/b] sacsvr - Service SafeBootNet:[b]64bit:[/b] SCSI Class - Driver Group SafeBootNet:[b]64bit:[/b] Streams Drivers - Driver Group SafeBootNet:[b]64bit:[/b] System Bus Extender - Driver Group SafeBootNet:[b]64bit:[/b] TDI - Driver Group SafeBootNet:[b]64bit:[/b] vmms - Service SafeBootNet:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SafeBootNet:[b]64bit:[/b] WudfUsbccidDriver - Driver SafeBootNet:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet:[b]64bit:[/b] {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet:[b]64bit:[/b] {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet:[b]64bit:[/b] {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet:[b]64bit:[/b] {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet:[b]64bit:[/b] {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: HelpSvc - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vmms - Service SafeBootNet: WudfUsbccidDriver - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX:[b]64bit:[/b] {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP ActiveX:[b]64bit:[/b] >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig ActiveX:[b]64bit:[/b] >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler) Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (http://www.mp3dev.org/) Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.) Drivers32: VIDC.DIVX - C:\Windows\SysWow64\divx.dll (DivX, Inc.) Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll () Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll () Drivers32: VIDC.YV12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org) [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2017/01/19 10:11:47 | 000,000,000 | ---D | C] -- C:\_OTL [2017/01/19 10:09:00 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\mouched\Desktop\OTL.exe [2017/01/19 08:43:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft XNA [2017/01/18 20:56:15 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\ZHP [2017/01/18 14:09:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\ASSURANCE [2017/01/18 14:05:56 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\mp3 [2017/01/18 07:59:26 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\vlc [2017/01/18 07:59:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN [2017/01/18 07:58:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN [2017/01/18 07:56:11 | 011,348,661 | ---- | C] (Denis ROBERT ) -- C:\Users\mouched\Desktop\FreeVCL.exe [2017/01/17 18:05:21 | 000,000,000 | ---D | C] -- C:\Users\mouched\dwhelper [2017/01/17 11:27:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Jasc Software Inc [2017/01/17 11:27:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2017/01/17 11:03:01 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe [2017/01/17 11:00:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2017/01/17 10:58:06 | 000,056,336 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\PxHlpa64.sys [2017/01/17 10:58:06 | 000,011,376 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\cdralw2k.sys [2017/01/17 10:58:06 | 000,010,864 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\cdr4_xp.sys [2017/01/17 10:57:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared [2017/01/17 10:57:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine [2017/01/17 10:56:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2017/01/17 10:50:34 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\Adobe Photoshop Elements 11.0 Multilingual+Patch+Keygen [2017/01/17 10:18:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother [2017/01/17 10:17:18 | 000,176,128 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysWow64\BroSNMP.dll [2017/01/17 10:17:18 | 000,073,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2.dll [2017/01/17 10:17:18 | 000,005,120 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2L.dll [2017/01/17 10:17:18 | 000,003,072 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2S.dll [2017/01/17 10:17:17 | 001,560,064 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysNative\BrWia09b.dll [2017/01/17 10:17:17 | 000,057,344 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\brprtink.dll [2017/01/17 10:17:17 | 000,050,176 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysNative\BrUsi09a.dll [2017/01/17 10:17:16 | 000,167,936 | ---- | C] (brother) -- C:\Windows\SysWow64\NSSearch.dll [2017/01/17 10:17:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Brother [2017/01/17 10:17:11 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2017/01/17 10:16:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Brother [2017/01/17 10:16:37 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\InstallShield [2017/01/17 10:16:18 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\wlan_wiz [2017/01/17 10:16:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\mflpro_c1 [2017/01/17 10:12:46 | 050,187,152 | ---- | C] (A.I.SOFT,INC.) -- C:\Users\mouched\DCP-195C-inst-B1-win78.EXE [2017/01/17 10:07:52 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\No Company Name [2017/01/17 09:01:48 | 000,305,152 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe [2017/01/17 09:00:27 | 005,455,526 | ---- | C] (InstallShield Software Corporation) -- C:\Users\mouched\Desktop\acrobat4.exe [2017/01/17 08:54:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt [2017/01/16 19:50:32 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbamchameleon.sys [2017/01/16 19:50:32 | 000,065,408 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys [2017/01/16 19:50:32 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys [2017/01/16 19:48:32 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\M.Anti.Malware.2.2.1.1043.Portable.21.08.2016 [2017/01/16 17:49:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Documents\Notes [2017/01/15 10:19:32 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield [2017/01/15 10:19:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jasc Software [2017/01/15 10:19:06 | 000,000,000 | ---D | C] -- C:\Users\mouched\Documents\Mes fichiers PSP [2017/01/15 10:19:06 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Jasc Software Inc [2017/01/15 10:18:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Jasc Software Inc [2017/01/15 10:16:38 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\paint shop pro9 fr [2017/01/15 09:56:32 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\baatna 2012 [2017/01/15 09:52:52 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Media Player Classic [2017/01/15 09:40:46 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\CEF [2017/01/15 09:39:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2017/01/15 09:39:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2017/01/15 09:37:48 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Adobe [2017/01/15 08:38:17 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Macromedia [2017/01/15 08:38:17 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Macromedia [2017/01/15 08:38:17 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Adobe [2017/01/14 15:47:09 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Mp3jam [2017/01/14 15:43:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MP3jam [2017/01/14 15:40:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2017/01/14 15:19:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2017/01/14 15:16:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4 [2017/01/14 15:11:41 | 000,802,904 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2017/01/14 15:11:40 | 000,144,472 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2017/01/14 15:11:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed [2017/01/14 15:09:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DAX3 [2017/01/14 15:09:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DAX2 [2017/01/14 15:09:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Audyssey Labs [2017/01/14 15:09:28 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2017/01/14 15:09:26 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM [2017/01/14 15:08:34 | 015,202,032 | ---- | C] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE3.dll [2017/01/14 15:08:34 | 003,299,816 | ---- | C] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE2.dll [2017/01/14 15:08:34 | 002,190,984 | ---- | C] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE.dll [2017/01/14 15:08:33 | 003,204,096 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2017/01/14 15:08:33 | 003,014,144 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2017/01/14 15:08:33 | 002,995,000 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\slcnt64.dll [2017/01/14 15:08:33 | 002,706,856 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sltech64.dll [2017/01/14 15:08:33 | 002,110,592 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll [2017/01/14 15:08:33 | 001,435,136 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRRPTR64.dll [2017/01/14 15:08:33 | 001,382,232 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll [2017/01/14 15:08:33 | 001,337,640 | ---- | C] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tossaeapo64.dll [2017/01/14 15:08:33 | 001,003,320 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysNative\SEHDHF64.dll [2017/01/14 15:08:33 | 000,984,912 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sl3apo64.dll [2017/01/14 15:08:33 | 000,965,016 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll [2017/01/14 15:08:33 | 000,962,120 | ---- | C] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tosasfapo64.dll [2017/01/14 15:08:33 | 000,873,456 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll [2017/01/14 15:08:33 | 000,865,912 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysWow64\SEHDHF32.dll [2017/01/14 15:08:33 | 000,859,216 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysNative\SEHDRA64.dll [2017/01/14 15:08:33 | 000,850,400 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysNative\SECOMN64.dll [2017/01/14 15:08:33 | 000,721,800 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysWow64\SECOMN32.dll [2017/01/14 15:08:33 | 000,601,144 | ---- | C] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tossaemaxapo64.dll [2017/01/14 15:08:33 | 000,571,376 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\tbb_waves.dll [2017/01/14 15:08:33 | 000,532,376 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll [2017/01/14 15:08:33 | 000,499,152 | ---- | C] (Sound Research, Corp.) -- C:\Windows\SysNative\SEAPO64.dll [2017/01/14 15:08:33 | 000,467,152 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRAPO64.dll [2017/01/14 15:08:33 | 000,447,176 | ---- | C] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\toseaeapo64.dll [2017/01/14 15:08:33 | 000,381,400 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM64.dll [2017/01/14 15:08:33 | 000,343,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2017/01/14 15:08:33 | 000,341,144 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysWow64\SRCOM.dll [2017/01/14 15:08:33 | 000,341,144 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM.dll [2017/01/14 15:08:33 | 000,258,864 | ---- | C] (TODO: ) -- C:\Windows\SysNative\slprp64.dll [2017/01/14 15:08:33 | 000,231,912 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll [2017/01/14 15:08:33 | 000,221,960 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll [2017/01/14 15:08:33 | 000,209,536 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll [2017/01/14 15:08:33 | 000,166,200 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll [2017/01/14 15:08:33 | 000,158,696 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll [2017/01/14 15:08:33 | 000,090,912 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll [2017/01/14 15:08:33 | 000,088,320 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll [2017/01/14 15:08:33 | 000,083,624 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll [2017/01/14 15:08:33 | 000,075,536 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll [2017/01/14 15:08:32 | 072,520,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat [2017/01/14 15:08:32 | 003,503,048 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2017/01/14 15:08:32 | 003,201,376 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll [2017/01/14 15:08:32 | 002,828,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysWow64\RltkAPO.dll [2017/01/14 15:08:32 | 002,201,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll [2017/01/14 15:08:32 | 001,360,512 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2017/01/14 15:08:32 | 000,689,872 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll [2017/01/14 15:08:32 | 000,387,312 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2017/01/14 15:08:32 | 000,321,712 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2017/01/14 15:08:32 | 000,321,712 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2017/01/14 15:08:32 | 000,214,832 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2017/01/14 15:08:32 | 000,192,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2017/01/14 15:08:32 | 000,110,984 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2017/01/14 15:08:32 | 000,088,344 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2017/01/14 15:08:32 | 000,023,688 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll [2017/01/14 15:08:31 | 013,122,576 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO3064.dll [2017/01/14 15:08:31 | 012,988,336 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO4064.dll [2017/01/14 15:08:31 | 007,172,912 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll [2017/01/14 15:08:31 | 006,198,136 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICV3apo.dll [2017/01/14 15:08:31 | 005,793,520 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICV2apo.dll [2017/01/14 15:08:31 | 005,593,608 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOlfx.dll [2017/01/14 15:08:31 | 001,003,856 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NahimicAPONSControl.dll [2017/01/14 15:08:31 | 000,923,736 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\MISS_APO.dll [2017/01/14 15:08:31 | 000,677,672 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll [2017/01/14 15:08:31 | 000,447,712 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll [2017/01/14 15:08:31 | 000,151,784 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll [2017/01/14 15:08:31 | 000,134,200 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll [2017/01/14 15:08:31 | 000,084,616 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll [2017/01/14 15:08:30 | 023,547,544 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRenderAVX64.dll [2017/01/14 15:08:30 | 023,447,352 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRender64.dll [2017/01/14 15:08:30 | 014,057,248 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll [2017/01/14 15:08:30 | 001,334,376 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxSpeechAPO64.dll [2017/01/14 15:08:30 | 000,999,848 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll [2017/01/14 15:08:29 | 017,398,616 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioCapture64.dll [2017/01/14 15:08:29 | 010,532,048 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\IntelSSTAPO.dll [2017/01/14 15:08:29 | 002,291,304 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO7064.dll [2017/01/14 15:08:29 | 002,050,168 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll [2017/01/14 15:08:29 | 001,422,920 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO6064.dll [2017/01/14 15:08:29 | 001,213,656 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll [2017/01/14 15:08:29 | 001,186,816 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\IntelSstCApoPropPage.dll [2017/01/14 15:08:29 | 001,166,152 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO4064.dll [2017/01/14 15:08:29 | 000,931,616 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll [2017/01/14 15:08:29 | 000,678,176 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll [2017/01/14 15:08:29 | 000,618,176 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll [2017/01/14 15:08:29 | 000,588,032 | ---- | C] (ICEpower a/s) -- C:\Windows\SysNative\ICEsoundAPO64.dll [2017/01/14 15:08:29 | 000,416,504 | ---- | C] (Harman) -- C:\Windows\SysNative\HMUI.dll [2017/01/14 15:08:29 | 000,366,120 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\HMAPO.dll [2017/01/14 15:08:29 | 000,360,344 | ---- | C] (Harman) -- C:\Windows\SysNative\HMClariFi.dll [2017/01/14 15:08:29 | 000,330,560 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2017/01/14 15:08:29 | 000,203,840 | ---- | C] (Harman) -- C:\Windows\SysNative\HMHVS.dll [2017/01/14 15:08:29 | 000,190,928 | ---- | C] (Harman) -- C:\Windows\SysNative\HMEQ_Voice.dll [2017/01/14 15:08:29 | 000,190,928 | ---- | C] (Harman) -- C:\Windows\SysNative\HMEQ.dll [2017/01/14 15:08:29 | 000,179,592 | ---- | C] (Harman) -- C:\Windows\SysNative\HMLimiter.dll [2017/01/14 15:08:28 | 007,096,184 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64A.dll [2017/01/14 15:08:28 | 006,264,632 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64AF3.dll [2017/01/14 15:08:28 | 005,347,000 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOv211.dll [2017/01/14 15:08:28 | 003,295,064 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2017/01/14 15:08:28 | 002,444,688 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOv201.dll [2017/01/14 15:08:28 | 001,965,808 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64A.dll [2017/01/14 15:08:28 | 001,959,592 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64AF3.dll [2017/01/14 15:08:28 | 001,780,616 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll [2017/01/14 15:08:28 | 001,591,056 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll [2017/01/14 15:08:28 | 001,516,896 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DAX3APOProp.dll [2017/01/14 15:08:28 | 001,508,928 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll [2017/01/14 15:08:28 | 001,363,096 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DAX3APOv251.dll [2017/01/14 15:08:28 | 001,133,584 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOProp.dll [2017/01/14 15:08:28 | 000,785,608 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOvlldp.dll [2017/01/14 15:08:28 | 000,743,960 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll [2017/01/14 15:08:28 | 000,727,432 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll [2017/01/14 15:08:28 | 000,708,312 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll [2017/01/14 15:08:28 | 000,514,520 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll [2017/01/14 15:08:28 | 000,504,304 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll [2017/01/14 15:08:28 | 000,500,552 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll [2017/01/14 15:08:28 | 000,445,400 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll [2017/01/14 15:08:28 | 000,441,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll [2017/01/14 15:08:28 | 000,428,224 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll [2017/01/14 15:08:28 | 000,426,568 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\HiFiDAX2APIPCLL.dll [2017/01/14 15:08:28 | 000,378,384 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\HiFiDAX2API.dll [2017/01/14 15:08:28 | 000,362,048 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64AF3.dll [2017/01/14 15:08:28 | 000,327,448 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64A.dll [2017/01/14 15:08:28 | 000,310,416 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64F3.dll [2017/01/14 15:08:28 | 000,272,712 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64.dll [2017/01/14 15:08:28 | 000,253,896 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll [2017/01/14 15:08:28 | 000,253,864 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll [2017/01/14 15:08:28 | 000,252,872 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll [2017/01/14 15:08:28 | 000,154,360 | ---- | C] (Harman) -- C:\Windows\SysNative\HarmanAudioInterface.dll [2017/01/14 15:08:27 | 002,993,712 | ---- | C] (Audyssey Labs) -- C:\Windows\SysNative\AudysseyEfx.dll [2017/01/14 15:08:27 | 001,615,656 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64APO.dll [2017/01/14 15:08:27 | 001,529,136 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64Proxy.dll [2017/01/14 15:08:27 | 000,574,752 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll [2017/01/14 15:08:27 | 000,438,688 | ---- | C] (Conexant Systems, Inc.) -- C:\Windows\SysNative\CAF64APO2.dll [2017/01/14 15:08:27 | 000,122,320 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll [2017/01/14 15:08:27 | 000,118,592 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll [2017/01/14 15:08:27 | 000,112,488 | ---- | C] (Conexant Systems, Inc.) -- C:\Windows\SysNative\Caf64api.dll [2017/01/14 15:04:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sda [2017/01/14 15:04:56 | 009,891,328 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysWow64\RsCRIcon.dll [2017/01/14 15:04:56 | 004,332,032 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtCRU64.exe [2017/01/14 15:04:56 | 000,418,784 | ---- | C] (Realsil Semiconductor Corporation) -- C:\Windows\SysNative\drivers\RtsUer.sys [2017/01/14 15:04:56 | 000,084,480 | ---- | C] (Realtek Semiconductor.) -- C:\Windows\SysNative\RtCRX64.dll [2017/01/14 15:04:41 | 000,467,736 | ---- | C] (Broadcom Limited) -- C:\Windows\SysNative\drivers\b57nd60a.sys [2017/01/14 15:04:24 | 000,011,944 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\drivers\amdide64.sys [2017/01/14 15:03:56 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll [2017/01/14 15:03:56 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe [2017/01/14 15:03:56 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll [2017/01/14 15:03:32 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll [2017/01/14 15:03:32 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll [2017/01/14 15:03:32 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll [2017/01/14 15:03:26 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll [2017/01/14 15:03:26 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe [2017/01/14 15:00:35 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData [2017/01/14 15:00:34 | 000,000,000 | ---D | C] -- C:\Windows\IObit [2017/01/14 15:00:16 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit [2017/01/14 15:00:15 | 000,027,552 | ---- | C] (REALiX(tm)) -- C:\Windows\SysWow64\drivers\HWiNFO64A.SYS [2017/01/14 15:00:15 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\IObit [2017/01/14 15:00:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit [2017/01/14 14:59:52 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Programs [2017/01/14 14:59:29 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\Driver.Booster.Pro.3.3 [2017/01/14 14:59:24 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\WinRAR [2017/01/14 14:53:58 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2017/01/14 14:53:50 | 001,721,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01009.dll [2017/01/14 14:53:50 | 000,396,584 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCOM.dll [2017/01/14 14:53:50 | 000,316,464 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\drivers\SynTP.sys [2017/01/14 14:53:50 | 000,264,488 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCtrl.dll [2017/01/14 14:53:50 | 000,210,216 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCtrl.dll [2017/01/14 14:53:50 | 000,207,144 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPAPI.dll [2017/01/14 14:53:50 | 000,173,352 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCOM.dll [2017/01/14 14:53:50 | 000,147,752 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPCo4.dll [2017/01/14 14:53:50 | 000,107,816 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynTPCOM.dll [2017/01/14 14:52:44 | 000,258,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSFLXGRD.OCX [2017/01/14 14:52:44 | 000,221,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TabCtl32.OCX [2017/01/14 14:52:44 | 000,218,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RICHTX32.OCX [2017/01/14 14:49:21 | 000,000,000 | ---D | C] -- C:\Users\mouched\Desktop\python-qbittorrent-0.1.8 [2017/01/14 14:32:31 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Mozilla [2017/01/14 14:28:11 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\ElevatedDiagnostics [2017/01/14 14:24:44 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2017/01/14 14:24:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2017/01/14 14:24:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR [2017/01/14 14:24:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service [2017/01/14 14:24:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Firefox Developer Edition [2017/01/14 14:20:47 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Mozilla [2017/01/14 14:16:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack [2017/01/14 14:16:58 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\SysWow64\pncrt.dll [2017/01/14 14:16:58 | 000,185,944 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll [2017/01/14 14:16:58 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll [2017/01/14 14:16:58 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll [2017/01/14 14:16:56 | 000,860,160 | ---- | C] (http://www.mp3dev.org/) -- C:\Windows\SysWow64\lameACM.acm [2017/01/14 14:16:56 | 000,118,784 | ---- | C] (fccHandler) -- C:\Windows\SysWow64\ac3acm.acm [2017/01/14 14:16:55 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\SysWow64\yv12vfw.dll [2017/01/14 14:16:55 | 000,081,920 | ---- | C] (DivX, Inc.) -- C:\Windows\SysWow64\dpl100.dll [2017/01/14 14:16:54 | 000,683,520 | ---- | C] (DivX, Inc.) -- C:\Windows\SysWow64\divx.dll [2017/01/14 14:16:53 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Real [2017/01/14 14:16:53 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Real [2017/01/14 14:16:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Real [2017/01/14 14:16:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack [2017/01/14 14:16:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2017/01/14 14:16:34 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2017/01/14 14:16:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2017/01/14 14:16:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com [2017/01/14 14:16:24 | 000,000,000 | ---D | C] -- C:\ProgramData\ma-config.com [2017/01/14 14:16:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ma-config.com [2017/01/14 14:15:18 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed [2017/01/14 14:15:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ShellExt [2017/01/14 14:15:15 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll [2017/01/14 14:15:15 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll [2017/01/14 14:15:15 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll [2017/01/14 14:15:15 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll [2017/01/14 14:15:15 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll [2017/01/14 14:15:15 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll [2017/01/14 14:15:14 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll [2017/01/14 14:15:14 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll [2017/01/14 14:15:14 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll [2017/01/14 14:15:14 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll [2017/01/14 14:15:14 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll [2017/01/14 14:15:14 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll [2017/01/14 14:15:14 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll [2017/01/14 14:15:14 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll [2017/01/14 14:15:13 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll [2017/01/14 14:15:13 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll [2017/01/14 14:15:13 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll [2017/01/14 14:15:13 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll [2017/01/14 14:15:13 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll [2017/01/14 14:15:13 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll [2017/01/14 14:15:13 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll [2017/01/14 14:15:13 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll [2017/01/14 14:15:13 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll [2017/01/14 14:15:13 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll [2017/01/14 14:15:13 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll [2017/01/14 14:15:13 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll [2017/01/14 14:15:13 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll [2017/01/14 14:15:13 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll [2017/01/14 14:15:13 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll [2017/01/14 14:15:13 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll [2017/01/14 14:15:12 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll [2017/01/14 14:15:12 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll [2017/01/14 14:15:12 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll [2017/01/14 14:15:12 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll [2017/01/14 14:15:12 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll [2017/01/14 14:15:12 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll [2017/01/14 14:15:12 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll [2017/01/14 14:15:12 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll [2017/01/14 14:15:11 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll [2017/01/14 14:15:11 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll [2017/01/14 14:15:11 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll [2017/01/14 14:15:11 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll [2017/01/14 14:15:11 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll [2017/01/14 14:15:11 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll [2017/01/14 14:15:11 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll [2017/01/14 14:15:11 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll [2017/01/14 14:15:11 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll [2017/01/14 14:15:11 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll [2017/01/14 14:15:10 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll [2017/01/14 14:15:10 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll [2017/01/14 14:15:10 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll [2017/01/14 14:15:10 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll [2017/01/14 14:15:10 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll [2017/01/14 14:15:10 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll [2017/01/14 14:15:10 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll [2017/01/14 14:15:10 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll [2017/01/14 14:15:10 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll [2017/01/14 14:15:10 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll [2017/01/14 14:15:09 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll [2017/01/14 14:15:09 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll [2017/01/14 14:15:09 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll [2017/01/14 14:15:09 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll [2017/01/14 14:15:09 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll [2017/01/14 14:15:09 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll [2017/01/14 14:15:09 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll [2017/01/14 14:15:09 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll [2017/01/14 14:15:09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll [2017/01/14 14:15:09 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll [2017/01/14 14:15:09 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll [2017/01/14 14:15:09 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll [2017/01/14 14:15:09 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll [2017/01/14 14:15:09 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll [2017/01/14 14:15:09 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll [2017/01/14 14:15:09 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll [2017/01/14 14:15:09 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll [2017/01/14 14:15:09 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll [2017/01/14 14:15:08 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll [2017/01/14 14:15:08 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll [2017/01/14 14:15:08 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll [2017/01/14 14:15:08 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll [2017/01/14 14:15:08 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll [2017/01/14 14:15:08 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll [2017/01/14 14:15:07 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll [2017/01/14 14:15:07 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll [2017/01/14 14:15:07 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll [2017/01/14 14:15:07 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll [2017/01/14 14:15:07 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll [2017/01/14 14:15:07 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll [2017/01/14 14:15:07 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll [2017/01/14 14:15:07 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll [2017/01/14 14:15:07 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll [2017/01/14 14:15:07 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll [2017/01/14 14:15:07 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll [2017/01/14 14:15:07 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll [2017/01/14 14:15:06 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll [2017/01/14 14:15:06 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll [2017/01/14 14:15:06 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll [2017/01/14 14:15:06 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll [2017/01/14 14:15:06 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll [2017/01/14 14:15:06 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll [2017/01/14 14:15:06 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll [2017/01/14 14:15:06 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll [2017/01/14 14:15:06 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll [2017/01/14 14:15:06 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll [2017/01/14 14:15:05 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll [2017/01/14 14:15:05 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll [2017/01/14 14:15:05 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll [2017/01/14 14:15:05 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll [2017/01/14 14:15:05 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll [2017/01/14 14:15:05 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll [2017/01/14 14:15:05 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll [2017/01/14 14:15:05 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll [2017/01/14 14:15:04 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll [2017/01/14 14:15:04 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll [2017/01/14 14:15:04 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll [2017/01/14 14:15:04 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll [2017/01/14 14:15:04 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll [2017/01/14 14:15:04 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll [2017/01/14 14:15:03 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll [2017/01/14 14:15:03 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll [2017/01/14 14:15:03 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll [2017/01/14 14:15:03 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll [2017/01/14 14:15:03 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll [2017/01/14 14:15:03 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll [2017/01/14 14:15:03 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll [2017/01/14 14:15:03 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll [2017/01/14 14:15:03 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll [2017/01/14 14:15:03 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll [2017/01/14 14:15:02 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll [2017/01/14 14:15:02 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll [2017/01/14 14:15:02 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll [2017/01/14 14:15:02 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll [2017/01/14 14:15:02 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll [2017/01/14 14:15:02 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll [2017/01/14 14:15:01 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll [2017/01/14 14:15:01 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll [2017/01/14 14:15:01 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll [2017/01/14 14:15:01 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll [2017/01/14 14:15:01 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll [2017/01/14 14:15:01 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll [2017/01/14 14:15:01 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll [2017/01/14 14:15:01 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll [2017/01/14 14:15:01 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll [2017/01/14 14:15:01 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll [2017/01/14 14:15:01 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll [2017/01/14 14:15:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll [2017/01/14 14:15:00 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll [2017/01/14 14:15:00 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll [2017/01/14 14:15:00 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll [2017/01/14 14:15:00 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll [2017/01/14 14:15:00 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll [2017/01/14 14:15:00 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll [2017/01/14 14:15:00 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll [2017/01/14 14:15:00 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll [2017/01/14 14:14:59 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll [2017/01/14 14:14:59 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll [2017/01/14 14:14:59 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll [2017/01/14 14:14:59 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll [2017/01/14 14:14:59 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll [2017/01/14 14:14:59 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll [2017/01/14 14:14:59 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll [2017/01/14 14:14:59 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll [2017/01/14 14:14:59 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll [2017/01/14 14:14:59 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll [2017/01/14 14:14:57 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll [2017/01/14 14:14:57 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll [2017/01/14 14:14:57 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll [2017/01/14 14:14:57 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll [2017/01/14 14:14:57 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll [2017/01/14 14:14:57 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll [2017/01/14 14:14:56 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll [2017/01/14 14:14:56 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll [2017/01/14 14:14:56 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll [2017/01/14 14:14:56 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll [2017/01/14 14:14:56 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll [2017/01/14 14:14:56 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll [2017/01/14 14:14:55 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll [2017/01/14 14:14:55 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll [2017/01/14 14:14:55 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll [2017/01/14 14:14:55 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll [2017/01/14 14:14:55 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll [2017/01/14 14:14:55 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll [2017/01/14 14:14:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2017/01/14 14:14:16 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2017/01/14 14:14:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2017/01/14 14:13:52 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2017/01/14 14:13:38 | 000,000,000 | R--D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2017/01/14 14:13:38 | 000,000,000 | R--D | C] -- C:\Users\mouched\Searches [2017/01/14 14:13:38 | 000,000,000 | R--D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2017/01/14 14:13:38 | 000,000,000 | -H-D | C] -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned [2017/01/14 14:13:29 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Identities [2017/01/14 14:13:26 | 000,000,000 | R--D | C] -- C:\Users\mouched\Contacts [2017/01/14 14:13:16 | 000,000,000 | --SD | C] -- C:\Users\mouched\AppData\Roaming\Microsoft [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Videos [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Saved Games [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Pictures [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Music [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Links [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Favorites [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Downloads [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Documents [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\Desktop [2017/01/14 14:13:16 | 000,000,000 | R--D | C] -- C:\Users\mouched\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Voisinage réseau [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Voisinage d'impression [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\AppData\Local\Temporary Internet Files [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\SendTo [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Recent [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Modèles [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Documents\Mes vidéos [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Documents\Mes images [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Mes documents [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Menu Démarrer [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Documents\Ma musique [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Local Settings [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\AppData\Local\Historique [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Cookies [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\Application Data [2017/01/14 14:13:16 | 000,000,000 | -HSD | C] -- C:\Users\mouched\AppData\Local\Application Data [2017/01/14 14:13:16 | 000,000,000 | -H-D | C] -- C:\Users\mouched\AppData [2017/01/14 14:13:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Temp [2017/01/14 14:13:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Local\Microsoft [2017/01/14 14:13:16 | 000,000,000 | ---D | C] -- C:\Users\mouched\AppData\Roaming\Media Center Programs [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Recovery [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modèles [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes vidéos [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes images [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Démarrer [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Ma musique [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoris [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureau [2017/01/14 14:12:57 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data [2017/01/14 13:45:29 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2017/01/14 13:45:23 | 000,000,000 | ---D | C] -- C:\Windows\CSC [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2017/01/19 10:12:47 | 001,549,700 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2017/01/19 10:12:47 | 000,704,242 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat [2017/01/19 10:12:47 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2017/01/19 10:12:47 | 000,130,548 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat [2017/01/19 10:12:47 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2017/01/19 10:11:30 | 000,019,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2017/01/19 10:11:30 | 000,019,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2017/01/19 10:09:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\mouched\Desktop\OTL.exe [2017/01/19 10:06:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2017/01/19 10:05:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2017/01/19 08:46:17 | 000,002,292 | ---- | M] () -- C:\Users\Public\Desktop\Driver Booster 4.lnk [2017/01/18 08:10:34 | 000,001,518 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Application Manager.lnk [2017/01/18 07:59:08 | 000,001,066 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk [2017/01/18 07:58:07 | 030,533,688 | ---- | M] () -- C:\Users\mouched\vlc-2.2.4-win32.exe [2017/01/18 07:56:30 | 011,348,661 | ---- | M] (Denis ROBERT ) -- C:\Users\mouched\Desktop\FreeVCL.exe [2017/01/17 19:09:51 | 001,771,056 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2017/01/17 19:07:49 | 068,668,549 | ---- | M] () -- C:\Users\mouched\Desktop\Tarage injecteurs IH 1055-1.mp4 [2017/01/17 18:44:58 | 021,849,065 | ---- | M] () -- C:\Users\mouched\Desktop\démontage pompe de tarage 12.mp4 [2017/01/17 18:41:47 | 005,525,505 | ---- | M] () -- C:\Users\mouched\Desktop\tareuse a injecteur.mp4 [2017/01/17 18:38:43 | 017,423,187 | ---- | M] () -- C:\Users\mouched\Desktop\CEFCM - Tarage d'injecteur.mp4 [2017/01/17 18:10:39 | 068,668,549 | ---- | M] () -- C:\Users\mouched\Desktop\Tarage injecteurs IH 1055.mp4 [2017/01/17 18:08:30 | 010,899,901 | ---- | M] () -- C:\Users\mouched\Desktop\Test tarage injecteurs mécaniques.mp4 [2017/01/17 11:50:38 | 002,237,548 | ---- | M] () -- C:\Users\mouched\Desktop\1 copie_modifié-1.jpg [2017/01/17 11:44:50 | 001,192,830 | ---- | M] () -- C:\Users\mouched\Desktop\1 copie.jpg [2017/01/17 11:41:03 | 001,657,321 | ---- | M] () -- C:\Users\mouched\Desktop\0190_6232959(1)-1.jpg [2017/01/17 11:35:25 | 001,657,321 | ---- | M] () -- C:\Users\mouched\Desktop\henr)-1.jpg [2017/01/17 11:08:42 | 000,405,211 | ---- | M] () -- C:\Users\mouched\Desktop\1 001.jpg [2017/01/17 10:58:06 | 000,001,896 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Photoshop Elements 11.lnk [2017/01/17 10:18:29 | 000,002,160 | ---- | M] () -- C:\Users\Public\Desktop\Brother Creative Center.lnk [2017/01/17 10:18:08 | 000,000,050 | ---- | M] () -- C:\Windows\SysNative\bridf08b.dat [2017/01/17 10:18:04 | 000,000,434 | ---- | M] () -- C:\Windows\BRWMARK.INI [2017/01/17 10:13:33 | 050,187,152 | ---- | M] (A.I.SOFT,INC.) -- C:\Users\mouched\DCP-195C-inst-B1-win78.EXE [2017/01/17 10:00:29 | 000,001,173 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts [2017/01/17 09:53:42 | 000,493,267 | ---- | M] () -- C:\Users\mouched\Desktop\8627422_0190_6232959(1).pdf [2017/01/17 09:01:17 | 005,455,526 | ---- | M] (InstallShield Software Corporation) -- C:\Users\mouched\Desktop\acrobat4.exe [2017/01/17 08:51:08 | 000,305,184 | ---- | M] () -- C:\Users\mouched\Desktop\Avenants_103768818.pdf [2017/01/16 19:25:52 | 106,705,313 | ---- | M] () -- C:\Users\mouched\Desktop\M.Anti.Malware.2.2.1.1043.Portable.21.08.2016.rar [2017/01/16 09:08:44 | 000,095,957 | ---- | M] () -- C:\Users\mouched\Desktop\aDSCF8074.jpg [2017/01/16 09:08:10 | 000,096,489 | ---- | M] () -- C:\Users\mouched\Desktop\aDSCF8079.jpg [2017/01/15 10:19:25 | 000,002,723 | ---- | M] () -- C:\Users\Public\Desktop\Jasc Paint Shop Pro 9.lnk [2017/01/15 10:19:25 | 000,002,723 | ---- | M] () -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\Jasc Paint Shop Pro 9.lnk [2017/01/14 15:43:55 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\MP3jam.lnk [2017/01/14 15:21:16 | 000,802,904 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2017/01/14 15:21:16 | 000,144,472 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2017/01/14 15:09:49 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl [2017/01/14 15:08:34 | 015,202,032 | ---- | M] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE3.dll [2017/01/14 15:08:34 | 003,299,816 | ---- | M] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE2.dll [2017/01/14 15:08:34 | 002,190,984 | ---- | M] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE.dll [2017/01/14 15:08:33 | 005,804,772 | ---- | M] () -- C:\Windows\SysNative\drivers\rtvienna.dat [2017/01/14 15:08:33 | 003,204,096 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2017/01/14 15:08:33 | 003,014,144 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2017/01/14 15:08:33 | 002,995,000 | ---- | M] (DTS, Inc.) -- C:\Windows\SysNative\slcnt64.dll [2017/01/14 15:08:33 | 002,706,856 | ---- | M] (DTS, Inc.) -- C:\Windows\SysNative\sltech64.dll [2017/01/14 15:08:33 | 002,110,592 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll [2017/01/14 15:08:33 | 001,921,016 | ---- | M] () -- C:\Windows\SysNative\drivers\rtkSSTsetting.dat [2017/01/14 15:08:33 | 001,435,136 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRRPTR64.dll [2017/01/14 15:08:33 | 001,382,232 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll [2017/01/14 15:08:33 | 001,337,640 | ---- | M] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tossaeapo64.dll [2017/01/14 15:08:33 | 001,003,320 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysNative\SEHDHF64.dll [2017/01/14 15:08:33 | 000,984,912 | ---- | M] (DTS, Inc.) -- C:\Windows\SysNative\sl3apo64.dll [2017/01/14 15:08:33 | 000,965,016 | ---- | M] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll [2017/01/14 15:08:33 | 000,962,120 | ---- | M] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tosasfapo64.dll [2017/01/14 15:08:33 | 000,873,456 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll [2017/01/14 15:08:33 | 000,865,912 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysWow64\SEHDHF32.dll [2017/01/14 15:08:33 | 000,859,216 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysNative\SEHDRA64.dll [2017/01/14 15:08:33 | 000,850,400 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysNative\SECOMN64.dll [2017/01/14 15:08:33 | 000,721,800 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysWow64\SECOMN32.dll [2017/01/14 15:08:33 | 000,601,144 | ---- | M] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\tossaemaxapo64.dll [2017/01/14 15:08:33 | 000,571,376 | ---- | M] (Intel Corporation) -- C:\Windows\SysNative\tbb_waves.dll [2017/01/14 15:08:33 | 000,532,376 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll [2017/01/14 15:08:33 | 000,499,152 | ---- | M] (Sound Research, Corp.) -- C:\Windows\SysNative\SEAPO64.dll [2017/01/14 15:08:33 | 000,467,152 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRAPO64.dll [2017/01/14 15:08:33 | 000,447,176 | ---- | M] (Toshiba Client Solutions Co., Ltd.) -- C:\Windows\SysNative\toseaeapo64.dll [2017/01/14 15:08:33 | 000,381,400 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM64.dll [2017/01/14 15:08:33 | 000,343,704 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2017/01/14 15:08:33 | 000,341,144 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysWow64\SRCOM.dll [2017/01/14 15:08:33 | 000,341,144 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM.dll [2017/01/14 15:08:33 | 000,258,864 | ---- | M] (TODO: ) -- C:\Windows\SysNative\slprp64.dll [2017/01/14 15:08:33 | 000,231,912 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll [2017/01/14 15:08:33 | 000,221,960 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll [2017/01/14 15:08:33 | 000,209,536 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll [2017/01/14 15:08:33 | 000,166,200 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll [2017/01/14 15:08:33 | 000,158,696 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll [2017/01/14 15:08:33 | 000,090,912 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll [2017/01/14 15:08:33 | 000,088,320 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll [2017/01/14 15:08:33 | 000,083,624 | ---- | M] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll [2017/01/14 15:08:33 | 000,075,536 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll [2017/01/14 15:08:32 | 072,520,712 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat [2017/01/14 15:08:32 | 007,704,619 | ---- | M] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT [2017/01/14 15:08:32 | 003,503,048 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2017/01/14 15:08:32 | 003,201,376 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll [2017/01/14 15:08:32 | 002,828,432 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysWow64\RltkAPO.dll [2017/01/14 15:08:32 | 002,201,088 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll [2017/01/14 15:08:32 | 001,360,512 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2017/01/14 15:08:32 | 000,689,872 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll [2017/01/14 15:08:32 | 000,387,312 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2017/01/14 15:08:32 | 000,321,712 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2017/01/14 15:08:32 | 000,321,712 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2017/01/14 15:08:32 | 000,214,832 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2017/01/14 15:08:32 | 000,192,976 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2017/01/14 15:08:32 | 000,110,984 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2017/01/14 15:08:32 | 000,088,344 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2017/01/14 15:08:32 | 000,023,688 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll [2017/01/14 15:08:31 | 013,122,576 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO3064.dll [2017/01/14 15:08:31 | 012,988,336 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO4064.dll [2017/01/14 15:08:31 | 007,172,912 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll [2017/01/14 15:08:31 | 006,198,136 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICV3apo.dll [2017/01/14 15:08:31 | 005,793,520 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICV2apo.dll [2017/01/14 15:08:31 | 005,593,608 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOlfx.dll [2017/01/14 15:08:31 | 001,003,856 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NahimicAPONSControl.dll [2017/01/14 15:08:31 | 000,923,736 | ---- | M] (Sony Corporation) -- C:\Windows\SysNative\MISS_APO.dll [2017/01/14 15:08:31 | 000,677,672 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll [2017/01/14 15:08:31 | 000,447,712 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll [2017/01/14 15:08:31 | 000,151,784 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll [2017/01/14 15:08:31 | 000,134,200 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll [2017/01/14 15:08:31 | 000,084,616 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll [2017/01/14 15:08:30 | 023,547,544 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRenderAVX64.dll [2017/01/14 15:08:30 | 023,447,352 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRender64.dll [2017/01/14 15:08:30 | 014,057,248 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll [2017/01/14 15:08:30 | 001,334,376 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxSpeechAPO64.dll [2017/01/14 15:08:30 | 000,999,848 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll [2017/01/14 15:08:29 | 017,398,616 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioCapture64.dll [2017/01/14 15:08:29 | 010,532,048 | ---- | M] (Intel Corporation) -- C:\Windows\SysNative\IntelSSTAPO.dll [2017/01/14 15:08:29 | 002,291,304 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO7064.dll [2017/01/14 15:08:29 | 002,050,168 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll [2017/01/14 15:08:29 | 001,422,920 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO6064.dll [2017/01/14 15:08:29 | 001,213,656 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll [2017/01/14 15:08:29 | 001,186,816 | ---- | M] (Intel Corporation) -- C:\Windows\SysNative\IntelSstCApoPropPage.dll [2017/01/14 15:08:29 | 001,166,152 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO4064.dll [2017/01/14 15:08:29 | 000,931,616 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll [2017/01/14 15:08:29 | 000,678,176 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll [2017/01/14 15:08:29 | 000,618,176 | ---- | M] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll [2017/01/14 15:08:29 | 000,588,032 | ---- | M] (ICEpower a/s) -- C:\Windows\SysNative\ICEsoundAPO64.dll [2017/01/14 15:08:29 | 000,426,568 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\HiFiDAX2APIPCLL.dll [2017/01/14 15:08:29 | 000,416,504 | ---- | M] (Harman) -- C:\Windows\SysNative\HMUI.dll [2017/01/14 15:08:29 | 000,366,120 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\HMAPO.dll [2017/01/14 15:08:29 | 000,360,344 | ---- | M] (Harman) -- C:\Windows\SysNative\HMClariFi.dll [2017/01/14 15:08:29 | 000,330,560 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2017/01/14 15:08:29 | 000,203,840 | ---- | M] (Harman) -- C:\Windows\SysNative\HMHVS.dll [2017/01/14 15:08:29 | 000,190,928 | ---- | M] (Harman) -- C:\Windows\SysNative\HMEQ_Voice.dll [2017/01/14 15:08:29 | 000,190,928 | ---- | M] (Harman) -- C:\Windows\SysNative\HMEQ.dll [2017/01/14 15:08:29 | 000,179,592 | ---- | M] (Harman) -- C:\Windows\SysNative\HMLimiter.dll [2017/01/14 15:08:28 | 007,096,184 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64A.dll [2017/01/14 15:08:28 | 006,264,632 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64AF3.dll [2017/01/14 15:08:28 | 005,347,000 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOv211.dll [2017/01/14 15:08:28 | 003,295,064 | ---- | M] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2017/01/14 15:08:28 | 002,444,688 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOv201.dll [2017/01/14 15:08:28 | 001,965,808 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64A.dll [2017/01/14 15:08:28 | 001,959,592 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64AF3.dll [2017/01/14 15:08:28 | 001,780,616 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll [2017/01/14 15:08:28 | 001,591,056 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll [2017/01/14 15:08:28 | 001,516,896 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DAX3APOProp.dll [2017/01/14 15:08:28 | 001,508,928 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll [2017/01/14 15:08:28 | 001,363,096 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DAX3APOv251.dll [2017/01/14 15:08:28 | 001,133,584 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOProp.dll [2017/01/14 15:08:28 | 000,785,608 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DolbyDAX2APOvlldp.dll [2017/01/14 15:08:28 | 000,743,960 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll [2017/01/14 15:08:28 | 000,727,432 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll [2017/01/14 15:08:28 | 000,708,312 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll [2017/01/14 15:08:28 | 000,514,520 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll [2017/01/14 15:08:28 | 000,504,304 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll [2017/01/14 15:08:28 | 000,500,552 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll [2017/01/14 15:08:28 | 000,445,400 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll [2017/01/14 15:08:28 | 000,441,264 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll [2017/01/14 15:08:28 | 000,428,224 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll [2017/01/14 15:08:28 | 000,378,384 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\HiFiDAX2API.dll [2017/01/14 15:08:28 | 000,362,048 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64AF3.dll [2017/01/14 15:08:28 | 000,327,448 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64A.dll [2017/01/14 15:08:28 | 000,310,416 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64F3.dll [2017/01/14 15:08:28 | 000,272,712 | ---- | M] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64.dll [2017/01/14 15:08:28 | 000,253,896 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll [2017/01/14 15:08:28 | 000,253,864 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll [2017/01/14 15:08:28 | 000,252,872 | ---- | M] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll [2017/01/14 15:08:28 | 000,154,360 | ---- | M] (Harman) -- C:\Windows\SysNative\HarmanAudioInterface.dll [2017/01/14 15:08:27 | 002,993,712 | ---- | M] (Audyssey Labs) -- C:\Windows\SysNative\AudysseyEfx.dll [2017/01/14 15:08:27 | 001,615,656 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64APO.dll [2017/01/14 15:08:27 | 001,529,136 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64Proxy.dll [2017/01/14 15:08:27 | 000,574,752 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll [2017/01/14 15:08:27 | 000,438,688 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\SysNative\CAF64APO2.dll [2017/01/14 15:08:27 | 000,122,320 | ---- | M] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll [2017/01/14 15:08:27 | 000,118,592 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll [2017/01/14 15:08:27 | 000,118,592 | ---- | M] () -- C:\Windows\SysNative\AcpiServiceVnA64.dll [2017/01/14 15:08:27 | 000,112,488 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\SysNative\Caf64api.dll [2017/01/14 15:08:27 | 000,105,304 | ---- | M] () -- C:\Windows\SysNative\audioLibVc.dll [2017/01/14 15:08:27 | 000,005,604 | ---- | M] () -- C:\Windows\SysNative\cxapo.lncs [2017/01/14 15:08:27 | 000,000,736 | ---- | M] () -- C:\Windows\SysNative\cxapo.prop [2017/01/14 15:04:56 | 009,891,328 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysWow64\RsCRIcon.dll [2017/01/14 15:04:56 | 004,332,032 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\RtCRU64.exe [2017/01/14 15:04:56 | 000,418,784 | ---- | M] (Realsil Semiconductor Corporation) -- C:\Windows\SysNative\drivers\RtsUer.sys [2017/01/14 15:04:56 | 000,084,480 | ---- | M] (Realtek Semiconductor.) -- C:\Windows\SysNative\RtCRX64.dll [2017/01/14 15:04:41 | 000,467,736 | ---- | M] (Broadcom Limited) -- C:\Windows\SysNative\drivers\b57nd60a.sys [2017/01/14 15:04:24 | 000,011,944 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\drivers\amdide64.sys [2017/01/14 15:00:15 | 000,027,552 | ---- | M] (REALiX(tm)) -- C:\Windows\SysWow64\drivers\HWiNFO64A.SYS [2017/01/14 14:55:01 | 000,225,280 | -H-- | M] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe [2017/01/14 14:54:02 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf [2017/01/14 14:52:44 | 000,258,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MSFLXGRD.OCX [2017/01/14 14:52:44 | 000,221,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\TabCtl32.OCX [2017/01/14 14:52:44 | 000,218,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RICHTX32.OCX [2017/01/14 14:31:59 | 000,000,000 | -H-- | M] () -- C:\Users\mouched\Documents\Default.rdp [2017/01/14 14:24:07 | 000,001,233 | ---- | M] () -- C:\Users\Public\Desktop\Firefox Developer Edition.lnk [2017/01/14 14:17:17 | 000,508,472 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys [2017/01/14 14:16:30 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2017/01/14 13:47:39 | 000,057,704 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2017/01/14 13:47:39 | 000,057,704 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2017/01/14 13:46:38 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin [2017/01/14 13:46:38 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\atiicdxx.dat [2017/01/14 12:54:53 | 001,310,336 | ---- | M] () -- C:\Users\mouched\Desktop\der nier 2017bookmarks.html [2016/11/27 15:26:52 | 1182,872,146 | ---- | M] () -- C:\Users\mouched\Desktop\Adobe Photoshop Elements 11.0 Multilingual+Patch+Keygen.tgz [color=#E56717]========== Files Created - No Company Name ==========[/color] [2017/01/18 08:10:34 | 000,001,530 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk [2017/01/18 08:10:34 | 000,001,518 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Application Manager.lnk [2017/01/18 07:59:08 | 000,001,066 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk [2017/01/18 07:57:27 | 030,533,688 | ---- | C] () -- C:\Users\mouched\vlc-2.2.4-win32.exe [2017/01/17 18:56:20 | 068,668,549 | ---- | C] () -- C:\Users\mouched\Desktop\Tarage injecteurs IH 1055-1.mp4 [2017/01/17 18:44:24 | 021,849,065 | ---- | C] () -- C:\Users\mouched\Desktop\démontage pompe de tarage 12.mp4 [2017/01/17 18:41:19 | 005,525,505 | ---- | C] () -- C:\Users\mouched\Desktop\tareuse a injecteur.mp4 [2017/01/17 18:38:01 | 017,423,187 | ---- | C] () -- C:\Users\mouched\Desktop\CEFCM - Tarage d'injecteur.mp4 [2017/01/17 18:07:36 | 010,899,901 | ---- | C] () -- C:\Users\mouched\Desktop\Test tarage injecteurs mécaniques.mp4 [2017/01/17 18:05:29 | 068,668,549 | ---- | C] () -- C:\Users\mouched\Desktop\Tarage injecteurs IH 1055.mp4 [2017/01/17 11:50:33 | 002,237,548 | ---- | C] () -- C:\Users\mouched\Desktop\1 copie_modifié-1.jpg [2017/01/17 11:44:44 | 001,192,830 | ---- | C] () -- C:\Users\mouched\Desktop\1 copie.jpg [2017/01/17 11:40:52 | 001,657,321 | ---- | C] () -- C:\Users\mouched\Desktop\0190_6232959(1)-1.jpg [2017/01/17 11:35:19 | 001,657,321 | ---- | C] () -- C:\Users\mouched\Desktop\henr)-1.jpg [2017/01/17 11:08:42 | 000,405,211 | ---- | C] () -- C:\Users\mouched\Desktop\1 001.jpg [2017/01/17 10:58:06 | 000,001,912 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Elements 11.lnk [2017/01/17 10:58:06 | 000,001,896 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Photoshop Elements 11.lnk [2017/01/17 10:18:29 | 000,002,160 | ---- | C] () -- C:\Users\Public\Desktop\Brother Creative Center.lnk [2017/01/17 10:18:08 | 000,000,050 | ---- | C] () -- C:\Windows\SysNative\bridf08b.dat [2017/01/17 10:18:04 | 000,000,434 | ---- | C] () -- C:\Windows\BRWMARK.INI [2017/01/17 09:54:51 | 1182,872,146 | ---- | C] () -- C:\Users\mouched\Desktop\Adobe Photoshop Elements 11.0 Multilingual+Patch+Keygen.tgz [2017/01/17 09:53:39 | 000,493,267 | ---- | C] () -- C:\Users\mouched\Desktop\8627422_0190_6232959(1).pdf [2017/01/17 08:51:05 | 000,305,184 | ---- | C] () -- C:\Users\mouched\Desktop\Avenants_103768818.pdf [2017/01/16 09:08:43 | 000,095,957 | ---- | C] () -- C:\Users\mouched\Desktop\aDSCF8074.jpg [2017/01/16 09:08:10 | 000,096,489 | ---- | C] () -- C:\Users\mouched\Desktop\aDSCF8079.jpg [2017/01/15 12:15:26 | 106,705,313 | ---- | C] () -- C:\Users\mouched\Desktop\M.Anti.Malware.2.2.1.1043.Portable.21.08.2016.rar [2017/01/15 10:20:50 | 000,002,723 | ---- | C] () -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\Jasc Paint Shop Pro 9.lnk [2017/01/15 10:20:49 | 000,002,723 | ---- | C] () -- C:\Users\Public\Desktop\Jasc Paint Shop Pro 9.lnk [2017/01/15 09:53:44 | 105,420,275 | ---- | C] () -- C:\Users\mouched\Desktop\paint shop pro9 fr.rar [2017/01/15 09:32:15 | 000,565,244 | ---- | C] () -- C:\Users\mouched\Desktop\google earth pro 2012 cracked full version pass=24 .rar [2017/01/14 15:43:55 | 000,000,979 | ---- | C] () -- C:\Users\Public\Desktop\MP3jam.lnk [2017/01/14 15:16:35 | 000,002,292 | ---- | C] () -- C:\Users\Public\Desktop\Driver Booster 4.lnk [2017/01/14 15:11:50 | 000,001,002 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2017/01/14 15:09:49 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl [2017/01/14 15:08:33 | 005,804,772 | ---- | C] () -- C:\Windows\SysNative\drivers\rtvienna.dat [2017/01/14 15:08:33 | 001,921,016 | ---- | C] () -- C:\Windows\SysNative\drivers\rtkSSTsetting.dat [2017/01/14 15:08:32 | 007,704,619 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT [2017/01/14 15:08:27 | 000,118,592 | ---- | C] () -- C:\Windows\SysNative\AcpiServiceVnA64.dll [2017/01/14 15:08:27 | 000,105,304 | ---- | C] () -- C:\Windows\SysNative\audioLibVc.dll [2017/01/14 15:08:27 | 000,005,604 | ---- | C] () -- C:\Windows\SysNative\cxapo.lncs [2017/01/14 15:08:27 | 000,000,736 | ---- | C] () -- C:\Windows\SysNative\cxapo.prop [2017/01/14 14:55:01 | 000,225,280 | -H-- | C] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe [2017/01/14 14:54:02 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf [2017/01/14 14:31:59 | 000,000,000 | -H-- | C] () -- C:\Users\mouched\Documents\Default.rdp [2017/01/14 14:24:07 | 000,001,245 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk [2017/01/14 14:24:07 | 000,001,233 | ---- | C] () -- C:\Users\Public\Desktop\Firefox Developer Edition.lnk [2017/01/14 14:22:54 | 001,310,336 | ---- | C] () -- C:\Users\mouched\Desktop\der nier 2017bookmarks.html [2017/01/14 14:17:17 | 000,508,472 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys [2017/01/14 14:16:57 | 000,164,352 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2017/01/14 14:16:57 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2017/01/14 14:16:56 | 000,000,414 | ---- | C] () -- C:\Windows\SysWow64\lame_acm.xml [2017/01/14 14:16:55 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll [2017/01/14 14:16:55 | 000,755,027 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2017/01/14 14:16:55 | 000,159,839 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2017/01/14 14:16:54 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2017/01/14 14:13:16 | 000,000,290 | ---- | C] () -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk [2017/01/14 14:13:16 | 000,000,272 | ---- | C] () -- C:\Users\mouched\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk [2017/01/14 13:46:38 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2017/01/14 13:46:38 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 02:41:54 | 014,160,384 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2010/07/27 15:03:24 | 012,867,584 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] [color=#E56717]========== LOP Check ==========[/color] [2017/01/14 15:00:15 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\IObit [2017/01/14 15:47:09 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Mp3jam [2017/01/17 10:07:52 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\No Company Name [2017/01/18 20:59:54 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\ZHP [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color] [color=#A23BEC]< %APPDATA%\*. >[/color] [2017/01/17 11:38:21 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Adobe [2017/01/14 14:13:29 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Identities [2017/01/17 10:16:37 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\InstallShield [2017/01/14 15:00:15 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\IObit [2017/01/15 10:19:06 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Jasc Software Inc [2017/01/15 08:38:17 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Macromedia [2009/07/14 16:35:02 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Media Center Programs [2017/01/15 09:52:54 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Media Player Classic [2017/01/15 08:38:17 | 000,000,000 | --SD | M] -- C:\Users\mouched\AppData\Roaming\Microsoft [2017/01/14 14:32:42 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Mozilla [2017/01/14 15:47:09 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Mp3jam [2017/01/17 10:07:52 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\No Company Name [2017/01/14 14:16:53 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\Real [2017/01/18 08:01:51 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\vlc [2017/01/14 14:59:25 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\WinRAR [2017/01/18 20:59:54 | 000,000,000 | ---D | M] -- C:\Users\mouched\AppData\Roaming\ZHP [color=#A23BEC]< %APPDATA%\*.exe /s >[/color] [2017/01/14 14:55:01 | 000,225,280 | -H-- | M] () -- C:\Users\mouched\AppData\Roaming\Tknynr.exe [2017/01/18 20:55:15 | 002,105,344 | ---- | M] () -- C:\Users\mouched\AppData\Roaming\ZHP\ZHPDiag3.exe [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys [2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys [2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys [color=#A23BEC]< MD5 for: ALG.EXE >[/color] [2009/07/14 02:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=3290D6946B5E30E70414990574883DDB -- C:\Windows\SysNative\alg.exe [2009/07/14 02:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=3290D6946B5E30E70414990574883DDB -- C:\Windows\winsxs\amd64_microsoft-windows-alg_31bf3856ad364e35_6.1.7600.16385_none_04de43c774cf8fe3\alg.exe [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys [2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys [2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys [2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys [2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys [color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color] [2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll [2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll [2009/07/14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll [2009/07/14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll [color=#A23BEC]< MD5 for: CSRSS.EXE >[/color] [2009/07/14 02:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\SysNative\csrss.exe [2009/07/14 02:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\winsxs\amd64_microsoft-windows-csrss_31bf3856ad364e35_6.1.7600.16385_none_b4d8d57efdc6b4f3\csrss.exe [color=#A23BEC]< MD5 for: CTFMON.EXE >[/color] [2009/07/14 02:39:02 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=42B6A94DD747DF2B5F628A2752E62A98 -- C:\Windows\SysNative\ctfmon.exe [2009/07/14 02:39:02 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=42B6A94DD747DF2B5F628A2752E62A98 -- C:\Windows\winsxs\amd64_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_f9257e7aaa4290ce\ctfmon.exe [2009/07/14 02:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4A3CDCEF8ED41B221F3DBEF5792FB52D -- C:\Windows\SysWOW64\ctfmon.exe [2009/07/14 02:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4A3CDCEF8ED41B221F3DBEF5792FB52D -- C:\Windows\winsxs\x86_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_9d06e2f6f1e51f98\ctfmon.exe [color=#A23BEC]< MD5 for: DISK.SYS >[/color] [2009/07/14 02:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\SysNative\drivers\disk.sys [2009/07/14 02:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\SysNative\DriverStore\FileRepository\disk.inf_amd64_neutral_10ce25bbc5a9cc43\disk.sys [2009/07/14 02:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\winsxs\amd64_disk.inf_31bf3856ad364e35_6.1.7600.16385_none_55bb738b8ddd8a01\disk.sys [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe [2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe [2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe [2009/08/03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe [2009/08/03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe [2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=B6E7FEE1CAE4895CC6C644F0244F7591 -- C:\Windows\explorer.exe [2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=B6E7FEE1CAE4895CC6C644F0244F7591 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe [2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=B6E7FEE1CAE4895CC6C644F0244F7591 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe [2009/10/31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe [2009/08/03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe [2009/10/31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe [2009/08/03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe [color=#A23BEC]< MD5 for: I8042PRT.SYS >[/color] [2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\SysNative\drivers\i8042prt.sys [2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\SysNative\DriverStore\FileRepository\keyboard.inf_amd64_neutral_423c286802951189\i8042prt.sys [2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\SysNative\DriverStore\FileRepository\msmouse.inf_amd64_neutral_7a5f47d3150cc0eb\i8042prt.sys [2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\winsxs\amd64_keyboard.inf_31bf3856ad364e35_6.1.7600.16385_none_f3435f7ff2a9f325\i8042prt.sys [2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=FA55C73D4AFFA7EE23AC4BE53B4592D3 -- C:\Windows\winsxs\amd64_msmouse.inf_31bf3856ad364e35_6.1.7600.16385_none_aa28fd23ec0c39f9\i8042prt.sys [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color] [2009/07/14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys [2009/07/14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys [2009/07/14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys [color=#A23BEC]< MD5 for: INTELIDE.SYS >[/color] [2009/07/14 02:48:04 | 000,016,960 | ---- | M] (Microsoft Corporation) MD5=F00F20E70C6EC3AA366910083A0518AA -- C:\Windows\SysNative\drivers\intelide.sys [2009/07/14 02:48:04 | 000,016,960 | ---- | M] (Microsoft Corporation) MD5=F00F20E70C6EC3AA366910083A0518AA -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\intelide.sys [2009/07/14 02:48:04 | 000,016,960 | ---- | M] (Microsoft Corporation) MD5=F00F20E70C6EC3AA366910083A0518AA -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\intelide.sys [color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color] [2009/07/14 02:48:27 | 000,094,784 | ---- | M] (Microsoft Corporation) MD5=791AF66C4D0E7C90A3646066386FB571 -- C:\Windows\SysNative\drivers\mountmgr.sys [2009/07/14 02:48:27 | 000,094,784 | ---- | M] (Microsoft Corporation) MD5=791AF66C4D0E7C90A3646066386FB571 -- C:\Windows\winsxs\amd64_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.1.7600.16385_none_4e8d166d20b6ca3b\mountmgr.sys [color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color] [2010/02/27 08:52:22 | 000,157,696 | ---- | M] (Microsoft Corporation) MD5=767A4C3BCF9410C286CED15A2DB17108 -- C:\Windows\SysNative\drivers\mrxsmb.sys [2010/02/27 08:52:22 | 000,157,696 | ---- | M] (Microsoft Corporation) MD5=767A4C3BCF9410C286CED15A2DB17108 -- C:\Windows\winsxs\amd64_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7600.16539_none_dbc0736c6aa249bf\mrxsmb.sys [2010/02/27 08:52:14 | 000,157,696 | ---- | M] (Microsoft Corporation) MD5=968613CC6C0F7427FAC62ACED6F7B8C5 -- C:\Windows\winsxs\amd64_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7600.20655_none_dc306f3783d3bc0f\mrxsmb.sys [2009/07/14 00:24:00 | 000,157,184 | ---- | M] (Microsoft Corporation) MD5=CFDCD8CA87C2A657DEBC150AC35B5E08 -- C:\Windows\winsxs\amd64_microsoft-windows-smbminirdr_31bf3856ad364e35_6.1.7600.16385_none_db865edc6ace75ca\mrxsmb.sys [color=#A23BEC]< MD5 for: MRXSMB10.SYS >[/color] [2009/07/14 00:24:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=1BEE517B220B7F024F411AEC1571DD5A -- C:\Windows\winsxs\amd64_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7600.16385_none_e4997d30651fb42c\mrxsmb10.sys [2010/02/27 08:52:17 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=2DD6A56A8C7B58F3181C98E536A327B2 -- C:\Windows\winsxs\amd64_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7600.20655_none_e5438d8b7e24fa71\mrxsmb10.sys [2010/02/27 08:52:29 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=920EE0FF995FCFDEB08C41605A959E1C -- C:\Windows\SysNative\drivers\mrxsmb10.sys [2010/02/27 08:52:29 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=920EE0FF995FCFDEB08C41605A959E1C -- C:\Windows\winsxs\amd64_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.1.7600.16539_none_e4d391c064f38821\mrxsmb10.sys [color=#A23BEC]< MD5 for: MRXSMB20.SYS >[/color] [2010/02/27 08:52:12 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=00716986E11C4F6A53E1177683D1DB20 -- C:\Windows\winsxs\amd64_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7600.20655_none_e779f79dbc7c2de2\mrxsmb20.sys [2009/07/14 00:24:06 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=6B2D5FEF385828B6E485C1C90AFB8195 -- C:\Windows\winsxs\amd64_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7600.16385_none_e6cfe742a376e79d\mrxsmb20.sys [2010/02/27 08:52:28 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=740D7EA9D72C981510A5292CF6ADC941 -- C:\Windows\SysNative\drivers\mrxsmb20.sys [2010/02/27 08:52:28 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=740D7EA9D72C981510A5292CF6ADC941 -- C:\Windows\winsxs\amd64_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.1.7600.16539_none_e709fbd2a34abb92\mrxsmb20.sys [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2009/07/14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys [2009/07/14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2009/07/14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll [2009/07/14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll [2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll [2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll [color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color] [2009/07/14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys [2009/07/14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys [2009/07/14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys [color=#A23BEC]< MD5 for: RASACD.SYS >[/color] [2009/07/14 01:10:09 | 000,014,848 | ---- | M] (Microsoft Corporation) MD5=5A0DA8AD5762FA2D91678A8A01311704 -- C:\Windows\SysNative\drivers\rasacd.sys [2009/07/14 01:10:09 | 000,014,848 | ---- | M] (Microsoft Corporation) MD5=5A0DA8AD5762FA2D91678A8A01311704 -- C:\Windows\winsxs\amd64_microsoft-windows-rasautodial_31bf3856ad364e35_6.1.7600.16385_none_6bcef05d7f04260a\rasacd.sys [color=#A23BEC]< MD5 for: RDPCDD.SYS >[/color] [2009/07/14 01:16:34 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=CEA6CC257FC9B7715F1C2B4849286D24 -- C:\Windows\SysNative\drivers\RDPCDD.sys [2009/07/14 01:16:34 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=CEA6CC257FC9B7715F1C2B4849286D24 -- C:\Windows\winsxs\amd64_microsoft-windows-t..niportdisplaydriver_31bf3856ad364e35_6.1.7600.16385_none_30d015c257effe8b\RDPCDD.sys [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll [2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll [2009/07/14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll [2009/07/14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll [color=#A23BEC]< MD5 for: SERVICES.EXE >[/color] [2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe [2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe [color=#A23BEC]< MD5 for: SMSS.EXE >[/color] [2009/07/14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe [2009/07/14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe [color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color] [2010/08/20 06:38:12 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=8547491BE7086EE317163365D83A37D2 -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.20785_none_32ca3745f45762fc\spoolsv.exe [2009/07/14 02:39:44 | 000,558,080 | ---- | M] (Microsoft Corporation) MD5=89E8550C5862999FCF482EA562B0E98E -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_324094c8db39cbbd\spoolsv.exe [2010/08/21 07:29:47 | 000,558,592 | ---- | M] (Microsoft Corporation) MD5=F8E1FA03CB70D54A9892AC88B91D1E7B -- C:\Windows\SysNative\spoolsv.exe [2010/08/21 07:29:47 | 000,558,592 | ---- | M] (Microsoft Corporation) MD5=F8E1FA03CB70D54A9892AC88B91D1E7B -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16661_none_3252392adb2d25f4\spoolsv.exe [color=#A23BEC]< MD5 for: STORPORT.SYS >[/color] [2009/07/14 02:45:55 | 000,185,936 | ---- | M] (Microsoft Corporation) MD5=141E6F0B54DA421B8DE146F5AD947760 -- C:\Windows\SysNative\drivers\storport.sys [2009/07/14 02:45:55 | 000,185,936 | ---- | M] (Microsoft Corporation) MD5=141E6F0B54DA421B8DE146F5AD947760 -- C:\Windows\winsxs\amd64_microsoft-windows-storport_31bf3856ad364e35_6.1.7600.16385_none_8371405049dfec7a\storport.sys [color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color] [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe [2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe [2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe [color=#A23BEC]< MD5 for: TCPIP.SYS >[/color] [2010/06/14 07:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys [2010/06/14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\SysNative\drivers\tcpip.sys [2010/06/14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys [2009/07/14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys [color=#A23BEC]< MD5 for: TERMDD.SYS >[/color] [2009/07/14 02:45:55 | 000,062,544 | ---- | M] (Microsoft Corporation) MD5=C448651339196C0E869A355171875522 -- C:\Windows\SysNative\drivers\termdd.sys [2009/07/14 02:45:55 | 000,062,544 | ---- | M] (Microsoft Corporation) MD5=C448651339196C0E869A355171875522 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\termdd.sys [2009/07/14 02:45:55 | 000,062,544 | ---- | M] (Microsoft Corporation) MD5=C448651339196C0E869A355171875522 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\termdd.sys [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe [2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe [2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe [2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe [color=#A23BEC]< MD5 for: WIN32K.SYS >[/color] [2014/09/15 01:44:17 | 003,195,392 | ---- | M] (Microsoft Corporation) MD5=6A7A217A6514BE39E78A7BF58C06F712 -- C:\Windows\SoftwareDistribution\Download\b684a20cb169e2d8e73f9795f2978b93\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.17633_none_151c6953b411231a\win32k.sys [2010/10/20 04:25:10 | 003,126,272 | ---- | M] (Microsoft Corporation) MD5=7E5E9C8FC212ABBF72D87AF3370D8D35 -- C:\Windows\winsxs\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.20821_none_15aeee24cd2857cb\win32k.sys [2010/10/20 04:09:15 | 003,124,224 | ---- | M] (Microsoft Corporation) MD5=A94AAAE340658B6C29091B9FD74D2317 -- C:\Windows\SysNative\win32k.sys [2010/10/20 04:09:15 | 003,124,224 | ---- | M] (Microsoft Corporation) MD5=A94AAAE340658B6C29091B9FD74D2317 -- C:\Windows\winsxs\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.16691_none_14d99fffb4437e71\win32k.sys [2014/09/15 02:01:24 | 003,200,512 | ---- | M] (Microsoft Corporation) MD5=BC4E4FDB701C1E9E739EFAE0456ED10D -- C:\Windows\SoftwareDistribution\Download\b684a20cb169e2d8e73f9795f2978b93\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.21838_none_15ab0976cd2a3ebe\win32k.sys [2009/07/14 00:40:40 | 003,122,176 | ---- | M] (Microsoft Corporation) MD5=CBEF2EB83438ED9FC39411CC8378B0E7 -- C:\Windows\winsxs\amd64_microsoft-windows-win32k_31bf3856ad364e35_6.1.7600.16385_none_14e86b61b437d067\win32k.sys [color=#A23BEC]< MD5 for: WININIT.EXE >[/color] [2009/07/14 02:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\SysNative\wininit.exe [2009/07/14 02:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe [2009/07/14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\SysWOW64\wininit.exe [2009/07/14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009/07/14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe [2009/10/28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe [2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe [2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] < End of report >