Rapport de ZHPDiag v2013.6.7.12 par Nicolas Coolman, Update du 07/06/2013
Run by Nicolas at 10/06/2013 13:10:06
WebSite: http://nicolascoolman.webs.com
State : Version à jour.
WhiteList : Disable
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome v26.0.1410.43 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows Vista Home Premium Edition, 64-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 6CJ97
Windows License : OK
Windows Automatic Updates : OK

---\\ System Protection
avast! Free Antivirus v8.0.1483.0

---\\ System Optimizer
CCleaner v3.24   =>Piriform Ltd

---\\ Peer To Peer (P2P)
Pando Media Booster v2.3.6.0
µTorrent v3.2.0   =>P2P.µTorrent

---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader X
Java 7 Update 21

---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3070 MB (20% free)
System Restore: Activé (Enable)
System drive C: has 54 GB (38%) free of 142 GB

---\\ Logged in mode
~ Computer Name: PC-DE-NICOLAS
~ User Name: Nicolas
~ All Users Names: UpdatusUser, postgres, Nicolas, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Nicolas\AppData\Roaming\
~ %Desktop% : C:\Users\Nicolas\Desktop\
~ %Favorites% : C:\Users\Nicolas\Favorites\
~ %LocalAppData% : C:\Users\Nicolas\AppData\Local\
~ %StartMenu% : C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 54 Go of 142 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 120 Go of 142 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ CD-ROM drive (Not Inserted)
L:\ Floppy drive, Flash card reader, USB Key (Free 3 Go of 4 Go)
M:\ Floppy drive, Flash card reader, USB Key (Free 3 Go of 4 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 29 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.6B08E54A451B3F95E4109DBA7E594270] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 08:10:17.) -- C:\Windows\Explorer.exe [3079168]
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:50:23.) -- C:\Windows\System32\Wininit.exe [123904]
[MD5.563C71A913CAC0C3DE5FFCD36EDB43A0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.05/04/2013 - 02:00:30.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.6D0773A3A65D28B663F334C90441D01A] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 08:11:08.) -- C:\Windows\System32\Winlogon.exe [405504]
[MD5.C4F6CE6087760AD70960C9EB130E7943] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.03/01/2012 - 15:25:21.) -- C:\Windows\system32\Drivers\AFD.sys [404992]
[MD5.E68D9B3A3905619732F7FE039466A623] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 08:15:00.) -- C:\Windows\system32\Drivers\atapi.sys [20952]
[MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:50:39.) -- C:\Windows\system32\Drivers\Cdfs.sys [90624]
[MD5.C025AA69BE3D0D25C7A2E746EF6F94FC] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 06:34:39.) -- C:\Windows\system32\Drivers\Cdrom.sys [79872]
[MD5.8B722BA35205C71E7951CDC4CDBADE19] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 16:14:19.) -- C:\Windows\system32\Drivers\DfsC.sys [97792]
[MD5.F942C5820205F2FB453243EDFEC82A3D] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 06:39:41.) -- C:\Windows\system32\Drivers\HDAudBus.sys [948736]
[MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:47:27.) -- C:\Windows\system32\Drivers\i8042prt.sys [64000]
[MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:48:45.) -- C:\Windows\system32\Drivers\IpNat.sys [115712]
[MD5.1485811B320FF8C7EDAD1CAEBB1C6C2B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:39:34.) -- C:\Windows\system32\Drivers\MRxSmb.sys [135680]
[MD5.FC2C792EBDDC8E28DF939D6A92C83D61] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 06:42:33.) -- C:\Windows\system32\Drivers\netBT.sys [248320]
[MD5.2ACCAA3C3C55370A32F17B3595E1A217] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:13:14.) -- C:\Windows\system32\Drivers\ntfs.sys [1513320]
[MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 10:37:57.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.AC7BC4D42A7E558718DFDEC599BBFC2C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.11/04/2009 - 06:43:38.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:46:51.) -- C:\Windows\system32\Drivers\rdpdr.sys [314368]
[MD5.290B6F6A0EC4FCDFC90F5CB6D7020473] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 06:42:19.) -- C:\Windows\system32\Drivers\smb.sys [88064]
[MD5.458919C8C42E398DC4802178D5FFEE27] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 06:43:00.) -- C:\Windows\system32\Drivers\tdx.sys [94720]
[MD5.582F710097B46140F5A89A19A6573D4B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:50:57.) -- C:\Windows\system32\Drivers\volsnap.sys [267648]
~ Generic Processes:  Scanned in 00mn 02s



---\\ Etat des fichiers cachés (Caché/Total)
Mes musiques (My Musics) : 3/3   (Modified) 
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/447
~ Mon Bureau (My Desktop) : 11/211
~ Menu demarrer (Programs) : 1/34
~ Hidden Files:  Scanned in 00mn 01s



---\\ Processus lancés
[MD5.E273A48CB6D61990E7E7F040CD606F1D] - (.Packard Bell BV - Activboard Application.) -- C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\ABoard.exe   [79416] [PID.3268]
[MD5.EE90A04DC33568E35D35300D7B2AC663] - (.Acer Incorporated - SMP Systray.) -- C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe   [1160736] [PID.3492]
[MD5.F02A533F517EB38333CB12A9E8963773] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Nicolas\AppData\Local\Google\Update\GoogleUpdate.exe   [136176] [PID.2420]
[MD5.D762A04EAB59F3DD2BAC1C5494632BE0] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Nicolas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe   [1104384] [PID.3572]
[MD5.BB7245420097B251D1271F5B6F0C9F02] - (.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe   [802136] [PID.3580]   =>P2P.µTorrent
[MD5.1BB16912FD7A9D5A39D033C15485470F] - (.Packard Bell BV - ActivOSD Application.) -- C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\AOSD.exe   [99896] [PID.3616]
[MD5.C2A0CAD6A9151A084208BB6A42FCD17F] - (.Spotify Ltd - Spotify.) -- C:\Users\Nicolas\AppData\Roaming\Spotify\spotify.exe   [4657152] [PID.3652]
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe   [4767304] [PID.3292]
[MD5.BED38B0ADFF5F5CC6E988A6491017E83] - (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe   [267792] [PID.3344]
[MD5.B5ADEB3FCFFAE8094611DD04D09D2450] - (.Duuqu Group - FrameFox Extensions.) -- C:\Program Files (x86)\FrameFox\Extensions\InternetExplorer\framefox.exe   [224240] [PID.2912]   =>Toolbar.DeltaSearch
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [253816] [PID.1852]
[MD5.2E3E46F97C5227FF57F75053CA5983EF] - (.UASSOFT.COM - USB Keyboard And PS/2 Keyboard Driver.) -- C:\Program Files (x86)\Trust\R-Series Mouse And Keyboard\PS2USBKbdDrv.exe   [450560] [PID.2660]
[MD5.FB17A4D44B230437ABF8239D8B9CAD8A] - (.Pas de propriétaire - Multimedia Mouse Driver.) -- C:\Program Files (x86)\Trust\R-Series Mouse And Keyboard\MouseDrv.exe   [1052672] [PID.3748]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe   [11322880] [PID.4388]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin   [11314688] [PID.4844]
[MD5.C21FD17C954717CBD4EEE811BE4C74E6] - (.PokerStars - PokerStars GUI.) -- C:\Program Files (x86)\PokerStars.FR\PokerStars.exe   [9506840] [PID.2720]
[MD5.087B1EE1FAD427984E16B04F6C0DB792] - (.PokerTracker Software, LLC. - PokerTracker.) -- C:\Program Files (x86)\PokerTracker 3\PokerTracker.exe   [5571888] [PID.4784]
[MD5.E3786B12706F0B4FDA5CD5A0220891ED] - (.PokerTracker Software, LLC. - PokerTracker.) -- C:\Program Files (x86)\PokerTracker 3\PokerTrackerHud.exe   [2031408] [PID.5164]
[MD5.C1938F046B289E40A1DD0570F1E0D4DC] - (.Research In Motion Limited - RIM Handheld Communications Manager.) -- C:\Program Files (x86)\Common Files\Research In Motion\RIMDeviceManager\RIMDeviceManager.exe   [2226704] [PID.29052]
[MD5.8E5300022C775058624F0DB2355D1732] - (.Pas de propriétaire - SoulSeek.) -- C:\Program Files (x86)\SoulseekNS\slsk.exe   [3670016] [PID.30424]   =>P2P.SoulSeek
[MD5.A36269D7A5F2008E7F02CD68CA11806F] - (.Research In Motion - Rim.Desktop.AutoUpdate.) -- C:\Program Files (x86)\Research In Motion\BlackBerry desktop\Rim.desktop.AutoUpdate.exe   [933904] [PID.30512]
[MD5.4EF33D516F31BEB1C9847D1FDA69375C] - (...) -- C:\Users\Nicolas\Downloads\AdwCleaner.exe   [648201] [PID.32640]
[MD5.B0BF698030DB6561393AE753C6D3F936] - (.Google Inc. - Google Chrome.) -- C:\Users\Nicolas\AppData\Local\Google\Chrome\Application\chrome.exe   [1312720] [PID.6756]
[MD5.BA58BE8F544B058C160E7CCDB7A6EA72] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Nicolas\Desktop\ZHPDiag\ZHPDiag.exe   [7472128] [PID.29324]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\SysWOW64\conime.exe   [69120] [PID.30256]
[MD5.0632004181860960CF6E10DE8DDEF78B] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe   [382824] [PID.1004]
[MD5.41735B82DB57E4EBE9504EC400FD120E] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe   [45248] [PID.1632]
[MD5.E8FE4FCE23D2809BD88BCC1D0F8408CE] - (...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe   [124832] [PID.2152]
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [135664] [PID.2420]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe   [65640] [PID.2504]
[MD5.B11671AF7E1E13F373B903E1725BEC31] - (.Packard Bell Services - HID Service Vista compliant.) -- C:\Windows\system32\HidService.exe   [83264] [PID.2636]
[MD5.6D9F6AE3B282545BD5F45BABF948D2DE] - (.UASSOFT.COM - Keyboard And Mouse Communication Service.) -- C:\Program Files (x86)\Trust\R-Series Mouse And Keyboard\KMWDSrv.exe   [208896] [PID.2692]
[MD5.ACC93675D78D1C07DAD09D7837F2397A] - (.PostgreSQL Global Development Group - pg_ctl - starts/stops/restarts the PostgreS.) -- C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe   [65536] [PID.3004]
[MD5.831883B107684301F48ACE752C963984] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe   [66872] [PID.3024]
[MD5.E24106A5EAECDDFF00B25497049DD65F] - (...) -- C:\Windows\SysWOW64\PnkBstrB.exe   [107832] [PID.3064]
[MD5.D78830C645884DB617C50B264BFFEBA2] - (.PostgreSQL Global Development Group - PostgreSQL Server.) -- C:\Program Files (x86)\PostgreSQL\8.3\bin\postgres.exe   [3690496] [PID.2920]
[MD5.686045905787B68D829CE647A6DFAD2B] - (.Research In Motion Limited - BlackBerry Device Manager.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe   [577536] [PID.3604]
~ Processes Running:  Scanned in 00mn 06s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preference [User Data\Default] http://www.google.fr
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Chrome Web Store v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [aknpkdffaafgjchaibgeefbgmgeghloj] Angry Birds v.1.5.0.7 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.5.63, (Activé)
G2 - GCE: Preference [User Data\Default] [hpakbhbnhkbghdcejiiangcefallmaln] Bubble Shooter HD v.2.2.0 (Activé)
G2 - GCE: Preference [User Data\Default] [icmlaeflemplmjndnaapfdbbnpncnbda] avast! WebRep v.8.0.1483, (Désactivé)
G2 - GCE: Preference [User Data\Default] [jiofjbkodmcfkhmljgdmjcildliojoli] FrameFox v.1.2 (Activé)
G2 - GCE: Preference [User Data\Default] [lcohfeeacabgogccgmhpgicpdcconlkc] Rally youbeQ v.1.2.3 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [onlaoljihhdeiechanmlcamfeampddop] Nouveau le backgammon v.1.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
~ Google Browser: 18 Scanned in 00mn 17s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\qllru2e8.default\prefs.js
C:\Users\Nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\qllru2e8.default\user.js
M3 - MFPP: Plugins - [Nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Nicolas\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Nicolas\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
~ Firefox Browser: 11 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\system32\ieframe.dll
~ IE Browser: 13 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys:  Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
O1 - Hosts: 0.0.0.0 boxore.com   =>Adware.Boxore
O1 - Hosts: 0.0.0.0 www.boxore.com   =>Adware.Boxore
O1 - Hosts: 0.0.0.0 boxore.org   =>Adware.Boxore
O1 - Hosts: 0.0.0.0 www.boxore.org   =>Adware.Boxore
O1 - Hosts: 0.0.0.0 boxore.net   =>Adware.Boxore
O1 - Hosts: 0.0.0.0 www.boxore.net   =>Adware.Boxore
O1 - Hosts: 0.0.0.0 dlmanager.com
O1 - Hosts: 0.0.0.0 www.dlmanager.com
O1 - Hosts: 0.0.0.0 dlmanager.org
O1 - Hosts: 0.0.0.0 www.dlmanager.org
O1 - Hosts: 0.0.0.0 dlmanager.net
O1 - Hosts: 0.0.0.0 www.dlmanager.net
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 33



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
~ BHO: 2 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
~ Toolbar:  Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.) 
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 
O4 - HKLM\..\Run: [Skytel] . (.Realtek Semiconductor Corp. - Realtek Voice  Manager.) -- C:\Program Files\Realtek\Audio\HDA\Skytel.exe 
O4 - HKLM\..\Run: [FijiKeyboard] . (.Packard Bell BV - Activboard Application.) -- c:\Acer\Preload\Autorun\DRV\FIJI Keyboard\ABoard.exe 
O4 - HKLM\..\Run: [CamserviceOG] . (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files (x86)\Hercules\Hercules Optical Glass\XtrCtrlEx.exe 
O4 - HKCU\..\Run: [SmpcSys] . (.Acer Incorporated - SMP Systray.) -- C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe 
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Nicolas\AppData\Local\Google\Update\GoogleUpdate.exe 
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Nicolas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe 
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe   =>P2P.µTorrent
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe 
O4 - HKCU\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Nicolas\AppData\Roaming\Spotify\Spotify.exe 
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe (.not file.) 
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe 
O4 - HKLM\..\Wow6432Node\Run: [RIMBBLaunchAgent.exe] . (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe 
O4 - HKLM\..\Wow6432Node\Run: [WireLessMouse] . (.UASSOFT.COM - DRIVER AUTORUN.) -- C:\Program Files (x86)\Trust\R-Series Mouse And Keyboard\StartAutorun.exe 
O4 - HKLM\..\Wow6432Node\Run: [WireLessKeyboard] . (.UASSOFT.COM - DRIVER AUTORUN.) -- C:\Program Files (x86)\Trust\R-Series Mouse And Keyboard\StartAutorun.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 
O4 - HKLM\..\Wow6432Node\Run: [FrameFox Extensions] . (.Duuqu Group - FrameFox Extensions.) -- C:\Program Files (x86)\FrameFox\Extensions\InternetExplorer\framefox.exe   =>Toolbar.DeltaSearch
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter]  oobefldr.dll 
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter]  oobefldr.dll 
O4 - HKUS\S-1-5-21-899290846-3414271431-1221219229-1002\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-21-899290846-3414271431-1221219229-1002\..\Run: [WindowsWelcomeCenter]  oobefldr.dll 
O4 - HKUS\S-1-5-21-899290846-3414271431-1221219229-1002\..\RunOnce: [ScrSav] . (...) -- C:\Windows\Screensavers\PackardBell\run_PackardBell.exe 
~ Application:  Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch: Picasa 3.lnk . (.Google Inc. - Picasa.)  -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe 
O4 - GS\Desktop: HijackThis.lnk . (...)  -- C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe (.not file.)
O4 - GS\Desktop: PhotoRetouch 2.0.lnk . (...)  -- C:\Program Files (x86)\PhotoRetouch\photoretouch.exe (.not file.)
O4 - GS\Desktop: PokerTracker 3.lnk . (.PokerTracker Software, LLC. - PokerTracker.)  -- C:\Program Files (x86)\PokerTracker 3\PokerTracker.exe 
O4 - GS\Desktop: PokerTracker 4.lnk . (.PokerTracker Software, LLC. - PokerTracker.)  -- C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe 
O4 - GS\Desktop: Zattoo.lnk . (...)  -- C:\Program Files (x86)\Zattoo4\Zattoo.exe (.not file.)
O4 - GS\Desktop: Funbridge2.lnk . (...)  -- C:\Program Files (x86)\Goto.Games\Funbridge2\Funbridge2.exe (.not file.)
O4 - GS\Programs: EverestPoker.fr.lnk . (.Playtech - Playtech Client Engine Application.)  -- C:\Poker\EverestPoker.fr\casino.exe 
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Programs: Spotify.lnk . (.Spotify Ltd - Spotify.)  -- C:\Users\Nicolas\AppData\Roaming\Spotify\spotify.exe 
O4 - GS\Programs: Turbopoker.fr.lnk . (.Playtech - Playtech Client Engine Application.)  -- C:\Poker\Turbopoker.fr\casino.exe 
O4 - GS\Programs: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.)  -- C:\Program Files (x86)\Windows Mail\WinMail.exe 
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Users\Nicolas\AppData\Local\Google\Chrome\Application\chrome.exe 
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\QuickLaunch: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
O4 - GS\QuickLaunch: PMU Poker.lnk . (...)  -- C:\Programs\PMU\PMU.exe (.not file.)
O4 - GS\QuickLaunch: PokerStars.fr.lnk . (.PokerStars - PokerStars Update.)  -- C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe 
O4 - GS\QuickLaunch: PokerStars.lnk . (.PokerStars - PokerStars Update.)  -- C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe 
O4 - GS\QuickLaunch: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.)  -- C:\Windows\System32\SnippingTool.exe 
O4 - GS\QuickLaunch: Spotify.lnk . (.Spotify Ltd - Spotify.)  -- C:\Users\Nicolas\AppData\Roaming\Spotify\spotify.exe 
O4 - GS\QuickLaunch: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.)  -- C:\Program Files (x86)\uTorrent\uTorrent.exe   =>P2P.µTorrent
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.)  -- C:\Program Files (x86)\Skype\Phone\Skype.exe 
O4 - GS\Desktop: Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Users\Nicolas\AppData\Local\Google\Chrome\Application\chrome.exe 
O4 - GS\Desktop: EverestPoker.fr.lnk . (.Playtech - Playtech Client Engine Application.)  -- C:\Poker\EverestPoker.fr\casino.exe 
O4 - GS\Desktop: Soulseek.lnk . (...)  -- C:\Program Files (x86)\SoulseekNS\slsk.exe   =>P2P.SoulSeek
O4 - GS\Desktop: Spotify.lnk . (.Spotify Ltd - Spotify.)  -- C:\Users\Nicolas\AppData\Roaming\Spotify\spotify.exe 
O4 - GS\Desktop: Turbopoker.fr.lnk . (.Playtech - Playtech Client Engine Application.)  -- C:\Poker\Turbopoker.fr\casino.exe 
O4 - GS\Desktop: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe 
~ Global Startup:  Scanned in 00mn 02s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{1CDCC957-7A65-49B4-96BB-1636957A2978}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{1CDCC957-7A65-49B4-96BB-1636957A2978}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{1CDCC957-7A65-49B4-96BB-1636957A2978}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS3\Services\Tcpip\..\{1CDCC957-7A65-49B4-96BB-1636957A2978}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Domain:  Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (...) -- 
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ SSODL: 1 Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO:  Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) . (...) - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Duuqu Update Service (dqupdate) (dqupdate) . (...) - C:\Program Files (x86)\Duuqu\Update\DuuquUpdate.exe (.not file.)   =>Toolbar.DeltaSearch
O23 - Service: Generic Service for HID Keyboard Input C (GenericHidService) . (.Packard Bell Services - HID Service Vista compliant.) - C:\Windows\System32\HidService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Keyboard And Mouse Communication Service (KMWDSERVICE) . (.UASSOFT.COM - Keyboard And Mouse Communication Service.) - C:\Program Files (x86)\Trust\R-Series Mouse And Keyboard\KMWDSrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 310.7.) - C:\Windows\System32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PostgreSQL Database Server 8.3 (pgsql-8.3) . (.PostgreSQL Global Development Group - pg_ctl - starts/stops/restarts the PostgreS.) - C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
O23 - Service: PnkBstrB (PnkBstrB) . (...) - C:\Windows\SysWOW64\PnkBstrB.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
~ Services: 13 Scanned in 00mn 09s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\DuuquUpdateTaskMachineCore.job   [886]   =>Toolbar.DeltaSearch
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\DuuquUpdateTaskMachineUA.job   [890]   =>Toolbar.DeltaSearch
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1064]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1068]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-899290846-3414271431-1221219229-1000Core.job   [1034]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-899290846-3414271431-1221219229-1000UA.job   [1086]
[MD5.F040037B149FD0F5A5044AE563390FA7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [256904]
[MD5.AB3C4A3667AEAD147F175721D8719B78] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe   [250248]
[MD5.A5062EA164067050F2DFA9DCA98CA63A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [3157856]   =>Piriform Ltd
[MD5.00000000000000000000000000000000] [APT] [DuuquUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Duuqu\Update\DuuquUpdate.exe (.not file.)   [0]   =>Toolbar.DeltaSearch
[MD5.00000000000000000000000000000000] [APT] [DuuquUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Duuqu\Update\DuuquUpdate.exe (.not file.)   [0]   =>Toolbar.DeltaSearch
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [135664]
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [135664]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-899290846-3414271431-1221219229-1000Core] (.Google Inc..) -- C:\Users\Nicolas\AppData\Local\Google\Update\GoogleUpdate.exe   [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-899290846-3414271431-1221219229-1000UA] (.Google Inc..) -- C:\Users\Nicolas\AppData\Local\Google\Update\GoogleUpdate.exe   [136176]
[MD5.B0BF698030DB6561393AE753C6D3F936] [APT] [{2CD475D8-6BFA-4CFE-95C9-44794F55B32D}] (.Google Inc..) -- c:\users\Nicolas\appdata\local\google\chrome\application\chrome.exe   [1312720]
[MD5.2170FC3F3B21821EA46124CB2B9E83C6] [APT] [Burn Notification] (.Acer.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\NotificationCenter\Notification.exe   [667648]
~ Scheduled Task: 21 Scanned in 00mn 06s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 11.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver:  (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver:  (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver:  (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver:  (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver:  (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver:  (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver:  (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver:  (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver:  (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver:  (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver:  (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver:  (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver:  (SRTSP) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSP64.sys (.not file.)
O41 - Driver:  (SRTSPX) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSPX64.sys (.not file.)
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
~ Drivers: 88 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 6.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop Elements 6
O42 - Logiciel: Adobe Reader X (10.1.7) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: BlackBerry App World Browser Plugin - (.Research In Motion Limited.) [HKLM][64Bits] -- {7023728C-3AF9-4D4A-8893-5354370CDCAD}
O42 - Logiciel: BlackBerry Desktop Software 7.1 - (.Research In Motion Ltd..) [HKLM][64Bits] -- BlackBerry_Desktop
O42 - Logiciel: BlackBerry Desktop Software 7.1 - (.Research In Motion Ltd..) [HKLM][64Bits] -- {BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}
O42 - Logiciel: BlackBerry Device Software Updater - (.Research In Motion Ltd.) [HKLM][64Bits] -- {38676C9C-270F-43D1-926A-E45DE8820A6B}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner   =>Piriform Ltd
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: EverestPoker.fr - (...) [HKCU][64Bits] -- EverestPoker.fr
O42 - Logiciel: FrameFox Extensions 1.0.2.0 - (.QwertyBox Team.) [HKLM][64Bits] -- {A1D62CC4-1453-4245-9C6E-E9E8EF0B620C}   =>Toolbar.DeltaSearch
O42 - Logiciel: Full Tilt Poker - (...) [HKLM][64Bits] -- {D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Hercules Optical Glass - (.Hercules.) [HKLM][64Bits] -- {E6F043EB-FEF5-4C34-95AF-99B3EB68F7D9}
O42 - Logiciel: Hercules Webcam Station Evolution SE - (.Hercules.) [HKLM][64Bits] -- {C3C44248-B8F7-4B20-A5C7-994870B60F55}
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Java 7 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: Java(TM) 6 Update 37 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216033FF}
O42 - Logiciel: K-Lite Codec Pack 7.5.0 (Full) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Medal of Honor débarquement allié - (...) [HKLM][64Bits] -- {0DEA94ED-915A-4834-A87E-388D012C8E02}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises à jour NVIDIA 1.11.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Mozilla Firefox 5.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 5.0.1 (x86 fr)
O42 - Logiciel: NC Launcher (GameForge) - (.NCsoft.) [HKLM][64Bits] -- NCLauncher_GameForge
O42 - Logiciel: NVIDIA Drivers - (...) [HKLM][64Bits] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.12.1031 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29}
O42 - Logiciel: NVIDIA Pilote 3D Vision 310.70 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 310.70 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Pilote graphique 310.70 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A}
O42 - Logiciel: Packard Bell Customer Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Customer Registration
O42 - Logiciel: Packard Bell Recovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: PackardBell ScreenSaver - (.PackardBell.) [HKLM][64Bits] -- PackardBell Screensaver
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM][64Bits] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}
O42 - Logiciel: Pangya (Ntreev SG Interactive) - (...) [HKLM][64Bits] -- Pangya
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: PlayReady PC runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {704ABF63-B0B1-446B-9D92-C5D06AFCE7B6}
O42 - Logiciel: PokerStars - (.PokerStars.) [HKLM][64Bits] -- PokerStars
O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM][64Bits] -- PokerStars.fr
O42 - Logiciel: PokerTracker 3 (remove only) - (...) [HKLM][64Bits] -- PokerTracker3
O42 - Logiciel: PokerTracker 4 (remove only) - (...) [HKLM][64Bits] -- PokerTracker4
O42 - Logiciel: PostgreSQL 8.3 - (.PostgreSQL Global Development Group.) [HKLM][64Bits] -- {B823632F-3B72-4514-8861-B961CE263224}
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM][64Bits] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}
O42 - Logiciel: SetUpMyPC - (.Packard Bell.) [HKLM][64Bits] -- SetUpMyPC
O42 - Logiciel: Skype™ 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: SoulSeek 157 NS 13e - (...) [HKLM][64Bits] -- Soulseek2   =>P2P.SoulSeek
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify
O42 - Logiciel: Turbopoker.fr - (...) [HKCU][64Bits] -- Turbopoker.fr
O42 - Logiciel: Turbopoker.fr - (...) [HKLM][64Bits] -- Turbopoker.fr
O42 - Logiciel: Updator - (.Packard Bell.) [HKLM][64Bits] -- Updator
O42 - Logiciel: VLC media player 2.0.6 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: WinRAR 4.00 (32 bits) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Winamax Poker - (.Winamax.) [HKLM][64Bits] -- wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O42 - Logiciel: Winamax Poker - (.Winamax.) [HKLM][64Bits] -- {B922CE77-D167-F6DB-D1A3-27320809CCEA}
O42 - Logiciel: avast! Free Antivirus v8.0.1483.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: µTorrent - (...) [HKLM][64Bits] -- uTorrent   =>P2P.µTorrent
~ Logic: 135 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\2015]
[HKCU\Software\5253dfd1e035bf43]
[HKCU\Software\ACF]
[HKCU\Software\AVAST Software]
[HKCU\Software\AcerUtil]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\Aion]
[HKCU\Software\Alex Feinman]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Astonsoft]
[HKCU\Software\Audacity]
[HKCU\Software\BitTorrent]   =>P2P.BitTorrent
[HKCU\Software\Bugsplat]
[HKCU\Software\ChilipokerFR]
[HKCU\Software\ClassesB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\Cygwin]
[HKCU\Software\DSP-worx]
[HKCU\Software\DT Soft]
[HKCU\Software\DataMngr]   =>PUP.Datamngr
[HKCU\Software\DataMngr_Toolbar]   =>PUP.Datamngr
[HKCU\Software\Duuqu]   =>Toolbar.DeltaSearch
[HKCU\Software\EASEUS]
[HKCU\Software\EasyBits]
[HKCU\Software\Extended Systems]
[HKCU\Software\Full Tilt Poker]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Goto.Games]
[HKCU\Software\Hercules]
[HKCU\Software\HookNetwork]
[HKCU\Software\HotKeys]
[HKCU\Software\IM Providers]
[HKCU\Software\INCAInternet]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\LAV]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MOHWSplash]
[HKCU\Software\MONOGRAM]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaInfo]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Multimedia Combo Set]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\PMU]
[HKCU\Software\PTECH]
[HKCU\Software\Packard Bell]
[HKCU\Software\Pando Networks]
[HKCU\Software\Piriform]
[HKCU\Software\PokerTracker3]
[HKCU\Software\PokerTracker4]
[HKCU\Software\Policies]
[HKCU\Software\Qliner]
[HKCU\Software\Realtek]
[HKCU\Software\Research In Motion]
[HKCU\Software\Scr]
[HKCU\Software\Skype]
[HKCU\Software\SoulSeek]   =>P2P.SoulSeek
[HKCU\Software\Soulseek2]   =>P2P.SoulSeek
[HKCU\Software\SysInternals]
[HKCU\Software\Trolltech]
[HKCU\Software\Ubisoft]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Zattoo Inc.]
[HKCU\Software\Zattoo]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\eMule]
[HKCU\Software\madFlac]
[HKCU\Software\mozilla]
[HKCU\Software\perforce]
[HKCU\Software\photoretouch]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\Acer]
[HKLM\Software\Audible]
[HKLM\Software\Boxore]   =>Adware.Boxore
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Hercules]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OemSetup]
[HKLM\Software\PACKARD BELL]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SONIX]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Volatile]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\5253dfd1e035bf43]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Acer Incorporated]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Ahead]
[HKLM\Software\Wow6432Node\Audible]
[HKLM\Software\Wow6432Node\Babylon]   =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Boxore]   =>Adware.Boxore
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\Danger Close Games]
[HKLM\Software\Wow6432Node\DataMngr]   =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\Duuqu]   =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\EA GAMES]
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\Extended Systems]
[HKLM\Software\Wow6432Node\Full Tilt Poker]
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\Gameforge]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Goto.Games]
[HKLM\Software\Wow6432Node\Goto]
[HKLM\Software\Wow6432Node\Hercules Technologies]
[HKLM\Software\Wow6432Node\Hercules]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KLCodecPack]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Ntreev SG Interactive]
[HKLM\Software\Wow6432Node\Ntreev USA]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\Packard Bell]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\PostgreSQL]
[HKLM\Software\Wow6432Node\Qliner]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Research In Motion]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\perforce]
[HKLM\Software\Wow6432Node\pgAdmin III]
[HKLM\Software\Wow6432Node]
~ Key Software: 253 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 24/07/2012 - 02:20:09 - [484,673] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 18/04/2013 - 14:02:07 - [535,827] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 25/06/2012 - 01:06:27 - [25,770] ----D C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 07/04/2013 - 23:30:06 - [1239,261] ----D C:\Program Files (x86)\EA GAMES
O43 - CFD: 29/03/2013 - 19:14:56 - [0,227] ----D C:\Program Files (x86)\FrameFox
O43 - CFD: 03/12/2012 - 18:39:53 - [66,118] ----D C:\Program Files (x86)\Full Tilt Poker
O43 - CFD: 24/04/2012 - 17:27:33 - [83,070] ----D C:\Program Files (x86)\Google
O43 - CFD: 13/01/2013 - 20:04:35 - [83,550] ----D C:\Program Files (x86)\Hercules
O43 - CFD: 07/04/2013 - 23:31:12 - [59,922] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 16/05/2013 - 05:15:46 - [5,313] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 18/04/2013 - 14:01:55 - [207,032] ----D C:\Program Files (x86)\Java
O43 - CFD: 05/08/2011 - 04:09:39 - [49,147] ----D C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 11/01/2012 - 03:26:42 - [8,929] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 21/01/2013 - 14:29:00 - [208,496] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 14/03/2013 - 04:28:42 - [40,835] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 21/01/2013 - 14:33:01 - [3,690] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 07/08/2011 - 20:14:35 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 04/08/2011 - 22:04:47 - [32,788] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 02/11/2006 - 17:07:27 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 05/08/2011 - 16:39:18 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 18/12/2012 - 19:19:28 - [97,875] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 06/10/2011 - 21:49:04 - [338,128] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 21/01/2013 - 14:28:00 - [14,882] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 04/08/2011 - 22:09:12 - [7,120] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 28/04/2009 - 05:06:59 - [0,993] ----D C:\Program Files (x86)\PlayReady
O43 - CFD: 31/12/2012 - 02:19:00 - [115,141] ----D C:\Program Files (x86)\PokerStars
O43 - CFD: 19/12/2012 - 22:28:56 - [123,257] ----D C:\Program Files (x86)\PokerStars.FR
O43 - CFD: 09/06/2013 - 19:55:47 - [1471,032] ----D C:\Program Files (x86)\PokerTracker 3
O43 - CFD: 28/01/2013 - 15:25:07 - [75,318] ----D C:\Program Files (x86)\PokerTracker 4
O43 - CFD: 04/08/2011 - 22:27:35 - [-1817,600] ----D C:\Program Files (x86)\PostgreSQL
O43 - CFD: 28/04/2009 - 05:05:28 - [2,662] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 02/11/2006 - 17:07:27 - [36,906] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 28/12/2011 - 18:20:34 - [62,209] ----D C:\Program Files (x86)\Research In Motion
O43 - CFD: 03/05/2013 - 14:35:43 - [0,654] ----D C:\Program Files (x86)\Research In Motion Limited
O43 - CFD: 15/01/2013 - 23:11:20 - [18,091] R---D C:\Program Files (x86)\Skype
O43 - CFD: 28/09/2011 - 22:03:03 - [3,591] ----D C:\Program Files (x86)\SoulseekNS   =>P2P.SoulSeek
O43 - CFD: 28/04/2009 - 05:06:13 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 21/01/2012 - 20:19:45 - [5,194] ----D C:\Program Files (x86)\Trust
O43 - CFD: 02/11/2006 - 17:36:07 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 02/05/2013 - 14:21:48 - [0,765] ----D C:\Program Files (x86)\uTorrent   =>P2P.µTorrent
O43 - CFD: 05/08/2011 - 00:32:02 - [123,130] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 04/06/2013 - 00:38:08 - [4,811] ----D C:\Program Files (x86)\Winamax Poker
O43 - CFD: 21/08/2011 - 19:36:46 - [0,970] ----D C:\Program Files (x86)\Windows Calendar
O43 - CFD: 21/01/2008 - 05:09:47 - [0,051] ----D C:\Program Files (x86)\Windows Collaboration
O43 - CFD: 21/01/2008 - 05:09:41 - [0,481] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 31/07/2012 - 16:15:59 - [62,265] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 15/04/2012 - 21:03:09 - [8,522] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 21/08/2011 - 19:36:46 - [2,874] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 02/11/2006 - 17:07:27 - [7,589] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 21/08/2011 - 19:36:46 - [12,902] ----D C:\Program Files (x86)\Windows Photo Gallery
O43 - CFD: 26/08/2011 - 19:44:43 - [0,128] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/08/2012 - 01:51:46 - [6,225] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 01/10/2011 - 03:37:47 - [3,868] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 24/07/2012 - 02:20:25 - [47,544] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 04/06/2013 - 00:35:16 - [45,628] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 28/04/2009 - 05:14:53 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 07/04/2013 - 23:24:40 - [5,362] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 18/04/2013 - 14:02:07 - [1,189] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 28/04/2009 - 05:09:26 - [0,618] ----D C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 21/01/2013 - 14:33:01 - [257,663] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 04/08/2011 - 21:52:46 - [0,169] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 21/12/2012 - 03:09:31 - [49,617] ----D C:\Program Files (x86)\Common Files\Research In Motion
O43 - CFD: 02/11/2006 - 15:33:53 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 15/01/2013 - 23:11:20 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 02/11/2006 - 15:33:53 - [39,198] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 16/11/2011 - 03:07:08 - [40,772] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 28/04/2009 - 05:23:35 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 08/06/2012 - 03:22:05 - [45,920] ----D C:\Program Files (x86)\Common Files\XCPCSync.OEM
O43 - CFD: 24/09/2012 - 15:26:18 - [659,663] ----D C:\ProgramData\Adobe
O43 - CFD: 02/11/2006 - 17:42:17 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 06/09/2012 - 15:09:01 - [0,001] ----D C:\ProgramData\Astroburn Lite
O43 - CFD: 04/08/2011 - 21:56:02 - [260,777] ----D C:\ProgramData\AVAST Software
O43 - CFD: 08/01/2013 - 19:34:41 - [0] ----D C:\ProgramData\Babylon   =>Toolbar.Babylon
O43 - CFD: 12/11/2012 - 01:28:32 - [0,000] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 04/08/2011 - 21:17:46 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 25/06/2012 - 01:08:29 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 02/11/2006 - 17:42:17 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 02/11/2006 - 17:42:17 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 14/10/2011 - 04:22:23 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 04/08/2011 - 21:17:46 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 17:42:17 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 08/01/2012 - 16:55:20 - [0,503] ----D C:\ProgramData\Google
O43 - CFD: 25/08/2012 - 20:30:55 - [0,001] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 05/08/2011 - 02:56:04 - [0] ----D C:\ProgramData\McAfee
O43 - CFD: 04/08/2011 - 21:17:46 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 21/01/2013 - 14:32:52 - [232,583] -S--D C:\ProgramData\Microsoft
O43 - CFD: 10/06/2013 - 12:32:11 - [0,055] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 04/08/2011 - 21:17:46 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 04/08/2011 - 21:52:45 - [0,001] ----D C:\ProgramData\Nero
O43 - CFD: 04/08/2011 - 21:50:08 - [0,000] ----D C:\ProgramData\Norton
O43 - CFD: 28/04/2009 - 05:29:03 - [3,473] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 09/06/2013 - 19:36:36 - [5,188] ----D C:\ProgramData\NVIDIA
O43 - CFD: 04/08/2011 - 21:40:05 - [3,146] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 05/08/2011 - 14:26:30 - [0,000] ----D C:\ProgramData\PMB Files   =>P2P.Pando
O43 - CFD: 28/12/2011 - 18:20:55 - [0,060] ----D C:\ProgramData\Research In Motion
O43 - CFD: 15/01/2013 - 23:11:54 - [58,464] ----D C:\ProgramData\Skype
O43 - CFD: 28/09/2011 - 22:03:34 - [0] ----D C:\ProgramData\Soulseek   =>P2P.SoulSeek
O43 - CFD: 02/11/2006 - 17:42:17 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 27/12/2011 - 19:07:03 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 02/11/2006 - 17:42:17 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 16/07/2012 - 14:08:00 - [4,614] ----D C:\ProgramData\Ubisoft
O43 - CFD: 20/08/2012 - 20:38:28 - [0,000] ----D C:\Users\Nicolas\AppData\Roaming\ACF
O43 - CFD: 24/09/2012 - 15:25:05 - [29,802] ----D C:\Users\Nicolas\AppData\Roaming\Adobe
O43 - CFD: 08/03/2013 - 17:27:35 - [0] ----D C:\Users\Nicolas\AppData\Roaming\Apowersoft
O43 - CFD: 08/03/2013 - 17:38:17 - [0,001] ----D C:\Users\Nicolas\AppData\Roaming\Audacity
O43 - CFD: 08/01/2013 - 19:34:40 - [0,005] ----D C:\Users\Nicolas\AppData\Roaming\Babylon   =>Toolbar.Babylon
O43 - CFD: 01/05/2013 - 21:17:14 - [1,494] ----D C:\Users\Nicolas\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 20/12/2011 - 15:59:01 - [0,000] ----D C:\Users\Nicolas\AppData\Roaming\DeepBurner
O43 - CFD: 02/05/2012 - 02:34:15 - [0,000] ----D C:\Users\Nicolas\AppData\Roaming\dvdcss
O43 - CFD: 24/04/2012 - 16:47:15 - [0,001] ----D C:\Users\Nicolas\AppData\Roaming\fr.barrierepoker.air.D043989C8F5E91300BF71855036B28F854BB8613.1
O43 - CFD: 11/11/2012 - 16:47:24 - [0,000] ----D C:\Users\Nicolas\AppData\Roaming\FreeAudioPack
O43 - CFD: 04/08/2011 - 21:42:56 - [0] ----D C:\Users\Nicolas\AppData\Roaming\Google
O43 - CFD: 03/11/2011 - 02:23:21 - [0] ----D C:\Users\Nicolas\AppData\Roaming\Goto.Games
O43 - CFD: 22/08/2012 - 15:17:52 - [0,000] ----D C:\Users\Nicolas\AppData\Roaming\Identities
O43 - CFD: 13/01/2013 - 20:01:08 - [0] ----D C:\Users\Nicolas\AppData\Roaming\InstallShield
O43 - CFD: 04/08/2011 - 21:24:19 - [0,055] ----D C:\Users\Nicolas\AppData\Roaming\Macromedia
O43 - CFD: 25/08/2012 - 20:31:10 - [0,003] ----D C:\Users\Nicolas\AppData\Roaming\Malwarebytes
O43 - CFD: 02/11/2006 - 17:07:25 - [0] ----D C:\Users\Nicolas\AppData\Roaming\Media Center Programs
O43 - CFD: 08/03/2013 - 17:29:47 - [3,252] -S--D C:\Users\Nicolas\AppData\Roaming\Microsoft
O43 - CFD: 04/08/2011 - 22:04:57 - [12,437] ----D C:\Users\Nicolas\AppData\Roaming\Mozilla
O43 - CFD: 13/07/2012 - 11:19:50 - [5,655] ----D C:\Users\Nicolas\AppData\Roaming\Mozilla-Cache
O43 - CFD: 04/08/2011 - 21:52:04 - [0] ----D C:\Users\Nicolas\AppData\Roaming\Nero
O43 - CFD: 08/04/2013 - 00:14:36 - [0,007] ----D C:\Users\Nicolas\AppData\Roaming\NVIDIA
O43 - CFD: 06/10/2011 - 22:07:21 - [1,767] ----D C:\Users\Nicolas\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/04/2012 - 17:39:53 - [0,002] ----D C:\Users\Nicolas\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 09/08/2012 - 22:24:48 - [0,000] ----D C:\Users\Nicolas\AppData\Roaming\PMU
O43 - CFD: 28/01/2012 - 14:13:08 - [0,072] ----D C:\Users\Nicolas\AppData\Roaming\qliner
O43 - CFD: 28/12/2011 - 18:25:40 - [232,802] ----D C:\Users\Nicolas\AppData\Roaming\Research In Motion
O43 - CFD: 21/01/2013 - 14:29:59 - [3,191] ----D C:\Users\Nicolas\AppData\Roaming\Skype
O43 - CFD: 10/06/2013 - 12:57:10 - [51,221] ----D C:\Users\Nicolas\AppData\Roaming\Spotify
O43 - CFD: 04/08/2011 - 22:06:55 - [0] ----D C:\Users\Nicolas\AppData\Roaming\Template
O43 - CFD: 10/06/2013 - 13:11:52 - [4,882] ----D C:\Users\Nicolas\AppData\Roaming\uTorrent   =>P2P.µTorrent
O43 - CFD: 07/06/2013 - 00:33:13 - [1,194] ----D C:\Users\Nicolas\AppData\Roaming\vlc
O43 - CFD: 09/10/2011 - 15:09:50 - [3,357] ----D C:\Users\Nicolas\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O43 - CFD: 01/10/2011 - 03:38:05 - [0,000] ----D C:\Users\Nicolas\AppData\Roaming\WinRAR
O43 - CFD: 24/07/2012 - 02:19:33 - [14,913] ----D C:\Users\Nicolas\AppData\Local\Adobe
O43 - CFD: 04/08/2011 - 21:34:06 - [0,022] ----D C:\Users\Nicolas\AppData\Local\Ahead
O43 - CFD: 04/08/2011 - 21:20:50 - [0] ----D C:\Users\Nicolas\AppData\Local\Application Data
O43 - CFD: 04/08/2011 - 21:43:10 - [1,235] ----D C:\Users\Nicolas\AppData\Local\Apps
O43 - CFD: 04/08/2011 - 21:43:35 - [0] ----D C:\Users\Nicolas\AppData\Local\Deployment
O43 - CFD: 08/01/2012 - 02:55:32 - [26,833] ----D C:\Users\Nicolas\AppData\Local\Downloaded Installations
O43 - CFD: 29/03/2013 - 19:14:15 - [0] ----D C:\Users\Nicolas\AppData\Local\Duuqu   =>Toolbar.DeltaSearch
O43 - CFD: 14/10/2011 - 04:22:01 - [0,033] ----D C:\Users\Nicolas\AppData\Local\eMule
O43 - CFD: 01/10/2012 - 15:46:24 - [1,299] ----D C:\Users\Nicolas\AppData\Local\fontconfig
O43 - CFD: 03/12/2012 - 18:39:53 - [0,011] ----D C:\Users\Nicolas\AppData\Local\FullTiltPoker
O43 - CFD: 01/10/2012 - 15:46:20 - [0,001] ----D C:\Users\Nicolas\AppData\Local\gegl-0.2
O43 - CFD: 24/04/2012 - 17:27:57 - [892,276] ----D C:\Users\Nicolas\AppData\Local\Google
O43 - CFD: 04/08/2011 - 21:20:50 - [0] ----D C:\Users\Nicolas\AppData\Local\Historique
O43 - CFD: 10/10/2012 - 12:56:01 - [0] ----D C:\Users\Nicolas\AppData\Local\Macromedia
O43 - CFD: 05/06/2013 - 14:31:43 - [178,831] ----D C:\Users\Nicolas\AppData\Local\Microsoft
O43 - CFD: 13/02/2012 - 17:00:09 - [1,084] ----D C:\Users\Nicolas\AppData\Local\Microsoft Games
O43 - CFD: 04/08/2011 - 21:28:05 - [0] ----D C:\Users\Nicolas\AppData\Local\Microsoft Help
O43 - CFD: 04/08/2011 - 22:04:52 - [21,722] ----D C:\Users\Nicolas\AppData\Local\Mozilla
O43 - CFD: 27/04/2012 - 18:48:50 - [0,089] ----D C:\Users\Nicolas\AppData\Local\P5
O43 - CFD: 04/08/2011 - 21:24:16 - [0,617] ----D C:\Users\Nicolas\AppData\Local\Packard Bell
O43 - CFD: 08/01/2013 - 19:36:01 - [0] ----D C:\Users\Nicolas\AppData\Local\Paint.NET
O43 - CFD: 06/08/2011 - 15:22:31 - [0,164] ----D C:\Users\Nicolas\AppData\Local\PMB Files   =>P2P.Pando
O43 - CFD: 12/03/2013 - 14:08:42 - [3,969] ----D C:\Users\Nicolas\AppData\Local\PokerStars
O43 - CFD: 10/06/2013 - 00:04:22 - [21,966] ----D C:\Users\Nicolas\AppData\Local\PokerStars.FR
O43 - CFD: 19/09/2012 - 23:18:07 - [34,264] ----D C:\Users\Nicolas\AppData\Local\PokerTracker 4
O43 - CFD: 12/11/2012 - 18:53:09 - [137,484] ----D C:\Users\Nicolas\AppData\Local\Research In Motion
O43 - CFD: 09/06/2013 - 19:39:07 - [1724,359] ----D C:\Users\Nicolas\AppData\Local\Spotify
O43 - CFD: 28/06/2012 - 15:37:03 - [0,007] ----D C:\Users\Nicolas\AppData\Local\storage
O43 - CFD: 10/06/2013 - 13:11:55 - [140,143] ----D C:\Users\Nicolas\AppData\Local\Temp
O43 - CFD: 04/08/2011 - 21:20:50 - [0] ----D C:\Users\Nicolas\AppData\Local\Temporary Internet Files
O43 - CFD: 25/06/2012 - 16:18:34 - [0] ----D C:\Users\Nicolas\AppData\Local\Ubisoft
O43 - CFD: 28/06/2012 - 13:55:13 - [0,000] ----D C:\Users\Nicolas\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 29/08/2011 - 14:18:17 - [0] ----D C:\Users\Nicolas\AppData\Local\uTorrent   =>P2P.µTorrent
O43 - CFD: 24/06/2012 - 19:21:01 - [44,480] ----D C:\Users\Nicolas\AppData\Local\VirtualStore
O43 - CFD: 15/08/2012 - 19:55:24 - [0,023] ----D C:\Users\Nicolas\AppData\Local\Windows Live
O43 - CFD: 13/05/2012 - 21:14:23 - [7,220] ----D C:\Users\Nicolas\AppData\Local\Zattoo
O43 - CFD: 21/01/2008 - 05:20:45 - [0,015] R---D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 04/08/2011 - 21:23:52 - [0,000] R---D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 12/01/2013 - 19:42:39 - [0,002] ----D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 21/01/2008 - 05:20:45 - [0,001] R---D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 02/03/2013 - 19:17:15 - [0,003] ----D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerTracker 3
O43 - CFD: 19/09/2012 - 18:00:48 - [0] ----D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerTracker 4
O43 - CFD: 28/09/2011 - 22:03:03 - [0] ----D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Soulseek NS   =>P2P.SoulSeek
O43 - CFD: 06/10/2011 - 22:07:40 - [0,001] R---D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 01/10/2011 - 03:37:47 - [0,003] ----D C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ 1 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 181 Scanned in 01mn 28s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.F8AA6102F8886ED1F0387F79C5288FCA] - 10/06/2013 - 12:05:32 ---A- . (...) -- C:\AdwCleaner[R5].txt   [3832]
O44 - LFC:[MD5.42E00C18C3718C5CE6B700E6B8D472CE] - 10/06/2013 - 02:00:10 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1898331]
O44 - LFC:[MD5.0606AABAF8EBBC7320C7CB92FAEC41DA] - 09/06/2013 - 18:36:35 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.344604E6913BD6E4EAEC34AF2E0943D7] - 26/05/2013 - 17:30:44 RSHAD . (.Research in Motion Ltd - RIM Virtual Serial Driver.) -- C:\Windows\System32\Drivers\RimSerial_AMD64.sys   [44544]
~ Files: 4 Scanned in 00mn 12s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.81E11ABA7474E95BCED23D92EE46E311] - 02/06/2013 - 14:27:21 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf
O45 - LFCP:[MD5.4BEF4295F23F1720ABE5F48FDF0AC178] - 02/06/2013 - 14:27:24 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-F64E69C7.pf
O45 - LFCP:[MD5.7307FEA727340EEEEE2CDBE055B429A3] - 02/06/2013 - 14:27:40 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-BF1A352E.pf
O45 - LFCP:[MD5.1DC9351EDB81C5A6906E91E2D47A0165] - 02/06/2013 - 14:27:40 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C775D18D.pf
O45 - LFCP:[MD5.FA162B09F4206F6D8CC45BA20DE7648A] - 02/06/2013 - 14:27:40 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-FD126C57.pf
O45 - LFCP:[MD5.7801C237C3E4162AB6094E4265F9D4FB] - 02/06/2013 - 14:27:56 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-0E293DD6.pf
O45 - LFCP:[MD5.053752BAEADD9154B536B58D0AA12A69] - 02/06/2013 - 14:28:01 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-56B29A08.pf
O45 - LFCP:[MD5.2450827FAE54AA91E8A5515265EDE3F7] - 02/06/2013 - 14:28:09 ---A- - C:\Windows\Prefetch\RIMBBLAUNCHAGENT.EXE-9B8AF88A.pf
O45 - LFCP:[MD5.B18305E4F54EF5727DDDF4CBBA75CD19] - 03/06/2013 - 23:33:42 ---A- - C:\Windows\Prefetch\UPDATER-8A8AED2B.pf
O45 - LFCP:[MD5.31A512310B21C31532006DE47890B795] - 03/06/2013 - 23:34:26 ---A- - C:\Windows\Prefetch\ADOBE AIR INSTALLER.EXE-0E9C74CA.pf
O45 - LFCP:[MD5.13899EF73F115D18AB286C53693B87DA] - 03/06/2013 - 23:37:28 ---A- - C:\Windows\Prefetch\ADOBE AIR APPLICATION INSTALL-6FCF9771.pf
O45 - LFCP:[MD5.7749A6DD6324909EEEE8BE8D07E3428E] - 04/06/2013 - 09:51:59 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.151.1320.0.EXE-CABE4A0E.pf
O45 - LFCP:[MD5.36887199DE40C46E0DF6643C482E0F31] - 04/06/2013 - 09:52:04 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-790B013B.pf
O45 - LFCP:[MD5.3C41DA4A087B8683E9B831F8242233DE] - 04/06/2013 - 11:38:03 ---A- - C:\Windows\Prefetch\JAVA.EXE-07FE5A9A.pf
O45 - LFCP:[MD5.F2487BA0D8CC2FDA289C5FA2D015D88F] - 05/06/2013 - 12:25:39 ---A- - C:\Windows\Prefetch\PG_CTL.EXE-9B4C898C.pf
O45 - LFCP:[MD5.384BBC90964C508F669F788E1A0F7BF9] - 05/06/2013 - 12:25:39 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5CA438A4.pf
O45 - LFCP:[MD5.61A1F9429F40CA464AC3F9F3B2619119] - 05/06/2013 - 12:25:47 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf
O45 - LFCP:[MD5.5AB2D4C6EAB769FBEB89C3E0DBFB5321] - 05/06/2013 - 12:25:47 ---A- - C:\Windows\Prefetch\STARTAUTORUN.EXE-1818DE76.pf
O45 - LFCP:[MD5.9E72B6277ED6582101A1209735CC119D] - 05/06/2013 - 12:25:55 ---A- - C:\Windows\Prefetch\BBDEVMGR.EXE-F7350969.pf
O45 - LFCP:[MD5.5ECA91A950230082B0D18A1A066C630D] - 05/06/2013 - 12:25:56 ---A- - C:\Windows\Prefetch\FRAMEFOX.EXE-222E5E8B.pf
O45 - LFCP:[MD5.5B0404C282AFEBDCD9DE63A311DEBF6F] - 05/06/2013 - 12:25:58 ---A- - C:\Windows\Prefetch\JUSCHED.EXE-60F1FB86.pf
O45 - LFCP:[MD5.71DFD0CF73D761D49F6A2FAC86217C9D] - 05/06/2013 - 12:25:58 ---A- - C:\Windows\Prefetch\MOUSEDRV.EXE-61A1E353.pf
O45 - LFCP:[MD5.388C6C1F113C3E851A0899A52FD2AE26] - 05/06/2013 - 12:25:58 ---A- - C:\Windows\Prefetch\PS2USBKBDDRV.EXE-97211B5E.pf
O45 - LFCP:[MD5.B36F34D0C51116C2B594E8CF55D8D127] - 05/06/2013 - 12:25:58 ---A- - C:\Windows\Prefetch\READER_SL.EXE-B1C62096.pf
O45 - LFCP:[MD5.396DFA82DC5426190469DF1F5657E8EC] - 05/06/2013 - 12:26:01 ---A- - C:\Windows\Prefetch\SETUP_WM.EXE-D33FD27D.pf
O45 - LFCP:[MD5.2AC60CFA68C86D0B13C07B6128944A22] - 05/06/2013 - 12:27:01 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-14B2AAA6.pf
O45 - LFCP:[MD5.13EBA69B9CDAC6461238A052E7708DCC] - 05/06/2013 - 12:41:31 ---A- - C:\Windows\Prefetch\SPOTIFY_NEW.EXE-6C8213AB.pf
O45 - LFCP:[MD5.BE892D93A393FDD56F84DC277E9A79D7] - 05/06/2013 - 13:31:23 ---A- - C:\Windows\Prefetch\TABTIP.EXE-D59C65B9.pf
O45 - LFCP:[MD5.65781C10BB952BF5A9717279B673DFDA] - 05/06/2013 - 13:31:23 ---A- - C:\Windows\Prefetch\TABTIP32.EXE-339F79E5.pf
O45 - LFCP:[MD5.39CD80437D06AC8D284A71BCC2ED80DF] - 05/06/2013 - 13:31:53 ---A- - C:\Windows\Prefetch\INPUTPERSONALIZATION.EXE-47D98ED7.pf
O45 - LFCP:[MD5.378741D2514E5ABD7656E8C6CEFE5B5D] - 05/06/2013 - 14:16:49 ---A- - C:\Windows\Prefetch\SETHC.EXE-6A2DC453.pf
O45 - LFCP:[MD5.F7AFB0E6D731BA6E9AD699083B60B4B1] - 06/06/2013 - 00:40:15 ---A- - C:\Windows\Prefetch\AVAST01.SETUP-9732346B.pf
O45 - LFCP:[MD5.658EC60C5C41D7053D065BE6B652D89A] - 06/06/2013 - 02:41:53 ---A- - C:\Windows\Prefetch\SPOTIFYWEBHELPER.EXE-AE48D7E2.pf
O45 - LFCP:[MD5.A84B4E08B2FBA4DF579C18C5524D5F51] - 06/06/2013 - 15:30:19 ---A- - C:\Windows\Prefetch\PNKBSTRA.EXE-473DE145.pf
O45 - LFCP:[MD5.60166F52F65DE306FEDACAEB8DCE5F87] - 06/06/2013 - 15:31:00 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-6EF4B603.pf
O45 - LFCP:[MD5.CB8F6A40E114269CE4102643375B4232] - 06/06/2013 - 15:53:16 ---A- - C:\Windows\Prefetch\SPLWOW64.EXE-297C4568.pf
O45 - LFCP:[MD5.397457443BBB8458B63418ADB3334543] - 06/06/2013 - 19:14:22 ---A- - C:\Windows\Prefetch\WINMAIL.EXE-F551299C.pf
O45 - LFCP:[MD5.24B98FA48807BFB41AE6C1CC0E08B215] - 06/06/2013 - 19:14:24 ---A- - C:\Windows\Prefetch\WINMAIL.EXE-1092D371.pf
O45 - LFCP:[MD5.4AA61D987792D401F1416E15DED4B14D] - 06/06/2013 - 22:49:46 ---A- - C:\Windows\Prefetch\AGCP.EXE-A4E0630D.pf
O45 - LFCP:[MD5.85C5474BC5C9B0DE61465E814A6E6810] - 06/06/2013 - 22:49:46 ---A- - C:\Windows\Prefetch\SILVERLIGHT.CONFIGURATION.EXE-E72839BD.pf
O45 - LFCP:[MD5.02BD9DCAFFFB53E1F86343B2E80B0CDD] - 06/06/2013 - 23:29:22 ---A- - C:\Windows\Prefetch\VLC.EXE-CC6F4A79.pf
O45 - LFCP:[MD5.A977DEAE7D252FD6C6FEF27384569811] - 07/06/2013 - 00:51:53 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf
O45 - LFCP:[MD5.FC0A5DB047AE99FF5FCB9CE99AE0DD9A] - 07/06/2013 - 10:54:11 ---A- - C:\Windows\Prefetch\WINAMAX POKER.EXE-0AB59F05.pf
O45 - LFCP:[MD5.7B5866D015EB7238CE4F26BD943FE233] - 07/06/2013 - 10:54:56 ---A- - C:\Windows\Prefetch\ADOBE AIR UPDATER.EXE-EF9530F3.pf
O45 - LFCP:[MD5.455453E2519397D0B8F1B1E4D4AC84CE] - 07/06/2013 - 11:12:38 ---A- - C:\Windows\Prefetch\SPOTIFY.EXE-4DF6E82E.pf
O45 - LFCP:[MD5.DC7209F72741480FF5CCDA878D215A18] - 07/06/2013 - 12:00:08 ---A- - C:\Windows\Prefetch\WSQMCONS.EXE-118B52B7.pf
O45 - LFCP:[MD5.9BEBE5390850610AE0BD3385E949749A] - 07/06/2013 - 13:07:13 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-6F609AD4.pf
O45 - LFCP:[MD5.0EB9EA2F25EC3556D9FC4FE99CC1817B] - 07/06/2013 - 13:07:15 ---A- - C:\Windows\Prefetch\JAVAW.EXE-2AB1E03D.pf
O45 - LFCP:[MD5.151E79D1A362EEDCF44238BBC63B3251] - 07/06/2013 - 14:14:54 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:[MD5.A9218070D4096535C474EDD0E868A9B5] - 07/06/2013 - 14:16:36 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf
O45 - LFCP:[MD5.6A0505E6FF042415456D921C889091DD] - 07/06/2013 - 14:16:47 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.299CE28DCD74BB9F74FB47B2C610BB14] - 09/06/2013 - 18:38:02 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER64.EXE-8F8B6D39.pf
O45 - LFCP:[MD5.41D2926A7EC3CE5B4153A418F8F99AFA] - 09/06/2013 - 18:38:02 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.C8205A94212C25C263129B2FFAF359D3] - 09/06/2013 - 18:38:02 ---A- - C:\Windows\Prefetch\PNKBSTRB.EXE-5A939BCA.pf
O45 - LFCP:[MD5.90503233FBF88FE520700FB748777CAF] - 09/06/2013 - 18:38:02 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf
O45 - LFCP:[MD5.52670BDD7D7793F3B8A985D8B7BCA83C] - 09/06/2013 - 18:38:02 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-61AE5AB6.pf
O45 - LFCP:[MD5.49FE8361BBE2BAEDE06169C4C9648648] - 09/06/2013 - 18:38:02 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf
O45 - LFCP:[MD5.936831FCE74E77034EC107AA294B0A59] - 09/06/2013 - 18:38:02 ---A- - C:\Windows\Prefetch\UPDATER.EXE-EA1310CB.pf
O45 - LFCP:[MD5.AE724A4F7787E41B0080EF9DEF08E9FA] - 09/06/2013 - 18:38:59 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-A02905A6.pf
O45 - LFCP:[MD5.852428DEDF0542FFF7CD0C422CA9BAF9] - 09/06/2013 - 18:39:34 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.1FF82EBE0CCFDC533013D4786770093B] - 09/06/2013 - 18:39:40 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf
O45 - LFCP:[MD5.35AD2446A20496310ECA9A2BEAA72FDE] - 09/06/2013 - 18:39:55 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf
O45 - LFCP:[MD5.C0AF905A7844B34462A508C7E22261D3] - 09/06/2013 - 18:41:17 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.C91D062FA14587AFD7923C190FBBA48B] - 09/06/2013 - 18:41:47 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.A5AF9957235E34FBBBFE81947A4A75BD] - 09/06/2013 - 18:47:37 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:[MD5.A425511CDA89462E363D63770275F347] - 09/06/2013 - 18:47:47 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.151.1542.0.EXE-28D99F1C.pf
O45 - LFCP:[MD5.9BE608E97F8E2C4FAE35DF77BD03E040] - 09/06/2013 - 18:47:50 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-812B79E5.pf
O45 - LFCP:[MD5.F2153774BCA391B13684D09C6EE0273B] - 09/06/2013 - 18:47:54 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf
O45 - LFCP:[MD5.7256725E0D2E719F07B0881565BCD565] - 09/06/2013 - 18:49:07 ---A- - C:\Windows\Prefetch\POKERSTARSUPDATE.EXE-9F9D1072.pf
O45 - LFCP:[MD5.0C160535100377BB65753A0E0078BFB0] - 09/06/2013 - 18:49:12 ---A- - C:\Windows\Prefetch\POKERSTARS.EXE-0DC6748B.pf
O45 - LFCP:[MD5.452CC764330BEBE8D38D0FE4F7B93520] - 09/06/2013 - 18:50:00 ---A- - C:\Windows\Prefetch\WERCON.EXE-E36BD04E.pf
O45 - LFCP:[MD5.6ECE9D4DA3A5B6F14F9113951BD81254] - 09/06/2013 - 18:50:00 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.1922412512E5E84168FE0CE01A15675B] - 09/06/2013 - 18:55:55 ---A- - C:\Windows\Prefetch\POKERTRACKER.EXE-A2D6FC5A.pf
O45 - LFCP:[MD5.F3114605C2BFDCB2894E938B2937760A] - 09/06/2013 - 18:56:42 ---A- - C:\Windows\Prefetch\POKERTRACKERHUD.EXE-B408FCA7.pf
O45 - LFCP:[MD5.0155E1F5759313A13083344E63501C08] - 09/06/2013 - 18:57:23 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.629CC347520AF5CC2DF01A668CB857DF] - 09/06/2013 - 19:51:57 ---A- - C:\Windows\Prefetch\SETUP.EXE-8F4BB5F3.pf
O45 - LFCP:[MD5.5FCD607FC5E794DD5E5837CBAEA0440B] - 09/06/2013 - 19:52:02 ---A- - C:\Windows\Prefetch\VCREDIST_X64.EXE-1B9C4B3A.pf
O45 - LFCP:[MD5.4A0E15D4F149C9F77850460F92A78683] - 09/06/2013 - 19:52:07 ---A- - C:\Windows\Prefetch\PICASAUPDATER.EXE-C47D8BF0.pf
O45 - LFCP:[MD5.6A909FF4A3D2D839DB978E1B2A19A3C2] - 09/06/2013 - 19:52:16 ---A- - C:\Windows\Prefetch\VCREDIST_X86.EXE-0D2CA2BE.pf
O45 - LFCP:[MD5.6F991D6B457AFF13DFF190D9222F730C] - 09/06/2013 - 19:52:18 ---A- - C:\Windows\Prefetch\INSTALL.EXE-1B0C635F.pf
O45 - LFCP:[MD5.3C695AA8F107EC9D84A47C4AF292E1DC] - 09/06/2013 - 19:52:23 ---A- - C:\Windows\Prefetch\SOFFICE.EXE-8BFABAE3.pf
O45 - LFCP:[MD5.40EF651559C3E1093E82F1ED7CABB0A5] - 09/06/2013 - 19:52:30 ---A- - C:\Windows\Prefetch\SOFFICE.BIN-7F88D3BE.pf
O45 - LFCP:[MD5.C36027C20610A121E840EDD6B5B25D11] - 09/06/2013 - 19:56:39 ---A- - C:\Windows\Prefetch\SNIPPINGTOOL.EXE-EFFDAFDE.pf
O45 - LFCP:[MD5.39BB9F62AFAEA07EB63E3769ADE1929C] - 09/06/2013 - 19:56:39 ---A- - C:\Windows\Prefetch\WISPTIS.EXE-595A3677.pf
O45 - LFCP:[MD5.F5B2398199D3C2D429BB7BFD39EEBB36] - 09/06/2013 - 20:40:56 ---A- - C:\Windows\Prefetch\CALC.EXE-30884C23.pf
O45 - LFCP:[MD5.D655403DD737813129BFADFF3114E3DF] - 09/06/2013 - 21:02:08 ---A- - C:\Windows\Prefetch\PICASAPHOTOVIEWER.EXE-2A8AC753.pf
O45 - LFCP:[MD5.4F0ABE2F4DBDE91F856B5515261520C9] - 09/06/2013 - 21:56:30 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf
O45 - LFCP:[MD5.0E59D4094AB797FB40DA90277D887489] - 10/06/2013 - 00:53:53 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf
O45 - LFCP:[MD5.35433153BA188F4282D8E640E3412FD5] - 10/06/2013 - 01:16:11 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:[MD5.57CB1DD1B13EDBC448D2BD29D4721E84] - 10/06/2013 - 01:16:12 ---A- - C:\Windows\Prefetch\DFRGNTFS.EXE-7E4077FE.pf
O45 - LFCP:[MD5.6ACE91D8AD7D94A46283BEC7F5011E8F] - 10/06/2013 - 01:27:09 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E7777CC4.pf
O45 - LFCP:[MD5.44317DCBF253728927C78843FF83B711] - 10/06/2013 - 01:27:46 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:[MD5.E22E2E9515709E0443313747F1AEF891] - 10/06/2013 - 01:27:48 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:[MD5.1A70069DA39CE692AEC5DA3967EF54F5] - 10/06/2013 - 04:50:57 ---A- - C:\Windows\Prefetch\SCRNSAVE.SCR-51176AA7.pf
O45 - LFCP:[MD5.9F2D5EF8C662AECAF667F9B9D8386287] - 10/06/2013 - 08:29:27 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.936F5A405FD39E9933468D1D114758C7] - 10/06/2013 - 10:50:19 ---A- - C:\Windows\Prefetch\AVAST.SETUP-B1D66586.pf
O45 - LFCP:[MD5.6FD6AFC524C54EA25EEE68D5443E907D] - 10/06/2013 - 10:50:30 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-3B5B9E84.pf
O45 - LFCP:[MD5.DF082BA85C9610DC3ECF3BBF94669632] - 10/06/2013 - 10:58:32 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-899290846-3414271431-1221219229-1000.db
O45 - LFCP:[MD5.1E3BE1ED7E5107781DE64A8E7E8688E1] - 10/06/2013 - 10:58:33 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-899290846-3414271431-1221219229-1000.db
O45 - LFCP:[MD5.28A76FE8521DEB60E5A5347FC70B86D3] - 10/06/2013 - 10:59:35 ---A- - C:\Windows\Prefetch\RIM.DESKTOP.EXE-416D9D66.pf
O45 - LFCP:[MD5.4AE83ADA15FEB3703F0E060BC02225E0] - 10/06/2013 - 11:00:04 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf
O45 - LFCP:[MD5.C07287F73D9242F588FD41006454FC2D] - 10/06/2013 - 11:00:08 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf
O45 - LFCP:[MD5.F4516ED8194463312CD42F8FC6D4BFF3] - 10/06/2013 - 11:00:21 ---A- - C:\Windows\Prefetch\RIMDEVICEMANAGER.EXE-FCDF17A5.pf
O45 - LFCP:[MD5.759A889ABBF8EC48FCC7CAF86C7D169B] - 10/06/2013 - 11:00:46 ---A- - C:\Windows\Prefetch\RIM.DESKTOPHELPER.EXE-DFE20E1E.pf
O45 - LFCP:[MD5.40F79CB21C3C242F642310370739189F] - 10/06/2013 - 11:00:48 ---A- - C:\Windows\Prefetch\SLSK.EXE-FB63B0C6.pf
O45 - LFCP:[MD5.02DF6287F8E68E8F7008ED63A3734F41] - 10/06/2013 - 11:02:25 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf
O45 - LFCP:[MD5.71F6DD89FD781570F32D5A0646268585] - 10/06/2013 - 11:08:02 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.CF51CEF52C5103730012A2EB8CF541A8] - 10/06/2013 - 11:08:03 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.10A4E9EA47589D57020BF4A010B82C08] - 10/06/2013 - 11:12:48 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf
O45 - LFCP:[MD5.FA4A5264DBABD0123A35CFB5A0065B00] - 10/06/2013 - 11:12:49 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf
O45 - LFCP:[MD5.9F239EE4337F015E29890340C00579C7] - 10/06/2013 - 11:27:58 ---A- - C:\Windows\Prefetch\MFPMP.EXE-26F35380.pf
O45 - LFCP:[MD5.25D1DFF8D966FEF8274733A74160A1AD] - 10/06/2013 - 11:31:21 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf
O45 - LFCP:[MD5.610208F04E86F5D357544D64C2D3290F] - 10/06/2013 - 11:32:17 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf
O45 - LFCP:[MD5.9253D835F7424E5045A29C4C8EBF8A3F] - 10/06/2013 - 11:34:01 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf
O45 - LFCP:[MD5.11E2A080C8A8C0F15E1C460C05E0814F] - 10/06/2013 - 11:39:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-A9412E6C.pf
O45 - LFCP:[MD5.96DC67154ED84537689959176525D8B1] - 10/06/2013 - 11:42:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-216D9C35.pf
O45 - LFCP:[MD5.00B72FABDA6DF049E7A78056EFF43782] - 10/06/2013 - 11:51:55 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.8FFDEE366467815CF4E3E31320AA18B8] - 10/06/2013 - 12:03:32 ---A- - C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf
O45 - LFCP:[MD5.03CB609B67A03FDCDE06D2454095E46C] - 10/06/2013 - 12:05:42 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf
O45 - LFCP:[MD5.2AB602DDD2C8179457FC452DBF8B3931] - 10/06/2013 - 12:07:41 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.030F44BC66C0B8C62A70EECC0D68A35C] - 10/06/2013 - 12:08:37 ---A- - C:\Windows\Prefetch\NVTRAY.EXE-DB83881B.pf
O45 - LFCP:[MD5.2B227D215206C4C147D0EF87FDEABD4E] - 10/06/2013 - 12:08:38 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:[MD5.ACB331ECAA6A0EFE10C0D3721222BB2C] - 10/06/2013 - 12:08:43 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.683144FCE3BFCB7E89C7E2A12592733E] - 10/06/2013 - 12:09:41 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.232C37AD2E3A03428614820CF6A1982F] - 10/06/2013 - 12:10:49 ---A- - C:\Windows\Prefetch\WOW_HELPER.EXE-BD2EEF9F.pf
O45 - LFCP:[MD5.6140BD530CC788B87700FB1076D131FC] - 10/06/2013 - 12:11:04 ---A- - C:\Windows\Prefetch\CHROME.EXE-81C0E5E1.pf
O45 - LFCP:[MD5.9D1AF264CB80ACF64E8B0A6B243224DE] - 10/06/2013 - 12:12:18 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.2DD346500EB46799C79196209CAB5DC2] - 10/06/2013 - 12:12:36 ---A- - C:\Windows\Prefetch\POSTGRES.EXE-D11DFE92.pf
O45 - LFCP:[MD5.6EF8F2AF92C9993FF0EAD998CA47B7AA] - 10/06/2013 - 12:13:00 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.842E9991ECFA2DB140EB53CCCDFEB518] - 28/05/2013 - 23:42:56 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.151.798.0.EXE-1609DA88.pf
O45 - LFCP:[MD5.1954A8D322C9FE13A42131BA6CE15129] - 28/05/2013 - 23:43:05 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-6E24409D.pf
O45 - LFCP:[MD5.B65CE30B42CD469AD8E50A5131374529] - 29/05/2013 - 00:07:39 ---A- - C:\Windows\Prefetch\NVCPLUI.EXE-7CA4CFE6.pf
O45 - LFCP:[MD5.AC670EE718262C6AAD70C41ED04BD4AD] - 29/05/2013 - 20:23:27 ---A- - C:\Windows\Prefetch\UTORRENT.EXE-AE62E46F.pf   =>P2P.µTorrent
O45 - LFCP:[MD5.98A96656F2444ED5926720DBA93B4811] - 29/05/2013 - 20:26:59 ---A- - C:\Windows\Prefetch\HELPPANE.EXE-FEDC965B.pf
O45 - LFCP:[MD5.4A0E830449734F00C55C4F2A780CD7C9] - 31/05/2013 - 09:43:39 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.151.1061.0.EXE-20154848.pf
O45 - LFCP:[MD5.E02CA211F8A65CEB6330E6193438467A] - 31/05/2013 - 09:43:43 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-288B03B3.pf
~ Prefetcher: 136 Scanned in 00mn 03s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
~ LSA: 7 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 16 Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
~ MWPE Keys: 4 Scanned in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [486456]
O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 05/01/2005 - 04:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\SysWOW64\npptNT2.sys   [4682]
~ Drivers:  Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 07/06/2013 - 10:18:08 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists   [268840]
O61 - LFC: 07/06/2013 - 10:19:54 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.buzzfeed.com_0.localstorage   [3072]
O61 - LFC: 07/06/2013 - 10:19:54 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.buzzfeed.com_0.localstorage-journal   [3608]
O61 - LFC: 07/06/2013 - 10:32:15 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\s.ytimg.com\soundData.sol   [49]
O61 - LFC: 07/06/2013 - 10:36:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\PokerStarsUpdate.log.1   [2531]
O61 - LFC: 07/06/2013 - 10:37:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\56B57B428FD7E089F122EBDDCC11414F.psi   [4695]
O61 - LFC: 07/06/2013 - 10:37:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\7C6300AFD702ABC950A969CBDC63FB95.psi   [6844]
O61 - LFC: 07/06/2013 - 10:37:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\BDD55DDAE87ECE7543781A660633EEC4.psi   [5188]
O61 - LFC: 07/06/2013 - 10:51:37 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\3B2655D321A711E2DA4E732A54B4FAC7.psi   [4996]
O61 - LFC: 07/06/2013 - 10:51:37 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4BB9E52C5E20BA9404F910B01F995CA5.psi   [6338]
O61 - LFC: 07/06/2013 - 10:51:37 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\66B6245A35D59984FF5BA5D985ACB92F.psi   [4482]
O61 - LFC: 07/06/2013 - 10:54:04 ---A- C:\Users\Nicolas\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1\Local Store\#ApplicationUpdater\state.xml   [242]
O61 - LFC: 07/06/2013 - 10:54:06 ---A- C:\Users\Nicolas\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1\Local Store\#ApplicationUpdater\update.xml   [263]
O61 - LFC: 07/06/2013 - 10:54:16 ---A- C:\Users\Nicolas\Documents\Winamax Poker\data\splash   [160212]
O61 - LFC: 07/06/2013 - 10:54:54 ---A- C:\Users\Nicolas\AppData\Roaming\Adobe\AIR\Updater\lastUpdateCheck   [34]
O61 - LFC: 07/06/2013 - 10:59:28 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0A7D5270DAC2AFBE79BEB5C50D116B1D.psi   [5258]
O61 - LFC: 07/06/2013 - 10:59:28 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\6B28563A116FD4539D62AE685E93A0E6.psi   [6296]
O61 - LFC: 07/06/2013 - 10:59:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0B580A80FE708E73603440E2B8ABDED6.psi   [5854]
O61 - LFC: 07/06/2013 - 10:59:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\55D5FE0765954C1BA995CE36ED1968F8.psi   [6842]
O61 - LFC: 07/06/2013 - 10:59:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\811779A7459C0189A5C256F191A7B81E.psi   [5045]
O61 - LFC: 07/06/2013 - 10:59:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\9A39AD646D152849650657DB27A05B61.psi   [4093]
O61 - LFC: 07/06/2013 - 10:59:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\BA3349B7D339081B82125F33A2C43864.psi   [5830]
O61 - LFC: 07/06/2013 - 11:00:08 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\17E4A3809B84AD6F4B2E12D4A6046CE6.psi   [5876]
O61 - LFC: 07/06/2013 - 11:00:09 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A30C29D787F2819F3C7DBDCFF354D7BF.psi   [5906]
O61 - LFC: 07/06/2013 - 11:00:09 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A455795BBC0D8273FF013369F3079453.psi   [4582]
O61 - LFC: 07/06/2013 - 11:01:48 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130607 T743660302 No Limit Hold'em €0.27 + €0.03.txt   [70644]
O61 - LFC: 07/06/2013 - 11:01:48 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130607 T743660302 No Limit Hold'em €0.27+€0.03.txt   [589]
O61 - LFC: 07/06/2013 - 11:02:55 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130607 T743668523 No Limit Hold'em €0.27 + €0.03.txt   [32455]
O61 - LFC: 07/06/2013 - 11:02:55 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130607 T743668523 No Limit Hold'em €0.27+€0.03.txt   [632]
O61 - LFC: 07/06/2013 - 11:03:36 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000003   [1048576]
O61 - LFC: 07/06/2013 - 11:03:37 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000004   [1048576]
O61 - LFC: 07/06/2013 - 11:03:37 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000005   [509691]
O61 - LFC: 07/06/2013 - 11:12:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\29E895571222097EE5A5CEC888954040.psi   [2685]
O61 - LFC: 07/06/2013 - 11:12:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\9648815E2F4A5CDD821F358D77639BA7.psi   [3968]
O61 - LFC: 07/06/2013 - 11:12:42 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\27C0D0225156B23EE550861A94C9D447.psi   [4915]
O61 - LFC: 07/06/2013 - 11:13:48 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\medias.last-video.com\analytics.sol   [495]
O61 - LFC: 07/06/2013 - 11:18:37 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130607 T743652096 No Limit Hold'em €0.91+€0.09.txt   [591]
O61 - LFC: 07/06/2013 - 11:18:38 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130607 T743652096 No Limit Hold'em €0.91 + €0.09.txt   [65057]
O61 - LFC: 07/06/2013 - 11:19:08 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_00009b   [37212]
O61 - LFC: 07/06/2013 - 11:19:26 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130607 T743670960 No Limit Hold'em €0.27+€0.03.txt   [605]
O61 - LFC: 07/06/2013 - 11:19:27 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130607 T743670960 No Limit Hold'em €0.27 + €0.03.txt   [49429]
O61 - LFC: 07/06/2013 - 11:20:13 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\56\56fc34dcfbbdfe60f6fb3a821fd00bc99717430a.file   [41290]
O61 - LFC: 07/06/2013 - 11:21:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\6765F76803F6E61211DDF22E6495274D.psi   [5983]
O61 - LFC: 07/06/2013 - 11:21:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\7998B3EAA5093F57018A13817EA283FC.psi   [4143]
O61 - LFC: 07/06/2013 - 11:21:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\7EF1C47B172D7D93B6B8C82E4FDB9968.psi   [5302]
O61 - LFC: 07/06/2013 - 11:21:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\AC1D337BA240718B99B617AC0459E609.psi   [3840]
O61 - LFC: 07/06/2013 - 11:21:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C57C2B09A519B40F2213236A43FE1E9A.psi   [4873]
O61 - LFC: 07/06/2013 - 11:21:37 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\32ADFD3A8D5C75C399E409D69A41EC55.psi   [1861]
O61 - LFC: 07/06/2013 - 11:25:01 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\0a\0a6e950822bf3d673f644241d7a2b338bf8e09f2.file   [803049]
O61 - LFC: 07/06/2013 - 11:25:01 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\30\30c7c6b58fe14a4f990aec579774bafed4c0aef8.file   [803049]
O61 - LFC: 07/06/2013 - 11:25:01 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\4c\4c9f818f1cd6dfd2169e177b66ea1fee55f41fc4.file   [1191611]
O61 - LFC: 07/06/2013 - 11:25:01 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\51\5137ef849bea462abab8971263a7454c79ddebc4.file   [803049]
O61 - LFC: 07/06/2013 - 11:25:01 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\ae\aee35b6f2d8fed47068893addcdbdff082ccd879.file   [803049]
O61 - LFC: 07/06/2013 - 11:25:01 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\e5\e54da6eee3c6971c24efdd3e71939f62ffe59568.file   [1191611]
O61 - LFC: 07/06/2013 - 11:25:01 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\f3\f394032a5a618acb450a9afdbdefea77c7974c95.file   [1191611]
O61 - LFC: 07/06/2013 - 11:25:01 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\fa\faddc2b381641c10257e63d961b8082cbef68d05.file   [1191611]
O61 - LFC: 07/06/2013 - 11:26:58 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130607 T743674581 No Limit Hold'em €0.27+€0.03.txt   [642]
O61 - LFC: 07/06/2013 - 11:26:59 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130607 T743674581 No Limit Hold'em €0.27 + €0.03.txt   [40486]
O61 - LFC: 07/06/2013 - 11:31:29 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\0b\0b39e9cfc702015a72e77e3242a2e7fa73c3fe24.file   [848985]
O61 - LFC: 07/06/2013 - 11:31:29 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\35\3508971164f158d8247011629baa9f8b70dbd2e8.file   [848985]
O61 - LFC: 07/06/2013 - 11:31:29 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\66\66598675a8db3050d3b81c74becf92189c754494.file   [848985]
O61 - LFC: 07/06/2013 - 11:31:29 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\f6\f6e72ce4e2cd57312757b632b35f437a5bf1902b.file   [848985]
O61 - LFC: 07/06/2013 - 11:33:51 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\66\66015c731c89a27f86e87f132fa128e7d78aa786.file   [33415]
O61 - LFC: 07/06/2013 - 11:33:51 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\f7\f7b52a02be8771f283a0a4fb2d9c1f4f36c92ccd.file   [146649]
O61 - LFC: 07/06/2013 - 11:36:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\394B17C62CCB0F8B998095E6301E1100.psi   [5259]
O61 - LFC: 07/06/2013 - 11:36:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\610CA84D519EF83F2FB7B3B4C9026182.psi   [5692]
O61 - LFC: 07/06/2013 - 11:36:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\823A7987824E70D75B275AB53F719E69.psi   [4323]
O61 - LFC: 07/06/2013 - 11:36:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\86FADABA1CA2F920CB6E31CE70B8BC73.psi   [5533]
O61 - LFC: 07/06/2013 - 11:36:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\BD3EB9DC59368D1B46CBA06072BDD4FE.psi   [5108]
O61 - LFC: 07/06/2013 - 11:36:17 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\670FD3318D7A773635E8F8C7481189AF.psi   [5285]
O61 - LFC: 07/06/2013 - 11:36:17 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\8861D6347F1CCB1842DD954E6A27F701.psi   [4718]
O61 - LFC: 07/06/2013 - 11:36:26 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\318BFD9CCBFA3E17C536F41892636904.psi   [4467]
O61 - LFC: 07/06/2013 - 11:42:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\5A1B3B02ADE55992EE56E59CD85FEAE2.psi   [4753]
O61 - LFC: 07/06/2013 - 11:42:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FAA6BF7AAA21868A308D4D7E07F607BF.psi   [4798]
O61 - LFC: 07/06/2013 - 11:50:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B28D692CD958E656763E5A74434ED0D2.psi   [6154]
O61 - LFC: 07/06/2013 - 11:50:59 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\56C8539464588143A9871B851E2A5FB7.psi   [5909]
O61 - LFC: 07/06/2013 - 11:54:32 ---A- C:\Users\Nicolas\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1\Local Store\accounts\Tmljb0JvdXJiYWtp\ttsubs   [32]
O61 - LFC: 07/06/2013 - 11:54:32 ---A- C:\Users\Nicolas\Documents\Winamax Poker\accounts\NicoBourbaki\config.xml   [3166]
O61 - LFC: 07/06/2013 - 11:54:33 ---A- C:\Users\Nicolas\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1\Local Store\accounts\Tmljb0JvdXJiYWtp\limits   [144]
O61 - LFC: 07/06/2013 - 11:54:33 ---A- C:\Users\Nicolas\Documents\Winamax Poker\data\file\data   [15529]
O61 - LFC: 07/06/2013 - 11:54:33 ---A- C:\Users\Nicolas\Documents\Winamax Poker\data\file\index   [1430]
O61 - LFC: 07/06/2013 - 11:59:31 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130607 T743676773 No Limit Hold'em €0.27 + €0.03.txt   [86439]
O61 - LFC: 07/06/2013 - 12:01:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4F65D20DFEB912180965213BC40149AC.psi   [3818]
O61 - LFC: 07/06/2013 - 12:01:14 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\8E545131A54AA8C1F1569CE92319964F.psi   [6125]
O61 - LFC: 07/06/2013 - 12:01:14 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\9ADD26643F85EE42A994658A60219D5E.psi   [4647]
O61 - LFC: 07/06/2013 - 12:02:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\13E707A56CDD9694D0FDB52EE946272C.psi   [5934]
O61 - LFC: 07/06/2013 - 12:02:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\F24C5F7ACA1D9323319ACAF13851D7A1.psi   [4807]
O61 - LFC: 07/06/2013 - 12:02:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\F5E8EC4D6ED21B60455DEAF9FB171FEA.psi   [1844]
O61 - LFC: 07/06/2013 - 12:02:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\5999289E4AFA414AEFE5CC45D659B0AC.psi   [5182]
O61 - LFC: 07/06/2013 - 12:03:21 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.lesinrocks.com_0.localstorage   [3072]
O61 - LFC: 07/06/2013 - 12:03:21 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.lesinrocks.com_0.localstorage-journal   [3608]
O61 - LFC: 07/06/2013 - 12:13:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\596BA2EAD16AE9353B110C9700DB5496.psi   [2154]
O61 - LFC: 07/06/2013 - 12:13:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B78DCA43A0016F998756A25FD33925FF.psi   [5056]
O61 - LFC: 07/06/2013 - 12:13:55 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A5B006F323AAC1EDED19C17113CE9F75.psi   [6684]
O61 - LFC: 07/06/2013 - 12:15:18 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\AC023B46CD313D97B7875065D631FC39.psi   [4273]
O61 - LFC: 07/06/2013 - 12:17:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\player.canalplus.fr\site\flash\player.swf\canalPlusPlayerEmbarque.sol   [140]
O61 - LFC: 07/06/2013 - 12:27:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\39BB16FE963E7BE3F51DC62AF5D3D827.psi   [4456]
O61 - LFC: 07/06/2013 - 12:27:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\E8060CC7A6B80944AF465AC603677F12.psi   [5331]
O61 - LFC: 07/06/2013 - 12:32:43 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\233A8FFE2FF6A5708801C2DB8DFD8F5E.psi   [5793]
O61 - LFC: 07/06/2013 - 12:32:43 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\7372E30F052148A53908DF3772C15036.psi   [4329]
O61 - LFC: 07/06/2013 - 12:32:43 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CD82E6181C6A2B76FC0AF07CA6E208AC.psi   [5660]
O61 - LFC: 07/06/2013 - 12:32:44 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\30EBC28FF58C374CF2C4DFBD94BC320E.psi   [4225]
O61 - LFC: 07/06/2013 - 12:41:50 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1A6C8E461C91EE49599C9F98404D079C.psi   [4670]
O61 - LFC: 07/06/2013 - 12:41:50 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\645233147C56A7D5252A240D7A8180D3.psi   [5594]
O61 - LFC: 07/06/2013 - 12:41:50 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D6892117B212DC0E790026080B7A5C2E.psi   [4205]
O61 - LFC: 07/06/2013 - 12:42:02 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CE527769D2BDF48F864BFD003605E369.psi   [5639]
O61 - LFC: 07/06/2013 - 12:42:02 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D9A8A05FB11B690E614EC0025AFC73C5.psi   [4741]
O61 - LFC: 07/06/2013 - 12:42:02 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\EFA1674661B3DCCEFDDADFF8B57858BC.psi   [4620]
O61 - LFC: 07/06/2013 - 12:42:15 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\3D905D17950FB762C94D0250AEAE0273.psi   [5036]
O61 - LFC: 07/06/2013 - 12:42:20 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\45934FECC068B6A38F4BA2244E5305A6.psi   [5870]
O61 - LFC: 07/06/2013 - 12:42:28 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\2E6C691381EC061E2D31C2B1D5BA3C49.psi   [5480]
O61 - LFC: 07/06/2013 - 12:42:28 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\DCB2A9F7F5CFCDB7F5577DD41C0AC26E.psi   [5117]
O61 - LFC: 07/06/2013 - 12:42:37 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\2626E10EE8A91B4B6163AD87874E8EB2.psi   [6758]
O61 - LFC: 07/06/2013 - 12:42:37 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FF7A7884A450F7DBB2EE076A590D0E4C.psi   [6834]
O61 - LFC: 07/06/2013 - 12:43:09 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FD120EEE77925F761963F99DF8E28F6D.psi   [4561]
O61 - LFC: 07/06/2013 - 12:43:27 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\98D2EBE937CC39ACF783D8AACDF169C1.psi   [4620]
O61 - LFC: 07/06/2013 - 12:43:35 ---A- C:\Users\Nicolas\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1\Local Store\config   [304]
O61 - LFC: 07/06/2013 - 12:43:40 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\49D5F7C6B652B273C01F6AD5A8B2D6CD.psi   [5445]
O61 - LFC: 07/06/2013 - 12:43:40 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B68CFC54B2B0FEB04689C2CEDDFA34A9.psi   [4616]
O61 - LFC: 07/06/2013 - 12:44:11 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\6BA5A01A7475874976771E8A57BBD95F.psi   [4964]
O61 - LFC: 07/06/2013 - 12:44:11 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\7129E76E041B885D752B1F2FFE74D1BE.psi   [5219]
O61 - LFC: 07/06/2013 - 12:44:17 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\317BF9682039EABC663F67FEC5029E78.psi   [4360]
O61 - LFC: 07/06/2013 - 12:44:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C4B79922036DC1782081D5F24DD00A4B.psi   [5783]
O61 - LFC: 07/06/2013 - 12:44:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\407AF09C39359CBA068A3EE9E9BDCDEE.psi   [6176]
O61 - LFC: 07/06/2013 - 12:44:45 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\099465ABE89D37A592BA86AEF82DDE2B.psi   [5268]
O61 - LFC: 07/06/2013 - 12:45:10 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\DBBC5A5904C0C8A11D986B86E5090C43.psi   [5577]
O61 - LFC: 07/06/2013 - 12:45:49 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\2044D1ACE183DC368375F1B357069953.psi   [4595]
O61 - LFC: 07/06/2013 - 12:48:27 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\89BF99D0E3E4B614940C28C90B797984.psi   [5430]
O61 - LFC: 07/06/2013 - 12:51:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4F7306E68E549825937DDC108B0C0AB1.psi   [6272]
O61 - LFC: 07/06/2013 - 12:52:11 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\20681E2509F8DB217AE3182EA5E11790.psi   [5025]
O61 - LFC: 07/06/2013 - 12:53:20 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\06AF13C1F5A071D08758D6B8494D8245.psi   [4943]
O61 - LFC: 07/06/2013 - 12:56:48 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\49F3F056CECA8BA09616298C741BA5D5.psi   [5776]
O61 - LFC: 07/06/2013 - 12:57:19 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\00C756BCB943FC5C52604F6E3CA75C21.psi   [3907]
O61 - LFC: 07/06/2013 - 12:58:07 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\693F6C3CA74837D727CD6CF25A4EF5B2.psi   [5297]
O61 - LFC: 07/06/2013 - 13:02:41 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4C7BCCBBA56DF1505CA90F18E63B0002.psi   [5675]
O61 - LFC: 07/06/2013 - 13:02:41 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B361DED35C4B9463F9198023129EC7AA.psi   [4285]
O61 - LFC: 07/06/2013 - 13:06:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FB1AE33C1AE7BEF34D980CBEB9CAB902.psi   [3948]
O61 - LFC: 07/06/2013 - 13:07:30 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\603E850EED88C6D9DDE66BFA84918B8A.psi   [4975]
O61 - LFC: 07/06/2013 - 13:08:21 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FE7E71CC11B74C45C3B06D79B2692A8F.psi   [4951]
O61 - LFC: 07/06/2013 - 13:10:39 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\81FB65E086414B4A4BC454C9FBB6EA59.psi   [5794]
O61 - LFC: 07/06/2013 - 13:12:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C83A680EF8741E5ED2F09DD474BFE8AA.psi   [6881]
O61 - LFC: 07/06/2013 - 13:13:46 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4CA2BE56AFAA59A220E188C3FE4E50F3.psi   [6598]
O61 - LFC: 07/06/2013 - 13:16:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\6C2BB7014700DE1D713B1096D65467C4.psi   [5443]
O61 - LFC: 07/06/2013 - 13:21:00 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\macromedia.com\##3FC09DEE15923983\00000001.sol   [194]
O61 - LFC: 07/06/2013 - 13:21:01 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\0.static.collegehumor.cvcdn.com\moogaloop\moogaloop.1.0.30.swf\cvmetrics.sol   [120]
O61 - LFC: 07/06/2013 - 13:21:04 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\0.static.collegehumor.cvcdn.com\com.conviva.livePass.sol   [224]
O61 - LFC: 07/06/2013 - 13:23:37 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\0.static.collegehumor.cvcdn.com\##060AA436CA32BCDB\00000001.sol   [183]
O61 - LFC: 07/06/2013 - 13:23:37 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\0.static.collegehumor.cvcdn.com\moogaloop\moogaloop.1.0.30.swf\HDCore.sol   [43]
O61 - LFC: 07/06/2013 - 13:23:47 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\9d\9de1b890802501d44a488ea6c065b2f8033548b9.file   [119933]
O61 - LFC: 07/06/2013 - 13:23:47 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\a0\a0c51a1dc28d236b7d2fb71586d471b454f277d6.file   [119933]
O61 - LFC: 07/06/2013 - 13:23:47 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\ca\cabf161a066647b2b2d4cb89f36ed562e3755493.file   [119933]
O61 - LFC: 07/06/2013 - 13:23:47 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\da\da55978f443d57d0be07e5d859a61cd26f000838.file   [119933]
O61 - LFC: 07/06/2013 - 13:27:34 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\image.store   [310]
O61 - LFC: 07/06/2013 - 13:27:35 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\img.idx   [8420]
O61 - LFC: 07/06/2013 - 13:27:35 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\notes.chancy51.xml   [183654]
O61 - LFC: 07/06/2013 - 14:11:30 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.liberation.fr_0.localstorage   [3072]
O61 - LFC: 07/06/2013 - 14:11:30 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.liberation.fr_0.localstorage-journal   [3608]
O61 - LFC: 07/06/2013 - 14:14:40 --HA- C:\Users\Nicolas\AppData\Local\IconCache.db   [2381136]
O61 - LFC: 07/06/2013 - 14:15:08 ---A- C:\Users\Nicolas\AppData\Local\Spotify\mercury.db-wal   [9537880]
O61 - LFC: 07/06/2013 - 14:15:14 ---A- C:\Users\Nicolas\AppData\Roaming\uTorrent\dht.dat   [3988]   =>P2P.µTorrent
O61 - LFC: 07/06/2013 - 14:15:14 ---A- C:\Users\Nicolas\AppData\Roaming\uTorrent\rss.dat   [99]   =>P2P.µTorrent
O61 - LFC: 09/06/2013 - 18:38:20 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\running   [0]
O61 - LFC: 09/06/2013 - 18:38:42 ---A- C:\Users\Nicolas\AppData\Local\Temp\Nicolas.bmp   [31832]
O61 - LFC: 09/06/2013 - 18:39:07 ---A- C:\Users\Nicolas\AppData\Local\Spotify\offline.bnk   [2971]
O61 - LFC: 09/06/2013 - 18:39:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\7d\7d8525b5cb7d7997d17c063800a8cd148f6eb2de.file   [9698]
O61 - LFC: 09/06/2013 - 18:39:24 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_00009c   [16581]
O61 - LFC: 09/06/2013 - 18:39:24 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_00009d   [19356]
O61 - LFC: 09/06/2013 - 18:39:27 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\Local Storage\sp_49a4ebcd2357ee295180b3faf47e9aa1a58277bd.notification-popup_0.localstorage   [136192]
O61 - LFC: 09/06/2013 - 18:39:27 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\Local Storage\sp_712e1071238cb3c83d0b52b18102b88ccb24da31.discover_0.localstorage   [3072]
O61 - LFC: 09/06/2013 - 18:39:27 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\Local Storage\sp_712e1071238cb3c83d0b52b18102b88ccb24da31.discover_0.localstorage-journal   [3608]
O61 - LFC: 09/06/2013 - 18:39:28 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\Local Storage\sp_49a4ebcd2357ee295180b3faf47e9aa1a58277bd.notification-popup_0.localstorage-journal   [16384]
O61 - LFC: 09/06/2013 - 18:39:28 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_00009e   [22710]
O61 - LFC: 09/06/2013 - 18:39:29 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_00009f   [23747]
O61 - LFC: 09/06/2013 - 18:39:29 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_0000a0   [38198]
O61 - LFC: 09/06/2013 - 18:39:30 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_0000a1   [19524]
O61 - LFC: 09/06/2013 - 18:39:30 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_0000a2   [91075]
O61 - LFC: 09/06/2013 - 18:39:30 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_0000a3   [20125]
O61 - LFC: 09/06/2013 - 18:39:31 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_0000a4   [27214]
O61 - LFC: 09/06/2013 - 18:39:31 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_0000a5   [28826]
O61 - LFC: 09/06/2013 - 18:39:36 ---A- C:\Users\Nicolas\AppData\Roaming\OpenOffice.org\3\.lock   [149]
O61 - LFC: 09/06/2013 - 18:39:47 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\7f\7ff48c6011bad38bdd994aabea49801fcb0dfce8.file   [155]
O61 - LFC: 09/06/2013 - 18:40:10 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\81\81bf13963e2c04380b41be974e49b051a3f19f28.file   [13027]
O61 - LFC: 09/06/2013 - 18:41:31 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\bd\bd2fbf5e27999ad580658a0f94335ee99d715199.file   [155]
O61 - LFC: 09/06/2013 - 18:41:34 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\f_0000a6   [19780]
O61 - LFC: 09/06/2013 - 18:41:36 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\41\4101f55aae87183c174a0293685a088d50f0a379.file   [48722]
O61 - LFC: 09/06/2013 - 18:41:36 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\89\89256b853fe7d22110f8d6fb9c2bd6437f4229f7.file   [2208]
O61 - LFC: 09/06/2013 - 18:41:36 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\9d\9d502131b4f54d169bf7ac6ac2e6d4d3926d8da0.file   [6352]
O61 - LFC: 09/06/2013 - 18:41:36 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\fb\fbe16deebbcdece5fcd85e93063c7bdf3dd0d11d.file   [22817]
O61 - LFC: 09/06/2013 - 18:41:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\1a\1a15a9933506a1a708d1344295a2f227c8cfaa0d.file   [11937]
O61 - LFC: 09/06/2013 - 18:41:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\24\24775507bf9b66fd04fade0d7318edbc3e54aa0e.file   [29472]
O61 - LFC: 09/06/2013 - 18:41:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\27\279b402bc23c7b4532344472b07475bd0956f021.file   [56950]
O61 - LFC: 09/06/2013 - 18:41:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\4b\4b6dca7a17effaef4a8c48202337023c4ab80666.file   [48817]
O61 - LFC: 09/06/2013 - 18:41:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\53\53083453859b92200fc3fe466b630b7be32e0482.file   [61769]
O61 - LFC: 09/06/2013 - 18:41:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\5a\5a9b364fe7184a91e69620b205eeb8553bd429d6.file   [51574]
O61 - LFC: 09/06/2013 - 18:41:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\cd\cd76d67bbd3fce7a3b47b3181f9a326986de24d7.file   [26359]
O61 - LFC: 09/06/2013 - 18:41:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\f2\f2e10cd42875fe1a8144d660e1d1086e3a4c0e6d.file   [43036]
O61 - LFC: 09/06/2013 - 18:41:38 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\b3\b3bf9c64b5131c184c5a742642a34a2cfd63d823.file   [37413]
O61 - LFC: 09/06/2013 - 18:41:38 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\b8\b82ac24d90165c27ec86ba207a8430c152fc0723.file   [68890]
O61 - LFC: 09/06/2013 - 18:41:38 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\dd\ddb367c08f2d322503f0362f31fd278db9e29e4d.file   [25973]
O61 - LFC: 09/06/2013 - 18:41:39 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\01\01b4ff83463e019d4fa4c93eed215e0ab476d28a.file   [29076]
O61 - LFC: 09/06/2013 - 18:41:39 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\05\05be0322432a5b996d4d5538abcd7f4774ac37c5.file   [11543]
O61 - LFC: 09/06/2013 - 18:41:39 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\49\49f4a8849c96ab7af5f89e0c7648eb25d94b0303.file   [39124]
O61 - LFC: 09/06/2013 - 18:41:39 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\58\5868d58862b8b347d8370e2ed69132b1bd3e6509.file   [13300]
O61 - LFC: 09/06/2013 - 18:41:39 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\82\820c5f58ba897f146dd2526ea7c4c24f691a4ad7.file   [21634]
O61 - LFC: 09/06/2013 - 18:41:39 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\91\9153c3cff5b36f35bba728c90133f0b6f060510c.file   [37703]
O61 - LFC: 09/06/2013 - 18:41:39 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\f7\f7cb2c25e86cf6d897f30e9d6a90504a989888f9.file   [48490]
O61 - LFC: 09/06/2013 - 18:41:40 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\82\82102c3958ee95f7b2583d2f915fc8ad6e2ade9c.file   [22871]
O61 - LFC: 09/06/2013 - 18:41:40 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\ae\aee9c43826fe7fb5d735c12bf6b0997db201d1a5.file   [16974]
O61 - LFC: 09/06/2013 - 18:41:40 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\bd\bda8130176f26787b78d495d1fada1dba2a933fc.file   [36472]
O61 - LFC: 09/06/2013 - 18:41:40 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\f7\f724474bbc4352c4bb710af1c0792cb64813dc07.file   [28989]
O61 - LFC: 09/06/2013 - 18:42:02 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\guistate   [5082]
O61 - LFC: 09/06/2013 - 18:42:03 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\Cookies\Cookies   [33792]
O61 - LFC: 09/06/2013 - 18:42:03 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\Cookies\Cookies-journal   [15992]
O61 - LFC: 09/06/2013 - 18:43:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\11\11bfa0a1266f9aceb5ba1a032d1d4aaa02094c15.file   [241274]
O61 - LFC: 09/06/2013 - 18:43:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\1b\1bea48bb36fed15dc0a8480033ee1669a22c8935.file   [13159]
O61 - LFC: 09/06/2013 - 18:43:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\3f\3f6478a5f00c82006f0fd2ad947ea53741930f8c.file   [3610]
O61 - LFC: 09/06/2013 - 18:43:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\de\de87aed0e4efb4bc92ab30cf1a5845be7ee5e620.file   [2424]
O61 - LFC: 09/06/2013 - 18:43:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\f6\f6f3749a800d21108eb1e9036f9088515a5596e6.file   [13789]
O61 - LFC: 09/06/2013 - 18:43:15 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\purchased.bnk   [178]
O61 - LFC: 09/06/2013 - 18:44:06 ---A- C:\Users\Nicolas\AppData\Local\Spotify\mercury.db   [137968640]
O61 - LFC: 09/06/2013 - 18:44:15 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_twitter.com_0.localstorage   [2241536]
O61 - LFC: 09/06/2013 - 18:44:15 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_twitter.com_0.localstorage-journal   [16384]
O61 - LFC: 09/06/2013 - 18:46:36 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\59\59f322da6e9de1264a983f5af65df4ec676fc594.file   [44551]
O61 - LFC: 09/06/2013 - 18:46:37 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\c5\c538e678c0690d31cf9731d63179d4b792812dae.file   [96792]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\00\00bb2b812c03ace0b54de8d2ad38b70777e3c7ba.file   [3083]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\07\0709c7f9a798bfcebcf25ab2776d2bed1a5815ba.file   [33970]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\09\090e26d6afb05df6317337d7ca92d3ae701ed090.file   [165630]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\0c\0c76993dd5e500796c757f14c24923c85a06fe8b.file   [2565]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\0d\0d2376eaaafdde2ef149ba9a634e62350417e5d0.file   [12514]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\11\11825f76a3724eb7ca7659da6e04a96862ced981.file   [5493]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\12\125012c7cced2599445608d468d5059c6e82c6a7.file   [5229]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\26\268e0073e7786eebf124b4e1017fa688a53b5508.file   [2631]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\30\30a2fcf3e0b60d220d610ea5b5b63a8f56bfae2c.file   [3625]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\37\37c3ec5353c4eb6bb49c8ce9b9d1063585fe74f8.file   [2366]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\3b\3b869e9cef39548b391c9237bf5dbad887b46901.file   [1317647]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\3c\3c189f29eb70c64626a794b21495b10fba36d83d.file   [52441]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\3c\3c536af5cf47990bfa62546e662fc918de550e65.file   [2761]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\3e\3eb313c4ef92ec350edc8f80a743aea385bd0192.file   [2640]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\47\47bfd968937d3e20c8771c0ccb7fc08d0b180e59.file   [36424]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\48\4805e64da5e5c982c75591c3f181ec692360b697.file   [2415]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\4e\4eb8f873e49d0876ee031471cabf4cf4eedb6edb.file   [2476]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\54\5460d7dacaac75370945a168b2704e88d8e4a3f5.file   [2360]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\56\56230781b723a5f48d979dcd381e4249f6e78d07.file   [3200]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\5d\5d60462bbe028556dc63f82848b81122c3feea0b.file   [1539478]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\5e\5e6c3dece31703111b799bd4974745b4ba067b10.file   [7618]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\67\67e4c94684c3ce9e08735ebd5b05f46c1f61af33.file   [4523]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\73\73cba4372ca96ffb03a34224064d11cedff7bdc0.file   [4924]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\7e\7e8be5ad230835755bfb1232b0440159c937949c.file   [1260231]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\86\86842dfae5cc7a97408733de9e4f04deaaa27684.file   [152792]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\92\92e9132afff57df9b566845ed9c0754d8c6a2bda.file   [51987]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\93\93a0072ed7519c3ac05ba747f46985dc30715afc.file   [2199]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\ac\ac696ff775900b80da3563c81996863a9f26537a.file   [24054]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\c9\c9b2849d169a05e4e87c6ac76420b117593dc2a6.file   [63534]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\ec\ec90af35670979cba528f9f313ce05992ea319af.file   [1763]
O61 - LFC: 09/06/2013 - 18:48:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\ef\ef2cd2ee2290960358194437d82e71d817bb07b5.file   [1546599]
O61 - LFC: 09/06/2013 - 18:48:22 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\e1\e189d3ca3856cef1a7a59ebd370b9c99ee42020b.file   [12624]
O61 - LFC: 09/06/2013 - 18:49:02 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\_update2.dat   [4569]
O61 - LFC: 09/06/2013 - 18:49:07 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\PokerStarsUpdate.log.0   [2554]
O61 - LFC: 09/06/2013 - 18:49:07 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\_updcache.dat   [241951]
O61 - LFC: 09/06/2013 - 18:49:16 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_badoo.com_0.localstorage   [56320]
O61 - LFC: 09/06/2013 - 18:49:16 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_badoo.com_0.localstorage-journal   [16384]
O61 - LFC: 09/06/2013 - 18:49:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\8A66DA1C38B1CFAE40A5CFEB4A903DE0.psi   [16567]
O61 - LFC: 09/06/2013 - 18:49:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A633D55B2867F7714EAA791F7FF973BD.psi   [15382]
O61 - LFC: 09/06/2013 - 18:49:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B6855E32830C5AD6D0105FCE19A210D1.psi   [15412]
O61 - LFC: 09/06/2013 - 18:54:23 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\a7\a703cc29291a8579b8589275f09995ca30698328.file   [47186]
O61 - LFC: 09/06/2013 - 18:57:24 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\483DB9519A879E4CB31D85508B57975E.psi   [6980]
O61 - LFC: 09/06/2013 - 18:57:24 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\7D0CDCEB955990DE060B59B2ECAE7D4D.psi   [4307]
O61 - LFC: 09/06/2013 - 18:57:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\05DB3F6BA89EAB373F702F7427A5F142.psi   [5457]
O61 - LFC: 09/06/2013 - 18:57:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C310C8D39E47C0A6D9F56A9AC7C17419.psi   [5350]
O61 - LFC: 09/06/2013 - 18:57:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C4E73DB15FFDBCF40BA1BDE71B5D10D0.psi   [5193]
O61 - LFC: 09/06/2013 - 18:57:35 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\DC35F0DC93A4DDA0E239944A26781A99.psi   [4930]
O61 - LFC: 09/06/2013 - 18:57:47 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\02FFA45AD601191FADB105A9B31117A1.psi   [5092]
O61 - LFC: 09/06/2013 - 18:57:47 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\189F286E32D19B1AF3CACFE48810B30B.psi   [6879]
O61 - LFC: 09/06/2013 - 18:57:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0D33F9991BBAE72A3A71754BF1EDE9F4.psi   [4936]
O61 - LFC: 09/06/2013 - 18:57:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\58D0EFC994EBBB76D1E71632F471BCB9.psi   [4271]
O61 - LFC: 09/06/2013 - 18:58:10 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\963D351F6F59892F3179F6D4CDAFF108.psi   [6697]
O61 - LFC: 09/06/2013 - 18:58:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\609D601398F4A279B6A594DC676FA919.psi   [5998]
O61 - LFC: 09/06/2013 - 18:58:40 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\F1AC3449BFE83F09E377A1C4E121C144.psi   [6540]
O61 - LFC: 09/06/2013 - 18:58:41 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\8EDFB09541153CAD510D4F965BAB99FB.psi   [4729]
O61 - LFC: 09/06/2013 - 18:58:44 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A699FB1BA17EC740217016D5A3DCBEC6.psi   [5606]
O61 - LFC: 09/06/2013 - 18:58:45 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D1827AE86C0320703C8B9FD7A443E3B0.psi   [5651]
O61 - LFC: 09/06/2013 - 18:58:45 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D532DCC47AD936A4EF0271B3EAD082F1.psi   [5087]
O61 - LFC: 09/06/2013 - 18:58:47 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\83\83a46c45142f8e7907f9086dff35cb86def5bbff.file   [18512]
O61 - LFC: 09/06/2013 - 18:59:10 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\762F02F3D003AFE12962D7F5916672AB.psi   [5624]
O61 - LFC: 09/06/2013 - 18:59:45 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\04\04d8b5a41997098290fc324c8124b066a3bdc44e.file   [46998]
O61 - LFC: 09/06/2013 - 19:00:28 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\F9CC9B4065D8AB435EED3E78AD7031FA.psi   [6616]
O61 - LFC: 09/06/2013 - 19:00:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1A6E1EB534C1E33893BD66EE2884E225.psi   [2861]
O61 - LFC: 09/06/2013 - 19:00:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4EF85DFC7954635CD38BDB8DF844B1B2.psi   [5331]
O61 - LFC: 09/06/2013 - 19:01:44 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CFDD7629BE7CA3F14DF11544687CC3AB.psi   [5529]
O61 - LFC: 09/06/2013 - 19:03:05 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\AD1E67F0110019902DC4D7C1703760FE.psi   [5200]
O61 - LFC: 09/06/2013 - 19:03:15 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\ca\ca89677b9c42af7fb6b57fff670c6e57f3ba1fe3.file   [4410]
O61 - LFC: 09/06/2013 - 19:03:15 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\prefs   [715]
O61 - LFC: 09/06/2013 - 19:03:46 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4CB6327EBD3F1032F1D90CBCFE2C43DF.psi   [5048]
O61 - LFC: 09/06/2013 - 19:03:48 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\37DC3FF89C1A9F1EA661B5CF786FB5C3.psi   [5302]
O61 - LFC: 09/06/2013 - 19:05:24 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\E49A29F02207967A3FFC9A8A45ECD67F.psi   [4434]
O61 - LFC: 09/06/2013 - 19:05:26 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A210CCF9A06FC276ED47927FE2DDB5E3.psi   [5944]
O61 - LFC: 09/06/2013 - 19:07:09 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Paeonia IV - €0.01-€0.02 - EUR No Limit Hold'em.txt   [20050]
O61 - LFC: 09/06/2013 - 19:07:26 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\36A34E764A0E8E465B025A5ECF2036DD.psi   [6198]
O61 - LFC: 09/06/2013 - 19:07:26 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4CE222CAA6BDE7B5D0BA142CCE146D6C.psi   [5141]
O61 - LFC: 09/06/2013 - 19:11:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Disa V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [5942]
O61 - LFC: 09/06/2013 - 19:11:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0F76D91036240CD466723992D0089539.psi   [4837]
O61 - LFC: 09/06/2013 - 19:11:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B80D1711851AEF9AE20E920D1EA40D7F.psi   [6054]
O61 - LFC: 09/06/2013 - 19:12:06 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\9F82E2B0E7F20783E73AC4CCE8294641.psi   [4282]
O61 - LFC: 09/06/2013 - 19:12:32 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D5D9E0EB1DACAF079C8FB4827DC6B0D9.psi   [2377]
O61 - LFC: 09/06/2013 - 19:12:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\05DF898F3B7918778707F49D00A18F62.psi   [3009]
O61 - LFC: 09/06/2013 - 19:12:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\60EFE66F367C383C19CA5B96473CBCCB.psi   [4678]
O61 - LFC: 09/06/2013 - 19:13:42 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1B0E1619D70A3A0946D89231369B10BD.psi   [7036]
O61 - LFC: 09/06/2013 - 19:13:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\E1426C29BFD2C40C657EE5DB768941CE.psi   [5306]
O61 - LFC: 09/06/2013 - 19:14:01 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B4212A1F9C62712DBD839304C06E0A8C.psi   [4687]
O61 - LFC: 09/06/2013 - 19:14:07 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\03F3E156E6468C19B22921CD1B7F263D.psi   [2144]
O61 - LFC: 09/06/2013 - 19:17:43 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\9FA562785DDE8DF2C7AC78126FBA5D89.psi   [6124]
O61 - LFC: 09/06/2013 - 19:22:34 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\30DAA6A5ADA2E84A78345E11FF8AEE78.psi   [6404]
O61 - LFC: 09/06/2013 - 19:23:09 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\18DDC91DA232BCC61003641998ECA775.psi   [5835]
O61 - LFC: 09/06/2013 - 19:23:38 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Phact V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [39984]
O61 - LFC: 09/06/2013 - 19:23:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\31C867B20D713D801A46BA14FAD09496.psi   [4163]
O61 - LFC: 09/06/2013 - 19:23:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\348E10E1D75B5250BD669D26D69C1A38.psi   [5975]
O61 - LFC: 09/06/2013 - 19:23:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\EAC61E61F75D0D08BE8CE2093F0C15AE.psi   [4813]
O61 - LFC: 09/06/2013 - 19:23:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\EBF7B22A78BE497E02F951B93DF126FF.psi   [3881]
O61 - LFC: 09/06/2013 - 19:24:16 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\293C63BAE2FB0C073FC70F3769D47839.psi   [3368]
O61 - LFC: 09/06/2013 - 19:24:17 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A0D2C7B1C203C92825459F33406F0153.psi   [5042]
O61 - LFC: 09/06/2013 - 19:26:39 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Eltigen V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [45546]
O61 - LFC: 09/06/2013 - 19:27:15 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Mineura V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [49193]
O61 - LFC: 09/06/2013 - 19:27:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\7BBA42E1B0BE1AADAA7291C4733423C6.psi   [4050]
O61 - LFC: 09/06/2013 - 19:32:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\9A0B1077D1F999DF18939F0047207221.psi   [5124]
O61 - LFC: 09/06/2013 - 19:33:07 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\89C5A14A8B70162EE6BFE130BE30A4B8.psi   [5090]
O61 - LFC: 09/06/2013 - 19:34:47 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C4E898591B1F0E1F8AF5B4F91DA3D9C3.psi   [6075]
O61 - LFC: 09/06/2013 - 19:35:16 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\EFA510D0B4105CF21F603E01EC270B89.psi   [5027]
O61 - LFC: 09/06/2013 - 19:35:41 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\70C43A7738EF0F103C0C990B8ABBE179.psi   [4570]
O61 - LFC: 09/06/2013 - 19:36:07 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Ginevra IV - €0.01-€0.02 - EUR No Limit Hold'em.txt   [69259]
O61 - LFC: 09/06/2013 - 19:36:31 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Aehlita III - €0.01-€0.02 - EUR No Limit Hold'em.txt   [15937]
O61 - LFC: 09/06/2013 - 19:36:34 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Boreas III - €0.01-€0.02 - EUR No Limit Hold'em.txt   [12880]
O61 - LFC: 09/06/2013 - 19:36:46 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Bathseba VI - €0.01-€0.02 - EUR No Limit Hold'em.txt   [84662]
O61 - LFC: 09/06/2013 - 19:36:49 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Egeria IV - €0.01-€0.02 - EUR No Limit Hold'em.txt   [62393]
O61 - LFC: 09/06/2013 - 19:38:17 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Gienah IV - €0.01-€0.02 - EUR No Limit Hold'em.txt   [30837]
O61 - LFC: 09/06/2013 - 19:38:58 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Aspasia VI - €0.01-€0.02 - EUR No Limit Hold'em.txt   [81521]
O61 - LFC: 09/06/2013 - 19:39:03 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Elpis IV - €0.01-€0.02 - EUR No Limit Hold'em.txt   [86572]
O61 - LFC: 09/06/2013 - 19:41:47 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\50AFC8F9C1E2C2D0DCE931242A339890.psi   [6725]
O61 - LFC: 09/06/2013 - 19:41:47 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\5C054E8D5F1C8EA27728416EC054B354.psi   [4040]
O61 - LFC: 09/06/2013 - 19:41:47 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\7502B701728A79A1F5DB187412B03AA1.psi   [4379]
O61 - LFC: 09/06/2013 - 19:41:47 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\E1375E13BF0F1381C567ACB038C36B91.psi   [4502]
O61 - LFC: 09/06/2013 - 19:41:48 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\20E75DA5D5D338C334A2209AD9860B23.psi   [4514]
O61 - LFC: 09/06/2013 - 19:41:48 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D700EC372BB156C980188BF246DEFF6A.psi   [5906]
O61 - LFC: 09/06/2013 - 19:41:50 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\3CA7999E98ADA7478D023910838538A6.psi   [4955]
O61 - LFC: 09/06/2013 - 19:42:13 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\macromedia.com\support\flashplayer\sys\#lesanges.nrj12.fr\settings.sol   [87]
O61 - LFC: 09/06/2013 - 19:47:21 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\913A9CA6E5F20C7B888600F267ACD346.psi   [5983]
O61 - LFC: 09/06/2013 - 19:47:21 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\98BF1BE02A30ADB6220FA0B4981BA763.psi   [5448]
O61 - LFC: 09/06/2013 - 19:47:21 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\E54B4E5A8E272AEA7781A1AC4A07C841.psi   [4823]
O61 - LFC: 09/06/2013 - 19:47:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\23EE07276962F19F9A0249C1EAFBE8F4.psi   [6458]
O61 - LFC: 09/06/2013 - 19:49:38 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\lesanges.nrj12.fr\#com.junkbyte\Console\UserData.sol   [105]
O61 - LFC: 09/06/2013 - 19:49:38 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\lesanges.nrj12.fr\analytics.sol   [419]
O61 - LFC: 09/06/2013 - 19:49:38 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\lesanges.nrj12.fr\swf\player_video\playerNR12.swf\eNRJPlayer_site_1.sol   [61]
O61 - LFC: 09/06/2013 - 19:49:38 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\macromedia.com\support\flashplayer\sys\#cdn.stickyadstv.com\settings.sol   [89]
O61 - LFC: 09/06/2013 - 19:52:30 ---A- C:\Users\Nicolas\AppData\Local\dd_vcredistMSI7E81.txt   [361002]
O61 - LFC: 09/06/2013 - 19:52:32 ---A- C:\Users\Nicolas\AppData\Local\dd_vcredistUI7E81.txt   [11468]
O61 - LFC: 09/06/2013 - 19:54:02 ---A- C:\Users\Nicolas\AppData\Roaming\OpenOffice.org\3\user\store\.templdir.cache   [11721]
O61 - LFC: 09/06/2013 - 19:57:00 ---A- C:\Users\Nicolas\AppData\Roaming\OpenOffice.org\3\user\registrymodifications.xcu   [53420]
O61 - LFC: 09/06/2013 - 19:57:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744752366 No Limit Hold'em €0.27 + €0.03.txt   [29977]
O61 - LFC: 09/06/2013 - 19:57:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744752366 No Limit Hold'em €0.27+€0.03.txt   [546]
O61 - LFC: 09/06/2013 - 19:59:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4B40E0754B9CF36B223E3279781383A0.psi   [4586]
O61 - LFC: 09/06/2013 - 19:59:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\22DC59FAA8F3FA88D1EA88EA578B9E96.psi   [4239]
O61 - LFC: 09/06/2013 - 19:59:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\F42A125381873E4854F8AE55229C0CDE.psi   [5561]
O61 - LFC: 09/06/2013 - 19:59:30 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1543FF6E5F3DF1E762DBA9012050B61E.psi   [4586]
O61 - LFC: 09/06/2013 - 19:59:35 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\2B7D2E4CE27E0D234F49449851CCC6A0.psi   [4696]
O61 - LFC: 09/06/2013 - 20:03:55 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\10\103c74347771357b8eee22fb00a3db0c6ba46a09.file   [2545]
O61 - LFC: 09/06/2013 - 20:03:56 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\2b\2b208b33ce2145f39504dcc82e5da1e4d29ba5ce.file   [16438]
O61 - LFC: 09/06/2013 - 20:04:43 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\www.franceinter.fr\##4B8D84F2E6AFB5AB\00000001.sol   [155]
O61 - LFC: 09/06/2013 - 20:08:31 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1434130A206C652C2E1B7834329A3847.psi   [5345]
O61 - LFC: 09/06/2013 - 20:08:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\103CF19A1F0893C622DB0987C4FBA9EE.psi   [7021]
O61 - LFC: 09/06/2013 - 20:08:34 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A64D315C23B92CDB7CBFF79EFEFFF122.psi   [5817]
O61 - LFC: 09/06/2013 - 20:08:34 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C12414F73A4DCFD3C76754538E8EDF67.psi   [6661]
O61 - LFC: 09/06/2013 - 20:08:36 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\18E799B0C658D65E6AAA9A6E7C169D6C.psi   [5967]
O61 - LFC: 09/06/2013 - 20:10:41 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744740252 No Limit Hold'em €0.27 + €0.03.txt   [62192]
O61 - LFC: 09/06/2013 - 20:10:41 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744740252 No Limit Hold'em €0.27+€0.03.txt   [589]
O61 - LFC: 09/06/2013 - 20:12:59 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\www.meetic.fr\messenger\flash\connector.swf\saveTempMv3.sol   [42]
O61 - LFC: 09/06/2013 - 20:13:02 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\AAF9B7884209EC9B8080086BC97FA0E0.psi   [5628]
O61 - LFC: 09/06/2013 - 20:13:02 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CBA2BB2C0C8B5C232F5F06610E03D3D7.psi   [2425]
O61 - LFC: 09/06/2013 - 20:13:03 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CE65F0F4C01B7EBD8FD585FB15533B27.psi   [5497]
O61 - LFC: 09/06/2013 - 20:13:53 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\www.meetic.fr\messenger\flash\event.swf\ConnectorEvent_v1.sol   [2236]
O61 - LFC: 09/06/2013 - 20:13:56 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.meetic.fr_0.localstorage   [3072]
O61 - LFC: 09/06/2013 - 20:13:56 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.meetic.fr_0.localstorage-journal   [3608]
O61 - LFC: 09/06/2013 - 20:14:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\86477B1F301E0D02A4921A2DE0062B93.psi   [5312]
O61 - LFC: 09/06/2013 - 20:14:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0E52B7F181C42173A7856FB8A78FA264.psi   [4808]
O61 - LFC: 09/06/2013 - 20:14:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CFA7A67BC0AED021BB78BB4992A9B6C9.psi   [5199]
O61 - LFC: 09/06/2013 - 20:14:54 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\07EC30747C85AE077567329396DBCEDD.psi   [5890]
O61 - LFC: 09/06/2013 - 20:17:32 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A912B23115A547DA42EF4FDB993B38CD.psi   [4864]
O61 - LFC: 09/06/2013 - 20:17:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C4B6BBD7BB850641C4DBB2F536B4E8BA.psi   [4818]
O61 - LFC: 09/06/2013 - 20:19:59 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744754010 No Limit Hold'em €0.27+€0.03.txt   [591]
O61 - LFC: 09/06/2013 - 20:20:00 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744754010 No Limit Hold'em €0.27 + €0.03.txt   [42286]
O61 - LFC: 09/06/2013 - 20:20:18 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744760974 No Limit Hold'em €0.91 + €0.09.txt   [20469]
O61 - LFC: 09/06/2013 - 20:20:18 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744760974 No Limit Hold'em €0.91+€0.09.txt   [613]
O61 - LFC: 09/06/2013 - 20:25:55 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744766180 No Limit Hold'em €0.27+€0.03.txt   [587]
O61 - LFC: 09/06/2013 - 20:25:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744766180 No Limit Hold'em €0.27 + €0.03.txt   [16564]
O61 - LFC: 09/06/2013 - 20:27:20 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B2D9F7A66490D417BBB76D94A729C89D.psi   [5290]
O61 - LFC: 09/06/2013 - 20:27:21 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\97E404E767FAD4CDD55264BA80BF194D.psi   [2855]
O61 - LFC: 09/06/2013 - 20:27:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\07CDA04182FE537DC9C67CDC32D622A9.psi   [4410]
O61 - LFC: 09/06/2013 - 20:30:49 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744764175 No Limit Hold'em €0.27+€0.03.txt   [569]
O61 - LFC: 09/06/2013 - 20:30:50 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744764175 No Limit Hold'em €0.27 + €0.03.txt   [43503]
O61 - LFC: 09/06/2013 - 20:31:25 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\58B056C0CFEFFE8110ADAEE69E2F31F7.psi   [5903]
O61 - LFC: 09/06/2013 - 20:31:25 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\5C5C2D24C7A4BA8047233200B4CEB10F.psi   [5122]
O61 - LFC: 09/06/2013 - 20:31:25 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\BCC915A24553E30024DEE2737585A975.psi   [4852]
O61 - LFC: 09/06/2013 - 20:31:26 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4C6D01C56C92DB11AC4219D91DE9D539.psi   [5666]
O61 - LFC: 09/06/2013 - 20:31:28 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\710DA696007D3709DB9E6A68F02F24BC.psi   [6296]
O61 - LFC: 09/06/2013 - 20:34:11 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\52F17865171F0C38A0E026F4BD198625.psi   [4343]
O61 - LFC: 09/06/2013 - 20:34:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1F44372D1C417F4C4FBD27D1228A79C9.psi   [5503]
O61 - LFC: 09/06/2013 - 20:34:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A5B68CB9F71B01A048C7087377DCC7AB.psi   [6344]
O61 - LFC: 09/06/2013 - 20:34:34 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\3BAE6E5F5F90582BBA75A23D243F4FB3.psi   [5840]
O61 - LFC: 09/06/2013 - 20:38:04 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744768919 No Limit Hold'em €0.27 + €0.03.txt   [27596]
O61 - LFC: 09/06/2013 - 20:38:04 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744768919 No Limit Hold'em €0.27+€0.03.txt   [593]
O61 - LFC: 09/06/2013 - 20:41:10 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\2EE005082CB08B588475A12CF2B6D3B7.psi   [3822]
O61 - LFC: 09/06/2013 - 20:41:11 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\BF0109E3AA102C657FD1FB8BC53FFBB3.psi   [5636]
O61 - LFC: 09/06/2013 - 20:41:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\17A95D4B82A3AAC0461D4135EEE0E491.psi   [4144]
O61 - LFC: 09/06/2013 - 20:44:14 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744762036 No Limit Hold'em €0.27+€0.03.txt   [608]
O61 - LFC: 09/06/2013 - 20:44:15 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744762036 No Limit Hold'em €0.27 + €0.03.txt   [81504]
O61 - LFC: 09/06/2013 - 20:45:28 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744768108 No Limit Hold'em €0.91+€0.09.txt   [587]
O61 - LFC: 09/06/2013 - 20:45:29 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744768108 No Limit Hold'em €0.91 + €0.09.txt   [35907]
O61 - LFC: 09/06/2013 - 20:49:11 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744774387 No Limit Hold'em €0.27 + €0.03.txt   [23436]
O61 - LFC: 09/06/2013 - 20:49:11 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744774387 No Limit Hold'em €0.27+€0.03.txt   [572]
O61 - LFC: 09/06/2013 - 20:50:38 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\8E45AB1FD900E7CC4BA3B0B8111F8B59.psi   [5364]
O61 - LFC: 09/06/2013 - 20:50:39 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\5D757CDD6A91626CE434E6383AB9A5F1.psi   [5369]
O61 - LFC: 09/06/2013 - 20:50:39 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\918FF7E59D757B27DD475B998160CA62.psi   [4285]
O61 - LFC: 09/06/2013 - 20:50:46 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\918B58CBF68D807B0F37E4404465F1F3.psi   [5177]
O61 - LFC: 09/06/2013 - 21:02:59 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744780517 No Limit Hold'em €0.27+€0.03.txt   [582]
O61 - LFC: 09/06/2013 - 21:03:00 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744780517 No Limit Hold'em €0.27 + €0.03.txt   [33337]
O61 - LFC: 09/06/2013 - 21:04:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 T744770090 No Limit Hold'em €0.27 + €0.03.txt   [70758]
O61 - LFC: 09/06/2013 - 21:04:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\TournSummary\chancy51\TS20130609 T744770090 No Limit Hold'em €0.27+€0.03.txt   [581]
O61 - LFC: 09/06/2013 - 21:14:41 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D02C57CB3E756B21021C9A1703129FDC.psi   [4752]
O61 - LFC: 09/06/2013 - 21:15:03 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\952641AA3F4EF2EB9B958C1618C514EF.psi   [4506]
O61 - LFC: 09/06/2013 - 21:15:17 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\75032D441606B3A2A3A3F089982745AE.psi   [5453]
O61 - LFC: 09/06/2013 - 21:15:17 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FF571DF2DB37B9D75143926707CD9C6B.psi   [5086]
O61 - LFC: 09/06/2013 - 21:15:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\098C81501C2796B4F2FB5A24E5809020.psi   [2198]
O61 - LFC: 09/06/2013 - 21:15:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\2A48EB52F9F4C8E8CD84122241865139.psi   [4804]
O61 - LFC: 09/06/2013 - 21:15:40 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\2B20F77E5B01F243834C8B3F8F3F641E.psi   [3467]
O61 - LFC: 09/06/2013 - 21:15:40 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CA1BF82FA12268A934EF4F098C2E6DE9.psi   [4803]
O61 - LFC: 09/06/2013 - 21:15:40 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D84233DF90321A94DB2E9F4316387756.psi   [2222]
O61 - LFC: 09/06/2013 - 21:15:46 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\03D44D51D444372AF39AA832AF420D8E.psi   [5332]
O61 - LFC: 09/06/2013 - 21:15:46 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CB99FE3CB5601DF89E9AEF7E8375EADB.psi   [6399]
O61 - LFC: 09/06/2013 - 21:16:01 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0713F328712108921E454C83E634325D.psi   [3886]
O61 - LFC: 09/06/2013 - 21:16:01 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A1A09DE90F239149D24126A0B4622A36.psi   [5276]
O61 - LFC: 09/06/2013 - 21:16:01 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\AFFE6D71BB3BDB6B53BC1CFB6027021D.psi   [5150]
O61 - LFC: 09/06/2013 - 21:17:16 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\3AAA3CA7C2B75F5111BAF43215F75D63.psi   [5367]
O61 - LFC: 09/06/2013 - 21:17:16 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\5B3B00DAF5924523BFEF622D262A9B55.psi   [5945]
O61 - LFC: 09/06/2013 - 21:17:16 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D018249DE2C76F6AF80291709C6C30E2.psi   [3354]
O61 - LFC: 09/06/2013 - 21:17:16 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FE8F7C5CB495FA87A4D50E0A3B5676E1.psi   [4369]
O61 - LFC: 09/06/2013 - 21:17:21 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\69BB9BF5F1F39D39DFBC156A49C1108E.psi   [4768]
O61 - LFC: 09/06/2013 - 21:17:23 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\6EB0333A61D2A183C7B8C8ACCB39D0F0.psi   [4602]
O61 - LFC: 09/06/2013 - 21:17:34 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D176A084633C919FDFB0A7FE87D8916F.psi   [5797]
O61 - LFC: 09/06/2013 - 21:18:16 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\02A7C74711E2E31C0E6A1E35C1A8BFFF.psi   [5322]
O61 - LFC: 09/06/2013 - 21:18:16 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\3C99059D0B7C15BA0B8791A0E30B12AC.psi   [5164]
O61 - LFC: 09/06/2013 - 21:19:15 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\2E5FF3C34FA6D4D7DAED8CE8CC512B22.psi   [4328]
O61 - LFC: 09/06/2013 - 21:19:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\63F3C235B9A435B873888CA50D1880CA.psi   [5587]
O61 - LFC: 09/06/2013 - 21:19:56 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\63F7DA1580AD023F00A5AB249765D040.psi   [5236]
O61 - LFC: 09/06/2013 - 21:21:30 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\14A8AD2A6BC406191DD2423DCC6ECF5A.psi   [4483]
O61 - LFC: 09/06/2013 - 21:21:30 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B7698AA7FC353ECBEECF57F65310C0FD.psi   [5301]
O61 - LFC: 09/06/2013 - 21:22:39 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A9286295E5318C0364BDE7AF6FBA6D6E.psi   [6576]
O61 - LFC: 09/06/2013 - 21:23:00 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\9A75B11FD37B5273181C9363440F3A91.psi   [5065]
O61 - LFC: 09/06/2013 - 21:25:00 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\348E22911F2D6C5B4761804091C3107D.psi   [6372]
O61 - LFC: 09/06/2013 - 21:25:07 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\51BA83951C1718C6F25861E2BBA02DD9.psi   [4476]
O61 - LFC: 09/06/2013 - 21:25:40 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C49DD4F13A695ED69136D3AD8EF99A2F.psi   [5411]
O61 - LFC: 09/06/2013 - 21:27:30 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\EFAB8356C2849AF72DE9A7BEFC07518D.psi   [9268]
O61 - LFC: 09/06/2013 - 21:29:37 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\AEE768F32712E043371959BFDB809B46.psi   [3580]
O61 - LFC: 09/06/2013 - 21:32:18 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B546211C9B6A68828FBB2331A60556FA.psi   [6704]
O61 - LFC: 09/06/2013 - 21:33:04 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\B54E00923B224631C59D83EAFE0286BC.psi   [4771]
O61 - LFC: 09/06/2013 - 21:38:59 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\5F003ADEE6355E14603602A03C7B2002.psi   [4156]
O61 - LFC: 09/06/2013 - 21:40:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\5374402017FA47FE489E7310F2E1C132.psi   [4445]
O61 - LFC: 09/06/2013 - 21:41:22 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0304C14A1727ED9CF52C667E9A09DD1B.psi   [4960]
O61 - LFC: 09/06/2013 - 21:43:48 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CBA25ABA69752CE3D7361D74CB2B42C4.psi   [6381]
O61 - LFC: 09/06/2013 - 21:45:01 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Gerda V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [47603]
O61 - LFC: 09/06/2013 - 21:45:09 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0135C12E43ED01F197EE9F2041483460.psi   [3916]
O61 - LFC: 09/06/2013 - 21:45:09 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\DA493F0CDFCFB6AC54CA72440952B021.psi   [4958]
O61 - LFC: 09/06/2013 - 21:48:13 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Leonid VII - €0.01-€0.02 - EUR No Limit Hold'em.txt   [59448]
O61 - LFC: 09/06/2013 - 21:48:43 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Lorbach V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [55499]
O61 - LFC: 09/06/2013 - 21:48:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Tito V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [157970]
O61 - LFC: 09/06/2013 - 21:49:36 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Azelfafage IV - €0.01-€0.02 - EUR No Limit Hold'em.txt   [55516]
O61 - LFC: 09/06/2013 - 21:50:31 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Aladfar II - €0.01-€0.02 - EUR No Limit Hold'em.txt   [101188]
O61 - LFC: 09/06/2013 - 21:51:19 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Betria II - €0.01-€0.02 - EUR No Limit Hold'em.txt   [65260]
O61 - LFC: 09/06/2013 - 21:51:25 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Antigone V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [105625]
O61 - LFC: 09/06/2013 - 21:51:31 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Euanthe VII - €0.01-€0.02 - EUR No Limit Hold'em.txt   [50189]
O61 - LFC: 09/06/2013 - 22:23:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_sso.francetv.fr_0.localstorage   [3072]
O61 - LFC: 09/06/2013 - 22:23:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_sso.francetv.fr_0.localstorage-journal   [3608]
O61 - LFC: 09/06/2013 - 22:35:42 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\macromedia.com\support\flashplayer\sys\#s.mcstatic.com\settings.sol   [84]
O61 - LFC: 09/06/2013 - 22:35:43 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\s.mcstatic.com\vpPrefs.sol   [40]
O61 - LFC: 09/06/2013 - 22:36:34 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\macromedia.com\support\flashplayer\sys\#cdn.prochan.com\settings.sol   [85]
O61 - LFC: 09/06/2013 - 22:38:36 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\cdn.prochan.com\com.jeroenwijering.sol   [54]
O61 - LFC: 09/06/2013 - 22:41:39 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\macromedia.com\support\flashplayer\sys\#news2.onlinenigeria.com\settings.sol   [93]
O61 - LFC: 09/06/2013 - 22:41:39 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\macromedia.com\support\flashplayer\sys\settings.sol   [3088]
O61 - LFC: 09/06/2013 - 22:41:42 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_disqus.com_0.localstorage   [3072]
O61 - LFC: 09/06/2013 - 22:41:42 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_disqus.com_0.localstorage-journal   [3608]
O61 - LFC: 09/06/2013 - 22:43:51 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000006   [1048576]
O61 - LFC: 09/06/2013 - 22:43:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000007   [1048576]
O61 - LFC: 09/06/2013 - 22:44:13 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000008   [569668]
O61 - LFC: 09/06/2013 - 22:44:18 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.suntimes.com_0.localstorage   [3072]
O61 - LFC: 09/06/2013 - 22:44:18 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.suntimes.com_0.localstorage-journal   [3608]
O61 - LFC: 09/06/2013 - 22:54:36 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\www.player.previewnetworks.com\analytics.sol   [373]
O61 - LFC: 09/06/2013 - 22:59:28 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\PokerStars.log.1   [7606812]
O61 - LFC: 09/06/2013 - 23:44:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\35F0F4F4E6E184A14E0D387DCFCDAF51.psi   [5793]
O61 - LFC: 09/06/2013 - 23:44:52 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\655146C67541A79C2CDA0D47F3A3CAF2.psi   [5560]
O61 - LFC: 09/06/2013 - 23:44:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\515224B43D302059B0E0432E87BE3744.psi   [5660]
O61 - LFC: 09/06/2013 - 23:44:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\E784FD36437292F5056A405767CD79B4.psi   [4740]
O61 - LFC: 09/06/2013 - 23:45:00 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\0C471E2B334B10065985424E8EA2BB77.psi   [5833]
O61 - LFC: 09/06/2013 - 23:45:00 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\87190B584BE6518BED84956F94E59DDB.psi   [4645]
O61 - LFC: 09/06/2013 - 23:45:06 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\71CF558EF4A60F7A46FE20168E0C1041.psi   [4512]
O61 - LFC: 09/06/2013 - 23:45:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1255A596DA31881E552CD308589C8945.psi   [4107]
O61 - LFC: 09/06/2013 - 23:45:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\247823013B53C570BC961DAC7C3E83EC.psi   [5936]
O61 - LFC: 09/06/2013 - 23:45:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\472A827B32F5A07DBFD662326D20BF71.psi   [4773]
O61 - LFC: 09/06/2013 - 23:45:12 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\56D391FE105CED77F7AA47370B1DC704.psi   [5350]
O61 - LFC: 09/06/2013 - 23:45:19 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\88E84FD713DD73E8C1C116C9D8B8E823.psi   [5315]
O61 - LFC: 09/06/2013 - 23:45:19 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C3FE8617FAB3A71F7CE20ED2DC9757AB.psi   [4000]
O61 - LFC: 09/06/2013 - 23:45:25 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\41C9211B280A6ADDB98BD57C5CC0A7E5.psi   [5786]
O61 - LFC: 09/06/2013 - 23:45:38 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4A9A24053187FECF265747B419C37E98.psi   [5464]
O61 - LFC: 09/06/2013 - 23:45:38 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\9905B8FA86D01E2FF7188C08D94408C2.psi   [6015]
O61 - LFC: 09/06/2013 - 23:45:49 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\6B87EBAED27AEE36F0DEE06E2CDEB9B4.psi   [5404]
O61 - LFC: 09/06/2013 - 23:45:49 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FC35F02E9184FAD88F61A33E8CF673F1.psi   [3367]
O61 - LFC: 09/06/2013 - 23:48:24 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\72CCD12FC0FB9673A8D17234B25B0C03.psi   [5585]
O61 - LFC: 09/06/2013 - 23:48:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\AC75DA2E853B0993BDEF008482A6D596.psi   [5270]
O61 - LFC: 09/06/2013 - 23:48:58 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\6387A6427FC377A2F5755A82E5846B5B.psi   [6210]
O61 - LFC: 09/06/2013 - 23:48:58 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\66E057482BA13D1A06CD4F316EE7AF9A.psi   [5119]
O61 - LFC: 09/06/2013 - 23:48:58 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\F9C1510C58777AA335B61936EBEE7167.psi   [5436]
O61 - LFC: 09/06/2013 - 23:49:35 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1391A3492182422CF132D34BFC3F9013.psi   [5412]
O61 - LFC: 09/06/2013 - 23:49:35 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\D2EE3B07AD887E3E1A77539C4147E22E.psi   [6617]
O61 - LFC: 09/06/2013 - 23:49:35 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\FCA1206DA54A1E9AC30D3166FA746A80.psi   [5021]
O61 - LFC: 09/06/2013 - 23:50:01 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\AF4A5C692F3EF7E2E9FFBE2F5ECC2149.psi   [4251]
O61 - LFC: 09/06/2013 - 23:50:42 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4FE925AC97A95BD6F33E115D49EF4302.psi   [4777]
O61 - LFC: 09/06/2013 - 23:51:20 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\4AFF2ED83BB0EC88E96C7F1571666399.psi   [3569]
O61 - LFC: 09/06/2013 - 23:51:24 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\3DE5D1D1B28C58D9E4CF3C33FAB15518.psi   [5301]
O61 - LFC: 09/06/2013 - 23:51:24 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\59D3535DB734C6D75FF8F7C8414630B6.psi   [5678]
O61 - LFC: 09/06/2013 - 23:52:20 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\CD814EFBFF9FB79D42613826CA296C00.psi   [5931]
O61 - LFC: 09/06/2013 - 23:52:58 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\1C65308862F6E94CAB0886F75A8A4273.psi   [6264]
O61 - LFC: 09/06/2013 - 23:56:11 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\C9943460A25092372C1D31541E00443F.psi   [5348]
O61 - LFC: 09/06/2013 - 23:59:06 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\A80AF0773C2835C65FDA9711F8BE60E0.psi   [6393]
O61 - LFC: 09/06/2013 - 23:59:44 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\658F458BF00A6A59087CAC1B5C38EA17.psi   [4385]
O61 - LFC: 10/06/2013 - 00:00:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\ImgCache\F6662584F362E7DB8CE1DF21B7A8682F.psi   [6673]
O61 - LFC: 10/06/2013 - 00:04:17 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Liberatrix V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [42653]
O61 - LFC: 10/06/2013 - 00:04:25 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Schorria II - €0.01-€0.02 - EUR No Limit Hold'em.txt   [54683]
O61 - LFC: 10/06/2013 - 00:04:51 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Semirot IV - €0.01-€0.02 - EUR No Limit Hold'em.txt   [26008]
O61 - LFC: 10/06/2013 - 00:04:51 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Suevia VII - €0.01-€0.02 - EUR No Limit Hold'em.txt   [75767]
O61 - LFC: 10/06/2013 - 00:04:54 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Theemin II - €0.01-€0.02 - EUR No Limit Hold'em.txt   [87100]
O61 - LFC: 10/06/2013 - 00:05:01 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Kallisto V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [50727]
O61 - LFC: 10/06/2013 - 00:05:07 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Lexell VI - €0.01-€0.02 - EUR No Limit Hold'em.txt   [54496]
O61 - LFC: 10/06/2013 - 00:05:08 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Natascha VI - €0.01-€0.02 - EUR No Limit Hold'em.txt   [36477]
O61 - LFC: 10/06/2013 - 00:05:14 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Gunlod VIII - €0.01-€0.02 - EUR No Limit Hold'em.txt   [66754]
O61 - LFC: 10/06/2013 - 00:05:15 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Europa IV - €0.01-€0.02 - EUR No Limit Hold'em.txt   [82103]
O61 - LFC: 10/06/2013 - 00:05:50 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Keeler VI - €0.01-€0.02 - EUR No Limit Hold'em.txt   [77864]
O61 - LFC: 10/06/2013 - 00:05:54 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Pawlowia V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [30877]
O61 - LFC: 10/06/2013 - 00:05:57 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Tiflis VI - €0.01-€0.02 - EUR No Limit Hold'em.txt   [21911]
O61 - LFC: 10/06/2013 - 00:07:53 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Neufang VII - €0.01-€0.02 - EUR No Limit Hold'em.txt   [23686]
O61 - LFC: 10/06/2013 - 00:08:19 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\HandHistory\chancy51\HH20130609 Aletheia V - €0.01-€0.02 - EUR No Limit Hold'em.txt   [110855]
O61 - LFC: 10/06/2013 - 00:19:56 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metacafe.com_0.localstorage   [3072]
O61 - LFC: 10/06/2013 - 00:19:56 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metacafe.com_0.localstorage-journal   [3608]
O61 - LFC: 10/06/2013 - 00:29:36 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak   [38241]
O61 - LFC: 10/06/2013 - 01:19:53 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\Local Storage\sp_de36154dc0b2e34a59638335ef17051c8b9ea7a4.feed_0.localstorage   [133120]
O61 - LFC: 10/06/2013 - 01:19:53 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Browser\Local Storage\sp_de36154dc0b2e34a59638335ef17051c8b9ea7a4.feed_0.localstorage-journal   [16384]
O61 - LFC: 10/06/2013 - 11:00:14 ---A- C:\Users\Nicolas\AppData\Local\Temp\pool.bin   [256]
O61 - LFC: 10/06/2013 - 11:00:47 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\player.videojuicer.com\analytics.sol   [476]
O61 - LFC: 10/06/2013 - 11:00:48 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Desktop\Update.xml   [171697]
O61 - LFC: 10/06/2013 - 11:01:16 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\www.ledjamradio.com\ledjamradiov4\ledjamradio.swf\cookieLevel.sol   [74]
O61 - LFC: 10/06/2013 - 11:01:31 ---A- C:\Users\Nicolas\Documents\Soulseek Chat Logs\Private\tmarincek.txt   [154]   =>P2P.SoulSeek
O61 - LFC: 10/06/2013 - 11:01:34 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Desktop\DeviceData\DeviceCharacteristics.xml   [110208]
O61 - LFC: 10/06/2013 - 11:02:07 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Data\WorkingProfiles.sav   [618]
O61 - LFC: 10/06/2013 - 11:02:13 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\iAnywhereConfig\23276245\Settings.config.backup   [1537]
O61 - LFC: 10/06/2013 - 11:02:18 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Media Sync\23276245.settings   [47]
O61 - LFC: 10/06/2013 - 11:02:26 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Data\XCPCDatabase.add   [39404]
O61 - LFC: 10/06/2013 - 11:04:47 ---A- C:\Users\Nicolas\Documents\Soulseek\09 I'm a Man.mp3   [11025210]   =>P2P.SoulSeek
O61 - LFC: 10/06/2013 - 11:05:08 ---A- C:\Users\Nicolas\Documents\Soulseek\07 - loving you is sweeter than ever.mp3   [6664149]   =>P2P.SoulSeek
O61 - LFC: 10/06/2013 - 11:11:50 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Media Sync\PictureSelectionInfo.bbms   [17]
O61 - LFC: 10/06/2013 - 11:11:53 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Data\MasterProfiles.xml   [618]
O61 - LFC: 10/06/2013 - 11:11:53 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Data\TransInfo.adt   [30525]
O61 - LFC: 10/06/2013 - 11:11:53 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\crfsinfo.dat   [18]
O61 - LFC: 10/06/2013 - 11:11:53 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\iAnywhereConfig\23276245\Settings.config   [1537]
O61 - LFC: 10/06/2013 - 11:11:53 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Desktop\Devices\23276245\DeviceCache.xml   [924]
O61 - LFC: 10/06/2013 - 11:11:53 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Desktop\Settings.config.backup   [9932]
O61 - LFC: 10/06/2013 - 11:11:54 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Data\App.adt   [18738]
O61 - LFC: 10/06/2013 - 11:11:54 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Data\Field.adt   [2000]
O61 - LFC: 10/06/2013 - 11:11:54 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Data\SyncConfig.xml   [2122]
O61 - LFC: 10/06/2013 - 11:11:54 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Data\SyncStatus.adt   [2400]
O61 - LFC: 10/06/2013 - 11:11:54 ---A- C:\Users\Nicolas\AppData\Local\Research In Motion\BlackBerry Desktop\XCPCSync.OEM\SyncSDK.209.601\Log\TmpLog.html   [506]
O61 - LFC: 10/06/2013 - 11:11:55 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Desktop\Settings.config   [9932]
O61 - LFC: 10/06/2013 - 11:11:56 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Media Sync\64F5D4E100000004_PictureSession.dat   [66]
O61 - LFC: 10/06/2013 - 11:11:56 ---A- C:\Users\Nicolas\AppData\Roaming\Research In Motion\BlackBerry Media Sync\64F5D4E100000007VideoInformation.vdat   [17]
O61 - LFC: 10/06/2013 - 11:15:20 ---A- C:\Users\Nicolas\Documents\Soulseek\04-mr_oizo-cut_dick__original_mix.mp3   [6848512]   =>P2P.SoulSeek
O61 - LFC: 10/06/2013 - 11:15:30 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-05   [3031040]
O61 - LFC: 10/06/2013 - 11:19:51 ---A- C:\Users\Nicolas\Documents\Soulseek\01 - Harlem.mp3   [8237820]   =>P2P.SoulSeek
O61 - LFC: 10/06/2013 - 11:21:00 ---A- C:\Users\Nicolas\Documents\Soulseek\Robin Thicke feat. T.I. + Pharrell - Blurred Lines.mp3   [10588505]   =>P2P.SoulSeek
O61 - LFC: 10/06/2013 - 11:21:59 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\015783.sst   [287]
O61 - LFC: 10/06/2013 - 11:22:01 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old   [712]
O61 - LFC: 10/06/2013 - 11:23:43 ---A- C:\Users\Nicolas\Documents\Soulseek\dj falcon and thomas bangalter - a1 so much love to give.mp3   [25153828]   =>P2P.SoulSeek
O61 - LFC: 10/06/2013 - 11:29:01 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\local-files.bnk   [101]
O61 - LFC: 10/06/2013 - 11:29:01 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\watch-sources.bnk   [295]
O61 - LFC: 10/06/2013 - 11:29:48 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Top Sites   [786432]
O61 - LFC: 10/06/2013 - 11:29:48 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal   [16384]
O61 - LFC: 10/06/2013 - 11:30:00 ---A- C:\Users\Nicolas\AppData\Roaming\uTorrent\settings.dat.old   [160564]   =>P2P.µTorrent
O61 - LFC: 10/06/2013 - 11:44:21 ---A- C:\Users\Nicolas\Downloads\AdwCleaner.exe   [648201]
O61 - LFC: 10/06/2013 - 11:48:11 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage   [3072]
O61 - LFC: 10/06/2013 - 11:48:11 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage-journal   [3608]
O61 - LFC: 10/06/2013 - 11:48:15 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\prefs   [1028]
O61 - LFC: 10/06/2013 - 11:50:07 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage   [49152]
O61 - LFC: 10/06/2013 - 11:50:07 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal   [16384]
O61 - LFC: 10/06/2013 - 11:53:42 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dub110.mail.live.com_0.localstorage   [3072]
O61 - LFC: 10/06/2013 - 11:53:42 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dub110.mail.live.com_0.localstorage-journal   [3608]
O61 - LFC: 10/06/2013 - 11:57:10 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\watchdog.bnk   [828]
O61 - LFC: 10/06/2013 - 11:57:44 ---A- C:\Users\Nicolas\AppData\Local\Temp\wmplog00.sqm   [5214]
O61 - LFC: 10/06/2013 - 11:59:23 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Last Tabs   [777099]
O61 - LFC: 10/06/2013 - 11:59:23 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_secure.shared.live.com_0.localstorage   [5120]
O61 - LFC: 10/06/2013 - 11:59:23 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_secure.shared.live.com_0.localstorage-journal   [5672]
O61 - LFC: 10/06/2013 - 11:59:24 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old   [154]
O61 - LFC: 10/06/2013 - 11:59:24 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old   [277]
O61 - LFC: 10/06/2013 - 11:59:24 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Last Session   [253586]
O61 - LFC: 10/06/2013 - 11:59:24 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_blogs.lesinrocks.com_0.localstorage   [3072]
O61 - LFC: 10/06/2013 - 11:59:24 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_blogs.lesinrocks.com_0.localstorage-journal   [3608]
O61 - LFC: 10/06/2013 - 11:59:24 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_0   [45056]
O61 - LFC: 10/06/2013 - 11:59:24 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_1   [270336]
O61 - LFC: 10/06/2013 - 11:59:24 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Visited Links   [131072]
O61 - LFC: 10/06/2013 - 11:59:54 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT   [16]
O61 - LFC: 10/06/2013 - 11:59:54 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-001515   [618]
O61 - LFC: 10/06/2013 - 11:59:55 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Custom Dictionary.txt   [82]
O61 - LFC: 10/06/2013 - 11:59:55 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Custom Dictionary.txt.backup   [64]
O61 - LFC: 10/06/2013 - 11:59:55 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache   [226744]
O61 - LFC: 10/06/2013 - 11:59:55 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Login Data   [26624]
O61 - LFC: 10/06/2013 - 11:59:55 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal   [8736]
O61 - LFC: 10/06/2013 - 11:59:56 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\015785.sst   [2205950]
O61 - LFC: 10/06/2013 - 11:59:56 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT   [16]
O61 - LFC: 10/06/2013 - 11:59:56 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-015784   [169]
O61 - LFC: 10/06/2013 - 11:59:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Bookmarks   [38241]
O61 - LFC: 10/06/2013 - 11:59:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT   [16]
O61 - LFC: 10/06/2013 - 11:59:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-008005   [569]
O61 - LFC: 10/06/2013 - 11:59:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage   [3072]
O61 - LFC: 10/06/2013 - 11:59:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage-journal   [512]
O61 - LFC: 10/06/2013 - 11:59:58 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG   [154]
O61 - LFC: 10/06/2013 - 11:59:59 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG   [277]
O61 - LFC: 10/06/2013 - 11:59:59 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG   [283]
O61 - LFC: 10/06/2013 - 12:00:00 ---A- C:\Users\Nicolas\AppData\Roaming\uTorrent\settings.dat   [160564]   =>P2P.µTorrent
O61 - LFC: 10/06/2013 - 12:00:03 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings   [8]
O61 - LFC: 10/06/2013 - 12:01:56 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Safe Browsing Download   [650296]
O61 - LFC: 10/06/2013 - 12:01:57 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom   [6915384]
O61 - LFC: 10/06/2013 - 12:01:58 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set   [1675984]
O61 - LFC: 10/06/2013 - 12:01:58 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist   [134920]
O61 - LFC: 10/06/2013 - 12:01:58 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist   [18956]
O61 - LFC: 10/06/2013 - 12:01:58 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist   [5196]
O61 - LFC: 10/06/2013 - 12:03:15 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\social_manager.bnk   [102561]
O61 - LFC: 10/06/2013 - 12:04:53 ---A- C:\Users\Nicolas\Downloads\adwcleaner (1).exe   [648201]
O61 - LFC: 10/06/2013 - 12:05:44 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\1c\1c202a95b9bee8e82dc371f809cd6531873c3322.file   [155]
O61 - LFC: 10/06/2013 - 12:07:54 ---A- C:\Users\Nicolas\Downloads\ZHPDiag2.exe   [5673560]
O61 - LFC: 10/06/2013 - 12:08:11 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies   [6144]
O61 - LFC: 10/06/2013 - 12:08:11 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal   [2576]
O61 - LFC: 10/06/2013 - 12:08:31 ---A- C:\Users\Nicolas\Downloads\ZHPDiag2 (1).exe   [5673560]
O61 - LFC: 10/06/2013 - 12:09:00 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\25\25595d694dc7cfb2b3245065eae56110006f0461.file   [51907]
O61 - LFC: 10/06/2013 - 12:09:08 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Storage\fe\fe17bce9e324b0764bf4020a4a5eb6732e12ceca.file   [5407]
O61 - LFC: 10/06/2013 - 12:10:55 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FEAMUG6N\fbstatic-a.akamaihd.net\play.spotify.com.sol   [87]
O61 - LFC: 10/06/2013 - 12:11:04 ---A- C:\Users\Nicolas\AppData\Local\Spotify\Users\zack283-user\offline2   [174]
O61 - LFC: 10/06/2013 - 12:11:25 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity   [3818]
O61 - LFC: 10/06/2013 - 12:11:33 ---A- C:\Users\Nicolas\AppData\Local\PokerStars.FR\PokerStars.log.0   [1744503]
O61 - LFC: 10/06/2013 - 12:12:21 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor   [250880]
O61 - LFC: 10/06/2013 - 12:12:21 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal   [16384]
O61 - LFC: 10/06/2013 - 12:12:21 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Shortcuts   [139264]
O61 - LFC: 10/06/2013 - 12:12:21 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal   [16384]
O61 - LFC: 10/06/2013 - 12:12:23 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.xvideos.com_0.localstorage   [3072]
O61 - LFC: 10/06/2013 - 12:12:23 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.xvideos.com_0.localstorage-journal   [512]
O61 - LFC: 10/06/2013 - 12:12:35 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Web Data   [129024]
O61 - LFC: 10/06/2013 - 12:12:35 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal   [16384]
O61 - LFC: 10/06/2013 - 12:12:42 ---A- C:\Users\Nicolas\AppData\Roaming\uTorrent\dht_feed.dat.old   [2]   =>P2P.µTorrent
O61 - LFC: 10/06/2013 - 12:12:51 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Cookies   [389120]
O61 - LFC: 10/06/2013 - 12:12:51 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal   [16384]
O61 - LFC: 10/06/2013 - 12:13:13 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage   [2670592]
O61 - LFC: 10/06/2013 - 12:13:13 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal   [16384]
O61 - LFC: 10/06/2013 - 12:13:16 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Local State   [35069]
O61 - LFC: 10/06/2013 - 12:13:20 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Favicons   [10911744]
O61 - LFC: 10/06/2013 - 12:13:20 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal   [16384]
O61 - LFC: 10/06/2013 - 12:13:20 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\History   [2695168]
O61 - LFC: 10/06/2013 - 12:13:20 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-06   [40595456]
O61 - LFC: 10/06/2013 - 12:13:20 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-06-journal   [16384]
O61 - LFC: 10/06/2013 - 12:13:26 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3   [1630208]
O61 - LFC: 10/06/2013 - 12:13:26 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3-journal   [16384]
O61 - LFC: 10/06/2013 - 12:13:27 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\History-journal   [16384]
O61 - LFC: 10/06/2013 - 12:13:32 ---A- C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Preferences   [137990]
O61 - LFC: 10/06/2013 - 12:15:53 ---A- C:\Users\Nicolas\AppData\Roaming\uTorrent\resume.dat.old   [28233]   =>P2P.µTorrent
O61 - LFC: 10/06/2013 - 12:17:47 ---A- C:\Users\Nicolas\AppData\Roaming\uTorrent\dht_feed.dat   [2]   =>P2P.µTorrent
O61 - LFC: 10/06/2013 - 12:18:02 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\track-player.bnk   [143544]
O61 - LFC: 10/06/2013 - 12:18:08 ---A- C:\Users\Nicolas\AppData\Roaming\uTorrent\resume.dat   [28233]   =>P2P.µTorrent
O61 - LFC: 10/06/2013 - 12:18:15 ---A- C:\Users\Nicolas\AppData\Roaming\Spotify\Users\zack283-user\ad.bnk   [26865]
~ 3 Fichiers temporaires (Temporary files)
~ 2 Fichiers cookies (Cookies files)
~ Files: 678 Scanned in 06mn 07s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS:  Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 03/01/2012 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 07/03/2013 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 07/03/2013 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 07/03/2013 - C:\Windows\System32\Drivers\aswRdr.sys (aswRdr)  .(.AVAST Software - avast! TDI Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 07/03/2013 - Pas de propriétaire (aswRvrt)  .(...) - LEGACY_ASWRVRT
O64 - Services: CurCS - 07/03/2013 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 07/03/2013 - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 07/03/2013 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 07/03/2013 - Pas de propriétaire (aswVmm)  .(...) - LEGACY_ASWVMM
O64 - Services: CurCS - 18/02/2011 - C:\Windows\System32\DRIVERS\bowser.sys (bowser)  .(.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) - LEGACY_BOWSER
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs)  .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\CLFS.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\crcdisk.sys (crcdisk)  .(.Microsoft Corporation - Disk Block Verification Filter Driver.) - LEGACY_CRCDISK
O64 - Services: CurCS - 14/04/2011 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 15/04/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat)  .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\hidserv.dll (hidserv)  .(.Microsoft Corporation - Service HID.) - LEGACY_HIDSERV
O64 - Services: CurCS - 20/02/2010 - C:\Windows\System32\drivers\HTTP.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 04/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\mountmgr.sys (MountMgr)  .(.Microsoft Corporation - Mount Point Manager.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\drivers\mrxdav.sys (MRxDAV)  .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\mrxsmb.sys (mrxsmb)  .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB
O64 - Services: CurCS - 06/07/2011 - C:\Windows\System32\DRIVERS\mrxsmb10.sys (mrxsmb10)  .(.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\mrxsmb20.sys (mrxsmb20)  .(.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\msahci.sys (msahci)  .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP
O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (NAVENG)  .(...) - LEGACY_NAVENG
O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (NAVEX15)  .(...) - LEGACY_NAVEX15
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - NDIS 6.0 wrapper driver.) - LEGACY_NDIS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\netbt.sys (netbt)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 24/10/2006 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\pacer.sys (PSched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\rasacd.sys (RasAcd)  .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\rdbss.sys (rdbss)  .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\rdpencdd.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 30/09/2006 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (Smb)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_SMB
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (SRTSP)  .(...) - LEGACY_SRTSP
O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (SRTSPX)  .(...) - LEGACY_SRTSPX
O64 - Services: CurCS - 18/02/2011 - C:\Windows\System32\DRIVERS\srv.sys (srv)  .(.Microsoft Corporation - Server driver.) - LEGACY_SRV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srv2.sys (srv2)  .(.Microsoft Corporation - Smb 2.0 Server driver.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 08/12/2009 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\udfs.sys (udfs)  .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Volume Manager Extension Driver.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 21/08/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\wanarp.sys (Wanarpv6)  .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 26/07/2012 - C:\Windows\system32\drivers\Wudfpf.sys (WudfPf)  .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 69 Scanned in 00mn 02s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Nicolas\AppData\Local\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Nicolas\AppData\Local\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - http://www.google.com
~ Keys:  Scanned in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [26624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [85504]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [302080]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [49664]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [49664]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [179712]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [719360]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [454656]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [446464]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [98304]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll   [309760]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [88064]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [61952]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [342016]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [318976]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\Windows\System32\termsrv.dll   [547328]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [1081856]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [302080]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [225280]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [28672]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [45056]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [154112]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [37888]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [86528]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [74752]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [855040]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [221696]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\Windows\System32\sessenv.dll   [74752]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [103424]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [178176]
~ Services: 31 Scanned in 00mn 02s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.ED612C3BF49DDE8E731CFD814FF6769A] [SPRF][27/06/2012] (...) -- C:\Users\Nicolas\AppData\Local\d3d9caps.dat   [680]
[MD5.72A51C6832040CDDFD40D747154A0129] [SPRF][04/08/2011] (...) -- C:\Users\Nicolas\AppData\Local\d3d9caps64.dat   [732]
[MD5.408416EB4F50DAB83625481C0B4E6692] [SPRF][02/10/2012] (.NVIDIA Corporation - NVIDIA 3D Vision Control Panel API.) -- C:\Users\Nicolas\AppData\Local\Temp\nvSCPAPI.dll   [903584]
[MD5.539639C041241616B08C0158C4F8DE60] [SPRF][02/10/2012] (.NVIDIA Corporation - Stereoscpic 3D driver Installer API.) -- C:\Users\Nicolas\AppData\Local\Temp\nvStInst.exe   [612712]
[MD5.3EF2F2B5D3B9089B90A4429475C3F251] [SPRF][10/06/2013] (...) -- C:\Users\Nicolas\AppData\Local\Temp\pool.bin   [256]
[MD5.209DA1F70322FEF7A1B087C492EBE7A2] [SPRF][20/11/2012] (.Playtech - EverestPoker.fr.) -- C:\Users\Nicolas\AppData\Local\Temp\ptuE20_tmp.exe   [226688]
[MD5.E03F2F24BCA457A35E1E26732AFE4A2F] [SPRF][18/11/2012] (...) -- C:\Users\Nicolas\AppData\Local\Temp\vlc-2.0.4-win32.exe   [22912657]
[MD5.E563A65BAEA25CEF8F49FB0228CB8555] [SPRF][27/01/2013] (...) -- C:\Users\Nicolas\AppData\Local\Temp\vlc-2.0.5-win32.exe   [22916830]
[MD5.43C35081CE0AC367267C5916AB25A817] [SPRF][01/05/2013] (...) -- C:\Users\Nicolas\AppData\Local\Temp\vlc-2.0.6-win32.exe   [22948790]
[MD5.A205551E7BA8580D2C0FF896A4D79FA9] [SPRF][29/05/2012] (.Macrovision Corporation - Setup.exe.) -- C:\Users\Nicolas\AppData\Local\Temp\_is3785.exe   [460248]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][04/08/2011] (...) -- C:\Users\Nicolas\AppData\Roaming\wklnhst.dat   [0]
[MD5.4EF33D516F31BEB1C9847D1FDA69375C] [SPRF][10/06/2013] (...) -- C:\Users\Nicolas\Desktop\adwcleaner.exe   [648201]
~ Files:  Scanned in 00mn 02s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WinCollab-P2P-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WinCollab-P2P-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WinCollab-Out-UDP" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Collaboration\WinCollab.exe (.not file.)
O87 - FAEL: "WinCollab-In-UDP" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Collaboration\WinCollab.exe (.not file.)
O87 - FAEL: "WinCollab-Out-TCP" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Collaboration\WinCollab.exe (.not file.)
O87 - FAEL: "WinCollab-In-TCP" |In - Domain - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Collaboration\WinCollab.exe (.not file.)
O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "BITSSVC-RPCSS-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "BITSSVC-RPC-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "BITSSVC-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "BITSSVC-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur DCOM des journaux et alertes de performance.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Serveur DCOM des journaux et alertes de performance.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "{AB8BD705-F101-452D-B7A9-F59250DE1CED}" | In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "{314EA400-4D2D-43D0-A81E-96C86AD795E8}" | In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "{AB9CEB90-1D99-4FAF-87D3-CE6ABC094C75}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe
O87 - FAEL: "{CF8AB050-03FB-448E-AC20-37EA614A2481}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe
O87 - FAEL: "{DCEE966C-650F-4305-AE24-3BE602D1A854}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{B2724A19-25D1-4BDE-A075-1DAEE22F0FD4}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe
O87 - FAEL: "{E1EB5511-10BF-4677-B2E8-350C3CD93511}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
O87 - FAEL: "{42A7AF8E-2566-4D4D-8651-A07A657F2DA1}" | In - Domain - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{0176E4D7-3549-457A-A1A1-58F5A3296B1F}" | In - Domain - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{D0373852-BE3C-4108-BAAD-D2B1A32962FD}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{9A95DB16-0434-4BAF-BAE8-1F4615421E0C}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{E0FA9F1C-E4AE-4407-A982-914D752138F2}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe   =>P2P.µTorrent
O87 - FAEL: "{DAC85C2A-9E95-4228-8963-238920F0645C}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe   =>P2P.µTorrent
O87 - FAEL: "TCP Query User{D690E9B9-784F-4791-B4EF-D6964004BA22}C:\users\nicolas\appdata\roaming\spotify\spotify.exe" | In - Private - P6 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\users\nicolas\appdata\roaming\spotify\spotify.exe
O87 - FAEL: "UDP Query User{492E1581-89FC-4D36-8704-222B3854D750}C:\users\nicolas\appdata\roaming\spotify\spotify.exe" | In - Private - P17 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\users\nicolas\appdata\roaming\spotify\spotify.exe
O87 - FAEL: "TCP Query User{2B766CCA-7FB5-49C3-A1A9-D3919B347CE9}C:\program files (x86)\soulseekns\slsk.exe" | In - Private - P6 - TRUE | .(.Pas de propriétaire - SoulSeek.) -- C:\program files (x86)\soulseekns\slsk.exe   =>P2P.SoulSeek
O87 - FAEL: "UDP Query User{8DB8C045-902F-4096-A703-A3723146F4A5}C:\program files (x86)\soulseekns\slsk.exe" | In - Private - P17 - TRUE | .(.Pas de propriétaire - SoulSeek.) -- C:\program files (x86)\soulseekns\slsk.exe   =>P2P.SoulSeek
O87 - FAEL: "{D6244FE3-6DCE-4B7D-A393-365554917EF9}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "TCP Query User{D40155C6-FF8C-40F8-838E-5F3F3C550BB9}C:\program files (x86)\hercules\hercules optical glass\xtrctrlex.exe" | In - Public - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules optical glass\xtrctrlex.exe
O87 - FAEL: "UDP Query User{BEDDEF78-808C-4557-91C8-00A1EBAA4740}C:\program files (x86)\hercules\hercules optical glass\xtrctrlex.exe" | In - Public - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules optical glass\xtrctrlex.exe
O87 - FAEL: "TCP Query User{26DCACAA-328D-4D67-B66B-A86BC17C9BB2}C:\program files (x86)\hercules\hercules optical glass\xtrctrlex.exe" | In - Private - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules optical glass\xtrctrlex.exe
O87 - FAEL: "UDP Query User{3D088EC9-E95D-46E3-90D1-AD64212205CF}C:\program files (x86)\hercules\hercules optical glass\xtrctrlex.exe" | In - Private - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules optical glass\xtrctrlex.exe
O87 - FAEL: "{34BBBD7B-D323-4078-A621-F8C163626F63}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{80C5EF02-5A47-4605-8D91-31BA7A2FA461}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{69FAF76A-DCA1-4FFA-A49F-859DA7FB0793}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{2AF0B414-E759-406A-9CEC-20E751D7944E}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{943887B4-32B1-4C6F-B3D1-7A558D038042}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{431A3BE5-6002-4D18-AD48-38F1A8CBEAAD}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{92988725-ABC8-4455-8E40-95493A4D0E9D}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{461F745A-2A24-43E7-88CC-46D273FA5265}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{F4BD5EC1-A003-48C8-A9FD-0E4B63A42DBF}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming-Audio-Recorder.exe (.not file.)
O87 - FAEL: "{1ACA3F39-FCDB-415E-AAF9-5F77E06237C3}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\StreamingAudioRecorder.exe (.not file.)
O87 - FAEL: "TCP Query User{9BE0C8E6-79D2-41D2-A05D-11F505D14C9A}C:\users\nicolas\appdata\roaming\spotify\spotify.exe" | In - Public - P6 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\users\nicolas\appdata\roaming\spotify\spotify.exe
O87 - FAEL: "UDP Query User{6B3F832E-EB2C-49C3-9DF4-705581F41701}C:\users\nicolas\appdata\roaming\spotify\spotify.exe" | In - Public - P17 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\users\nicolas\appdata\roaming\spotify\spotify.exe
O87 - FAEL: "TCP Query User{299AD2EB-90B2-434A-A5B6-23B562843B87}C:\program files (x86)\ea games\mohda\mohaa.exe" | In - Private - P6 - TRUE | .(.Electronic Arts Inc..) -- C:\program files (x86)\ea games\mohda\mohaa.exe
O87 - FAEL: "UDP Query User{BD0610EF-95C4-4B34-AD80-D9F8AB645CAE}C:\program files (x86)\ea games\mohda\mohaa.exe" | In - Private - P17 - TRUE | .(.Electronic Arts Inc..) -- C:\program files (x86)\ea games\mohda\mohaa.exe
O87 - FAEL: "{0AF9C372-AFC7-41EB-8DD9-02F8DDD8731B}" | In - Private - P6 - TRUE | .(.Research In Motion - BlackBerry Desktop Software.) -- C:\Program Files (x86)\Research In Motion\BlackBerry desktop\Rim.desktop.exe
O87 - FAEL: "{372A4931-524D-4E7D-A0B5-AB1012A62730}" | In - Private - P17 - TRUE | .(.Research In Motion - BlackBerry Desktop Software.) -- C:\Program Files (x86)\Research In Motion\BlackBerry desktop\Rim.desktop.exe
~ Firewall: 205 Scanned in 00mn 03s



---\\ Scan Additionnel (O88)
Database Version : v2.12437 - (07/06/2013)
Clés trouvées (Keys found) : 19
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 5
Fichiers trouvés  (Files found) : 0

[HKLM\Software\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}]   =>Adware.RecordNRip
[HKLM\Software\Wow6432Node\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}]   =>Adware.RecordNRip
[HKLM\Software\Classes\TypeLib\{93e3d79c-0786-48ff-9329-93bc9f6dc2b3}]   =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}]   =>Adware.RecordNRip
[HKLM\Software\Wow6432Node\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}]   =>Adware.RecordNRip
[HKLM\Software\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\BrowserConnection.dll]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\DNSBHO.dll]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\paoponfhfdfnjgddpnpjkambkcgdaaib]   =>Toolbar.Conduit
[HKLM\Software\Boxore]   =>Adware.Boxore
[HKLM\Software\Wow6432Node\Boxore]   =>Adware.Boxore
[HKCU\Software\DataMngr]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\DataMngr]   =>Adware.Bandoo
[HKLM\Software\Classes\Prod.cap]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings]   =>PUP.BProtector
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A1D62CC4-1453-4245-9C6E-E9E8EF0B620C}]   =>Toolbar.DeltaSearch
C:\Program Files (x86)\FrameFox   =>Toolbar.DeltaSearch
C:\ProgramData\Babylon   =>Toolbar.Babylon
C:\Users\Nicolas\AppData\Roaming\Babylon   =>Toolbar.Babylon
C:\Users\Nicolas\AppData\Local\Duuqu   =>Toolbar.DeltaSearch
C:\Users\Nicolas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiofjbkodmcfkhmljgdmjcildliojoli   =>Toolbar.DeltaSearch
~ Additionnel Scan: 254091 Items scanned in 01mn 31s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "0540B5EBBCCD9EF4392EB3838DA847B5" . (.BlackBerry Desktop Software 7.1.) -- C:\Windows\Installer\{BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}\ARPPRODUCTICON.exe
O90 - PUC: "0ED9D238CFA898648991D4BBEDDBE3F4" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}\GameForWindowsLiveRedist.exe
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "2A0160E7633E3B046B584C09E579CEA9" . (.OpenOffice.org 3.3.) -- C:\Windows\Installer\{7E0610A2-E336-40B3-B685-C4905E97EC9A}\soffice.ico
O90 - PUC: "4CC26D1A35415424C9E69E8EFEB026C0" . (.FrameFox Extensions 1.0.2.0.) -- C:\Windows\Installer\{A1D62CC4-1453-4245-9C6E-E9E8EF0B620C}\FrameFox.ico   =>Toolbar.DeltaSearch
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.7) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "8FC229B8C6A8EC148A851F57D5F7D592" . (.NVIDIA PhysX.) -- C:\Windows\Installer\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}\icon.ico
O90 - PUC: "A1DD019B1B948604C9803E3CEA0C3CA0" . (.Trust R-Series Mouse And Keyboard.) -- C:\Windows\Installer\{B910DD1A-49B1-4068-9C08-E3C3AEC0C30A}\ARPPRODUCTICON.exe
O90 - PUC: "C3130D7651F4D734A9D21C6504882AA6" . (.Windows Live Sync.) -- C:\Windows\Installer\{67D0313C-4F15-437D-9A2D-C1564088A26A}\FolderShare48x48.ico
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "C82732079FA3A4D48839354573C0CDDA" . (.BlackBerry App World Browser Plugin.) -- C:\Windows\Installer\{7023728C-3AF9-4D4A-8893-5354370CDCAD}\ARPIcon
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.1.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Update Products: 63 Scanned in 00mn 00s



---\\ Random Export Key (O91)
[HKCU\Software\5253dfd1e035bf43\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1040.25]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\5253dfd1e035bf43\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1040.25]:version="2.6.1040.25"
[HKCU\Software\5253dfd1e035bf43]   =>Toolbar.Babylon^
[HKLM\Software\Wow6432Node\5253dfd1e035bf43] => Clé orpheline
~ Export Key Software:  Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto  124832 |  (AdobeActiveFileMonitor6.0) . (...) - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
SR - | Auto 10/05/2013 65640 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 15/05/2013 256904 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 07/03/2013 45248 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Demand 18/01/2013 577536 |  (Blackberry Device Manager) . (.Research In Motion Limited.) - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
SS - | Auto  0 |  (dqupdate) . (...) - C:\Program Files (x86)\Duuqu\Update\DuuquUpdate.exe   =>Toolbar.DeltaSearch
SS - | Demand  0 |  (dqupdatem) . (...) - C:\Program Files (x86)\Duuqu\Update\DuuquUpdate.exe   =>Toolbar.DeltaSearch
SR - | Auto 21/01/2008 27648 | C:\Windows\System32\ezsvc7.dll (ezSharedSvc) . (.EasyBits Sofware AS.) - C:\Windows\System32\svchost.exe
SS - | Demand 28/04/2009 647680 |  (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SR - | Auto 29/05/2008 83264 |  (GenericHidService) . (.Packard Bell Services.) - C:\Windows\System32\HidService.exe
SS - | Auto 04/08/2011 135664 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 04/08/2011 135664 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 09/05/2011 136120 |  (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 28/02/2007 208896 |  (KMWDSERVICE) . (.UASSOFT.COM.) - C:\Program Files (x86)\Trust\R-Series Mouse And Keyboard\KMWDSrv.exe
SS - | Demand ??\??\???? 0 |  (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des
SR - | Auto 01/12/2012 890216 |  (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe
SS - | Auto 03/12/2012 1259880 |  (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 10/12/2009 65536 |  (pgsql-8.3) . (.PostgreSQL Global Development Group.) - C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
SR - | Auto  0 |  (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SR - | Auto  0 |  (PnkBstrB) . (...) - C:\Windows\system32\PnkBstrB.exe
SS - | Auto 08/01/2013 161536 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 30/11/2012 382824 |  (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 21/01/2008 27648 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Demand  0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 21/01/2008 27648 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services:  Scanned in 00mn 07s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Nicolas at 10/06/2013 13:26:46

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR:  Scanned in 00mn 04s



---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
~ Emulateurs:  Scanned in 00mn 04s



End of the scan (2346 lines in 16mn 39s)(0)