Rapport de ZHPDiag v2013.6.18.25 par Nicolas Coolman, Update du 18/06/2013
Run by Yann Pringault at 21/06/2013 21:02:59
WebSite: http://nicolascoolman.webs.com
State : Nouvelle version disponible
WhiteList : Disable
High Elevated Privileges : OK
UAC : Deactivate by user


---\\ Web Browser
MSIE: Internet Explorer v10.0.9200.16618
MFIE: Mozilla Firefox 21.0
GCIE: Google Chrome v28.0.1500.52 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Business Edition, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : WBXJD
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Protection
avast! Free Antivirus v8.0.1489.0
Windows Defender W7

---\\ System Optimizer
CCleaner v3.28   =>Piriform Ltd

---\\ Peer To Peer (P2P)
Pando Media Booster v2.6.0.8
µTorrent v3.3.0.29625   =>P2P.µTorrent

---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 25

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2972 MB (48% free)
System Restore: Activé (Enable)
System drive C: has 26 GB (11%) free of 233 GB

---\\ Logged in mode
~ Computer Name: PC-YANN
~ User Name: Yann Pringault
~ All Users Names: Yann Pringault, HomeGroupUser$, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Yann Pringault\AppData\Roaming\
~ %Desktop% : C:\Users\Yann Pringault\Desktop\
~ %Favorites% : C:\Users\Yann Pringault\Favorites\
~ %LocalAppData% : C:\Users\Yann Pringault\AppData\Local\
~ %StartMenu% : C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 26 Go of 233 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Free 14 Go of 15 Go)
F:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 31 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.2473CA6595A2659D7039A4A89FECA269] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.17/05/2013 - 02:25:57.) -- C:\Windows\System32\wininet.dll [1767936]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 14:45:29.) -- C:\Windows\system32\Drivers\ntfs.sys [1211752]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 11:24:46.) -- C:\Windows\system32\Drivers\rdpdr.sys [133632]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Generic Processes:  Scanned in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/78
~ Mes musiques (My Musics) : 5/7060
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/739
~ Mon Bureau (My Desktop) : 1/115
~ Menu demarrer (Programs) : 1/55
~ Hidden Files:  Scanned in 00mn 38s



---\\ Processus lancés
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe   [4858968] [PID.2692]
[MD5.001B2CD2D45BC59575BA0F1A4A997682] - (. Hewlett-Packard Development Company, L.P. - Volume related element.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe   [76856] [PID.2936]
[MD5.20CB286C4591EEA68778CA6626D70D47] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe   [1791272] [PID.3072]
[MD5.10247055758850D4D0E9469322A93D42] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe   [103720] [PID.3212]
[MD5.AFD15F701B550037FFDDE6B18171479D] - (.Analog Devices, Inc. - SMax4PNP.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe   [1314816] [PID.3248]
[MD5.F71E9F4B1A816C5A180901372415BFF5] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe   [138784] [PID.3400]
[MD5.27044650FA30414BEC7F9BEB7F937386] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe   [172064] [PID.3420]
[MD5.313C8854EBDAFA0DDA8AD4757BD0E5DC] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe   [173600] [PID.3492]
[MD5.A9F9D081518AC03A51C1195986076F42] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe   [152392] [PID.3872]
[MD5.8ACE76366A0F5DC17FA0E0EB3C6FCF8F] - (...) -- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\Dashlane.exe   [270520] [PID.2600]
[MD5.D40B8CF041C9210D5BE675B8FECAAB19] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Yann Pringault\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe   [1104280] [PID.2656]
[MD5.C0E392910782C2BB9A28C8538CC1E1A1] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe   [285240] [PID.2956]
[MD5.181AF444730081C86E917CAD31250880] - (.Pas de propriétaire - PVP.net Patcher Kernel.) -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe   [1300376] [PID.5924]
[MD5.6F1BCEEE10680B4FC12808AF497D867A] - (.Pas de propriétaire - PVP.net Patcher.) -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.166\deploy\LoLLauncher.exe   [2686976] [PID.1752]
[MD5.63020815EEA332A61E35B8580B312D32] - (.Adobe Systems Inc. - Adobe AIR Debug Launcher.) -- C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.30\deploy\LolClient.exe   [144384] [PID.5320]
[MD5.E186E125FE575C4EF94B6D82B5A8F880] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe   [846288] [PID.4664]
[MD5.4458989C34FA84B5A75DD3ABCFBE786A] - (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe   [3093624] [PID.4256]
[MD5.88D3F73B4125328C4E79FE89F5068CC1] - (.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe   [9789256] [PID.2892]
[MD5.170D6CA6B5619FADCB25B3C3C12B17C3] - (.Apple Inc. - MobileDeviceHelper.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe   [57008] [PID.4636]
[MD5.5DBDC85A9AB1C338E82DB4F118C04D6E] - (.Apple Inc. - distnoted.) -- C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe   [13712] [PID.5368]
[MD5.61E4289E91E88C90478D7F4BEB10DCF7] - (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe   [59720] [PID.2324]
[MD5.612AF40F6F45DEFC00F68E868B75927A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [7518208] [PID.6184]
~ Processes Running:  Scanned in 00mn 03s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.fr
G0 - GCSP: Preference [User Data\Default] http://www.google.fr
G2 - GCE: Preference [User Data\Default] [aabcgdmkeabbnleenpncegpcngjpnjkc] Easy Auto Refresh v.2.8 (Activé)
G2 - GCE: Preference [User Data\Default] [aciahcmjmecflokailenpkdchphgkefd] Entanglement v.2.7.9 (Activé)
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [bfdjglobiolninfgldchakgfldifphic] QRreader beta v.0.4 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [bmagokdooijbeehmkpknfglimnifench] Firebug Lite for Google Chrome  v.1.4.0.11967 (Activé)
G2 - GCE: Preference [User Data\Default] [bongjkoajofkfpofginnhecihgaeldpe] Video Resumer v.1.2.0 (Activé)
G2 - GCE: Preference [User Data\Default] [chphlpgkkbolifaimnlloiipkdnihall] OneTab v.1.5 (Activé)   =>Adware.OneTab
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [dpgjihldbpodlmnjolekemlfbcajnmod] Sumo Paint v.3.7 (Activé)
G2 - GCE: Preference [User Data\Default] [edidfaijmhpefkbnobdcepampbncgejp] LoL Stream Browser v.1.2.0.5 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ejidjjhkpiempkbhmpbfngldlkglhimk] Gmail hors connexion v.1.19 (Activé)
G2 - GCE: Preference [User Data\Default] [elioihkkcdgakfbahdoddophfngopipi] Photo Zoom for Facebook v.1.1208.30.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [femoooemgmjaebeodbbikbkmhlafenpl] Causality Games v.10 (Activé)
G2 - GCE: Preference [User Data\Default] [fjkkongamjdfggeifeicejegagbhhjlf] Cinémur v.2.1 (Activé)
G2 - GCE: Preference [User Data\Default] [fnlgbglmmkibkhhbnhegkokegdodlgfe] WeatherByte v.1.0.3 (Activé)
G2 - GCE: Preference [User Data\Default] [gemgfpodpjapjhfohdlibagceiknakpa] Chain Reaction v.1.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.5.65, (Activé)
G2 - GCE: Preference [User Data\Default] [gniccccghhpnkijkfdoajaabnmbpmnko] Sand Trap v.1.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [hhfceebbbinfckajnkhjiiefbpfljpid] ABonEntendeur v.0.0.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [hhnjdplhmcnkiecampfdgfjilccfpfoe] Enregistrement de mes désactivations v.1.0.14 (Activé)
G2 - GCE: Preference [User Data\Default] [hpjdjohkhgeohefcpllhdknhlgdgeajf] Thwack!! v.1.1.6 (Activé)
G2 - GCE: Preference [User Data\Default] [icmlaeflemplmjndnaapfdbbnpncnbda] avast! WebRep v.8.0.1483, (Désactivé)
G2 - GCE: Preference [User Data\Default] [ieaebnkibonmpbhdaanjkmedikadnoje] Stealthy v.3.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [imkdafnalljikgogmjdccklndcdbfnng] aprilFools v.1.0.3 (Activé)
G2 - GCE: Preference [User Data\Default] [keembkgclppcbilkekfgpobhldjjhpmn] Cargo Bridge v.1.5.7 (Activé)
G2 - GCE: Preference [User Data\Default] [komhbcfkdcgmcdoenjcjheifdiabikfi] Google Play v.3.0 (Activé)
G2 - GCE: Preference [User Data\Default] [lcdhpokmalcfjnfkjlfncgekebcojinn] Steambirds: Survival v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [lfbgimoladefibpklnfmkpknadbklade] Webcam Toy v.1.4 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mglmffkipgdhdkolbbkofkfhappinpin] Pursued v.3.5 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mihcahmgecmbnbcchbopgniflfhgnkff] Vérificateur de messages Google v.4.4.0 (Activé)
G2 - GCE: Preference [User Data\Default] [mjgmdckndgdincpnkdlhnfaplbkmlkfe] Beansight v.1.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [mkjojgglmmcghgaiknnpgjgldgaocjfd] Dashlane v. ()
G2 - GCE: Preference [User Data\Default] [mnjcaihkcddgdgaghmnmfpkkfilombbm] Lagoonia v.1.38 (Activé)
G2 - GCE: Preference [User Data\Default] [mpedbpkelbhcbkdaglillalioeeekbpb] WGT Golf Game v.45.0.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkhkaamdeplibnmodcgodlkghphdbahk] Graph.tk v.0.0.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nlbjncdgjeocebhnmkbbbdekmmmcbfjd] Extension Abonnement RSS (par Google) v.2.2.2, (Activé)
G2 - GCE: Preference [User Data\Default] [npfkoakaabdallkcdbpkkhfilkkngakh] Deezer v.1.3.2 (Activé)
G2 - GCE: Preference [User Data\Default] [odniljbjmhblkfilfghogdpgigmmoaac] Battle Pens v.1.0.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pafkcccccfmnjkhhndjfffifnflhkpdo] Desktop v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pbchiajonfncphfgplcmdojihhlbffbd] TV France - Regarder Télévision v.2.2 (Activé)
G2 - GCE: Preference [User Data\Default] [peacmkenjjcaifjckopphcofncigpnlp] Dilandau v.1.1.2 (Activé)
G2 - GCE: Preference [User Data\Default] [pgjchkcfmigkkhedgjedmffdepgmpfil] Psykopaint v.0.0.0.10 (Activé)
G2 - GCE: Preference [User Data\Default] [pgphcomnlaojlmmcjmiddhdapjpbgeoc] Send from Gmail (by Google) v.1.13 (Désactivé)
G2 - GCE: Preference [User Data\Default] [phkpfppdodfmhpdgfeicmkpanfopahpk] Facebook Photo Uploader v.2.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pinjeagflheledfiihhbilplepebhhcn] Facebook Covers v.3.888 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
G2 - GCE: Preference [User Data\Default] [pnjaodmkngahhkoihejjehlcdlnohgmp] RSS Feed Reader v.5.1.2, (Activé)
G2 - GCE: Preference [User Data\Default] [poknhlcknimnnbfcombaooklofipaibk] Canvas Rider v.0.71 (Activé)
~ Google Browser: 56 Scanned in 00mn 44s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Yann Pringault\AppData\Roaming\Mozilla\Firefox\Profiles\9jqq94yo.default\prefs.js
M3 - MFPP: Plugins - [Yann Pringault] -- C:\Users\Yann Pringault\AppData\Roaming\Mozilla\Firefox\Profiles\9jqq94yo.default\searchplugins\holasearch.xml   =>Hijacker.HolaSearch
M2 - MFEP: prefs.js [Yann Pringault - 9jqq94yo.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.14 (..)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.25.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.25.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.25.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win # 6.5.0.3.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20125.0.) -- C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\Program Files\Microsoft Office\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
P2 - FPN: [HKLM] [@spoon.net/Spoon Plugin 3.33] - (...) -- C:\Program Files\Spoon\3.33.3.13\npMozillaSpoonPlugin.dll (.not file.)
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.6] - (.VideoLAN - VLC media player Web Plugin 2.0.6.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.03.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Application Manager is installed.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
P2 - FPN: [HKLM] [adobe.com/AdobeExManDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Extension Manager is installed on.) -- C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Yann Pringault\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Yann Pringault\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
~ Firefox Browser: 22 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Pando Networks - Pando Web Plugin.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 10 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
O1 - Hosts: 8
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 103



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} . (.pdfforge GbR - PDF Architect Helper.) -- C:\Program Files\PDF Architect\PDFIEHelper.dll
O2 - BHO: Dashlane BHO - {42D79B50-CC4A-4A8E-860F-BE674AF053A2} . (.Dashlane - Dashlane Dll.) -- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\ie\Dashlanei.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
~ BHO: 8 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Dashlane Toolbar - [HKLM]{669695BC-A811-4A9D-8CDF-BA8C795F261C} . (.Dashlane - Dashlane Toolbar.) -- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\ie\KWIEBar.dll
~ Toolbar:  Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe 
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe 
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe 
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe 
O4 - HKLM\..\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe 
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 
O4 - HKLM\..\Run: [SoundMAXPnP] . (.Analog Devices, Inc. - SMax4PNP.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe 
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe 
O4 - HKLM\..\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe 
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe 
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe 
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe 
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe 
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe 
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe 
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe 
O4 - HKCU\..\Run: [Pando Media Booster] . (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe 
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe 
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Yann Pringault\AppData\Local\Google\Update\GoogleUpdate.exe 
O4 - HKCU\..\Run: [MusicManager] . (.Google Inc. - Music Manager.) -- C:\Users\Yann Pringault\AppData\Local\Programs\Google\MusicManager\MusicManager.exe 
O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline 
O4 - HKCU\..\Run: [Dashlane] . (...) -- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\Dashlane.exe 
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Yann Pringault\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe 
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe   =>P2P.µTorrent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
O4 - HKUS\S-1-5-21-557600276-3585783605-1701498537-1001\..\Run: [Pando Media Booster] . (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe 
O4 - HKUS\S-1-5-21-557600276-3585783605-1701498537-1001\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe 
O4 - HKUS\S-1-5-21-557600276-3585783605-1701498537-1001\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Yann Pringault\AppData\Local\Google\Update\GoogleUpdate.exe 
O4 - HKUS\S-1-5-21-557600276-3585783605-1701498537-1001\..\Run: [MusicManager] . (.Google Inc. - Music Manager.) -- C:\Users\Yann Pringault\AppData\Local\Programs\Google\MusicManager\MusicManager.exe 
O4 - HKUS\S-1-5-21-557600276-3585783605-1701498537-1001\..\Run: [AdobeBridge] Clé orpheline 
O4 - HKUS\S-1-5-21-557600276-3585783605-1701498537-1001\..\Run: [Dashlane] . (...) -- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\Dashlane.exe 
O4 - HKUS\S-1-5-21-557600276-3585783605-1701498537-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Yann Pringault\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe 
O4 - HKUS\S-1-5-21-557600276-3585783605-1701498537-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe   =>P2P.µTorrent
~ Application:  Scanned in 00mn 01s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files\Google\Chrome\Application\chrome.exe 
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\Programs: Spotify.lnk . (.Spotify Ltd - Spotify.)  -- C:\Users\Yann Pringault\AppData\Roaming\Spotify\spotify.exe 
O4 - GS\QuickLaunch: CyberGhost VPN.lnk . (.CyberGhost SRL - CyberGhost VPN Client.)  -- C:\Program Files\CyberGhost VPN\CyberGhost.exe 
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\QuickLaunch: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.)  -- C:\Program Files\uTorrent\uTorrent.exe   =>P2P.µTorrent
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.)  -- C:\Windows\system32\eudcedit.exe 
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\Windows\system32\WFS.exe 
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.)  -- C:\Program Files\Skype\Phone\Skype.exe 
O4 - GS\Desktop: Adobe Photoshop CS6.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.)  -- C:\Program Files\Adobe\Adobe Photoshop CS6\Photoshop.exe 
O4 - GS\Desktop: adsl TV.lnk . (.adsl TV / FM - adsl TV.)  -- C:\Program Files\adslTV\adsltv.exe 
O4 - GS\Desktop: Age Of Empire III.lnk . (.Microsoft Corporation - Age of Empires III Expansion 2.)  -- C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe 
O4 - Global Startup: C:\Users\Yann Pringault\Desktop\Age of Empires Online.url . (.Microsoft Corporation - Age of Empires III Expansion 2.)  -- C:\Users\Yann Pringault\Desktop\Age of Empires Online.url
O4 - Global Startup: C:\Users\Yann Pringault\Desktop\Awesomenauts.url . (.Microsoft Corporation - Age of Empires III Expansion 2.)  -- C:\Users\Yann Pringault\Desktop\Awesomenauts.url
O4 - GS\Desktop: CitiesXL Platinum.lnk . (.Monte Cristo Games - CitiesXL Game Application.)  -- C:\Program Files\Steam\SteamApps\common\Cities XL Platinum\CitiesXL_Platinum.exe 
O4 - GS\Desktop: Dashlane.lnk . (...)  -- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\Dashlane.exe
O4 - Global Startup: C:\Users\Yann Pringault\Desktop\Dwarfs F2P.url . (...)  -- C:\Users\Yann Pringault\Desktop\Dwarfs F2P.url
O4 - GS\Desktop: Emergency 2013.lnk . (...)  -- C:\Program Files\Quadriga Games\Emergency 2013\bin.x86\em2013.exe
O4 - GS\Desktop: Forgotten Empire.lnk . (.Microsoft Corporation - Age of Empires II Expansion.)  -- C:\Program Files\Microsoft Games\Age of Empires II\age2_x1\age2_x2.exe 
O4 - GS\Desktop: GmoteServer.lnk . (...)  -- C:\Program Files\GmoteServer\GmoteServer.exe
O4 - GS\Desktop: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files\Google\Chrome\Application\chrome.exe 
O4 - GS\Desktop: LOLPBE.lnk . (...)  -- C:\Users\Yann Pringault\Downloads\LOLPBE\LOLPBE\lol.launcher.exe
O4 - GS\Desktop: Nexus 4 ToolKit.lnk . (.skipsoft - ToolKit for Google Nexus 4.)  -- C:\Google Nexus 4 ToolKit\ToolKit.exe 
O4 - GS\Desktop: PDF Architect.lnk . (.pdfforge GbR - PDF Architect Application.)  -- C:\Program Files\PDF Architect\PDF Architect.exe 
O4 - GS\Desktop: Photomatix Pro 4.2.5 (32-bit).lnk . (.HDRsoft - Photomatix Pro.)  -- C:\Program Files\PhotomatixPro4\PhotomatixPro.exe 
O4 - GS\Desktop: SimCity 4 Deluxe.lnk . (.Maxis - SimCity 4.)  -- C:\Program Files\Maxis\SimCity 4 Deluxe\Apps\SimCity 4.exe 
O4 - GS\Desktop: SpeedFan.lnk . (.Almico Software (www.almico.com) - Pas de description.)  -- C:\Program Files\SpeedFan\speedfan.exe 
O4 - GS\Desktop: Spotify.lnk . (.Spotify Ltd - Spotify.)  -- C:\Users\Yann Pringault\AppData\Roaming\Spotify\spotify.exe 
O4 - Global Startup: C:\Users\Yann Pringault\Desktop\Team Fortress 2.url . (.Spotify Ltd - Spotify.)  -- C:\Users\Yann Pringault\Desktop\Team Fortress 2.url
O4 - Global Startup: C:\Users\Yann Pringault\Desktop\Terraria.url . (.Spotify Ltd - Spotify.)  -- C:\Users\Yann Pringault\Desktop\Terraria.url
O4 - GS\Desktop: Total War™ SHOGUN 2.lnk . (.The Creative Assembly Ltd - Total War: SHOGUN 2.)  -- C:\Program Files\The Creative Assembly\Total War Shogun 2\Shogun2.exe 
O4 - Global Startup: C:\Users\Yann Pringault\Desktop\TrackMania Nations Forever.url . (.The Creative Assembly Ltd - Total War: SHOGUN 2.)  -- C:\Users\Yann Pringault\Desktop\TrackMania Nations Forever.url
~ Global Startup:  Scanned in 00mn 03s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~1\Office14\ONBttnIE.dll
O9 - Extra button: Dashlane Button - {40354A83-504E-4611-ACAE-3D137F6F595E} . (.Dashlane - Dashlane Dll.) -- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\ie\Dashlanei.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~1\Office14\ONBTTN~1.dll
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Winsock: 9 Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] *.clonewarsadventures.com
O15 - Trusted Zone: [HKCU\...\Domains] *.freerealms.com
O15 - Trusted Zone: [HKCU\...\Domains] *.soe.com
O15 - Trusted Zone: [HKCU\...\Domains] *.sony.com
~ IE Zone Confiance:  Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
~ Objets ActiveX:  Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{817B5615-78E5-407F-B8D0-65359BF77302}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{817B5615-78E5-407F-B8D0-65359BF77302}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{ECFBF924-656D-44F8-A3D5-3C3053FFBFAC}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS1\Services\Tcpip\..\{817B5615-78E5-407F-B8D0-65359BF77302}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{817B5615-78E5-407F-B8D0-65359BF77302}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{ECFBF924-656D-44F8-A3D5-3C3053FFBFAC}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\..\{817B5615-78E5-407F-B8D0-65359BF77302}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{817B5615-78E5-407F-B8D0-65359BF77302}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{ECFBF924-656D-44F8-A3D5-3C3053FFBFAC}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain:  Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) - C:\Windows\System32\AEADISRV.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation - LSI Soft Modem Call Progress Service.) - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: Technologie de stockage Intel(R) Rapid (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GbR - PDF Architect Helper Service.) - C:\Program Files\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GbR - PDF Architect Conversion Service.) - C:\Program Files\PDF Architect\ConversionService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) . (.TeamViewer GmbH - TeamViewer 8.) - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
~ Services: 13 Scanned in 00mn 13s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\AutoKMS.job   [268]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1068]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1072]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-557600276-3585783605-1701498537-1001Core.job   [1062]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-557600276-3585783605-1701498537-1001UA.job   [1114]
[MD5.9915504F602D277EE47FD843A677FD15] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe   [256904]
[MD5.320681DF28D82CDCA7E3EED0846625DB] [APT] [AdobeAAMUpdater-1.0-PC-YANN-Yann Pringault] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe   [444904]
[MD5.07605ABEB10FC533881C91F19DECF69A] [APT] [AutoKMS] (...) -- C:\WINDOWS\AutoKMS\AutoKMS.exe   [1923584]
[MD5.5CE2C1433B9B634591F0A1C4C1203A0B] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe   [251784]
[MD5.F9E87505DC0B27A9E3D9A99442303DC3] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [3288856]   =>Piriform Ltd
[MD5.00000000000000000000000000000000] [APT] [DealPly] (...) -- C:\Users\Yann Pringault\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.exe (.not file.)   [0]   =>PUP.DealPly
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-557600276-3585783605-1701498537-1001Core] (.Google Inc..) -- C:\Users\Yann Pringault\AppData\Local\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-557600276-3585783605-1701498537-1001UA] (.Google Inc..) -- C:\Users\Yann Pringault\AppData\Local\Google\Update\GoogleUpdate.exe   [116648]
[MD5.00000000000000000000000000000000] [APT] [launchspotflux] (...) -- C:\Program Files\spotflux\.\spotflux.exe (.not file.)   [0]
[MD5.7F91A8D7192B1664D4C4B19996ED8281] [APT] [Test TimeTrigger] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\Runner.exe   [40587]
[MD5.E186E125FE575C4EF94B6D82B5A8F880] [APT] [{01DC90B9-94C8-4FEE-A351-1FF8FD1FBC30}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe   [846288]
[MD5.E186E125FE575C4EF94B6D82B5A8F880] [APT] [{0C6406C1-EC25-4A6A-917D-1FE81BFFE4FE}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe   [846288]
[MD5.E186E125FE575C4EF94B6D82B5A8F880] [APT] [{1352673F-03B0-4A39-B7E6-39AF42E548DE}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe   [846288]
[MD5.E186E125FE575C4EF94B6D82B5A8F880] [APT] [{7AB3BBB4-B48C-4BAC-B14A-B0EA86723715}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe   [846288]
[MD5.E186E125FE575C4EF94B6D82B5A8F880] [APT] [{B1B9F308-132B-40EC-A1FB-C6B8C9B3ED61}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe   [846288]
[MD5.97D965A341C76FCB35B4344BFA2CBC06] [APT] [{BE58227D-F16E-48D1-AFAF-F8E2D654A797}] (.Valve Corporation.) -- C:\Program Files\Steam\steam.exe   [1641896]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe   [561984]
~ Scheduled Task: 29 Scanned in 00mn 10s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\28.0.1500.52\Installer\chrmstp.exe
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 69 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}
O42 - Logiciel: Adobe Reader XI (11.0.03) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM] -- InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}
O42 - Logiciel: Age of Empires III - The Asian Dynasties - (.Microsoft Game Studios.) [HKLM] -- InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}
O42 - Logiciel: Age of Empires III - The WarChiefs - (.Microsoft Game Studios.) [HKLM] -- InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}
O42 - Logiciel: Age of Empires Online - (.Microsoft.) [HKLM] -- Steam App 105430
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {5D09C772-ECB3-442B-9CC6-B4341C78FDC2}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {E14ADE0E-75F3-4A46-87E5-26692DD626EC}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Awesomenauts - (...) [HKLM] -- Steam App 204300
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B}
O42 - Logiciel: Broadcom 802.11 Network Adapter - (.Broadcom Corporation.) [HKLM] -- Broadcom 802.11 Network Adapter
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner   =>Piriform Ltd
O42 - Logiciel: CanoScan Toolbox Ver4.1 - (...) [HKLM] -- {BCE46757-7674-4416-BEDB-68205A60409E}
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
O42 - Logiciel: Cities XL Platinum - (...) [HKLM] -- Cities XL Platinum_is1
O42 - Logiciel: CyberGhost VPN - (.CyberGhost S.R.L..) [HKLM] -- CyberGhost VPN_is1
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Dashlane - (.Dashlane SAS.) [HKCU] -- Dashlane
O42 - Logiciel: Dwarfs F2P - (...) [HKLM] -- Steam App 213650
O42 - Logiciel: Emergency 2013 - (.Quadriga Games.) [HKLM] -- Emergency 2013
O42 - Logiciel: FileZilla Client 3.7.0.2 - (.FileZilla Project.) [HKLM] -- FileZilla Client
O42 - Logiciel: GmoteServer - (.Gmote.org.) [HKLM] -- DDA23392-9C73-4909-A221-BC12C6D2664D
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {468D22C0-8080-11E2-B86E-B8AC6F98CCE3}
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: ImageRescue3 - (.Lexar Media.) [HKLM] -- {6EA6D4E3-134D-4A11-AF2A-7986F61BB2F6}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: LEGO MINDSTORMS NXT - Kit linguistique (Français) - (.The LEGO Group.) [HKLM] -- {4D8DC704-1639-42D0-AFA3-6C297D8725B0}
O42 - Logiciel: LEGO MINDSTORMS NXT Driver - (.LEGO.) [HKLM] -- {D30E4145-9120-4497-AD35-F78482C3CF88}
O42 - Logiciel: LEGO MINDSTORMS NXT Migration Package - (.LEGO.) [HKLM] -- {6C1D47CC-682C-4673-8CA8-DEE659628599}
O42 - Logiciel: LEGO MINDSTORMS NXT Software v2.0 - (.LEGO.) [HKLM] -- {5B7EDCF8-E6AD-4E99-972C-34BF1F07B349}
O42 - Logiciel: LSI HDA Modem - (.LSI Corporation.) [HKLM] -- LSI Soft Modem
O42 - Logiciel: La boite a couleurs version 1.6.15 - (...) [HKLM] -- La boite a couleurs_is1
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM] -- {92606477-9366-4D3B-8AE3-6BE4B29727AB}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {B8D84F70-0296-11E2-8DF5-F04DA23A5C58}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {4CAF09A9-9F84-4ED4-81E8-E9039ABA7D90}
O42 - Logiciel: ManiaPlanet - (.Nadeo.) [HKLM] -- ManiaPlanet_is1
O42 - Logiciel: Maple 16 - (.Maplesoft.) [HKLM] -- Maple 16
O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM] -- Marvell Miniport Driver
O42 - Logiciel: Microsoft Age of Empires II - (...) [HKLM] -- Age of Empires 2.0
O42 - Logiciel: Microsoft Age of Empires II : The Conquerors Expansion - (...) [HKLM] -- Age of Empires II: The Conquerors Expansion 1.0
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}
O42 - Logiciel: Mozilla Firefox 21.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 21.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Music Manager - (.Google, Inc..) [HKCU] -- MusicManager
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
O42 - Logiciel: Network Addon Mod Version 30 with Essentials r132 - (.The NAM Team.) [HKCU] -- Network Addon Mod
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM] -- Notepad++
O42 - Logiciel: PDF Architect - (.pdfforge.) [HKLM] -- {80A07844-CA64-4DE4-AB61-D37DDBE8074F}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}
O42 - Logiciel: Photomatix Pro version 4.2.5 - (.HDRsoft Ltd.) [HKLM] -- PhotomatixPro42x32_is1
O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM] -- {F1D7AC58-554A-4A58-B784-B61558B1449A}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044}
O42 - Logiciel: SimCity 4 Deluxe - (...) [HKLM] -- {3F0D0ABE-CDAF-431A-00BC-CBBE018EA74E}
O42 - Logiciel: SketchUp Pro 8 - (.Trimble Navigation Limited.) [HKLM] -- {1260324A-B1CD-4BA4-AA3C-D081728ECCFB}
O42 - Logiciel: Skype™ 6.5 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: SpeedFan (remove only) - (...) [HKLM] -- SpeedFan
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU] -- Spotify
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM] -- StarCraft II
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Stronghold Kingdoms - (.Firefly Studios Ltd.) [HKLM] -- Steam App 47410
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM] -- {E5F05232-96B6-4552-A480-785A60A94B21}
O42 - Logiciel: TI-Nspire(TM) CAS Student Software - (.Texas Instruments Inc..) [HKLM] -- {E8CC9064-8382-4D5C-9E55-F88D9541FFC0}
O42 - Logiciel: TI-Nspire(TM) Computer Link - (.Texas Instruments Inc..) [HKLM] -- {C0B7C804-B89F-47F7-91CC-21ACDC7D7AAC}
O42 - Logiciel: Team Fortress 2 - (.Valve.) [HKLM] -- Steam App 440
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM] -- TeamSpeak 3 Client
O42 - Logiciel: TeamViewer 8 - (.TeamViewer.) [HKLM] -- TeamViewer 8
O42 - Logiciel: Terraria - (...) [HKLM] -- Steam App 105600
O42 - Logiciel: TrackMania Nations Forever - (.Nadeo.) [HKLM] -- Steam App 11020
O42 - Logiciel: Transformice - (.UNKNOWN.) [HKLM] -- Transformice
O42 - Logiciel: Transformice - (.UNKNOWN.) [HKLM] -- {7E60A32D-7AD9-7CF6-1378-2FBCDBB37E71}
O42 - Logiciel: Undelete Plus 2.98 - (.Copyright © 2008 Phoenix Technologies • All Rights Reserved.) [HKLM] -- UndeletePlus_is1
O42 - Logiciel: VLC media player 2.0.6 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Vegas Pro 11.0 - (.Sony.) [HKLM] -- {B60CD35E-0296-11E2-945A-F04DA23A5C58}
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Windows Uninstaller 1.5 - (.Alex T..) [HKLM] -- Windows Uninstaller_is1
O42 - Logiciel: World of Tanks - (.Wargaming.net.) [HKLM] -- {1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1
O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}
O42 - Logiciel: avast! Free Antivirus v8.0.1489.0 - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {91FD46D2-4FB7-4A51-8637-556E1BE1DB7C}
O42 - Logiciel: mIRC - (.mIRC Co. Ltd..) [HKLM] -- mIRC
O42 - Logiciel: «Total War™: SHOGUN 2» - (.The Creative Assembly.) [HKLM] -- «Total War™: SHOGUN 2»_is1
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM] -- uTorrent   =>P2P.µTorrent
~ Logic: 166 Scanned in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\Analog Devices]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Avast Software]
[HKCU\Software\BCCP]
[HKCU\Software\BitTorrent]   =>P2P.BitTorrent
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\Borland]
[HKCU\Software\Bugsplat]
[HKCU\Software\CDDB]
[HKCU\Software\CUP]
[HKCU\Software\Canon]
[HKCU\Software\ClassesB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Code Systems]
[HKCU\Software\CodeGear]
[HKCU\Software\DT Soft]
[HKCU\Software\DirectShow]
[HKCU\Software\Elcom]
[HKCU\Software\FLEXlm License Manager]
[HKCU\Software\Google]
[HKCU\Software\HDRsoft]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lachmann]
[HKCU\Software\Lexar Media]
[HKCU\Software\Licenses]
[HKCU\Software\Logitech]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NetifCfgStore]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Ottisoft]
[HKCU\Software\PDF Architect]
[HKCU\Software\PDFCreator]
[HKCU\Software\Pando Networks]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PopCap]
[HKCU\Software\Quadriga Games]
[HKCU\Software\Razer]
[HKCU\Software\S.A.D]
[HKCU\Software\ScienPix]
[HKCU\Software\Skype]
[HKCU\Software\Sony Creative Software]
[HKCU\Software\SpeedFan]
[HKCU\Software\Spoon]
[HKCU\Software\Synaptics]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TeamViewer]
[HKCU\Software\Terraria]
[HKCU\Software\The Creative Assembly]
[HKCU\Software\TouchStoneSoftware]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Wargaming.net]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\YahooPartnersToolbar]
[HKCU\Software\cybelsoft]
[HKCU\Software\holasearch LTD]   =>Hijacker.HolaSearch
[HKCU\Software\mIRC]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Agere]
[HKLM\Software\Analog Devices]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\BcmSetup]
[HKLM\Software\Blizzard Entertainment]
[HKLM\Software\Bunndle]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Code Systems]
[HKLM\Software\DT Soft]
[HKLM\Software\EA Games]
[HKLM\Software\Elcom]
[HKLM\Software\Electronic Arts]
[HKLM\Software\FileZilla 3]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LEGO]
[HKLM\Software\LSI]
[HKLM\Software\Macromedia]
[HKLM\Software\Marvell]
[HKLM\Software\Maxis]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NSIS]
[HKLM\Software\National Instruments]
[HKLM\Software\ODBC]
[HKLM\Software\PDFCreator]
[HKLM\Software\Pando Networks]
[HKLM\Software\Piriform]
[HKLM\Software\PocketSoft]
[HKLM\Software\Policies]
[HKLM\Software\Re-Logic]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Riot Games]
[HKLM\Software\S.A.D]
[HKLM\Software\SCS Software]
[HKLM\Software\SEGA]
[HKLM\Software\SONIX]
[HKLM\Software\Savings Wave]   =>PUP.CrossRider
[HKLM\Software\ScienPix]
[HKLM\Software\Screaming Bee]
[HKLM\Software\Skype]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Creative Software]
[HKLM\Software\Synaptics]
[HKLM\Software\TeamViewer]
[HKLM\Software\Texas Instruments]
[HKLM\Software\TrendMicro]
[HKLM\Software\VST]
[HKLM\Software\VXIPNP_Alliance]
[HKLM\Software\Valve]
[HKLM\Software\VideoLAN]
[HKLM\Software\Waterloo Maple]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
[HKLM\Software\instinno]
[HKLM\Software\mozilla.org]
~ Key Software: 220 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 04/06/2013 - 19:54:47 - [812,653] ----D C:\Program Files\Adobe
O43 - CFD: 10/06/2013 - 17:48:16 - [98,816] ----D C:\Program Files\adslTV
O43 - CFD: 10/12/2012 - 22:33:39 - [1,708] ----D C:\Program Files\Analog Devices
O43 - CFD: 10/12/2012 - 00:25:13 - [2,316] ----D C:\Program Files\Apple Software Update
O43 - CFD: 09/12/2012 - 23:41:21 - [351,545] ----D C:\Program Files\AVAST Software
O43 - CFD: 19/01/2013 - 17:51:46 - [0,000] ----D C:\Program Files\AZPR
O43 - CFD: 10/12/2012 - 00:23:09 - [0,602] ----D C:\Program Files\Bonjour
O43 - CFD: 18/03/2013 - 00:53:13 - [12,106] ----D C:\Program Files\Broadcom
O43 - CFD: 06/01/2013 - 12:30:59 - [6,472] ----D C:\Program Files\Canon
O43 - CFD: 03/03/2013 - 18:29:52 - [5,085] ----D C:\Program Files\CCleaner   =>Piriform Ltd
O43 - CFD: 18/03/2013 - 00:55:16 - [2,558] ----D C:\Program Files\Cisco
O43 - CFD: 09/05/2013 - 11:54:50 - [1480,976] ----D C:\Program Files\Common Files
O43 - CFD: 06/04/2013 - 20:01:30 - [64,220] ----D C:\Program Files\CyberGhost VPN
O43 - CFD: 09/12/2012 - 23:00:52 - [26,561] ----D C:\Program Files\DAEMON Tools Lite
O43 - CFD: 10/12/2012 - 22:50:39 - [79,371] ----D C:\Program Files\DVD Maker
O43 - CFD: 20/01/2013 - 11:51:36 - [0] ----D C:\Program Files\ElcomSoft
O43 - CFD: 09/12/2012 - 22:27:40 - [0] R---D C:\Program Files\Fichiers communs
O43 - CFD: 07/06/2013 - 23:46:21 - [17,310] ----D C:\Program Files\FileZilla FTP Client
O43 - CFD: 20/01/2013 - 11:51:50 - [0,116] ----D C:\Program Files\Free FLV Converter
O43 - CFD: 01/01/2013 - 01:52:39 - [51,834] ----D C:\Program Files\GmoteServer
O43 - CFD: 10/03/2013 - 22:08:01 - [742,633] ----D C:\Program Files\Google
O43 - CFD: 10/12/2012 - 01:43:37 - [28,685] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 01/01/2013 - 01:52:52 - [0,172] --H-D C:\Program Files\InstallJammer Registry
O43 - CFD: 18/03/2013 - 00:32:34 - [30,087] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 18/03/2013 - 00:34:02 - [24,927] ----D C:\Program Files\Intel
O43 - CFD: 15/06/2013 - 22:17:11 - [6,198] ----D C:\Program Files\Internet Explorer
O43 - CFD: 08/06/2013 - 13:57:56 - [1,765] ----D C:\Program Files\iPod
O43 - CFD: 08/06/2013 - 13:58:36 - [157,998] ----D C:\Program Files\iTunes
O43 - CFD: 14/12/2012 - 19:16:52 - [0,317] ----D C:\Program Files\IVI Foundation
O43 - CFD: 21/06/2013 - 19:08:48 - [123,395] ----D C:\Program Files\Java
O43 - CFD: 18/05/2013 - 17:54:59 - [2,361] ----D C:\Program Files\LaBoiteACouleurs
O43 - CFD: 14/12/2012 - 19:17:26 - [326,832] ----D C:\Program Files\LEGO Software
O43 - CFD: 21/05/2013 - 19:09:31 - [3,165] ----D C:\Program Files\LexarMedia
O43 - CFD: 10/12/2012 - 22:05:09 - [0,065] ----D C:\Program Files\LSI SoftModem
O43 - CFD: 09/12/2012 - 23:35:19 - [7,342] ----D C:\Program Files\ma-config.com
O43 - CFD: 27/05/2013 - 17:32:20 - [88,303] ----D C:\Program Files\ManiaPlanet
O43 - CFD: 11/12/2012 - 23:34:57 - [1549,120] ----D C:\Program Files\Maple 16
O43 - CFD: 18/03/2013 - 00:51:46 - [3,895] ----D C:\Program Files\Marvell
O43 - CFD: 17/12/2012 - 22:40:24 - [1193,704] ----D C:\Program Files\Maxis
O43 - CFD: 09/12/2012 - 23:08:58 - [38,002] ----D C:\Program Files\Microsoft Analysis Services
O43 - CFD: 03/03/2013 - 21:21:22 - [390,749] ----D C:\Program Files\Microsoft Games
O43 - CFD: 09/05/2013 - 19:03:08 - [8,929] ----D C:\Program Files\Microsoft Games for Windows - LIVE
O43 - CFD: 09/12/2012 - 23:11:29 - [949,807] ----D C:\Program Files\Microsoft Office
O43 - CFD: 14/03/2013 - 21:43:07 - [40,835] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 09/12/2012 - 23:11:28 - [1,722] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 09/12/2012 - 23:11:28 - [0,757] ----D C:\Program Files\Microsoft Sync Framework
O43 - CFD: 09/12/2012 - 23:11:54 - [0,312] ----D C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 09/12/2012 - 23:09:53 - [1,314] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 06/01/2013 - 13:10:59 - [11,124] ----D C:\Program Files\Microsoft XNA
O43 - CFD: 10/12/2012 - 07:41:13 - [7,797] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 07/06/2013 - 19:40:03 - [3,757] ----D C:\Program Files\mIRC
O43 - CFD: 07/06/2013 - 14:38:09 - [47,143] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 09/05/2013 - 12:00:25 - [0,214] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 09/12/2012 - 23:12:21 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 05/03/2013 - 04:02:44 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 14/12/2012 - 19:16:53 - [0,066] ----D C:\Program Files\National Instruments
O43 - CFD: 14/04/2013 - 21:00:46 - [11,958] ----D C:\Program Files\Notepad++
O43 - CFD: 07/03/2013 - 21:10:47 - [73,125] ----D C:\Program Files\NVIDIA Corporation
O43 - CFD: 09/12/2012 - 22:35:14 - [7,234] ----D C:\Program Files\Pando Networks
O43 - CFD: 17/02/2013 - 19:15:56 - [90,585] ----D C:\Program Files\PDF Architect
O43 - CFD: 17/02/2013 - 19:16:27 - [24,696] ----D C:\Program Files\PDFCreator
O43 - CFD: 03/02/2013 - 13:14:49 - [16,633] ----D C:\Program Files\PhotomatixPro4
O43 - CFD: 07/03/2013 - 20:52:40 - [-1576,743] ----D C:\Program Files\Quadriga Games
O43 - CFD: 28/05/2013 - 18:24:52 - [73,545] ----D C:\Program Files\QuickTime
O43 - CFD: 14/07/2009 - 06:52:30 - [37,357] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 15/06/2013 - 21:06:07 - [18,953] R---D C:\Program Files\Skype
O43 - CFD: 20/04/2013 - 18:57:49 - [438,417] ----D C:\Program Files\Sony
O43 - CFD: 27/04/2013 - 15:10:21 - [5,482] ----D C:\Program Files\SpeedFan
O43 - CFD: 02/01/2013 - 13:35:45 - [0] ----D C:\Program Files\Spoon
O43 - CFD: 05/04/2013 - 22:10:29 - [1109,231] ----D C:\Program Files\StarCraft II
O43 - CFD: 10/06/2013 - 00:44:36 - [297,751] ----D C:\Program Files\Steam
O43 - CFD: 10/12/2012 - 22:29:17 - [32,876] ----D C:\Program Files\Synaptics
O43 - CFD: 23/02/2013 - 19:16:47 - [0,586] ----D C:\Program Files\SystemRequirementsLab
O43 - CFD: 08/04/2013 - 17:46:21 - [59,514] ----D C:\Program Files\TeamSpeak 3 Client
O43 - CFD: 01/04/2013 - 03:35:44 - [31,539] ----D C:\Program Files\TeamViewer
O43 - CFD: 03/05/2013 - 22:39:48 - [518,895] ----D C:\Program Files\The Creative Assembly
O43 - CFD: 05/04/2013 - 20:46:03 - [163,675] ----D C:\Program Files\TI Education
O43 - CFD: 17/04/2013 - 23:01:16 - [1,295] ----D C:\Program Files\TouchStoneSoftware
O43 - CFD: 18/02/2013 - 22:15:42 - [0] ----D C:\Program Files\Traffic Simulator Configuration Tool
O43 - CFD: 03/01/2013 - 20:42:50 - [0,179] ----D C:\Program Files\Transformice
O43 - CFD: 14/07/2009 - 06:53:23 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 04/05/2013 - 03:19:53 - [0,765] ----D C:\Program Files\uTorrent   =>P2P.µTorrent
O43 - CFD: 24/03/2013 - 21:35:44 - [101,902] ----D C:\Program Files\VideoLAN
O43 - CFD: 10/12/2012 - 22:50:37 - [2,909] ----D C:\Program Files\Windows Defender
O43 - CFD: 10/12/2012 - 22:50:38 - [6,689] ----D C:\Program Files\Windows Journal
O43 - CFD: 10/12/2012 - 22:50:39 - [5,895] ----D C:\Program Files\Windows Mail
O43 - CFD: 10/12/2012 - 22:50:38 - [6,298] ----D C:\Program Files\Windows Media Player
O43 - CFD: 09/12/2012 - 22:27:40 - [11,632] ----D C:\Program Files\Windows NT
O43 - CFD: 10/12/2012 - 22:50:38 - [4,213] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 10/12/2012 - 22:50:38 - [0,181] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 10/12/2012 - 22:50:39 - [6,575] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 29/01/2013 - 19:07:24 - [0,831] ----D C:\Program Files\WindowsUninstaller
O43 - CFD: 09/12/2012 - 22:54:26 - [4,131] ----D C:\Program Files\WinRAR
O43 - CFD: 11/12/2012 - 23:31:32 - [0,003] --H-D C:\Program Files\Zero G Registry
O43 - CFD: 21/06/2013 - 21:04:47 - [16,904] ----D C:\Program Files\ZHPDiag
O43 - CFD: 13/12/2012 - 10:14:16 - [660,854] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 27/04/2013 - 04:02:30 - [45,606] ----D C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 08/06/2013 - 13:57:55 - [107,205] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 03/03/2013 - 20:56:19 - [2,912] ----D C:\Program Files\Common Files\Blizzard Entertainment
O43 - CFD: 09/12/2012 - 23:11:53 - [0,095] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 03/03/2013 - 21:18:13 - [4,238] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 18/03/2013 - 18:28:28 - [0,172] ----D C:\Program Files\Common Files\Intel Corporation
O43 - CFD: 09/05/2013 - 11:54:50 - [1,189] ----D C:\Program Files\Common Files\Java
O43 - CFD: 03/03/2013 - 21:48:15 - [0,156] ----D C:\Program Files\Common Files\Microsoft Games
O43 - CFD: 09/05/2013 - 19:02:22 - [244,422] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - 04:37:05 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 22/04/2013 - 00:12:35 - [1,904] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:37:05 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 03/01/2013 - 14:32:22 - [0,388] ----D C:\Program Files\Common Files\Steam
O43 - CFD: 10/12/2012 - 22:50:38 - [10,355] ----D C:\Program Files\Common Files\System
O43 - CFD: 05/04/2013 - 20:46:42 - [103,957] ----D C:\Program Files\Common Files\TI Shared
O43 - CFD: 05/04/2013 - 20:44:19 - [258,320] ----D C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 08/06/2013 - 13:58:36 - [2,446] ----D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 03/01/2013 - 20:43:47 - [478,132] ----D C:\ProgramData\Adobe
O43 - CFD: 23/03/2013 - 20:49:35 - [0] ----D C:\ProgramData\Age of Empires 3
O43 - CFD: 10/12/2012 - 00:47:50 - [85,270] ----D C:\ProgramData\Apple
O43 - CFD: 10/12/2012 - 00:48:48 - [84,425] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 09/12/2012 - 23:41:21 - [38,376] ----D C:\ProgramData\AVAST Software
O43 - CFD: 03/03/2013 - 20:18:48 - [166,869] ----D C:\ProgramData\Battle.net
O43 - CFD: 03/03/2013 - 20:55:35 - [85,912] ----D C:\ProgramData\Blizzard Entertainment
O43 - CFD: 09/12/2012 - 22:27:40 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 07/04/2013 - 15:21:55 - [0] ----D C:\ProgramData\Caphyon
O43 - CFD: 09/12/2012 - 23:05:14 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 09/12/2012 - 22:27:40 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 10/03/2013 - 22:12:28 - [6,940] ----D C:\ProgramData\Google
O43 - CFD: 09/12/2012 - 23:35:16 - [1,288] ----D C:\ProgramData\ma-config.com
O43 - CFD: 01/06/2013 - 22:24:13 - [-2041,741] ----D C:\ProgramData\ManiaPlanet
O43 - CFD: 09/12/2012 - 22:27:40 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 09/05/2013 - 18:59:21 - [726,917] -S--D C:\ProgramData\Microsoft
O43 - CFD: 17/05/2013 - 15:04:56 - [0,132] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 09/12/2012 - 22:27:40 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 06/01/2013 - 23:10:02 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 14/12/2012 - 19:16:52 - [0,011] ----D C:\ProgramData\National Instruments
O43 - CFD: 21/06/2013 - 19:13:16 - [0,026] ----D C:\ProgramData\PMB Files   =>P2P.Pando
O43 - CFD: 05/02/2013 - 10:19:43 - [32,501] ----D C:\ProgramData\PopCap Games
O43 - CFD: 12/12/2012 - 18:20:27 - [0,002] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 05/04/2013 - 20:14:29 - [0,025] ----D C:\ProgramData\SafeNet Sentinel
O43 - CFD: 15/06/2013 - 21:06:13 - [40,684] ----D C:\ProgramData\Skype
O43 - CFD: 10/12/2012 - 22:33:39 - [0,002] ----D C:\ProgramData\SonicFocus
O43 - CFD: 20/04/2013 - 18:57:50 - [0,004] ----D C:\ProgramData\Sony
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 17/12/2012 - 21:13:21 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 05/04/2013 - 20:14:15 - [0,123] ----D C:\ProgramData\TI-Nspire CAS
O43 - CFD: 13/05/2013 - 19:53:53 - [74,748] ----D C:\ProgramData\TrackMania
O43 - CFD: 21/06/2013 - 18:57:48 - [416,806] ----D C:\Users\Yann Pringault\AppData\Roaming\.minecraft
O43 - CFD: 11/04/2013 - 17:57:48 - [0,110] ----D C:\Users\Yann Pringault\AppData\Roaming\.spotflux
O43 - CFD: 03/02/2013 - 13:14:41 - [7,042] ----D C:\Users\Yann Pringault\AppData\Roaming\Adobe
O43 - CFD: 16/12/2012 - 16:34:40 - [107,619] ----D C:\Users\Yann Pringault\AppData\Roaming\Apple Computer
O43 - CFD: 15/04/2013 - 22:35:00 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\Canon
O43 - CFD: 08/01/2013 - 23:18:19 - [1,327] ----D C:\Users\Yann Pringault\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 31/05/2013 - 14:22:38 - [173,956] ----D C:\Users\Yann Pringault\AppData\Roaming\Dashlane
O43 - CFD: 28/04/2013 - 01:29:04 - [0,012] ----D C:\Users\Yann Pringault\AppData\Roaming\Dwarfs
O43 - CFD: 16/06/2013 - 19:20:08 - [0,025] ----D C:\Users\Yann Pringault\AppData\Roaming\FileZilla
O43 - CFD: 03/05/2013 - 16:01:42 - [4,360] ----D C:\Users\Yann Pringault\AppData\Roaming\Firefly Studios
O43 - CFD: 07/01/2013 - 00:26:12 - [0,015] ----D C:\Users\Yann Pringault\AppData\Roaming\FreeFLVConverter
O43 - CFD: 01/01/2013 - 01:52:54 - [0,004] ----D C:\Users\Yann Pringault\AppData\Roaming\Gmote
O43 - CFD: 10/03/2013 - 22:12:28 - [0,014] ----D C:\Users\Yann Pringault\AppData\Roaming\Google
O43 - CFD: 03/02/2013 - 13:14:41 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\HDRsoft
O43 - CFD: 09/12/2012 - 22:28:04 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\Identities
O43 - CFD: 18/03/2013 - 00:32:30 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\InstallShield
O43 - CFD: 18/03/2013 - 18:27:51 - [0,001] ----D C:\Users\Yann Pringault\AppData\Roaming\Intel Corporation
O43 - CFD: 10/12/2012 - 00:44:42 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\LolClient
O43 - CFD: 10/12/2012 - 00:44:40 - [0,062] ----D C:\Users\Yann Pringault\AppData\Roaming\Macromedia
O43 - CFD: 12/12/2012 - 08:11:14 - [0,005] ----D C:\Users\Yann Pringault\AppData\Roaming\Maple
O43 - CFD: 14/07/2009 - 11:00:41 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\Media Center Programs
O43 - CFD: 08/05/2013 - 23:39:25 - [11,960] -S--D C:\Users\Yann Pringault\AppData\Roaming\Microsoft
O43 - CFD: 07/06/2013 - 22:07:25 - [0,252] ----D C:\Users\Yann Pringault\AppData\Roaming\mIRC
O43 - CFD: 06/01/2013 - 23:10:51 - [18,205] ----D C:\Users\Yann Pringault\AppData\Roaming\Mozilla
O43 - CFD: 14/04/2013 - 21:01:02 - [0,445] ----D C:\Users\Yann Pringault\AppData\Roaming\Notepad++
O43 - CFD: 17/02/2013 - 23:10:45 - [0,291] ----D C:\Users\Yann Pringault\AppData\Roaming\Orbit Xplorer Demo
O43 - CFD: 17/02/2013 - 20:11:54 - [0,085] ----D C:\Users\Yann Pringault\AppData\Roaming\PDF Architect
O43 - CFD: 20/04/2013 - 19:08:15 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\Publish Providers
O43 - CFD: 22/04/2013 - 01:36:20 - [0,011] ----D C:\Users\Yann Pringault\AppData\Roaming\Screaming Bee
O43 - CFD: 20/06/2013 - 00:51:06 - [22,180] ----D C:\Users\Yann Pringault\AppData\Roaming\Skype
O43 - CFD: 25/04/2013 - 17:09:45 - [0,829] ----D C:\Users\Yann Pringault\AppData\Roaming\Sony
O43 - CFD: 07/04/2013 - 15:16:22 - [5,026] ----D C:\Users\Yann Pringault\AppData\Roaming\Spotflux
O43 - CFD: 13/04/2013 - 20:48:40 - [65,565] ----D C:\Users\Yann Pringault\AppData\Roaming\Spotify
O43 - CFD: 23/02/2013 - 19:16:39 - [0,339] ----D C:\Users\Yann Pringault\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 07/06/2013 - 14:14:01 - [0,010] ----D C:\Users\Yann Pringault\AppData\Roaming\TeamViewer
O43 - CFD: 05/04/2013 - 20:17:39 - [0,044] ----D C:\Users\Yann Pringault\AppData\Roaming\Texas Instruments
O43 - CFD: 04/05/2013 - 02:15:06 - [0,090] ----D C:\Users\Yann Pringault\AppData\Roaming\The Creative Assembly
O43 - CFD: 05/04/2013 - 20:23:21 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\TI-Nspire
O43 - CFD: 03/01/2013 - 20:43:59 - [0,000] ----D C:\Users\Yann Pringault\AppData\Roaming\Transformice
O43 - CFD: 21/06/2013 - 20:05:41 - [12,096] ----D C:\Users\Yann Pringault\AppData\Roaming\TS3Client
O43 - CFD: 06/05/2013 - 17:56:26 - [1,088] ----D C:\Users\Yann Pringault\AppData\Roaming\ts3overlay
O43 - CFD: 21/06/2013 - 17:35:58 - [4,019] ----D C:\Users\Yann Pringault\AppData\Roaming\uTorrent   =>P2P.µTorrent
O43 - CFD: 07/06/2013 - 14:41:33 - [0,072] ----D C:\Users\Yann Pringault\AppData\Roaming\vlc
O43 - CFD: 29/03/2013 - 00:31:26 - [0,260] ----D C:\Users\Yann Pringault\AppData\Roaming\Wargaming.net
O43 - CFD: 14/12/2012 - 21:15:33 - [0,000] ----D C:\Users\Yann Pringault\AppData\Roaming\WinRAR
O43 - CFD: 04/03/2013 - 22:09:35 - [0,027] ----D C:\Users\Yann Pringault\AppData\Roaming\YoudaGames
O43 - CFD: 21/06/2013 - 17:43:01 - [18,243] ----D C:\Users\Yann Pringault\AppData\Local\Adobe
O43 - CFD: 10/12/2012 - 00:25:24 - [0] ----D C:\Users\Yann Pringault\AppData\Local\Apple
O43 - CFD: 10/12/2012 - 00:50:10 - [25,646] ----D C:\Users\Yann Pringault\AppData\Local\Apple Computer
O43 - CFD: 09/12/2012 - 22:27:56 - [0] ----D C:\Users\Yann Pringault\AppData\Local\Application Data
O43 - CFD: 09/12/2012 - 22:31:03 - [1,552] ----D C:\Users\Yann Pringault\AppData\Local\Apps
O43 - CFD: 04/05/2013 - 02:18:39 - [0,000] ----D C:\Users\Yann Pringault\AppData\Local\Chromium
O43 - CFD: 09/12/2012 - 22:31:25 - [0] ----D C:\Users\Yann Pringault\AppData\Local\Deployment
O43 - CFD: 27/05/2013 - 10:12:04 - [0] ----D C:\Users\Yann Pringault\AppData\Local\ElevatedDiagnostics
O43 - CFD: 20/05/2013 - 13:39:00 - [42,737] ----D C:\Users\Yann Pringault\AppData\Local\Focus Home Interactive
O43 - CFD: 03/05/2013 - 16:02:02 - [1,079] ----D C:\Users\Yann Pringault\AppData\Local\Geckofx
O43 - CFD: 03/01/2013 - 17:29:40 - [1347,725] ----D C:\Users\Yann Pringault\AppData\Local\Google
O43 - CFD: 09/12/2012 - 22:27:56 - [0] ----D C:\Users\Yann Pringault\AppData\Local\Historique
O43 - CFD: 03/03/2013 - 01:42:48 - [0] ----D C:\Users\Yann Pringault\AppData\Local\Macromedia
O43 - CFD: 09/05/2013 - 19:54:57 - [524,549] ----D C:\Users\Yann Pringault\AppData\Local\Microsoft
O43 - CFD: 09/12/2012 - 23:08:12 - [0] ----D C:\Users\Yann Pringault\AppData\Local\Microsoft Help
O43 - CFD: 06/01/2013 - 23:10:39 - [359,511] ----D C:\Users\Yann Pringault\AppData\Local\Mozilla
O43 - CFD: 21/06/2013 - 21:07:39 - [0,195] ----D C:\Users\Yann Pringault\AppData\Local\PMB Files   =>P2P.Pando
O43 - CFD: 29/01/2013 - 19:07:14 - [34,608] ----D C:\Users\Yann Pringault\AppData\Local\Programs
O43 - CFD: 07/03/2013 - 21:08:59 - [0,066] ----D C:\Users\Yann Pringault\AppData\Local\Quadriga Games
O43 - CFD: 25/04/2013 - 22:30:59 - [0] ----D C:\Users\Yann Pringault\AppData\Local\Savings Wave   =>PUP.CrossRider
O43 - CFD: 02/03/2013 - 03:36:05 - [0] ----D C:\Users\Yann Pringault\AppData\Local\SCE
O43 - CFD: 22/04/2013 - 01:53:21 - [0,000] ----D C:\Users\Yann Pringault\AppData\Local\SkypeFx
O43 - CFD: 20/04/2013 - 18:57:50 - [1,455] ----D C:\Users\Yann Pringault\AppData\Local\Sony
O43 - CFD: 02/01/2013 - 13:35:42 - [0,017] ----D C:\Users\Yann Pringault\AppData\Local\Spoon
O43 - CFD: 13/04/2013 - 20:36:10 - [128,907] ----D C:\Users\Yann Pringault\AppData\Local\Spotify
O43 - CFD: 21/06/2013 - 21:07:39 - [1061,103] ----D C:\Users\Yann Pringault\AppData\Local\Temp
O43 - CFD: 09/12/2012 - 22:27:56 - [0] ----D C:\Users\Yann Pringault\AppData\Local\Temporary Internet Files
O43 - CFD: 17/04/2013 - 23:01:27 - [0,029] ----D C:\Users\Yann Pringault\AppData\Local\TouchStoneSoftware
O43 - CFD: 09/12/2012 - 22:27:57 - [0] ----D C:\Users\Yann Pringault\AppData\Local\VirtualStore
O43 - CFD: 20/12/2012 - 01:17:59 - [0,000] ----D C:\Users\Yann Pringault\AppData\Local\Xenocode
O43 - CFD: 14/07/2009 - 06:42:04 - [0,014] R---D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 18/05/2013 - 01:14:35 - [0,000] R---D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 10/06/2013 - 17:48:16 - [0,011] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
O43 - CFD: 11/03/2013 - 21:56:27 - [0,002] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
O43 - CFD: 28/04/2013 - 18:49:01 - [0,001] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 01/01/2013 - 01:52:40 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GmoteServer
O43 - CFD: 14/07/2009 - 06:37:42 - [0,001] R---D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/12/2012 - 23:59:00 - [0,001] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Music Manager
O43 - CFD: 14/04/2013 - 21:00:40 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 07/03/2013 - 21:09:00 - [0,008] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Quadriga Games
O43 - CFD: 30/03/2013 - 19:34:22 - [0] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
O43 - CFD: 03/03/2013 - 20:12:41 - [0,001] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StarCraft II
O43 - CFD: 18/05/2013 - 01:14:35 - [0,000] R---D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 30/03/2013 - 01:17:10 - [0,002] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 09/12/2012 - 22:54:26 - [0,003] ----D C:\Users\Yann Pringault\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 240 Scanned in 02mn 32s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.9CEC47E9E106BE697F49B1395205BD50] - 21/06/2013 - 18:34:12 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1958946]
O44 - LFC:[MD5.3E7A531ED5303AE7F05DDD2615055522] - 21/06/2013 - 18:08:50 ---A- . (...) -- C:\Windows\System32\jupdate-1.7.0_25-b16.log   [4252]
O44 - LFC:[MD5.59DCDF507344A0CB50DB84A11404CD66] - 21/06/2013 - 16:41:03 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1673078]
O44 - LFC:[MD5.795D80DAB26E26DCC4739BCC474950C4] - 21/06/2013 - 16:41:03 ---A- . (...) -- C:\Windows\System32\perfc009.dat   [122514]
O44 - LFC:[MD5.391A3C949C9122746A4981F9AA943B59] - 21/06/2013 - 16:41:03 ---A- . (...) -- C:\Windows\System32\perfc00C.dat   [150260]
O44 - LFC:[MD5.524EC54D9AB7BA5C41A0BA258532D25B] - 21/06/2013 - 16:41:03 ---A- . (...) -- C:\Windows\System32\perfh009.dat   [656144]
O44 - LFC:[MD5.A09FD38DDC10C95C5EF22EB664DF924C] - 21/06/2013 - 16:41:03 ---A- . (...) -- C:\Windows\System32\perfh00C.dat   [749154]
O44 - LFC:[MD5.619C852A21609FC138A29BB0672ABC3A] - 21/06/2013 - 16:32:35 ---A- . (...) -- C:\Windows\setupact.log   [38732]
O44 - LFC:[MD5.AF96D4C037B71E2E0150820A568F95BA] - 21/06/2013 - 16:32:31 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [3902480]
O44 - LFC:[MD5.3E78FACE3EE9BD801A8BFF598832E9DF] - 21/06/2013 - 16:32:23 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.BF4B063A55537D3510B649939598843A] - 13/06/2013 - 19:03:44 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe   [73381792]
O44 - LFC:[MD5.091C7153A1292F19BE34FAC07FFF12EC] - 13/06/2013 - 19:01:32 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll   [690688]
O44 - LFC:[MD5.97FA62873FF759574B20DF39FF22CC27] - 13/06/2013 - 19:01:29 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll   [2877440]
O44 - LFC:[MD5.4395AC0BC02009AFAAB01368BA38AF30] - 13/06/2013 - 19:01:28 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll   [39424]
O44 - LFC:[MD5.A10E7B582DEA86572510CB73CCCECA34] - 13/06/2013 - 19:01:27 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll   [61440]
O44 - LFC:[MD5.0FEED965B909BA2D210CE78C21626A69] - 13/06/2013 - 19:01:24 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll   [493056]
O44 - LFC:[MD5.64DF9B793072A53F245515E08D8F5E37] - 13/06/2013 - 19:01:24 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe   [42496]
O44 - LFC:[MD5.9593EA1AE5F39C1174B532213D47664B] - 13/06/2013 - 19:01:23 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll   [109056]
O44 - LFC:[MD5.CE3EC9D85ED88ED4AD948B90BB9ED31D] - 13/06/2013 - 19:01:23 ---A- . (.Microsoft Corporation - Registers custom PKEYs for IE.) -- C:\Windows\System32\RegisterIEPKEYs.exe   [71680]
O44 - LFC:[MD5.DD09C65E52F3D5574F9774EE0D4DAA57] - 13/06/2013 - 19:01:23 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll   [33280]
O44 - LFC:[MD5.2473CA6595A2659D7039A4A89FECA269] - 13/06/2013 - 19:01:15 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll   [1767936]
O44 - LFC:[MD5.2EE9DCAE1D70ABF4D058688DE35F8221] - 12/06/2013 - 20:48:23 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\System32\npDeployJava1.dll   [867240]
O44 - LFC:[MD5.A685C8F01D011F40F5751277793816CA] - 12/06/2013 - 20:48:17 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\deployJava1.dll   [789416]
O44 - LFC:[MD5.C344CA4A4B7A8742F70E8A583FECA2B8] - 12/06/2013 - 20:48:00 ---A- . (.Oracle Corporation - Pas de description.) -- C:\Windows\System32\WindowsAccessBridge.dll   [94632]
O44 - LFC:[MD5.F00F7D565B8FBAABD2E1A1224D3CEEE6] - 12/06/2013 - 20:43:48 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe   [263592]
O44 - LFC:[MD5.CDE345C0035DC9CFB6960C542B0C2489] - 12/06/2013 - 20:43:44 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe   [175016]
O44 - LFC:[MD5.9769BD49B3F8D6DF0B972E783FAC8D37] - 12/06/2013 - 20:43:25 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe   [175016]
O44 - LFC:[MD5.9229CC932F2F1C5BC384006C969B00A5] - 12/06/2013 - 20:32:40 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe   [692104]
O44 - LFC:[MD5.F4EEFAA7FE643E45A15C678DA0EFB0AB] - 12/06/2013 - 20:32:40 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl   [71048]
O44 - LFC:[MD5.6DE66FE7C526637E74CD066461C7C871] - 12/06/2013 - 11:49:36 ---A- . (.Microsoft Corporation - Direct3D 11 Runtime.) -- C:\Windows\System32\d3d11.dll   [1505280]
O44 - LFC:[MD5.45FBAFFA68CBC29AC2563985CEE72B9C] - 12/06/2013 - 11:49:29 ---A- . (.Microsoft Corporation - Dialogues communs de certificats Microsoft.) -- C:\Windows\System32\cryptdlg.dll   [24576]
O44 - LFC:[MD5.FC415B303B1ECF80B5F130A1F7203D02] - 12/06/2013 - 11:49:21 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll   [492544]
O44 - LFC:[MD5.0D52559AEF4AA5EAC82F530617032283] - 12/06/2013 - 11:49:13 ---A- . (.Microsoft Corporation - CertUtil.exe.) -- C:\Windows\System32\certutil.exe   [903168]
O44 - LFC:[MD5.92245C959E5BC378809D2CC5E9F6E9C7] - 12/06/2013 - 11:49:12 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll   [1160192]
O44 - LFC:[MD5.CC917AC4D3F8756FF13174980B474791] - 12/06/2013 - 11:49:11 ---A- . (.Microsoft Corporation - Active Directory Certificate Services Encod.) -- C:\Windows\System32\certenc.dll   [43008]
O44 - LFC:[MD5.8A8B277067C22F4BF6AA9A31692FC4D3] - 12/06/2013 - 11:49:11 ---A- . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll   [103936]
O44 - LFC:[MD5.3897DFF247D9ED0006190349DE264E14] - 12/06/2013 - 11:49:11 ---A- . (.Microsoft Corporation - Services de chiffrement.) -- C:\Windows\System32\cryptsvc.dll   [140288]
O44 - LFC:[MD5.5B2E4E90C04FB9AE9F2C5E99FF59B283] - 12/06/2013 - 11:49:05 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll   [1230336]
O44 - LFC:[MD5.3F63CF7DF313428CA9C5D1F410DF4645] - 12/06/2013 - 11:49:01 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntkrnlpa.exe   [3968872]
O44 - LFC:[MD5.575DDD83B40880E1DEB48758673BDA71] - 12/06/2013 - 11:49:01 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe   [3913576]
O44 - LFC:[MD5.D32FDAC73FCD76B85389C39BC1087F2A] - 12/06/2013 - 11:48:58 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys   [1293672]
O44 - LFC:[MD5.061BD747AC185ED677AC9C326A6FCBB7] - 10/06/2013 - 16:46:09 ---A- . (...) -- C:\Windows\PFRO.log   [22486]
O44 - LFC:[MD5.B3DC4D1658093C1E486CA9F22180BECF] - 08/06/2013 - 12:42:19 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll   [1141248]
O44 - LFC:[MD5.05920BD009621D06722A1CD339DA6481] - 08/06/2013 - 12:40:35 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll   [14327808]
O44 - LFC:[MD5.5E2D9C88284AA3BECF15BEA0920A1903] - 08/06/2013 - 12:40:02 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll   [391168]
O44 - LFC:[MD5.F383B1AD5D7FDC1ACB0D900B50572F8D] - 08/06/2013 - 12:40:02 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll   [2046976]
O44 - LFC:[MD5.FCA0837B2739C044EEC00AF0DDD73FFC] - 08/06/2013 - 12:40:01 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll   [13760512]
O44 - LFC:[MD5.F67B1B348CBBCB60DAEC276712582E8C] - 08/06/2013 - 12:13:19 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb   [2706432]
~ Files: 48 Scanned in 00mn 22s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.9F6CF4E2C5E92F137710DA68ABD1F607] - 17/06/2013 - 06:17:33 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.19CD17AB3810DFE30F0CB779A91000D7] - 17/06/2013 - 18:05:49 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.C8E73746FC5287A468E618BB3D393DCB] - 17/06/2013 - 18:07:59 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.CC4D7431479006764DEDEF118F137FE9] - 18/06/2013 - 19:57:33 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:[MD5.27A643AA4D2D365FC5A3BC8A18497A75] - 18/06/2013 - 23:00:01 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf
O45 - LFCP:[MD5.504022631A669826395EB190D7196B9E] - 18/06/2013 - 23:30:10 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf
O45 - LFCP:[MD5.F50DCD943BC09BAF0DC64A1A999BBB85] - 19/06/2013 - 14:43:47 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-8408049E.pf
O45 - LFCP:[MD5.41CE6AC47AFA6328BF8ABA05CA2F1A1E] - 19/06/2013 - 15:49:40 ---A- - C:\Windows\Prefetch\GEPLUGIN.EXE-92045D26.pf
O45 - LFCP:[MD5.771BB9F138693C7E9CC6677C1060D2D3] - 19/06/2013 - 17:12:29 ---A- - C:\Windows\Prefetch\OUTLOOK.EXE-056DDE0F.pf
O45 - LFCP:[MD5.3010431B0E867823AEA00A00972EE9FD] - 19/06/2013 - 17:43:27 ---A- - C:\Windows\Prefetch\SKYPE.EXE-4929A84C.pf
O45 - LFCP:[MD5.FB97FC3F615013FF4EBBC22F9C384525] - 19/06/2013 - 17:43:42 ---A- - C:\Windows\Prefetch\UPDATER.EXE-AC3844D8.pf
O45 - LFCP:[MD5.4A98F6C263F46E8F570917EAE31B6EF0] - 19/06/2013 - 17:44:35 ---A- - C:\Windows\Prefetch\IASTORUI.EXE-F42E46C6.pf
O45 - LFCP:[MD5.7E6DA4FA22A2E5072BA38505BDB04977] - 19/06/2013 - 18:09:11 ---A- - C:\Windows\Prefetch\AUTOKMS.EXE-7CC2D49E.pf
O45 - LFCP:[MD5.7093203C84086B3111788A06456243F0] - 19/06/2013 - 19:41:20 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.95999521579F8AA50BECA22785F73712] - 19/06/2013 - 19:43:44 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf
O45 - LFCP:[MD5.5005943B734AB42E76CD86E859A85952] - 19/06/2013 - 19:54:25 ---A- - C:\Windows\Prefetch\28.0.1500.52_28.0.1500.44_CHR-BC5CD8EB.pf
O45 - LFCP:[MD5.678BBAB793775E558D6D862A4F0B3FFE] - 19/06/2013 - 19:54:33 ---A- - C:\Windows\Prefetch\SETUP.EXE-9E85CE06.pf
O45 - LFCP:[MD5.22CD9298C91ABD2281DF744845256AFF] - 19/06/2013 - 20:27:16 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.1AE5A7ADFF1E182CF5DD4CB7088695AB] - 19/06/2013 - 20:27:16 ---A- - C:\Windows\Prefetch\SETUP.EXE-FBEDF466.pf
O45 - LFCP:[MD5.E1F164EAE3497EEAAD34EF01EC8AC45C] - 19/06/2013 - 20:27:39 ---A- - C:\Windows\Prefetch\LOL.LAUNCHER.EXE-4C860503.pf
O45 - LFCP:[MD5.6DAD75835CE3BF295A68188A6C689341] - 19/06/2013 - 20:28:21 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.14477267A24429BC5898DF66212788F2] - 19/06/2013 - 20:31:03 ---A- - C:\Windows\Prefetch\LOLLAUNCHER.EXE-DE7CACEF.pf
O45 - LFCP:[MD5.306ED8C4163FB4E5BC103C4A94B1C867] - 19/06/2013 - 20:32:08 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-557600276-3585783605-1701498537-1001.db
O45 - LFCP:[MD5.6F8FC46E3A5ED9AB7D7D12311A0A445F] - 19/06/2013 - 20:32:13 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-557600276-3585783605-1701498537-1001.db
O45 - LFCP:[MD5.0368DCF18952101B692BE9FAEF7BFE74] - 19/06/2013 - 20:36:02 ---A- - C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf
O45 - LFCP:[MD5.8344559887A7274143FDFC12805CA435] - 19/06/2013 - 20:36:06 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf
O45 - LFCP:[MD5.A84649995F16C1D620D0235DD55C69BF] - 19/06/2013 - 20:36:07 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C4E7262A.pf
O45 - LFCP:[MD5.2AB8BB67DB35FF7190FADA2783180F7C] - 19/06/2013 - 21:13:22 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-1BC31905.pf
O45 - LFCP:[MD5.B4A9CD8C7B1DDD412232C6D15C76F69C] - 19/06/2013 - 21:13:25 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-8D0F82C9.pf
O45 - LFCP:[MD5.B80689F90241EC85C1D985BAE41A4D9A] - 19/06/2013 - 21:53:45 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf
O45 - LFCP:[MD5.20A46121A9747DF2A5557DD13EAC5DC2] - 20/06/2013 - 00:31:08 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:[MD5.B83E2FE08F901409B8CA2B6F2C4E5309] - 21/06/2013 - 16:34:29 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf
O45 - LFCP:[MD5.3465C0455586CBBC877FF8EB3D440A70] - 21/06/2013 - 16:34:29 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5901D5E8.pf
O45 - LFCP:[MD5.F90E6C982B1C6275146237B925251F7D] - 21/06/2013 - 16:34:29 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-63699C7D.pf
O45 - LFCP:[MD5.73378975BFFD5AFB54CA3AA96465906C] - 21/06/2013 - 16:34:29 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-A1476A17.pf
O45 - LFCP:[MD5.6EEB4FAB97E19F78A424E635F4FA0F71] - 21/06/2013 - 16:34:29 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-CF79EE4C.pf
O45 - LFCP:[MD5.C3FEC10FF36B12C5014094919D60AD74] - 21/06/2013 - 16:34:29 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-E1E0ACE0.pf
O45 - LFCP:[MD5.42F3E578C2CEA1BC45FF6CFFF9D20AE5] - 21/06/2013 - 16:34:29 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-E2D039A7.pf
O45 - LFCP:[MD5.C44FFEB94404C35D4DFAE0A9D4EFB1D1] - 21/06/2013 - 16:34:43 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf
O45 - LFCP:[MD5.906051D0742BB79C3324F4D47B2E88F4] - 21/06/2013 - 16:34:44 ---A- - C:\Windows\Prefetch\IASTORICON.EXE-6F90A965.pf
O45 - LFCP:[MD5.8D3F3FD48AE4BD0AC935F557CFAFC142] - 21/06/2013 - 16:34:45 ---A- - C:\Windows\Prefetch\IPODSERVICE.EXE-37C43D64.pf
O45 - LFCP:[MD5.B606308E97D565480BD37F34FA2DC8E1] - 21/06/2013 - 16:34:46 ---A- - C:\Windows\Prefetch\HPQWMIEX.EXE-AAEB776C.pf
O45 - LFCP:[MD5.9172E0EF47AB76D697AB89818B68A1C7] - 21/06/2013 - 16:34:46 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf
O45 - LFCP:[MD5.0B37474D7FE4D71E1FB56135200137FB] - 21/06/2013 - 16:34:57 ---A- - C:\Windows\Prefetch\AVAST.SETUP-B1D66586.pf
O45 - LFCP:[MD5.ED58B5D7EA01B8FE38C9412F67490881] - 21/06/2013 - 16:35:15 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-6EF4B603.pf
O45 - LFCP:[MD5.170F12CB29F571A9392EC83F2621B87F] - 21/06/2013 - 16:35:23 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-3B5B9E84.pf
O45 - LFCP:[MD5.23C7ED79F5F3024A9FA4528E8F1422D1] - 21/06/2013 - 16:36:09 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.60887BECE79EC600B55747EE3F3F3A3F] - 21/06/2013 - 16:36:20 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf
O45 - LFCP:[MD5.C1E53F499B93AEE81471E3DE794725C8] - 21/06/2013 - 16:36:21 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-67E8628C.pf
O45 - LFCP:[MD5.9A62C486C1EF284D8B5B4FDB78AD8CD0] - 21/06/2013 - 16:36:25 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf
O45 - LFCP:[MD5.03EA761278FDA598953C5F8C94533E1E] - 21/06/2013 - 16:36:29 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-05F624AB.pf
O45 - LFCP:[MD5.467A8AA711584818485B0D5A90DECEAA] - 21/06/2013 - 16:36:31 ---A- - C:\Windows\Prefetch\SETUP.EXE-38F51CB9.pf
O45 - LFCP:[MD5.DDB383284D4790E1A06156E18F17BED9] - 21/06/2013 - 16:36:33 ---A- - C:\Windows\Prefetch\RADS_USER_KERNEL.EXE-9DAAF573.pf
O45 - LFCP:[MD5.AC4A83826075D6EE0FB4D0CF819BF5C8] - 21/06/2013 - 16:36:35 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf
O45 - LFCP:[MD5.B8EB5EFD9B7EFAD00BCC4F856F58C2CB] - 21/06/2013 - 16:36:37 ---A- - C:\Windows\Prefetch\LOLLAUNCHER.EXE-EC740CC9.pf
O45 - LFCP:[MD5.B6CC1803A411C57D494CA77B177F2A8E] - 21/06/2013 - 16:36:59 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf
O45 - LFCP:[MD5.D6EA22F0781C9DFB343AA17025EF6C10] - 21/06/2013 - 16:37:06 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.99FF945DEE15EBCB47EA8D69F0B73E84] - 21/06/2013 - 16:37:11 ---A- - C:\Windows\Prefetch\VBC.EXE-7A16F53F.pf
O45 - LFCP:[MD5.F9151D350EF879C0ED1854A780874586] - 21/06/2013 - 16:37:12 ---A- - C:\Windows\Prefetch\TEAMVIEWER.EXE-53E59FDA.pf
O45 - LFCP:[MD5.CECD2B1DEA010DFBE619F49993FEBC32] - 21/06/2013 - 16:37:21 ---A- - C:\Windows\Prefetch\LOLCLIENT.EXE-B9C7CB35.pf
O45 - LFCP:[MD5.191AEB95D28A1965BAD0C5D4D68C1E71] - 21/06/2013 - 16:37:22 ---A- - C:\Windows\Prefetch\CSC.EXE-4C85A8F6.pf
O45 - LFCP:[MD5.FC9CF699F45D69E3109F9C8F61C2CFAE] - 21/06/2013 - 16:37:22 ---A- - C:\Windows\Prefetch\CVTRES.EXE-CDAB491C.pf
O45 - LFCP:[MD5.21BF017EB7091D095F68912AA29341F7] - 21/06/2013 - 16:37:23 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf
O45 - LFCP:[MD5.D250EB8618D03E93336748F0240FF19D] - 21/06/2013 - 16:37:28 ---A- - C:\Windows\Prefetch\TV_W32.EXE-C1F4168E.pf
O45 - LFCP:[MD5.AA5A039E775B652F370E8169230A16FD] - 21/06/2013 - 16:37:43 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.43E83F3DB595ECE28874E4EA1938733D] - 21/06/2013 - 16:38:00 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf
O45 - LFCP:[MD5.E892923C0596DFAA88B1396CB9600297] - 21/06/2013 - 16:38:43 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-8AA244A9.pf
O45 - LFCP:[MD5.6F1CE751766D976873AF6F1ED48B15BB] - 21/06/2013 - 16:38:51 ---A- - C:\Windows\Prefetch\JUCHECK.EXE-C527D46E.pf
O45 - LFCP:[MD5.4B05030EE370807C18AA271A59F7725D] - 21/06/2013 - 16:39:27 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.77FC8104801936E3E808BF581873419D] - 21/06/2013 - 16:41:47 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:[MD5.A323F3801F47D5E29026E18149863781] - 21/06/2013 - 16:41:48 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.153.22.0.EXE-1698BF26.pf
O45 - LFCP:[MD5.1B40D21B809D2DF28068651B6C5CAF0F] - 21/06/2013 - 16:41:52 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-C4A32CB8.pf
O45 - LFCP:[MD5.E87CD4084F484B3F6362C6B211F76144] - 21/06/2013 - 16:41:53 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf
O45 - LFCP:[MD5.73380633342A99BEDDC2DD1C44DEB63C] - 21/06/2013 - 16:45:49 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.22674BE937F216C4CCD8713F32F8E093] - 21/06/2013 - 16:45:59 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-A3E35360.pf
O45 - LFCP:[MD5.D6F871F357F048DF7F19843011247DFA] - 21/06/2013 - 16:55:19 ---A- - C:\Windows\Prefetch\TS3CLIENT_WIN32.EXE-D6C9A946.pf
O45 - LFCP:[MD5.56576C116A2156485256304CA338C248] - 21/06/2013 - 17:38:22 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf
O45 - LFCP:[MD5.5E1FC90E3071E7241716637BBC1F6DF7] - 21/06/2013 - 17:54:26 ---A- - C:\Windows\Prefetch\JAVA.EXE-633ED9BF.pf
O45 - LFCP:[MD5.B737AD1A2AD8DC9F26C75961299DE04E] - 21/06/2013 - 18:00:16 ---A- - C:\Windows\Prefetch\MSHTA.EXE-A970B441.pf
O45 - LFCP:[MD5.3EF2C99D06DC046DEF2938871C6D5BE0] - 21/06/2013 - 18:01:38 ---A- - C:\Windows\Prefetch\MAGICLAUNCHER_1.1.4.EXE-F9755D8F.pf
O45 - LFCP:[MD5.8C4495EA7017BF77C010714D7B342FF5] - 21/06/2013 - 18:04:06 ---A- - C:\Windows\Prefetch\JRE-7U25-WINDOWS-I586-IFTW.EX-21A84D89.pf
O45 - LFCP:[MD5.32DDA3C3D1AD1CBF674013F3F6ADCFE8] - 21/06/2013 - 18:06:01 ---A- - C:\Windows\Prefetch\MSI1614.TMP-2F941390.pf
O45 - LFCP:[MD5.46AE55D1A3119F5E4261E67F0117182C] - 21/06/2013 - 18:06:16 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:[MD5.5485B85C2813FF4FE8338E8B82B9716D] - 21/06/2013 - 18:06:18 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:[MD5.CDA1E93A3B9C985FC292E0C2A0B4F0C6] - 21/06/2013 - 18:07:15 ---A- - C:\Windows\Prefetch\MSI51AA.TMP-53D87BD4.pf
O45 - LFCP:[MD5.09FD88BC121A3EC5FAA55A3A3D3F76A9] - 21/06/2013 - 18:07:27 ---A- - C:\Windows\Prefetch\JQS.EXE-E49AF94B.pf
O45 - LFCP:[MD5.201B3637CFDE705DC93E81F2F1D4F61C] - 21/06/2013 - 18:07:45 ---A- - C:\Windows\Prefetch\PATCHJRE.EXE-5224F0C1.pf
O45 - LFCP:[MD5.A93721755E323A443BEC8D849DBC367E] - 21/06/2013 - 18:08:53 ---A- - C:\Windows\Prefetch\JAVAW.EXE-2699CD1A.pf
O45 - LFCP:[MD5.4A58E427188A558990A5FC2348B54C74] - 21/06/2013 - 18:09:06 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf
O45 - LFCP:[MD5.390E25FF2AC41C24EC3C87E49D9B0C7E] - 21/06/2013 - 18:09:07 ---A- - C:\Windows\Prefetch\JAUREG.EXE-171665BB.pf
O45 - LFCP:[MD5.AC99786380A4243365500BCF7354FF39] - 21/06/2013 - 18:13:26 ---A- - C:\Windows\Prefetch\LEAGUE OF LEGENDS.EXE-83C5A3CF.pf
O45 - LFCP:[MD5.780BCC82DFB2E98A8A18C192C8F02113] - 21/06/2013 - 18:15:33 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf
O45 - LFCP:[MD5.DF892A0C3D28D4A3BEBE8D9E81863065] - 21/06/2013 - 18:15:45 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-5F5F473D.pf
O45 - LFCP:[MD5.08A59B0D89F360DC985E65C94CFA7411] - 21/06/2013 - 18:55:35 ---A- - C:\Windows\Prefetch\PMB.EXE-BFCEBC66.pf
O45 - LFCP:[MD5.1237CBD54490544768F7D9B912BD98C3] - 21/06/2013 - 19:05:22 ---A- - C:\Windows\Prefetch\ITUNES.EXE-2A42B776.pf
O45 - LFCP:[MD5.447DD2DA77C40F88CE8E014A11888AA4] - 21/06/2013 - 19:05:46 ---A- - C:\Windows\Prefetch\APPLEMOBILEDEVICEHELPER.EXE-96A367D7.pf
O45 - LFCP:[MD5.65C6D29FD289B4FEAFA96E31A3A63206] - 21/06/2013 - 19:05:53 ---A- - C:\Windows\Prefetch\DISTNOTED.EXE-BFFB20F1.pf
O45 - LFCP:[MD5.F6D5BAC498A0C7BF8489B66264D148EC] - 21/06/2013 - 19:06:10 ---A- - C:\Windows\Prefetch\APSDAEMON.EXE-6E0EB72B.pf
O45 - LFCP:[MD5.437B878CEEC36C760E3D458F6625A80D] - 21/06/2013 - 19:12:01 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-D2054C53.pf
O45 - LFCP:[MD5.42DE116A5CA995C29ED6CB07AA3919FB] - 21/06/2013 - 19:15:41 ---A- - C:\Windows\Prefetch\DASHLANE.EXE-7BABE6C1.pf
O45 - LFCP:[MD5.B755C0EE99551273E4A015D1E4C20077] - 21/06/2013 - 19:19:14 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.75FF51E6384AB00FCAC5A289258FA65E] - 21/06/2013 - 19:20:01 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4F28A26F.pf
O45 - LFCP:[MD5.23516076DAC0EA32DEB6D848FB16506E] - 21/06/2013 - 19:23:40 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.A6E15B931BE70085321CB2BAE73061BE] - 21/06/2013 - 19:23:40 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.44C122158E95DE317E22E5F896096611] - 21/06/2013 - 19:24:37 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-56A9B19C.pf
O45 - LFCP:[MD5.4FE2D7D041FEC4BCD3BD640B7D5CC6A0] - 21/06/2013 - 19:30:04 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-ECAD9571.pf
O45 - LFCP:[MD5.A914528FC49B85C71926D20C1297493B] - 21/06/2013 - 19:44:15 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf
O45 - LFCP:[MD5.708DA5B88687680FDF68F22DDC0ACE24] - 21/06/2013 - 19:53:08 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-FE771DDA.pf
O45 - LFCP:[MD5.E4DA21763A7B888E9E9870F2E3392B8F] - 21/06/2013 - 19:53:12 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.B0250B66E216F894BF21CAECE1841CB9] - 21/06/2013 - 19:59:55 ---A- - C:\Windows\Prefetch\CHROME.EXE-5A1054AF.pf
O45 - LFCP:[MD5.0467F910B86563CDD5DCFCEA3F141C02] - 21/06/2013 - 20:00:34 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf
O45 - LFCP:[MD5.B654EBF30D266338D1022DE7BCA0B72A] - 21/06/2013 - 20:02:29 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A8DE6D5B.pf
O45 - LFCP:[MD5.C79D678386D0E2DFAF71BBD9D9D497B4] - 21/06/2013 - 20:02:29 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-5F50D22C.pf
O45 - LFCP:[MD5.E6BF9CF04C7ED348A1057175B2EA3511] - 21/06/2013 - 20:03:15 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-D1EF4768.pf
O45 - LFCP:[MD5.D522AC2288923CCE8BF430598F59A07D] - 21/06/2013 - 20:03:17 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.7E6F9B05B071055F70232E4AD36ACA1F] - 21/06/2013 - 20:03:18 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
O45 - LFCP:[MD5.C18082741BE62D32B357C3C2996F4C2D] - 21/06/2013 - 20:04:00 ---A- - C:\Windows\Prefetch\PV.EXE-7B89A1E7.pf
O45 - LFCP:[MD5.F94B14B37ED7FA62E66EB010EFE3C126] - 21/06/2013 - 20:04:56 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-7FBD134E.pf
O45 - LFCP:[MD5.DE7DEB60A91998168254BAE5D9F0B511] - 21/06/2013 - 20:04:58 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.647810CA82AB4FA1B3684C01687CFE38] - 21/06/2013 - 20:04:59 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.E01E15859785B381247D207481CC32D8] - 21/06/2013 - 20:05:00 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.758AF4AF3449048A17718A2C6C4AA922] - 21/06/2013 - 20:05:00 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.513561AC9BF475AC25E3B470A0973EFD] - 21/06/2013 - 20:05:03 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf
O45 - LFCP:[MD5.44B7E8E6AA4FCC955859E0EEE240A011] - 21/06/2013 - 20:05:03 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf
O45 - LFCP:[MD5.C5BD709D6648B3AD07886219C3F274D8] - 21/06/2013 - 20:05:17 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf
~ Prefetcher: 125 Scanned in 00mn 04s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
~ ShellExecuteHooks:  Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys
~ CSB: 15 Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"VIDC.IV41"="IR41_32.AX" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\Windows\System32\IR41_32.AX
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Intel(R) Corporation - Pas de description.) -- C:\Windows\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\Windows\System32\ir50_32.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 6 Scanned in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\CrazyRemote  [Key] . (...) -- C:\Program Files\CrazyRemote\CrazyRemote.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CrazyRemoteCommand  [Key] . (...) -- C:\Program Files\CrazyRemote\CrazyRemoteCommand.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Skype  [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O53 - SMSR:HKLM\...\startupreg\Spotify Web Helper  [Key] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Yann Pringault\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O53 - SMSR:HKLM\...\startupreg\Steam  [Key] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files\Steam\Steam.exe
O53 - SMSR:HKLM\...\startupreg\uTorrent  [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe   =>P2P.µTorrent
~ SMSR Keys: 6 Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
~ MWPE Keys: 1 Scanned in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.CC1F1D3D70DC13C2C281488D347D4415] - 13/05/2011 - 18:57:20 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\Drivers\Accelerometer.sys   [35896]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
~ Drivers:  Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 18/06/2013 - 00:02:11 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\caught_urls.dat   [21904]
O61 - LFC: 18/06/2013 - 07:49:39 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_checkout.stripe.com_0.localstorage   [3072]
O61 - LFC: 18/06/2013 - 07:49:39 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_checkout.stripe.com_0.localstorage-journal   [3608]
O61 - LFC: 18/06/2013 - 08:09:36 ---A- C:\Users\Yann Pringault\Downloads\976913_10152914351130556_1437535225_o.png   [501917]
O61 - LFC: 18/06/2013 - 08:11:07 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\CameraRaw\LensProfiles\1.0\pscache.dat   [693405]
O61 - LFC: 18/06/2013 - 08:19:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.fonts.com_0.localstorage   [3072]
O61 - LFC: 18/06/2013 - 08:19:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.fonts.com_0.localstorage-journal   [3608]
O61 - LFC: 18/06/2013 - 14:58:21 ---A- C:\Users\Yann Pringault\Downloads\sugarlemonade.zip   [349899]
O61 - LFC: 18/06/2013 - 14:58:23 ---A- C:\Users\Yann Pringault\Downloads\bebas_neue.zip   [20916]
O61 - LFC: 18/06/2013 - 14:59:53 ---A- C:\Users\Yann Pringault\Kerumen-ADC.psd   [922326]
O61 - LFC: 18/06/2013 - 15:06:59 ---A- C:\Users\Yann Pringault\Kerumen-ADC.png   [475635]
O61 - LFC: 18/06/2013 - 15:14:26 ---A- C:\Users\Yann Pringault\Kerumen-ADC-500.png   [153665]
O61 - LFC: 18/06/2013 - 15:16:47 ---A- C:\Users\Yann Pringault\Downloads\grobold.zip   [17083]
O61 - LFC: 18/06/2013 - 15:20:43 ---A- C:\Users\Yann Pringault\Kerumen-ADC-500-new.png   [146067]
O61 - LFC: 18/06/2013 - 17:47:28 ---A- C:\Users\Yann Pringault\Downloads\top_secret_kb.zip   [252147]
O61 - LFC: 18/06/2013 - 17:47:42 ---A- C:\Users\Yann Pringault\AppData\Local\GDIPFONTCACHEV1.DAT   [127088]
O61 - LFC: 18/06/2013 - 17:48:22 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\LogTransport2\LogTransport2.cfg   [142]
O61 - LFC: 18/06/2013 - 17:48:25 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\Adobe Photoshop CS6\Adobe Photoshop CS6 Settings\LaunchEndFlag.psp   [13]
O61 - LFC: 18/06/2013 - 18:01:28 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\Color\ACEConfigCache2.lst   [218]
O61 - LFC: 18/06/2013 - 18:01:36 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\cache\TzZXY05DTzZ1bzBJaU9wam0vWVhPMHZrWXVJPQ==\icons\icon_1247352790   [409]
O61 - LFC: 18/06/2013 - 18:01:36 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\cache\TzZXY05DTzZ1bzBJaU9wam0vWVhPMHZrWXVJPQ==\icons\icon_471640392   [555]
O61 - LFC: 18/06/2013 - 18:02:15 ---A- C:\Users\Yann Pringault\AppData\Roaming\Préfs Format PNG Adobe CS6   [132]*
O61 - LFC: 18/06/2013 - 18:02:16 ---A- C:\Users\Yann Pringault\Kerumen-ADC-secret.png   [451146]
O61 - LFC: 18/06/2013 - 18:02:23 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\Adobe Photoshop CS6\Adobe Photoshop CS6 Settings\Actions Palette.psp   [31495]
O61 - LFC: 18/06/2013 - 18:02:23 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\Adobe Photoshop CS6\Adobe Photoshop CS6 Settings\Adobe Photoshop CS6 Prefs.psp   [198719]
O61 - LFC: 18/06/2013 - 18:02:23 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\Adobe Photoshop CS6\Adobe Photoshop CS6 Settings\Color Settings.csf   [560008]
O61 - LFC: 18/06/2013 - 18:02:23 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\Adobe Photoshop CS6\Adobe Photoshop CS6 Settings\RepoussePresets.psp   [10]
O61 - LFC: 18/06/2013 - 18:02:23 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\Adobe Photoshop CS6\Adobe Photoshop CS6 Settings\WorkSpaces (Modified)\Essentials   [19902]
O61 - LFC: 18/06/2013 - 18:02:23 ---A- C:\Users\Yann Pringault\AppData\Roaming\Adobe\Adobe Photoshop CS6\Adobe Photoshop CS6 Settings\Workspace Prefs.psp   [20195]
O61 - LFC: 18/06/2013 - 18:04:08 --HA- C:\Users\Yann Pringault\AppData\Local\Temp\etilqs_elJNHhdhgQsA1ge   [4100]
O61 - LFC: 18/06/2013 - 18:31:53 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\cache\TzZXY05DTzZ1bzBJaU9wam0vWVhPMHZrWXVJPQ==\channels\cache.dat   [4]
O61 - LFC: 18/06/2013 - 18:31:54 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\chats\TzZXY05DTzZ1bzBJaU9wam0vWVhPMHZrWXVJPQ==\channel.html   [140144]
O61 - LFC: 18/06/2013 - 18:31:54 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\chats\TzZXY05DTzZ1bzBJaU9wam0vWVhPMHZrWXVJPQ==\server.html   [2974235]
O61 - LFC: 19/06/2013 - 14:43:26 ---A- C:\Users\Yann Pringault\Downloads\igfxtray.exe   [138784]
O61 - LFC: 19/06/2013 - 14:46:47 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_social.msdn.microsoft.com_0.localstorage   [3072]
O61 - LFC: 19/06/2013 - 14:46:47 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_social.msdn.microsoft.com_0.localstorage-journal   [512]
O61 - LFC: 19/06/2013 - 14:46:50 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_social.technet.microsoft.com_0.localstorage   [3072]
O61 - LFC: 19/06/2013 - 14:46:50 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_social.technet.microsoft.com_0.localstorage-journal   [512]
O61 - LFC: 19/06/2013 - 15:43:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\VBD5FSNJ\macromedia.com\support\flashplayer\sys\settings.sol   [1024]
O61 - LFC: 19/06/2013 - 15:53:24 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\000190.sst   [8291]
O61 - LFC: 19/06/2013 - 15:53:32 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\LOG.old   [629]
O61 - LFC: 19/06/2013 - 15:56:38 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\VBD5FSNJ\tam.cartographie.pro\analytics.sol   [458]
O61 - LFC: 19/06/2013 - 15:58:37 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.amazon.fr_0.localstorage   [3072]
O61 - LFC: 19/06/2013 - 15:58:37 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.amazon.fr_0.localstorage-journal   [3608]
O61 - LFC: 19/06/2013 - 17:05:53 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_korben.info_0.localstorage   [48128]
O61 - LFC: 19/06/2013 - 17:05:53 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_korben.info_0.localstorage-journal   [15992]
O61 - LFC: 19/06/2013 - 17:06:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gog.com_0.localstorage   [3072]
O61 - LFC: 19/06/2013 - 17:06:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gog.com_0.localstorage-journal   [3608]
O61 - LFC: 19/06/2013 - 17:12:15 ---A- C:\Users\Yann Pringault\AppData\Local\Temp\CVR8412.tmp.cvr   [0]
O61 - LFC: 19/06/2013 - 17:43:32 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\shared_dynco\dc.db   [1949696]
O61 - LFC: 19/06/2013 - 17:43:50 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\eas.db   [65536]
O61 - LFC: 19/06/2013 - 17:45:44 ---A- C:\Users\Yann Pringault\AppData\Roaming\Intel Corporation\IAStorUtil\MainWindowSettings.xml   [676]
O61 - LFC: 19/06/2013 - 17:46:17 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\chatsync\20\203dcfff45e765c6.dat   [1851]
O61 - LFC: 19/06/2013 - 18:25:50 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage   [3072]
O61 - LFC: 19/06/2013 - 18:25:50 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage-journal   [3608]
O61 - LFC: 19/06/2013 - 18:34:15 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\msn.db   [53248]
O61 - LFC: 19/06/2013 - 18:51:53 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chphlpgkkbolifaimnlloiipkdnihall_0.localstorage   [19456]
O61 - LFC: 19/06/2013 - 18:51:53 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chphlpgkkbolifaimnlloiipkdnihall_0.localstorage-journal   [16384]
O61 - LFC: 19/06/2013 - 19:20:37 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\chatsync\a2\a227d6acdf8e6227.dat   [42938]
O61 - LFC: 19/06/2013 - 20:27:01 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\chatsync\5b\5b084b66d649ffc9.dat   [308308]
O61 - LFC: 19/06/2013 - 20:35:42 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_9gag.com_0.localstorage   [3072]
O61 - LFC: 19/06/2013 - 20:35:42 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_9gag.com_0.localstorage-journal   [512]
O61 - LFC: 19/06/2013 - 20:41:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists   [266862]
O61 - LFC: 19/06/2013 - 20:42:57 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\keyval.db   [49152]
O61 - LFC: 19/06/2013 - 20:46:12 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\chatsync\f7\f7f421f017ad367b.dat   [3440]
O61 - LFC: 19/06/2013 - 20:46:42 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\chatsync\05\05d1c2233c889c7a.dat   [12433]
O61 - LFC: 19/06/2013 - 21:10:45 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_telechargement.zebulon.fr_0.localstorage   [3072]
O61 - LFC: 19/06/2013 - 21:10:45 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_telechargement.zebulon.fr_0.localstorage-journal   [3608]
O61 - LFC: 19/06/2013 - 21:11:42 ---A- C:\Users\Yann Pringault\Downloads\ZHPDiag2.exe   [5680617]
O61 - LFC: 19/06/2013 - 22:53:12 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\cache\T2hpbjVDdkhJNlg2WDVaQXN2aUpXK1pxMG8wPQ==\clients\avatar_dlmgidkgleongjofmpbhbhidkgfhiphccmicokpo   [42034]
O61 - LFC: 19/06/2013 - 22:58:54 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.championselect.net_0.localstorage   [3072]
O61 - LFC: 19/06/2013 - 22:58:54 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.championselect.net_0.localstorage-journal   [512]
O61 - LFC: 19/06/2013 - 23:50:42 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\dc.db   [61440]
O61 - LFC: 19/06/2013 - 23:50:57 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\httpfe\cookies.dat   [2]
O61 - LFC: 19/06/2013 - 23:50:58 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\bistats.db   [90112]
O61 - LFC: 19/06/2013 - 23:50:58 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\config.xml   [16319]
O61 - LFC: 19/06/2013 - 23:51:00 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\metaData\UserData0.udl   [12]
O61 - LFC: 19/06/2013 - 23:51:00 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\simcache\streamlist   [44]
O61 - LFC: 19/06/2013 - 23:51:01 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\settings\restorer.queue   [55]
O61 - LFC: 19/06/2013 - 23:51:02 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\yanpol34\main.db   [6676480]
O61 - LFC: 19/06/2013 - 23:51:06 ---A- C:\Users\Yann Pringault\AppData\Roaming\Skype\shared.xml   [72807]
O61 - LFC: 20/06/2013 - 00:30:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Last Tabs   [802501]
O61 - LFC: 20/06/2013 - 00:31:02 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Last Session   [270014]
O61 - LFC: 20/06/2013 - 00:31:10 --HA- C:\Users\Yann Pringault\AppData\Local\Temp\etilqs_e6YLyz7C2uiysar   [0]
O61 - LFC: 21/06/2013 - 16:34:26 ---A- C:\Users\Yann Pringault\AppData\Roaming\uTorrent\settings.dat.old   [221030]   =>P2P.µTorrent
O61 - LFC: 21/06/2013 - 16:34:27 ---A- C:\Users\Yann Pringault\AppData\Roaming\uTorrent\dlimagecache\1EBD104E41A74C0EB95793DCF0ABE4541072F221   [8548]   =>P2P.µTorrent
O61 - LFC: 21/06/2013 - 16:35:02 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Purchase\personalPurchaseData_1_bak.aes   [436]
O61 - LFC: 21/06/2013 - 16:35:02 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Purchase\staticPurchaseData_1_bak.aes   [4004]
O61 - LFC: 21/06/2013 - 16:35:03 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Personaldata\personaldataDatabase_1_bak.aes   [28132]
O61 - LFC: 21/06/2013 - 16:35:03 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Settings\personalSettingsData_1_bak.aes   [1332]
O61 - LFC: 21/06/2013 - 16:35:04 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Settings\localSettings_1_bak.aes   [340]
O61 - LFC: 21/06/2013 - 16:35:05 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Settings\premiumData_tmp.aes   [132]
O61 - LFC: 21/06/2013 - 16:35:05 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Settings\premiumData_tmp_0_tmp.aes   [132]
O61 - LFC: 21/06/2013 - 16:35:54 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Personaldata\personaldataDatabase.aes   [28132]
O61 - LFC: 21/06/2013 - 16:35:54 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Personaldata\personaldataDatabase_0_tmp.aes   [28132]
O61 - LFC: 21/06/2013 - 16:35:55 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Purchase\personalPurchaseData.aes   [436]
O61 - LFC: 21/06/2013 - 16:35:55 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Purchase\personalPurchaseData_0_tmp.aes   [436]
O61 - LFC: 21/06/2013 - 16:35:55 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Purchase\staticPurchaseData.aes   [4004]
O61 - LFC: 21/06/2013 - 16:35:55 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Purchase\staticPurchaseData_0_tmp.aes   [4004]
O61 - LFC: 21/06/2013 - 16:35:56 ---A- C:\Users\Yann Pringault\AppData\Roaming\uTorrent\dht.dat   [111]   =>P2P.µTorrent
O61 - LFC: 21/06/2013 - 16:35:56 ---A- C:\Users\Yann Pringault\AppData\Roaming\uTorrent\dht_feed.dat   [2]   =>P2P.µTorrent
O61 - LFC: 21/06/2013 - 16:35:56 ---A- C:\Users\Yann Pringault\AppData\Roaming\uTorrent\rss.dat   [99]   =>P2P.µTorrent
O61 - LFC: 21/06/2013 - 16:35:56 ---A- C:\Users\Yann Pringault\AppData\Roaming\uTorrent\settings.dat   [221155]   =>P2P.µTorrent
O61 - LFC: 21/06/2013 - 16:35:58 ---A- C:\Users\Yann Pringault\AppData\Roaming\uTorrent\resume.dat   [230106]   =>P2P.µTorrent
O61 - LFC: 21/06/2013 - 16:36:01 ---A- C:\Users\Yann Pringault\AppData\Local\Google\MusicManager\ServerDatabase.db   [1368064]
O61 - LFC: 21/06/2013 - 16:36:24 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old   [148]
O61 - LFC: 21/06/2013 - 16:36:38 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old   [277]
O61 - LFC: 21/06/2013 - 16:38:43 ---A- C:\Users\Yann Pringault\AppData\Local\Temp\au-descriptor-1.7.0_25-b16.xml   [8817]
O61 - LFC: 21/06/2013 - 16:50:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:50:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000253   [335]
O61 - LFC: 21/06/2013 - 16:50:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG   [0]
O61 - LFC: 21/06/2013 - 16:50:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:50:47 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bongjkoajofkfpofginnhecihgaeldpe\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:50:49 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bongjkoajofkfpofginnhecihgaeldpe\000315.sst   [859]
O61 - LFC: 21/06/2013 - 16:50:49 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bongjkoajofkfpofginnhecihgaeldpe\MANIFEST-000312   [415]
O61 - LFC: 21/06/2013 - 16:50:53 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:50:54 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\edidfaijmhpefkbnobdcepampbncgejp\MANIFEST-000201   [113]
O61 - LFC: 21/06/2013 - 16:50:55 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bongjkoajofkfpofginnhecihgaeldpe\LOG   [0]
O61 - LFC: 21/06/2013 - 16:50:55 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\edidfaijmhpefkbnobdcepampbncgejp\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:50:57 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\edidfaijmhpefkbnobdcepampbncgejp\MANIFEST-000287   [218]
O61 - LFC: 21/06/2013 - 16:50:57 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\edidfaijmhpefkbnobdcepampbncgejp\LOG   [0]
O61 - LFC: 21/06/2013 - 16:50:59 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\edidfaijmhpefkbnobdcepampbncgejp\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:51:01 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Managed Extension Settings\bongjkoajofkfpofginnhecihgaeldpe\MANIFEST-000013   [50]
O61 - LFC: 21/06/2013 - 16:51:02 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Managed Extension Settings\bongjkoajofkfpofginnhecihgaeldpe\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:51:03 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\edidfaijmhpefkbnobdcepampbncgejp\LOG   [0]
O61 - LFC: 21/06/2013 - 16:51:05 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Managed Extension Settings\bongjkoajofkfpofginnhecihgaeldpe\LOG   [0]
O61 - LFC: 21/06/2013 - 16:51:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old   [148]
O61 - LFC: 21/06/2013 - 16:51:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\000192.sst   [6526]
O61 - LFC: 21/06/2013 - 16:51:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\MANIFEST-000191   [127]
O61 - LFC: 21/06/2013 - 16:51:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:51:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\Paths\MANIFEST-000231   [111]
O61 - LFC: 21/06/2013 - 16:51:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\Paths\CURRENT   [16]
O61 - LFC: 21/06/2013 - 16:51:23 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension State\000645.sst   [6908]
O61 - LFC: 21/06/2013 - 16:51:23 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000642   [692]
O61 - LFC: 21/06/2013 - 16:51:33 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\Paths\LOG   [148]
O61 - LFC: 21/06/2013 - 16:51:33 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\LOG   [0]
O61 - LFC: 21/06/2013 - 16:51:34 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG   [0]
O61 - LFC: 21/06/2013 - 16:52:06 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\Icon-64.png   [22301]
O61 - LFC: 21/06/2013 - 16:52:06 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\Icon.png   [8685]
O61 - LFC: 21/06/2013 - 16:52:06 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\Info.plist   [1987]
O61 - LFC: 21/06/2013 - 16:52:06 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\TODO   [1157]
O61 - LFC: 21/06/2013 - 16:52:06 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\consume.html   [571]
O61 - LFC: 21/06/2013 - 16:52:06 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\css\consume-message.css   [1345]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\css\consume.css   [4053]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\css\gfx\radial-gradient.jpg   [44357]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\css\gfx\radial-gradient.png   [91611]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\js\consume.js   [6544]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\js\pseudopopup.js   [413]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\loading.html   [333]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\no_iframing.html   [319]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\content\content.js   [4296]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\content\feeder_api.js   [1485]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\content\googlereader.js   [321]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\content\redirect.js   [400]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\chrome\env.js   [1648]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\chrome\ui.js   [2943]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\ext.js   [2218]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\online\env.js   [1455]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\online\ui.js   [1689]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\platform.js   [1774]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\platformload.js   [88]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\safari\env.js   [4676]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\ext\safari\ui.js   [4617]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\feeder.appcache   [29]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\bar-buttons-consume.png   [12668]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\bar-buttons-consume_2x.png   [26436]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\bar-buttons-dark.png   [13534]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\bar-buttons-dark_2x.png   [29498]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\bar-buttons-good-dark.png   [8942]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\bar-buttons-good.png   [13576]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\bar-buttons-good_2x.png   [30313]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\bar-buttons.png   [12479]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\default-icon.png   [1159]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\folder.png   [3056]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\folder_2x.png   [689]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\google-reader.png   [1532]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\google-reader_2x.png   [3192]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\heart.png   [3062]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\heart_2x.png   [527]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon-add.png   [3834]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon-connect.png   [1725]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon-connect_2x.png   [4123]
O61 - LFC: 21/06/2013 - 16:52:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon-sprite-dark.png   [18321]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon-sprite-dark_2x.png   [44558]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon-sprite.png   [12754]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon-sprite_2x.png   [54316]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icons.css   [9363]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\inset-icon.png   [24766]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\inset-icon_2x.png   [17745]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\ios-startup.png   [7789]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\loader-big.gif   [4273]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\loader-darkgray.gif   [3832]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\loader-gray.gif   [3831]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\loader-gray_2x.gif   [6116]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\logo-dark.png   [9316]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\logo-white.png   [2847]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\logo-white_2x.png   [6684]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\safari-icon-add.png   [3204]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\safari-icon.png   [3317]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\social-icons.png   [25778]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\social-icons_2x.png   [24244]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\css\page.css   [2351]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\external\airbrake.js   [569]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\html\ui.html   [26520]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\analytics.js   [409]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\array.js   [718]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\chain.js   [3204]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\element.js   [2665]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\errorreport.js   [2565]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\external.js   [3234]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\features.js   [337]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\function.js   [2128]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\global-dom.js   [808]
O61 - LFC: 21/06/2013 - 16:52:08 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\jquery.js   [235849]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\library.js   [6210]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\string.js   [1090]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\ui-load.js   [189]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\uri.js   [58180]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\js\xml2json.js   [8490]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\media\fonts\journal-webfont.woff   [59052]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\library\media\fonts\meta-serif-bold-700.woff   [40756]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\background.png   [350]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\gfx\backtofeeds.png   [12943]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\gfx\find-feeder.png   [6145]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\gfx\support-us.png   [19065]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\gfx\wood.gif   [63136]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\options.css   [23010]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\support\close.png   [4805]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\support\header.png   [204142]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\support\metaserif.woff   [25676]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\css\support\support-us.png   [18265]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\form.html   [217]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\import.html   [1020]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\js\export-import.js   [6502]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\js\export.js   [649]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\js\import.js   [400]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\js\options.js   [5671]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\options.html   [653]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\skimlinks.html   [3365]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\gfx\arrows.png   [688]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\gfx\flerps-dark.png   [3186]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\gfx\flerps.png   [3211]
O61 - LFC: 21/06/2013 - 16:52:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\gfx\flerps_2x.png   [3891]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\gfx\ribbon.png   [79325]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\gfx\ribbon_2x.png   [44575]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\gfx\theme-dark.png   [34068]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\gfx\theme-light.png   [35550]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\popup-styles.css   [2562]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\popup.css   [87426]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\screen-animation.less   [3895]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\scrollbar.css   [1529]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\css\themes.css   [16586]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\actionhistory.js   [1157]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\app.js   [5012]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\context.js   [821]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controller.js   [4153]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\datahooks.js   [1235]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screen.js   [17]
O61 - LFC: 21/06/2013 - 16:52:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenadd.js   [4096]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenconsume.js   [1361]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenfeeds.js   [6891]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenfolder.js   [649]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenfolders.js   [5852]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenimportexport.js   [2252]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenmain.js   [7257]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenmenu.js   [62]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screennofeeds.js   [2337]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screennoposts.js   [98]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screennostarred.js   [1777]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screennounread.js   [100]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenorganizeable.js   [3480]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenposts.js   [8679]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenremovesync.js   [1045]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screensettings.js   [7391]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screensettingsfeed.js   [3812]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screensettingsfolder.js   [740]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screensyncselect.js   [1439]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenthemes.js   [1287]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\controllers\screenwelcome.js   [286]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\eventlistener.js   [2519]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\popup-analytics.js   [194]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\popup.js   [5406]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\alert.js   [667]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\checkbox.js   [601]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\confirm.js   [1064]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\contextmenu.js   [3588]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\data.js   [3607]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\draggable.js   [1717]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\events.js   [2201]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\followbutton.js   [718]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\linkqueue.js   [1912]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\modal.js   [1208]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\prompt.js   [932]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\pui.js   [13]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\screenmodal.js   [352]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\slider.js   [2387]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\sort.js   [4134]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\sortable.js   [1096]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\speechbubble.js   [420]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\template.js   [6126]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\pui\yesno.js   [1429]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\js\viewcontroller.js   [7527]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\popup.html   [1541]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\application.js   [3145]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\appui.js   [2547]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\cachestore.js   [2257]
O61 - LFC: 21/06/2013 - 16:52:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\config.js   [1834]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\exporter.js   [2827]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedcontainer.js   [2397]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedernotifications.js   [1338]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedevents.js   [1748]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedfinder.js   [1173]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedloader.js   [1030]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedparser.js   [951]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedpoller.js   [1709]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedsearch.js   [2488]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedsync.js   [6015]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedunreadcontainer.js   [415]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\feedupdater.js   [5655]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\importer.js   [2893]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\google\google.js   [16569]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\google\googleoauth2.js   [2403]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\google\googlerequest.js   [2757]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\apidatabase.js   [2860]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\database.js   [5022]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\localstoragedatabase.js   [50]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\mapper.js   [3765]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\model.js   [2182]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\tests\lib\qunit.css   [4496]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\tests\lib\qunit.js   [38263]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\tests\runner.html   [1024]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\tests\test_database.js   [6087]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\library\orm\websqldatabase.js   [8546]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\main.html   [209]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\main.js   [788]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\mapper\feedmapper.js   [69]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\mapper\foldermapper.js   [75]
O61 - LFC: 21/06/2013 - 16:52:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\mapper\migrationmapper.js   [1752]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\mapper\postmapper.js   [1734]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\model\feed.js   [7088]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\model\folder.js   [6558]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\model\migration.js   [1118]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\model\post.js   [2938]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\model\special\feedonlystarred.js   [1019]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\model\special\feedonlyunread.js   [906]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\parser\googleloader.js   [465]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\parser\googleparser.js   [1349]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\parser\onlineloader.js   [352]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\parser\onlineparser.js   [711]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\parser\rssloader.js   [42]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\parser\rssparser.js   [8660]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\sync\chromesyncer.js   [2449]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\sync\feedersyncer.js   [5569]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\sync\googlesyncer.js   [14151]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\sync\onlinesyncer.js   [5124]
O61 - LFC: 21/06/2013 - 16:52:13 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\sync\syncer.js   [2457]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\consume\consume.js   [333037]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\options\options.js   [394390]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\popup\popup.js   [375737]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\user.js   [14871]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\userpreferences.js   [1697]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\userstructure.js   [6891]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\safari.sh   [277]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\update.plist   [607]
O61 - LFC: 21/06/2013 - 16:52:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\watcher.js   [880]
O61 - LFC: 21/06/2013 - 16:52:15 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon.png   [1063]
O61 - LFC: 21/06/2013 - 16:52:15 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon128x128.png   [10429]
O61 - LFC: 21/06/2013 - 16:52:15 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon16x16.png   [821]
O61 - LFC: 21/06/2013 - 16:52:15 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\icons\icon48x48.png   [3264]
O61 - LFC: 21/06/2013 - 16:52:15 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\manifest.json   [2306]
O61 - LFC: 21/06/2013 - 16:52:15 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp\5.1.2_0\reader\reader.js   [284717]
O61 - LFC: 21/06/2013 - 16:52:17 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\adblock_start_chrome.js   [4020]
O61 - LFC: 21/06/2013 - 16:52:17 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\adblock_start_common.js   [6886]
O61 - LFC: 21/06/2013 - 16:52:17 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\background.js   [29924]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\bandaids.js   [3693]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\button\popup.css   [1189]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\button\popup.html   [2771]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\button\popup.js   [5428]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\filtering\domainset.js   [3646]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\filtering\fifocache.js   [922]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\filtering\filternormalizer.js   [8094]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\filtering\filteroptions.js   [1398]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\filtering\filterset.js   [6060]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\filtering\filtertypes.js   [9759]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\filtering\myfilters.js   [21349]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\functions.js   [6036]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\idlehandler.js   [1999]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\delete.gif   [848]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon16_grayscale.png   [3067]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon16_grayscale@2x.png   [3563]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon19-grayscale.png   [869]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon19-whitelisted.png   [1829]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon24.png   [2299]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon32.png   [1904]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon38-grayscale.png   [2877]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon38-whitelisted.png   [3968]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-bg_flat_55_999999_40x100.png   [180]
O61 - LFC: 21/06/2013 - 16:52:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-bg_flat_75_aaaaaa_40x100.png   [180]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-bg_glass_45_0078ae_1x400.png   [136]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-bg_glass_55_f8da4e_1x400.png   [131]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-bg_glass_75_79c9ec_1x400.png   [132]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-bg_gloss-wave_50_38cfff_500x100.png   [89]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-bg_gloss-wave_75_2191c0_500x100.png   [89]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-bg_inset-hard_100_fcfdfd_1x100.png   [88]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-icons_056b93_256x240.png   [5355]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\images\ui-icons_d8e7f3_256x240.png   [4369]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\jquery-ui.custom.css   [21592]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\css\override-page.css   [2621]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\jquery-ui.custom.min.js   [55999]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\jquery.cookie.js   [4246]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\jquery\jquery.min.js   [93868]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\customize.html   [5810]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\customize.js   [6825]
O61 - LFC: 21/06/2013 - 16:52:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\filters.html   [1158]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\filters.js   [10126]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\general.html   [1605]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\general.js   [1721]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\index.html   [2232]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\index.js   [2086]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\options\options.css   [1995]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\pages\adreport.html   [8007]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\pages\adreport.js   [9852]
O61 - LFC: 21/06/2013 - 16:52:20 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\pages\resourceblock.html   [7787]
O61 - LFC: 21/06/2013 - 16:52:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\pages\resourceblock.js   [26884]
O61 - LFC: 21/06/2013 - 16:52:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\pages\subscribe.html   [1076]
O61 - LFC: 21/06/2013 - 16:52:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\pages\subscribe.js   [1203]
O61 - LFC: 21/06/2013 - 16:52:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\port.js   [13149]
O61 - LFC: 21/06/2013 - 16:52:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\stats.js   [5300]
O61 - LFC: 21/06/2013 - 16:52:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\blacklisting\blacklistui.js   [14897]
O61 - LFC: 21/06/2013 - 16:52:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\blacklisting\clickwatcher.js   [5439]
O61 - LFC: 21/06/2013 - 16:52:22 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\blacklisting\elementchain.js   [1344]
O61 - LFC: 21/06/2013 - 16:52:22 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\blacklisting\overlay.js   [1095]
O61 - LFC: 21/06/2013 - 16:52:22 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\blacklisting\rightclick_hook.js   [402]
O61 - LFC: 21/06/2013 - 16:52:22 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\load_jquery_ui.js   [1510]
O61 - LFC: 21/06/2013 - 16:52:22 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\send_content_to_back.js   [1586]
O61 - LFC: 21/06/2013 - 16:52:22 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\top_open_blacklist_ui.js   [1620]
O61 - LFC: 21/06/2013 - 16:52:22 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\uiscripts\top_open_whitelist_ui.js   [5409]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\bg\messages.json   [76461]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\cs\messages.json   [35080]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\da\messages.json   [30222]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\de\messages.json   [32920]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\el\messages.json   [72549]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\en\messages.json   [29138]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\es\messages.json   [20736]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\fi\messages.json   [26299]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\fr\messages.json   [32670]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\he\messages.json   [51790]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\hr\messages.json   [30462]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\hu\messages.json   [25615]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\id\messages.json   [22235]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\it\messages.json   [31336]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\ja\messages.json   [36372]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\ko\messages.json   [30820]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\nl\messages.json   [29272]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\pl\messages.json   [31696]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\pt_BR\messages.json   [32859]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\pt_PT\messages.json   [32178]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\ru\messages.json   [79566]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\sk\messages.json   [35237]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\sr\messages.json   [31665]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\sv\messages.json   [32206]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\te\messages.json   [70560]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\tr\messages.json   [35843]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\uk\messages.json   [71150]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\zh_CN\messages.json   [28005]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\_locales\zh_TW\messages.json   [27602]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon128.png   [9863]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon16.png   [753]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon19.png   [689]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon38.png   [2712]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\img\icon48.png   [3307]
O61 - LFC: 21/06/2013 - 16:52:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.65_0\manifest.json   [2422]
O61 - LFC: 21/06/2013 - 16:53:33 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdn.extensionanalytics.com_0.localstorage   [3072]
O61 - LFC: 21/06/2013 - 16:53:33 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdn.extensionanalytics.com_0.localstorage-journal   [3608]
O61 - LFC: 21/06/2013 - 16:54:03 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Login Data   [135168]
O61 - LFC: 21/06/2013 - 16:54:03 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal   [16384]
O61 - LFC: 21/06/2013 - 16:54:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\QuotaManager   [20480]
O61 - LFC: 21/06/2013 - 16:54:18 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal   [9800]
O61 - LFC: 21/06/2013 - 16:54:43 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pnjaodmkngahhkoihejjehlcdlnohgmp_0.localstorage   [3072]
O61 - LFC: 21/06/2013 - 16:54:43 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pnjaodmkngahhkoihejjehlcdlnohgmp_0.localstorage-journal   [3608]
O61 - LFC: 21/06/2013 - 16:55:57 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage   [29696]
O61 - LFC: 21/06/2013 - 16:55:57 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage-journal   [16384]
O61 - LFC: 21/06/2013 - 16:55:59 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\chats\T2hpbjVDdkhJNlg2WDVaQXN2aUpXK1pxMG8wPQ==\channel.txt   [13239]
O61 - LFC: 21/06/2013 - 16:55:59 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\chats\T2hpbjVDdkhJNlg2WDVaQXN2aUpXK1pxMG8wPQ==\server.txt   [8300]
O61 - LFC: 21/06/2013 - 17:51:27 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_euw.leagueoflegends.com_0.localstorage   [3072]
O61 - LFC: 21/06/2013 - 17:51:27 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_euw.leagueoflegends.com_0.localstorage-journal   [3608]
O61 - LFC: 21/06/2013 - 17:53:47 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT   [16]
O61 - LFC: 21/06/2013 - 17:53:47 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000386   [216]
O61 - LFC: 21/06/2013 - 17:53:49 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG   [0]
O61 - LFC: 21/06/2013 - 17:54:14 ---A- C:\Users\Yann Pringault\AppData\Roaming\.minecraft\lastlogin   [24]
O61 - LFC: 21/06/2013 - 17:54:23 ---A- C:\Users\Yann Pringault\AppData\Roaming\.minecraft\options.txt   [1012]
O61 - LFC: 21/06/2013 - 17:54:23 ---A- C:\Users\Yann Pringault\AppData\Roaming\.minecraft\optionsof.txt   [1244]
O61 - LFC: 21/06/2013 - 17:54:26 ---A- C:\Users\Yann Pringault\AppData\Roaming\.minecraft\debug.stitched_terrain.png   [85704]
O61 - LFC: 21/06/2013 - 17:54:27 ---A- C:\Users\Yann Pringault\AppData\Roaming\.minecraft\debug.stitched_items.png   [27301]
O61 - LFC: 21/06/2013 - 17:57:47 ---A- C:\Users\Yann Pringault\AppData\Roaming\.minecraft\stats\stats_kerumen_unsent.dat   [6415]
O61 - LFC: 21/06/2013 - 17:57:47 ---A- C:\Users\Yann Pringault\AppData\Roaming\.minecraft\stats\stats_kerumen_unsent.old   [6415]
O61 - LFC: 21/06/2013 - 18:00:06 ---A- C:\Users\Yann Pringault\AppData\Local\Temp\TeamViewer\Version8\7.hta   [1066]
O61 - LFC: 21/06/2013 - 18:00:33 ---A- C:\Users\Yann Pringault\Downloads\OptiFine_1.5.2_HD_U_D5.zip   [377138]
O61 - LFC: 21/06/2013 - 18:02:41 ---A- C:\Users\Yann Pringault\AppData\Roaming\.minecraft\magic\MagicLauncher.cfg   [987]
O61 - LFC: 21/06/2013 - 18:03:57 ---A- C:\Users\Yann Pringault\AppData\Local\Temp\jinstall.cfg   [1161]
O61 - LFC: 21/06/2013 - 18:07:01 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage   [565248]
O61 - LFC: 21/06/2013 - 18:07:01 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal   [16384]
O61 - LFC: 21/06/2013 - 18:09:07 ---A- C:\Users\Yann Pringault\AppData\Local\Temp\AUCHECK_PARSER.txt   [1830]
O61 - LFC: 21/06/2013 - 18:13:16 ---A- C:\Users\Yann Pringault\AppData\Local\PMB Files\A2\74\A274FD540F392B2A94396934D97A04414F315208.ct1   [436]   =>P2P.Pando
O61 - LFC: 21/06/2013 - 18:55:29 ---A- C:\Users\Yann Pringault\AppData\Local\PMB Files\cert\cert8.db   [65536]   =>P2P.Pando
O61 - LFC: 21/06/2013 - 18:55:29 ---A- C:\Users\Yann Pringault\AppData\Local\PMB Files\cert\key3.db   [16384]   =>P2P.Pando
O61 - LFC: 21/06/2013 - 18:55:29 ---A- C:\Users\Yann Pringault\AppData\Local\PMB Files\cert\secmod.db   [16384]   =>P2P.Pando
O61 - LFC: 21/06/2013 - 18:58:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-04   [25559040]
O61 - LFC: 21/06/2013 - 18:58:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-04-journal   [16384]
O61 - LFC: 21/06/2013 - 18:58:38 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Bookmarks   [152370]
O61 - LFC: 21/06/2013 - 18:58:58 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.cyanogenmod.org_0.localstorage   [3072]
O61 - LFC: 21/06/2013 - 18:58:58 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.cyanogenmod.org_0.localstorage-journal   [512]
O61 - LFC: 21/06/2013 - 18:59:02 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_disqus.com_0.localstorage   [6144]
O61 - LFC: 21/06/2013 - 18:59:02 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_disqus.com_0.localstorage-journal   [6704]
O61 - LFC: 21/06/2013 - 19:00:50 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_talkgadget.google.com_0.localstorage   [3072]
O61 - LFC: 21/06/2013 - 19:00:50 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_talkgadget.google.com_0.localstorage-journal   [3608]
O61 - LFC: 21/06/2013 - 19:03:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies   [14336]
O61 - LFC: 21/06/2013 - 19:03:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies-journal   [12896]
O61 - LFC: 21/06/2013 - 19:05:24 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\cache\T2hpbjVDdkhJNlg2WDVaQXN2aUpXK1pxMG8wPQ==\channels\cache.dat   [4]
O61 - LFC: 21/06/2013 - 19:05:25 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\chats\T2hpbjVDdkhJNlg2WDVaQXN2aUpXK1pxMG8wPQ==\channel.html   [109512]
O61 - LFC: 21/06/2013 - 19:05:25 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\chats\T2hpbjVDdkhJNlg2WDVaQXN2aUpXK1pxMG8wPQ==\server.html   [999196]
O61 - LFC: 21/06/2013 - 19:05:33 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\resolved.dat   [358]
O61 - LFC: 21/06/2013 - 19:05:33 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\subscribemode.dat   [140]
O61 - LFC: 21/06/2013 - 19:05:41 ---A- C:\Users\Yann Pringault\AppData\Roaming\TS3Client\settings.db   [76800]
O61 - LFC: 21/06/2013 - 19:05:41 --HA- C:\Users\Yann Pringault\Music\iTunes\sentinel   [8]
O61 - LFC: 21/06/2013 - 19:05:47 ---A- C:\Users\Yann Pringault\Music\iTunes\iTunes Library Extras.itdb   [290816]
O61 - LFC: 21/06/2013 - 19:05:56 ---A- C:\Users\Yann Pringault\AppData\Local\Apple Computer\iTunes\iTunesPrefs.xml   [1469635]
O61 - LFC: 21/06/2013 - 19:10:57 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\VBD5FSNJ\www.bwin.fr\Flash\Eli3\eli.swf\eliSettingsLSO.sol   [216]
O61 - LFC: 21/06/2013 - 19:10:58 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\VBD5FSNJ\www.bwin.fr\Flash\Eli3\eli.swf\betslip_session.sol   [617]
O61 - LFC: 21/06/2013 - 19:12:32 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\QYQD59NM\FF56DCA4C4D6043F3D639EFF51BF9A2934B7456B.heu   [152]
O61 - LFC: 21/06/2013 - 19:12:34 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\QYQD59NM\1000E3FF6E0A25A84E2A8866132C8A4A67BB7356.heu   [152]
O61 - LFC: 21/06/2013 - 19:23:30 ---A- C:\Users\Yann Pringault\Music\iTunes\iTunes Library.itl   [1398322]
O61 - LFC: 21/06/2013 - 19:23:31 ---A- C:\Users\Yann Pringault\AppData\Roaming\Apple Computer\iTunes\iTunesPrefs.xml   [199766]
O61 - LFC: 21/06/2013 - 19:23:31 ---A- C:\Users\Yann Pringault\Music\iTunes\iTunes Music Library.xml   [7932725]
O61 - LFC: 21/06/2013 - 19:23:44 ---A- C:\Users\Yann Pringault\AppData\Roaming\Apple Computer\Preferences\com.apple.iTunes.plist   [124]
O61 - LFC: 21/06/2013 - 19:30:57 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mihcahmgecmbnbcchbopgniflfhgnkff_0.localstorage   [3072]
O61 - LFC: 21/06/2013 - 19:30:57 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mihcahmgecmbnbcchbopgniflfhgnkff_0.localstorage-journal   [3608]
O61 - LFC: 21/06/2013 - 19:31:30 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Top Sites   [569344]
O61 - LFC: 21/06/2013 - 19:31:30 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal   [16384]
O61 - LFC: 21/06/2013 - 19:49:02 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Archived History   [6696960]
O61 - LFC: 21/06/2013 - 19:49:03 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Archived History-journal   [16384]
O61 - LFC: 21/06/2013 - 19:49:03 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03   [54177792]
O61 - LFC: 21/06/2013 - 19:49:03 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03-journal   [16384]
O61 - LFC: 21/06/2013 - 19:49:21 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\VBD5FSNJ\www.dailymotion.com\analytics.sol   [449]
O61 - LFC: 21/06/2013 - 19:50:01 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Session Storage\001873.sst   [1643516]
O61 - LFC: 21/06/2013 - 19:50:02 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-001867   [1288]
O61 - LFC: 21/06/2013 - 19:50:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG   [0]
O61 - LFC: 21/06/2013 - 19:54:06 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Safe Browsing Download   [636724]
O61 - LFC: 21/06/2013 - 19:54:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom   [9681796]
O61 - LFC: 21/06/2013 - 19:54:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set   [1776006]
O61 - LFC: 21/06/2013 - 19:54:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies   [6144]
O61 - LFC: 21/06/2013 - 19:54:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist   [135124]
O61 - LFC: 21/06/2013 - 19:54:10 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist   [19668]
O61 - LFC: 21/06/2013 - 19:54:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal   [4640]
O61 - LFC: 21/06/2013 - 19:54:11 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist   [5272]
O61 - LFC: 21/06/2013 - 19:57:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-05   [26939392]
O61 - LFC: 21/06/2013 - 19:57:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-05-journal   [16384]
O61 - LFC: 21/06/2013 - 19:57:55 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\VBD5FSNJ\www.dailymotion.com\com.dm.player.sol   [286]
O61 - LFC: 21/06/2013 - 19:59:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Web Data   [407552]
O61 - LFC: 21/06/2013 - 19:59:07 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal   [16384]
O61 - LFC: 21/06/2013 - 19:59:45 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Shortcuts   [737280]
O61 - LFC: 21/06/2013 - 19:59:45 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal   [16384]
O61 - LFC: 21/06/2013 - 19:59:46 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor   [4534272]
O61 - LFC: 21/06/2013 - 19:59:46 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal   [16384]
O61 - LFC: 21/06/2013 - 20:00:53 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Settings\personalSettingsData.aes   [1332]
O61 - LFC: 21/06/2013 - 20:00:53 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Settings\personalSettingsData_0_tmp.aes   [1332]
O61 - LFC: 21/06/2013 - 20:01:45 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History   [8855552]
O61 - LFC: 21/06/2013 - 20:01:46 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Favicons   [6072320]
O61 - LFC: 21/06/2013 - 20:01:46 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal   [16384]
O61 - LFC: 21/06/2013 - 20:01:46 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-06   [17014784]
O61 - LFC: 21/06/2013 - 20:01:46 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-06-journal   [16384]
O61 - LFC: 21/06/2013 - 20:02:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage   [2680832]
O61 - LFC: 21/06/2013 - 20:02:09 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal   [16384]
O61 - LFC: 21/06/2013 - 20:02:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3   [4415488]
O61 - LFC: 21/06/2013 - 20:02:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3-journal   [16384]
O61 - LFC: 21/06/2013 - 20:03:22 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_pnjaodmkngahhkoihejjehlcdlnohgmp_0\2   [394240]
O61 - LFC: 21/06/2013 - 20:05:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage   [3072]
O61 - LFC: 21/06/2013 - 20:05:26 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage-journal   [3608]
O61 - LFC: 21/06/2013 - 20:05:32 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage   [5120]
O61 - LFC: 21/06/2013 - 20:05:32 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage-journal   [5672]
O61 - LFC: 21/06/2013 - 20:06:01 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\History-journal   [16384]
O61 - LFC: 21/06/2013 - 20:06:12 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Preferences   [239868]
O61 - LFC: 21/06/2013 - 20:08:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Cookies   [967680]
O61 - LFC: 21/06/2013 - 20:08:14 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal   [16384]
O61 - LFC: 21/06/2013 - 20:08:27 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity   [6611]
O61 - LFC: 21/06/2013 - 20:08:57 ---A- C:\Users\Yann Pringault\AppData\Local\PMB Files\pando.save   [10480]   =>P2P.Pando
O61 - LFC: 21/06/2013 - 20:09:19 ---A- C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Local State   [31920]
O61 - LFC: 21/06/2013 - 20:10:58 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Settings\localSettings.aes   [340]
O61 - LFC: 21/06/2013 - 20:10:58 ---A- C:\Users\Yann Pringault\AppData\Roaming\Dashlane\profiles\yann.pringault@gmail.com\Settings\localSettings_0_tmp.aes   [340]
O61 - LFC: 24/07/2002 - 23:07:36 ---A- C:\Users\Yann Pringault\Downloads\Canon\Disk1\ikernel.ex_   [346602]
~ 7 Fichiers temporaires (Temporary files)
~ Files: 590 Scanned in 12mn 53s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS:  Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 25/04/2011 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 09/05/2013 - Pas de propriétaire (aswRvrt)  .(...) - LEGACY_ASWRVRT
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 09/05/2013 - Pas de propriétaire (aswVmm)  .(...) - LEGACY_ASWVMM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi)  .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep)  .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser)  .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs)  .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG)  .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\cscsvc.dll (CSC)  .(.Microsoft Corporation - DLL du service CSC.) - LEGACY_CSC
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys (driverhardwarev2)  .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2
O64 - Services: CurCS - 10/04/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat)  .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol)  .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 03/04/1996 - Pas de propriétaire (giveio)  .(...) - LEGACY_GIVEIO
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy)  .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci)  .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP)  .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio)  .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw)  .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\qwavedrv.sys (QWAVEdrv)  .(.Microsoft Corporation - Pilote du support de Microsoft Quality Wind.) - LEGACY_QWAVEDRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP)  .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 18/03/2011 - C:\Windows\System32\speedfan.sys (speedfan)  .(.Almico Software - SpeedFan x32 Driver.) - LEGACY_SPEEDFAN
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv2)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\vmstorfltres.dll (storflt)  .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs)  .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\vmbusres.dll (vmbus)  .(.Microsoft Corporation - Fichier DLL de ressources de bus VMBus.) - LEGACY_VMBUS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt)  .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6)  .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf)  .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 26/07/2012 - C:\Windows\system32\drivers\Wudfpf.sys (WudfPf)  .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 80 Scanned in 00mn 02s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: prefs.js [Yann Pringault - 9jqq94yo.default] user_pref("extensions.crossrider.bic", "13e412f94c972c194d29095fb8cc22cb");   =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - http://www.bing.com
~ Keys:  Scanned in 00mn 00s



---\\ Crack & Keygen Files (O82)
C:\Users\Yann Pringault\Desktop\Sony Vegas Pro 11\Keygen.exe
C:\Users\Yann Pringault\Downloads\Google Sketchup Pro 8.0.16846 (2012) VF (+Keygen).zip.torrent
C:\Users\Yann Pringault\Downloads\megacracker\MegaCracker\megacracker.exe
C:\Users\Yann Pringault\Downloads\megacracker.zip
C:\Users\Yann Pringault\Downloads\PhotoMatix PRO V4.2.5 - KeyGen - 32 bits.rar.torrent
C:\Users\Yann Pringault\Downloads\[isoHunt] WinRAR Password cracker v4.12.zip (1).torrent
C:\Users\Yann Pringault\Downloads\[isoHunt] WinRAR Password cracker v4.12.zip.torrent
C:\Users\Yann Pringault\Desktop\Sony Vegas Pro 11\Keygen.exe
C:\Users\Yann Pringault\Downloads\Google Sketchup Pro 8.0.16846 (2012) VF (+Keygen).zip.torrent
C:\Users\Yann Pringault\Downloads\megacracker\MegaCracker\megacracker.exe
C:\Users\Yann Pringault\Downloads\megacracker.zip
C:\Users\Yann Pringault\Downloads\PhotoMatix PRO V4.2.5 - KeyGen - 32 bits.rar.torrent
C:\Users\Yann Pringault\Downloads\[isoHunt] WinRAR Password cracker v4.12.zip (1).torrent
C:\Users\Yann Pringault\Downloads\[isoHunt] WinRAR Password cracker v4.12.zip.torrent
~ Files:  Scanned in 06mn 51s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [674304]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [473600]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [521216]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [164352]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [750592]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [102912]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [76800]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll   [149504]
~ Services: 33 Scanned in 00mn 01s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][18/03/2013] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\akrbajr5.dll   [0]
[MD5.E351BDCE7B0C87F3663B3580C67A924B] [SPRF][16/08/2007] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\aoe3-112-english.exe   [22035449]
[MD5.A7CB8962938A56017082561AEF50F3CA] [SPRF][16/08/2007] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\aoe3x-104-english.exe   [20721857]
[MD5.B439C4A1EA277C930217F7542AB3984F] [SPRF][29/08/2003] (.Electronic Arts Inc. - Electronic Arts AutoRun.) -- C:\Users\Yann Pringault\AppData\Local\Temp\AutoRun.exe   [561152]
[MD5.A915FB363AB5245F60BD60FB1EA89644] [SPRF][28/08/2003] (.Pas de propriétaire - AutoRunGUI_Deluxe DLL.) -- C:\Users\Yann Pringault\AppData\Local\Temp\AutoRunGUI.dll   [1736704]
[MD5.B8BC059C7280620897E1E9B3D6BE1E15] [SPRF][06/04/2013] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\chart_data.dat   [20802]
[MD5.31F3BAD46374266EC31081F3528A7F7D] [SPRF][25/04/2013] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\DNS.exe   [1026958]
[MD5.05B98BC86354E8E617C6EDA0650B51A1] [SPRF][17/07/2000] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Yann Pringault\AppData\Local\Temp\EBU56F7.exe   [544825]
[MD5.DA824109369836BBD119AB499189C884] [SPRF][13/01/2013] (.Iminent - Iminent Setup.) -- C:\Users\Yann Pringault\AppData\Local\Temp\IminentSetup.exe   [831880]   =>Adware.IMBooster
[MD5.05FECA1B4B1F7F9D924191716AD3F0BA] [SPRF][13/01/2013] (.Pas de propriétaire - IncrediMail Installer.) -- C:\Users\Yann Pringault\AppData\Local\Temp\incredibar_installer.exe   [463184]   =>Adware.IncrediBar
[MD5.46BAA11B87C127AD9386D91E844C7351] [SPRF][30/08/2012] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\installhelper.dll   [1622016]
[MD5.027D92D13BE5EE99889E2849BCF256F6] [SPRF][23/04/2013] (.Nosibay - Bubble Dock installer.) -- C:\Users\Yann Pringault\AppData\Local\Temp\Install_BubbleDock.exe   [372856]
[MD5.C3DAB70B8DFD36D161EDB5DD0A058681] [SPRF][11/04/2013] (.Java(TM) Native Access (JNA) - JNA native library.) -- C:\Users\Yann Pringault\AppData\Local\Temp\jna6428275504131702529.dll   [346987]
[MD5.F88C296A9109CF540EEDEF41E8A46E09] [SPRF][12/01/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Yann Pringault\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe   [896424]
[MD5.F655170EB3DC3CBB3F564077C670A7E1] [SPRF][31/01/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Yann Pringault\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe   [897448]
[MD5.5CC163324A11091C975B686EF4C52C73] [SPRF][16/02/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Yann Pringault\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe   [897448]
[MD5.A620A735458E04AE0CF471319B6D6E7D] [SPRF][01/03/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Yann Pringault\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe   [897448]
[MD5.70276F070926C947B5EBF5E67A45AF8D] [SPRF][13/06/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Yann Pringault\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe   [903592]
[MD5.A5443267F2B70090BCA56D801088535C] [SPRF][16/01/2013] (.mIRC Co. Ltd. - mIRC.) -- C:\Users\Yann Pringault\AppData\Local\Temp\mirc729.exe   [1878592]
[MD5.AC4A071C95C64241D7A0720FAC1E1789] [SPRF][22/04/2013] (.Aedge Performance BCN SL - OfferBox setup.) -- C:\Users\Yann Pringault\AppData\Local\Temp\OB.exe   [3435912]   =>PUP.OfferBox
[MD5.7D2521F494023091957C6405A7E087B4] [SPRF][22/04/2013] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\OfferBoxSetup.exe   [187344]   =>PUP.OfferBox
[MD5.0ADAE7050A9FF83A626DB807527B61D6] [SPRF][20/04/2013] (.AVG Secure Search - AVG Installer.) -- C:\Users\Yann Pringault\AppData\Local\Temp\oi_{88AF2218-C486-4968-980C-547CE54E4D03}.exe   [3196952]   =>Toolbar.AVGSearch
[MD5.9D10F99A6712E28F8ACD5641E3A7EA6B] [SPRF][01/04/2011] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Yann Pringault\AppData\Local\Temp\ose00000.exe   [149352]
[MD5.01F3D76C7016A0D8BDDFF89C8B4F4D30] [SPRF][13/01/2013] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\pricepeep_130001_0101.exe   [456344]   =>Adware.PricePeep
[MD5.DDBB51DF5A03428FAC38E20CE06EFEE5] [SPRF][13/01/2013] (.dnSoft Research Group - Recovery of lost RAR/WinRAR passwords.) -- C:\Users\Yann Pringault\AppData\Local\Temp\rarpc412_setup.exe   [233038]
[MD5.7F91A8D7192B1664D4C4B19996ED8281] [SPRF][02/11/2012] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\Runner.exe   [40587]
[MD5.7E7EB7AFF595774E5E500B34058CC1A7] [SPRF][27/04/2013] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\sfamcc00001.dll   [192512]
[MD5.A4A8CE1C7696B143356208609BA1A4C9] [SPRF][18/12/2010] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\sfextra.dll   [55296]
[MD5.F10E9620F1D0EDEC56C0C1E1790CEAB9] [SPRF][15/06/2013] (.Skype Technologies S.A. - Skype.) -- C:\Users\Yann Pringault\AppData\Local\Temp\SkypeSetup.exe   [31668328]
[MD5.72412B526BCC716382E62B7939DCFD8F] [SPRF][17/04/2012] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\SRAssetsHelper.dll   [1085952]
[MD5.3C325D6CF15F83F7E731415FA59E5744] [SPRF][09/12/2005] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\standalonepatcher.exe   [61440]
[MD5.14727E7C7DEDAA1E2DD117BBD03262EF] [SPRF][09/01/2007] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\standalonepatcherX.exe   [61440]
[MD5.B9270BA1B0D210F786D2E001A7BB902B] [SPRF][09/12/2012] (.Eclipse Foundation - SWT for Windows native library.) -- C:\Users\Yann Pringault\AppData\Local\Temp\swt-win32-3740.dll   [430080]
[MD5.36179B382A989075FF5FA282434F6892] [SPRF][21/03/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\Yann Pringault\AppData\Local\Temp\uninst1.exe   [394736]   =>Toolbar.Babylon
[MD5.77412DA4342AFD614FA6AFE6947CBBE2] [SPRF][03/05/2013] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\uttB007.tmp.bat   [98]
[MD5.887173F53072CD2D238014F4199B35CF] [SPRF][02/11/2012] (...) -- C:\Users\Yann Pringault\AppData\Local\Temp\xmlUpdater.exe   [118784]
[MD5.6951D7D32EBE6A396DEF1134BE966F03] [SPRF][18/05/2013] (.http://magiclauncher.com - Magic Launcher.) -- C:\Users\Yann Pringault\Desktop\MagicLauncher_1.1.4.exe   [364763]
[MD5.B63CCB43F2779CBEA5D8D3CE2E3D90FB] [SPRF][09/12/2012] (...) -- C:\Users\Yann Pringault\Desktop\Minecraft.exe   [263186]
~ Files:  Scanned in 00mn 03s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "SPPSVC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) -- C:\Windows\system32\sppsvc.exe
O87 - FAEL: "SPPSVC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) -- C:\Windows\system32\sppsvc.exe
O87 - FAEL: "{5EE3D5FA-5109-42E3-A2F9-D4B40EAAE32A}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{7F5DF9E7-A6E0-4D43-856F-BD2E9DEA9268}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{CBC24D44-D0B7-4A7D-B69D-FFBD41080E7F}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{A2B6D58F-292B-4AA8-8C2E-6E91DC911556}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{5E7E3428-EFD9-420A-9135-69AE31DF8200}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{D7B5E053-97A4-4BAD-B056-15E82BF4BDAE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{E8CFC2C8-AA62-4DF2-9E24-0B7591CBD5F7}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{99D756EE-D46B-4C93-8787-A97288332CE1}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{F331AE7C-2C3E-46BC-BCF1-C216B8F52C5C}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{7C29D6FC-3D59-4657-BD68-AD8B1A73853A}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{EFB7517E-EA79-4908-8634-B72807A2BCA6}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{D0EAFC97-4791-42CA-88D6-2416EAB12B3A}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{E3232762-32B2-4FFD-93EA-4D9C0261BD25}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{E8BDCC9E-14BF-4584-9D1E-124AC2DE205F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{C53F34CB-DB71-4109-9FD6-2B3F0470F08B}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{4770D6B2-3858-4126-816C-C4462C3F6B94}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{B5CA7A2D-C4CC-414C-BBEB-BDCAD6BF756C}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{A5C0C24C-8CF6-466C-89CB-911123D868DE}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{8DE3ECB3-102C-4675-AB54-C35618EA1177}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{C17B55B2-BAB6-4359-BE67-BFFBADDCAAF1}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{A800AACD-569F-4182-9212-5A009DFA4532}" | In - Domain - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{5071B60E-7B67-45A9-BFD8-1FD70110173C}" | In - Domain - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{B60C2864-46AE-47B5-A15F-ECF3C1383815}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{512DB2EC-8AD4-4A8E-BBAE-EDBCFB153230}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{220023BC-5DBD-4787-A0BA-04380DA019BC}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{6B0822E7-B2B9-4203-A02B-9DCC33533C2E}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe   =>P2P.µTorrent
O87 - FAEL: "{99767CDC-F465-462F-B279-C46056D2E792}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe   =>P2P.µTorrent
O87 - FAEL: "{6660E94A-766C-4D33-872D-8129286624D6}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft SharePoint Workspace.) -- C:\Program Files\Microsoft Office\Office14\GROOVE.exe
O87 - FAEL: "{49846606-DC31-4939-A049-B487CA046137}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft SharePoint Workspace.) -- C:\Program Files\Microsoft Office\Office14\GROOVE.exe
O87 - FAEL: "{2D381FD9-73BF-48D0-8F1F-6826A2D58FF5}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office\Office14\ONENOTE.exe
O87 - FAEL: "{2556E51E-A706-4BC0-94A3-9F067D42827E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office\Office14\ONENOTE.exe
O87 - FAEL: "{35DD9C86-B1FE-4823-BA9C-8AB44FFC37EE}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files\Microsoft Office\Office14\outlook.exe
O87 - FAEL: "{2E1D63F0-DB74-42C5-8946-897F0CB0C1AE}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{5A4A4E93-FF49-4049-80B2-B1550D3CCEC7}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{3582D8C8-2662-4602-908D-A8B8E3065EE9}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{CF614464-4874-4445-90DF-6DC0C168C289}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{2FD3813C-97AB-4BD6-B0E7-5251289B5036}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{DA458DE7-2601-48EF-9FD7-32F1183BF8F9}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O87 - FAEL: "TCP Query User{4303253E-2D2F-4275-8BDC-9E063777BA5B}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation.) -- C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
O87 - FAEL: "UDP Query User{D5E8B524-09E6-4F8A-9FB1-4EA98490AAC5}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation.) -- C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{9B94B0FD-F756-4794-B73A-18C442EAE152}E:\torrents\keyclone1.8k\keyclone\keyclone.exe" |In - Public - P6 - TRUE | .(...) -- E:\torrents\keyclone1.8k\keyclone\keyclone.exe (.not file.)
O87 - FAEL: "UDP Query User{564C47D0-8CA1-4346-BF90-B2E7BDEC8CA9}E:\torrents\keyclone1.8k\keyclone\keyclone.exe" |In - Public - P17 - TRUE | .(...) -- E:\torrents\keyclone1.8k\keyclone\keyclone.exe (.not file.)
O87 - FAEL: "TCP Query User{AD2EAD40-D540-482F-A159-2F2925CDE74F}C:\program files\maple 16\jre\bin\maple.exe" | In - Public - P6 - TRUE | .(.Maplesoft - Maple 16.) -- C:\program files\maple 16\jre\bin\maple.exe
O87 - FAEL: "UDP Query User{5DB30C8E-B9BF-4097-BE9C-8DD0CE87ACD7}C:\program files\maple 16\jre\bin\maple.exe" | In - Public - P17 - TRUE | .(.Maplesoft - Maple 16.) -- C:\program files\maple 16\jre\bin\maple.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{9C9F51E9-550C-4BEF-BA67-5B26FA538F74}C:\program files\java\jre7\bin\javaw.exe" | In - Public - P6 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\javaw.exe
O87 - FAEL: "UDP Query User{3BB1E075-43C1-404C-8449-2CEA2E543356}C:\program files\java\jre7\bin\javaw.exe" | In - Public - P17 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\javaw.exe
O87 - FAEL: "{79E91943-42EE-42CF-84C6-0DBDD4725BD7}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- C:\Program Files\Steam\Steam.exe
O87 - FAEL: "{3368F724-8B3D-4DF6-91CD-67574F64374A}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- C:\Program Files\Steam\Steam.exe
O87 - FAEL: "{C2EF8ED9-5EE1-4D9E-83B9-5EF460579EBB}" | In - Private - P6 - TRUE | .(.Re-Logic - Terraria.) -- C:\Program Files\Steam\SteamApps\common\Terraria\Terraria.exe
O87 - FAEL: "{E5176DB1-C971-4D92-B4F0-E61893F2EFBA}" | In - Private - P17 - TRUE | .(.Re-Logic - Terraria.) -- C:\Program Files\Steam\SteamApps\common\Terraria\Terraria.exe
O87 - FAEL: "{06E4FB4A-E72B-4BA7-A20A-449F168DF05B}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
O87 - FAEL: "{8F04EF2C-43FB-44FB-878B-BC858E107BCA}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.)   =>PUP.Datamngr
O87 - FAEL: "{372BB162-0665-4E0E-9948-8397CE8D5E8A}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.)   =>PUP.Datamngr
O87 - FAEL: "TCP Query User{22179597-E892-435D-B5D2-58D193119BB8}C:\program files\microsoft games\age of empires ii\age2_x1\age2_x2.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files\microsoft games\age of empires ii\age2_x1\age2_x2.exe
O87 - FAEL: "UDP Query User{CA7B5E7F-422A-4CB1-AA95-00E4D49960FE}C:\program files\microsoft games\age of empires ii\age2_x1\age2_x2.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files\microsoft games\age of empires ii\age2_x1\age2_x2.exe
O87 - FAEL: "TCP Query User{2F750CD0-960B-4E6C-A48C-B84E8D0301A1}C:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.icd" | In - Public - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.icd
O87 - FAEL: "UDP Query User{8ADF2750-FEB2-4D7A-AE6C-945C56D8086A}C:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.icd" | In - Public - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.icd
O87 - FAEL: "{E6F6E278-88FF-46C6-BAA4-C7C9D8CF3602}" | In - Private - P6 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files\adslTV\adsltv.exe
O87 - FAEL: "{EE15CCC0-1FB6-44D1-B110-7395D69F3641}" | In - Private - P17 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files\adslTV\adsltv.exe
O87 - FAEL: "{899A61C4-6C3B-4EEB-9C80-DA09EFD93509}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\adslTV\VLC\vlc.exe
O87 - FAEL: "{373B8C90-2125-438E-B8A3-D67F0DE8105C}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\adslTV\VLC\vlc.exe
O87 - FAEL: "{49FBD5CC-46A2-4182-80EF-57DC44932172}" | In - Private - P6 - TRUE | .(.Power of Two - Dwarves.) -- C:\Program Files\Steam\SteamApps\common\Dwarfs - F2P\Dwarfs.exe
O87 - FAEL: "{3ABE08A1-769F-40F2-8284-75EEB94BA21C}" | In - Private - P17 - TRUE | .(.Power of Two - Dwarves.) -- C:\Program Files\Steam\SteamApps\common\Dwarfs - F2P\Dwarfs.exe
O87 - FAEL: "{308A0CE4-426C-49B4-A59C-0B8E78FAE893}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files\CrazyRemote\CrazyRemoteServer.exe (.not file.)
O87 - FAEL: "TCP Query User{308D1ECC-FAD4-4DC8-B784-2A6A5395DF37}C:\program files\steam\steamapps\pringles347\team fortress 2\hl2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\steam\steamapps\pringles347\team fortress 2\hl2.exe (.not file.)
O87 - FAEL: "UDP Query User{FFA013D9-0800-4D6B-82EA-AFEA4AC19736}C:\program files\steam\steamapps\pringles347\team fortress 2\hl2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\steam\steamapps\pringles347\team fortress 2\hl2.exe (.not file.)
O87 - FAEL: "TCP Query User{D56B2C7F-7F58-469F-857F-D31719BDDF4B}C:\program files\java\jre7\bin\java.exe" | In - Private - P6 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\java.exe
O87 - FAEL: "UDP Query User{B013CB45-552E-4326-AE3A-2B474A6DC040}C:\program files\java\jre7\bin\java.exe" | In - Private - P17 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\java.exe
O87 - FAEL: "TCP Query User{E4DA7B0D-6819-447D-970A-F19F4C8F2E6E}C:\program files\steam\steamapps\common\planetside 2\planetside2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\steam\steamapps\common\planetside 2\planetside2.exe (.not file.)
O87 - FAEL: "UDP Query User{7ACC2EC8-9B89-41D1-B496-50D6C8B9DF51}C:\program files\steam\steamapps\common\planetside 2\planetside2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\steam\steamapps\common\planetside 2\planetside2.exe (.not file.)
O87 - FAEL: "{F1AE4920-26AB-4E09-9D8C-10BB30F97721}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - StarCraft II Setup.) -- C:\Program Files\StarCraft II\StarCraft II.exe
O87 - FAEL: "{EB0D0C03-9EDA-4564-993D-CDA1722E601B}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - StarCraft II Setup.) -- C:\Program Files\StarCraft II\StarCraft II.exe
O87 - FAEL: "TCP Query User{1125A085-03AE-4134-9F08-D74285689E6C}C:\program files\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe (.not file.)
O87 - FAEL: "UDP Query User{8832609E-431F-4F8B-922B-BC9D77356D02}C:\program files\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe (.not file.)
O87 - FAEL: "{C747C6B5-EC90-4701-89FF-757E7EE1D7D3}" |In - Private - P6 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe (.not file.)
O87 - FAEL: "{C7BAAED4-5E3C-4A2E-B9A8-6CEB71A79411}" |In - Private - P17 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe (.not file.)
O87 - FAEL: "{97D0A76E-07FD-491C-A4AD-68ABF7D38641}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
O87 - FAEL: "{2CDAD327-4C98-4FD6-96BE-B09EE66ED498}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
O87 - FAEL: "{B1A7005D-6D86-47E9-83F1-256252A8FA05}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - StarCraft II Setup.) -- C:\Program Files\StarCraft II\StarCraft II Public Test.exe
O87 - FAEL: "{B3F02A8C-198E-4E12-AECB-83CAE0CB3415}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - StarCraft II Setup.) -- C:\Program Files\StarCraft II\StarCraft II Public Test.exe
O87 - FAEL: "{31551F5C-4F52-4199-879D-250D5096B3C0}" | In - Private - P6 - TRUE | .(.Ensemble Studios - Age of Empires 3: The WarChiefs.) -- C:\Program Files\Microsoft Games\Age of Empires III\age3x.exe
O87 - FAEL: "{7E56B64A-3FE4-49E9-8C37-32C6467376B7}" | In - Private - P17 - TRUE | .(.Ensemble Studios - Age of Empires 3: The WarChiefs.) -- C:\Program Files\Microsoft Games\Age of Empires III\age3x.exe
O87 - FAEL: "{304E99BE-50F2-45BD-9C0B-16F8D870B043}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Age of Empires III Expansion 2.) -- C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe
O87 - FAEL: "{B197A036-5068-4AB6-81AE-F158370D1907}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Age of Empires III Expansion 2.) -- C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe
O87 - FAEL: "TCP Query User{E0944A27-0830-4301-8623-37A17AA1F27D}C:\program files\ea games\need for speed most wanted\nfs13.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\ea games\need for speed most wanted\nfs13.exe (.not file.)
O87 - FAEL: "UDP Query User{20F66924-11FB-4163-A9E9-B9C442995200}C:\program files\ea games\need for speed most wanted\nfs13.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\ea games\need for speed most wanted\nfs13.exe (.not file.)
O87 - FAEL: "TCP Query User{259B0DA9-2B22-4287-9D86-4660D35D26EE}C:\games\world_of_tanks\wotlauncher.exe" | In - Private - P6 - TRUE | .(.Wargaming.net - World of Tanks Launcher.) -- C:\games\world_of_tanks\wotlauncher.exe
O87 - FAEL: "UDP Query User{DC95E62B-DE9F-46E7-A4D4-36A44B0820E6}C:\games\world_of_tanks\wotlauncher.exe" | In - Private - P17 - TRUE | .(.Wargaming.net - World of Tanks Launcher.) -- C:\games\world_of_tanks\wotlauncher.exe
O87 - FAEL: "TCP Query User{215D70F8-CE73-4EA3-AF40-64BCFD85D91B}C:\program files\maniaplanet\maniaplanet.exe" | In - Public - P6 - TRUE | .(.Nadeo - ManiaPlanet.) -- C:\program files\maniaplanet\maniaplanet.exe
O87 - FAEL: "UDP Query User{9B48FE3E-339D-4A46-9BA2-141A36F2217B}C:\program files\maniaplanet\maniaplanet.exe" | In - Public - P17 - TRUE | .(.Nadeo - ManiaPlanet.) -- C:\program files\maniaplanet\maniaplanet.exe
O87 - FAEL: "TCP Query User{2CB1BF6B-FFBF-4A39-AE41-CC87D6735DA5}C:\games\world_of_tanks\worldoftanks.exe" | In - Public - P6 - TRUE | .(.Wargaming.net - World of Tanks.) -- C:\games\world_of_tanks\worldoftanks.exe
O87 - FAEL: "UDP Query User{29C16FF2-3C3E-4137-A9E0-D964F498155E}C:\games\world_of_tanks\worldoftanks.exe" | In - Public - P17 - TRUE | .(.Wargaming.net - World of Tanks.) -- C:\games\world_of_tanks\worldoftanks.exe
O87 - FAEL: "{E3F6E9C3-9059-4535-BE04-A8B8F6BAEEF5}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\TrackMania Nations Forever\TmForever.exe
O87 - FAEL: "{368F458D-656D-4A4A-B280-ED634538A68E}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\TrackMania Nations Forever\TmForever.exe
O87 - FAEL: "{7DEE5F5B-61B3-4EF8-9239-24F32F570F77}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Nadeo Launcher.) -- C:\Program Files\Steam\SteamApps\common\TrackMania Nations Forever\TmForeverLauncher.exe
O87 - FAEL: "{D6AAA2CC-9C07-47A1-8143-28978A0BF700}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Nadeo Launcher.) -- C:\Program Files\Steam\SteamApps\common\TrackMania Nations Forever\TmForeverLauncher.exe
O87 - FAEL: "{2FE889B1-91D7-4EC4-A39B-45B6315D70B9}" | In - Private - P6 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\Users\Yann Pringault\AppData\Roaming\Spotify\spotify.exe
O87 - FAEL: "{CA16313A-94F2-49B0-B20B-42ADAE75A353}" | In - Private - P17 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\Users\Yann Pringault\AppData\Roaming\Spotify\spotify.exe
O87 - FAEL: "{6CAEADA9-CDCB-445B-AF64-7178320DF235}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{CEB493AD-8801-472D-BC02-1D6ADEB5CADD}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{8E25A2DD-A398-4ACE-8D1C-43821B534EAC}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{D2C84232-D34D-4336-8B13-C449AFF74064}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "TCP Query User{AE799222-84D9-4B42-9F6D-A9F0B4A11F90}C:\program files\ti education\ti-nspire cas student software\ti-nspire cas student software.exe" | In - Public - P6 - TRUE | .(.Texas Instruments Incorporated.) -- C:\program files\ti education\ti-nspire cas student software\ti-nspire cas student software.exe
O87 - FAEL: "UDP Query User{58A8DB11-D35F-43EB-92CC-53298ECA8B2E}C:\program files\ti education\ti-nspire cas student software\ti-nspire cas student software.exe" | In - Public - P17 - TRUE | .(.Texas Instruments Incorporated.) -- C:\program files\ti education\ti-nspire cas student software\ti-nspire cas student software.exe
O87 - FAEL: "TCP Query User{957FBF06-8396-4218-9795-A5AA7EFE1378}C:\program files\common files\ti shared\jre\3.2.0\bin\java.exe" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files\common files\ti shared\jre\3.2.0\bin\java.exe
O87 - FAEL: "UDP Query User{0DC2C3A0-5C4A-4653-B448-869C01487E62}C:\program files\common files\ti shared\jre\3.2.0\bin\java.exe" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files\common files\ti shared\jre\3.2.0\bin\java.exe
O87 - FAEL: "{2EFEDB95-B9D9-47FF-94A1-D42AA3BFAC66}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
O87 - FAEL: "{C457D6F4-2F67-4198-8C8E-3EE6F3B885ED}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
O87 - FAEL: "TCP Query User{6D1EFD1A-7477-43EA-9C3F-0006E7651B09}C:\program files\steam\steamapps\common\trackmania nations forever\tmforever.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\steam\steamapps\common\trackmania nations forever\tmforever.exe
O87 - FAEL: "UDP Query User{F6F68E26-68E9-44D7-AF8D-6AF52957D016}C:\program files\steam\steamapps\common\trackmania nations forever\tmforever.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\steam\steamapps\common\trackmania nations forever\tmforever.exe
O87 - FAEL: "{3A460C16-D2ED-4C35-84D3-D9075AC0B2E8}" | In - Public - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
O87 - FAEL: "{6377E8B5-A251-46EF-8957-822D0D2604A6}" | In - Public - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
O87 - FAEL: "TCP Query User{0FF56C19-9C5F-4E3A-8BC3-807FC19CCC57}C:\program files\mirc\mirc.exe" | In - Public - P6 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files\mirc\mirc.exe
O87 - FAEL: "UDP Query User{0746AB42-BC9E-4747-88F9-5D9104AF1C32}C:\program files\mirc\mirc.exe" | In - Public - P17 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files\mirc\mirc.exe
O87 - FAEL: "{14E74C5D-F5B1-4B63-8106-B449305E308E}" | In - Public - P6 - TRUE | .(.Firefly Studios - KingdomsMain.) -- C:\Program Files\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
O87 - FAEL: "{23AF9C4C-DEF2-45BB-BD63-6F8167048C25}" | In - Public - P17 - TRUE | .(.Firefly Studios - KingdomsMain.) -- C:\Program Files\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
O87 - FAEL: "{1A41F545-7134-4416-AE39-CC6A7E8D5105}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Awesomenauts\AwesomenautsLauncher.exe
O87 - FAEL: "{CB2760F2-6776-4FD6-8DD8-6E0CC393EEE2}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Awesomenauts\AwesomenautsLauncher.exe
O87 - FAEL: "{CD7AB28D-23D4-42B8-86FA-7BDB70A47620}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{A8F864D5-D6F4-47DB-B8F2-9EF1EFCB4F68}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{C473AC3D-A328-44A6-9CE2-D47A403D7112}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{B6028DB9-21C4-41E4-87A6-F2373C6EA9A9}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{75167189-59F2-499B-8B06-EDD79825EC13}" | In - Private - P6 - TRUE | .(.Microsoft Studios - Age of Empires Online Launcher.) -- C:\Program Files\Steam\SteamApps\common\Age Of Empires Online\AOEOnline.exe
O87 - FAEL: "{AE5C7049-85CA-4575-BA26-75D60863DB46}" | In - Private - P17 - TRUE | .(.Microsoft Studios - Age of Empires Online Launcher.) -- C:\Program Files\Steam\SteamApps\common\Age Of Empires Online\AOEOnline.exe
O87 - FAEL: "TCP Query User{4AABBAE1-6E5D-4510-8F3A-7F9E6058DD5C}C:\program files\steam\steamapps\common\age of empires online\spartan.exe" | In - Public - P6 - TRUE | .(.Microsoft Studios.) -- C:\program files\steam\steamapps\common\age of empires online\spartan.exe
O87 - FAEL: "UDP Query User{6528B363-05B1-4066-90EB-5357CC6D74E1}C:\program files\steam\steamapps\common\age of empires online\spartan.exe" | In - Public - P17 - TRUE | .(.Microsoft Studios.) -- C:\program files\steam\steamapps\common\age of empires online\spartan.exe
O87 - FAEL: "TCP Query User{027C6DF5-44C9-4AAB-B050-2AD2AB2ACD14}C:\program files\java\jre7\bin\java.exe" | In - Public - P6 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\java.exe
O87 - FAEL: "UDP Query User{3F5E9583-67F0-45F3-AC71-19B35136EE8F}C:\program files\java\jre7\bin\java.exe" | In - Public - P17 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\java.exe
O87 - FAEL: "{3953655B-E988-48F0-89B5-D61B8F112E41}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O87 - FAEL: "{75384B74-F05E-4EEF-8EB2-94D955601D99}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe
O87 - FAEL: "{73EED8AB-71F5-4C9B-9050-F381B1A38683}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe
O87 - FAEL: "{6397BFC0-9311-4A62-8643-B87E3D2A5FF5}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Awesomenauts\AwesomenautsLauncher.exe
O87 - FAEL: "{A5FA4266-0115-434A-B287-78908CAFE9D3}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Awesomenauts\AwesomenautsLauncher.exe
~ Firewall: 306 Scanned in 00mn 05s



---\\ Scan Additionnel (O88)
Database Version : v2.12511 - (18/06/2013)
Clés trouvées (Keys found) : 12
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 2
Fichiers trouvés  (Files found) : 8

[HKLM\Software\Classes\TypeLib\{3277CD27-4001-4EF8-9D96-C6CA745AC2F9}]   =>Trojan.BHO
[HKLM\Software\Classes\Interface\{38493F7F-2922-4C6C-9A9A-8DA2C940D0EE}]   =>Trojan.BHO
[HKLM\Software\Microsoft\Tracing\OfferBoxHTTPProxy_RASAPI32]   =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxHTTPProxy_RASMANCS]   =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32]   =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS]   =>PUP.OfferBox
[HKLM\Software\Savings Wave]   =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111271165}]   =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111271165}]   =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110111271165}]   =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31111111-1111-1111-1111-110111271165}]   =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111271165}]   =>PUP.CrossRider
C:\Users\Yann Pringault\AppData\Local\Savings Wave   =>PUP.CrossRider
C:\Users\Yann Pringault\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall   =>Adware.OneTab
C:\Users\Yann Pringault\AppData\Local\Temp\OB.exe   =>PUP.OfferBox
C:\Users\Yann Pringault\AppData\Local\Temp\uninst1.exe   =>Toolbar.Babylon
C:\Users\Yann Pringault\AppData\Local\Temp\incredibar_installer.exe  =>Adware.IncrediBar
C:\Users\Yann Pringault\AppData\Local\Temp\IminentSetup.exe  =>Adware.IMBooster
C:\Users\Yann Pringault\AppData\Local\Temp\pricepeep_130001_0101.exe  =>Adware.PricePeep
~ Additionnel Scan: 412326 Items scanned in 00mn 50s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "0AA7CFB2C445A3E47869763FEB56B59E" . (.Microsoft XNA Framework Redistributable 4.0.) -- C:\Windows\Installer\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}\ProductIcon
O90 - PUC: "0C22D86408082E118BE68BCAF689CC3E" . (.Google Earth.) -- C:\Windows\Installer\{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}\ARPPRODUCTICON.exe
O90 - PUC: "0ED9D238CFA898648991D4BBEDDBE3F4" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}\GameForWindowsLiveRedist.exe
O90 - PUC: "121E2D80A6F7BE3479DF26B944094330" . (.Microsoft_VC90_CRT_x86.) -- C:\Windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
O90 - PUC: "277C90D53BCEB244C96C4B43C187DF2C" . (.Apple Application Support.) -- C:\Windows\Installer\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}\WinInstall.ico
O90 - PUC: "2D64DF197BF415A4687355E6B11EBDC7" . (.iTunes.) -- C:\Windows\Installer\{91FD46D2-4FB7-4A51-8637-556E1BE1DB7C}\Installer.ico
O90 - PUC: "3E4D6AE6D43111A4FAA297686FB12B6F" . (.ImageRescue3.) -- C:\Windows\Installer\{6EA6D4E3-134D-4A11-AF2A-7986F61BB2F6}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "44870A0846AC4ED4BA163DD7BD8E70F4" . (.PDF Architect.) -- C:\Windows\Installer\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}\main_icon
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "5141C34CCFD39804A923B0CE2FA80664" . (.Age of Empires III - The Asian Dynasties.) -- C:\Windows\Installer\{C43C1415-3DFC-4089-9A32-0BECF28A6046}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.03) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "6D4B04801DD7781458326ECF0070FE7B" . (.Windows Live ID Sign-in Assistant.) -- C:\Windows\Installer\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}\prodicon.ico
O90 - PUC: "91785D291CBB3CC40AB8659C8E48CCC2" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
O90 - PUC: "9A90FAC448F94DE4188E9E30A9ABD709" . (.Ma-Config.com.) -- C:\Windows\Installer\{4CAF09A9-9F84-4ED4-81E8-E9039ABA7D90}\maconfico
O90 - PUC: "A06CC9B718B93A649A35676BFBE9CE79" . (.Age of Empires III.) -- C:\Windows\Installer\{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}\ARPPRODUCTICON.exe
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
O90 - PUC: "B2F5519759897D9468219D52080EEDB5" . (.Bonjour.) -- C:\Windows\Installer\{79155F2B-9895-49D7-8612-D92580E0DE5B}\Bonjour.ico
O90 - PUC: "C42A80C1861BE7048A6286AF5F2F7001" . (.Age of Empires III - The WarChiefs.) -- C:\Windows\Installer\{1C08A24C-B168-407E-A826-68FAF5F20710}\ARPPRODUCTICON.exe
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "D5ADFB912EF152F4799FA197DD40EE02" . (.Microsoft XNA Framework Redistributable 3.1.) -- C:\Windows\Installer\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}\ProductIcon
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E0EDA41E3F5764A4785E6296D26D62CE" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}\Installer.ico
O90 - PUC: "E53DC06B69202E1149A50FD42AA3C585" . (.Vegas Pro 11.0.) -- C:\Windows\Installer\{B60CD35E-0296-11E2-945A-F04DA23A5C58}\vegas.ico
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.5.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Update Products: 78 Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 11/05/2013 65640 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 12/06/2013 256904 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 15/07/2008 90112 |  (AEADIFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\AEADISRV.exe
SR - | Auto 03/12/2009 26112 |  (AgereModemAudio) . (.LSI Corporation.) - C:\Program Files\LSI SoftModem\agrsmsvc.exe
SR - | Auto 21/12/2012 57008 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 09/05/2013 46808 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 30/08/2011 390504 |  (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand 26/04/2012 2438696 |  (CGVPNCliSrvc) . (.mobile concepts GmbH.) - C:\Program Files\CyberGhost VPN\CGVPNCliService.exe
SS - | Demand 12/01/2010 227896 |  (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
SS - | Auto 09/12/2012 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 09/12/2012 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 30/04/2009 229944 |  (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
SR - | Auto 13/05/2011 26168 |  (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 19/11/2012 14904 |  (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 04/04/2005 69632 |  (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Demand 31/05/2013 553288 |  (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 28/10/2012 312264 |  (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe
SS - | Demand 09/05/2013 117144 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 09/01/2013 1324104 |  (PDF Architect Helper Service) . (.pdfforge GbR.) - C:\Program Files\PDF Architect\HelperService.exe
SR - | Auto 09/01/2013 795208 |  (PDF Architect Service) . (.pdfforge GbR.) - C:\Program Files\PDF Architect\ConversionService.exe
SS - | Auto 03/06/2013 162408 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SS - | Demand 16/03/2011 407336 |  (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe
SS - | Demand 19/02/2010 517096 |  (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SR - | Auto 23/04/2013 3574624 |  (TeamViewer8) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
SR - | Auto 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services:  Scanned in 00mn 04s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Yann Pringault at 21/06/2013 21:29:54

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR:  Scanned in 00mn 04s



---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
~ Emulateurs:  Scanned in 00mn 04s



End of the scan (2603 lines in 26mn 55s)(14)